| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Weißer Bildschirm beim InternetsurfenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
15.11.2015, 21:44
| #1 |
| |  Weißer Bildschirm beim Internetsurfen Wenn ich auf die Seite mit Mozilla Firefox im Internet surfe legt sich auf bestimmten Seiten (wie z.B. auf www.bs.to) scheinbar zufällig ein weißer Schleier über meinen Bildschirm. Wenn dieser erscheint kann ich nichts mehr machen. strg+alt+entf hat genau so wenig Effekt wie über strg+Umschalt+Esc den Taskmanager aufzurufen. Ich kann den Pc dann nur mit dem Powerknopf herunterfahren. |
|
16.11.2015, 00:12
| #2 |
| /// the machine /// TB-Ausbilder    | Weißer Bildschirm beim Internetsurfen hi,
__________________passiert das auch im IE, und auch wenn Du nicht surfst? Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
16.11.2015, 15:57
| #3 |
| | Weißer Bildschirm beim Internetsurfen Danke für die schnelle Antwort. Beim normalen benutzen ist es mir bis jetzt nicht passiert.
__________________Leider komm ich heute nicht zum PC. Ich werde es morgen aber gleich ausprobieren und die logs erstellen. |
|
17.11.2015, 18:39
| #4 |
| | FRST.txt Addition.txt Ich habe heute den IE ausprobiert. Dort ist es nicht passiert. Direkt im Anschluss habe ich es auch mit dem Mozilla probiert und es hat sich auch nichts getan. Wie gesagt ist es scheinbar zufällig. Hier ist erst mal die FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:17-11-2015
durchgeführt von Patrick-A (Administrator) auf HOME-PC (17-11-2015 18:33:04)
Gestartet von F:\Downloads
Geladene Profile: Patrick-A (Verfügbare Profile: Patrick-A & Andrea & Sascha)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser nicht gefunden!)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) G:\hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(LogMeIn, Inc.) G:\hamachi\LMIGuardianSvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
() C:\Program Files\Core Temp\Core Temp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDPOP3.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Applets\LCDCountdown.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11613288 2010-11-19] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [6900024 2012-07-24] (Logitech Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\Policies\Explorer: []
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\MountPoints2: {b4ee3c24-1576-11e2-a8ad-806e6f6e6963} - D:\.\Bin\ASSETUP.exe
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\MountPoints2: {b4ee3c2d-1576-11e2-a8ad-806e6f6e6963} - E:\Install.exe
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-30] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicyUsers\S-1-5-21-2479138526-915371098-1455362348-1003\User: Beschränkung <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{8F4D1D8D-97BD-4A8F-939D-3EC3929AE09B}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{BE9D774E-1B31-478A-8CA1-D230E57896FB}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{BFE56F23-C609-4BD6-97B9-05966C1B35DE}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{F7592DF5-027E-4ACB-931C-2341D4E96F92}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2479138526-915371098-1455362348-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=452
SearchScopes: HKU\S-1-5-21-2479138526-915371098-1455362348-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=452
SearchScopes: HKU\S-1-5-21-2479138526-915371098-1455362348-1000 -> {EACDFEB8-BC7A-4D48-AC91-3D028341DC25} URL = hxxp://websearch.ask.com/custom/java/redirect?client=ie&tb=ORJ&o=100000026&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> F:\Downloads\bin\ssv.dll [2013-10-29] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-18] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2015-10-30] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> F:\Downloads\bin\jp2ssv.dll [2013-10-29] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-18] (AVAST Software)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-10-30] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-10-30] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2479138526-915371098-1455362348-1000 -> Kein Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - Keine Datei
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2012-03-28] (Citrix Systems, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\Patrick-A\AppData\Roaming\Mozilla\Firefox\Profiles\o6x84bmi.default
FF Homepage: www.google.at
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Windows\system32\npDeployJava1.dll [2013-10-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> G:\Java\bin\plugin2\npjp2.dll [2015-09-05] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> F:\Downloads\Mozilla Plugins\npitunes.dll [2014-02-20] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-11-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2013-07-24] (RocketLife, LLP)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2479138526-915371098-1455362348-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Patrick-A\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-23] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CCMSDK.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\cgpcfg.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\CgpCore.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\confmgr.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxlogging.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ctxmui.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icafile.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\icalogon.dll [2012-03-28] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npicaN.dll [2012-03-28] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-27] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\sslsdk_b.dll [2012-03-19] (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\TcpPServ.dll [2012-03-28] (Citrix Systems, Inc.)
FF SearchPlugin: C:\Users\Patrick-A\AppData\Roaming\Mozilla\Firefox\Profiles\o6x84bmi.default\searchplugins\feed-the-beast-wiki-en.xml [2015-10-07]
FF Extension: TrackMeNot - C:\Users\Patrick-A\AppData\Roaming\Mozilla\Firefox\Profiles\o6x84bmi.default\Extensions\trackmenot@mrl.nyu.edu.xpi [2015-11-02]
FF Extension: Adblock Plus - C:\Users\Patrick-A\AppData\Roaming\Mozilla\Firefox\Profiles\o6x84bmi.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-09-25]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-30] [ist nicht signiert]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-05]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Datei ist nicht signiert]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-30] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4048280 2015-09-30] (Avast Software)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-06-01] () [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2780856 2015-10-07] (Microsoft Corporation)
R2 Hamachi2Svc; G:\hamachi\hamachi-2.exe [2490216 2015-03-30] (LogMeIn Inc.)
S4 HiPatchService; G:\Smite\HiPatchService.exe [9216 2014-08-22] (Hi-Rez Studios) [Datei ist nicht signiert]
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S4 Origin Client Service; G:\origin\OriginClientService.exe [2099208 2015-11-03] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2014-12-14] ()
S4 TunngleService; G:\Tunngle\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH)
S4 UCManSvc; C:\Program Files (x86)\SoftDenchi\UCManSvc.exe [186512 2012-11-01] (Paltiosoft Inc.) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 iPod Service; "C:\Program Files\iPod\bin\iPodService.exe" [X]
S4 VMAuthdService; G:\VM\vmware-authd.exe [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-30] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-30] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-30] (AVAST Software)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2009-12-15] (Bytemobile, Inc.) [Datei ist nicht signiert]
R0 BMLoad; C:\Windows\SysWOW64\drivers\BMLoad.sys [16512 2009-12-15] (Bytemobile, Inc.) [Datei ist nicht signiert]
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 EuMusDesignVirtualAudioCableWdm; C:\Windows\System32\DRIVERS\vrtaucbl.sys [67584 2014-04-11] (Eugene V. Muzychenko) [Datei ist nicht signiert]
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66328 2012-02-07] (Logitech Inc.)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [132656 2015-09-30] (AVAST Software)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R1 tcpipBM; C:\Windows\System32\Drivers\tcpipBM.sys [39552 2009-12-15] (Bytemobile, Inc.)
R1 tcpipBM; C:\Windows\SysWow64\Drivers\tcpipBM.sys [39552 2009-12-15] (Bytemobile, Inc.) [Datei ist nicht signiert]
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [274336 2015-09-30] (Avast Software)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [76480 2014-11-17] (VMware, Inc.)
S3 zte_cdc_acm; C:\Windows\System32\DRIVERS\zte_cdc_acm.sys [79872 2011-11-02] (ZTE)
S3 zte_cpo; C:\Windows\System32\DRIVERS\zte_cpo.sys [14336 2011-11-02] (ZTE)
R3 ALSysIO; \??\C:\Users\PATRIC~1\AppData\Local\Temp\ALSysIO64.sys [X]
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-17 18:32 - 2015-11-17 18:33 - 00000000 ____D C:\FRST
2015-11-15 21:33 - 2015-11-15 21:33 - 00000000 ____D C:\ProgramData\Uniblue
2015-11-15 20:13 - 2015-11-15 20:13 - 00000000 ____D C:\Users\Patrick-A\AppData\LocalLow\uTorrent
2015-11-13 21:51 - 2015-11-15 11:02 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-11-13 21:51 - 2015-11-14 08:17 - 00000000 ____D C:\Users\Patrick-A\AppData\Roaming\Malwarebytes
2015-11-13 18:49 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-10 19:36 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-10 19:36 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-10 19:36 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-10 19:36 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-10 19:36 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-10 19:36 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-10 19:36 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-10 19:36 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-10 19:36 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-10 19:36 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-10 19:36 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-10 19:36 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-10 19:36 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-10 19:36 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-10 19:36 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-10 19:36 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-10 19:35 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-10 19:35 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-10 19:35 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-10 19:35 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-10 19:35 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-10 19:35 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-10 19:35 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-10 19:35 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-10 19:35 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-10 19:35 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-10 19:35 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-10 19:35 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-10 19:35 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-10 19:35 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-10 19:35 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-10 19:35 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-10 19:35 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-10 19:35 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-10 19:35 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-10 19:35 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-10 19:35 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-10 19:35 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-10 19:35 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-10 19:35 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-10 19:35 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-10 19:35 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-10 19:35 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-10 19:35 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-10 19:35 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-10 19:35 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-10 19:35 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-10 19:35 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-10 19:35 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-10 19:35 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-10 19:35 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-10 19:35 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-10 19:35 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-10 19:35 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-10 19:35 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-10 19:35 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-10 19:35 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-10 19:35 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-10 19:35 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-10 19:35 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-10 19:35 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-10 19:35 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-10 19:35 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-10 19:35 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-10 19:35 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-10 19:35 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-10 19:35 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-10 19:35 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-10 19:35 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-10 19:35 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-10 19:35 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-10 19:35 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-10 19:35 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-10 19:35 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-10 19:35 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-10 19:35 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-10 19:35 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-10 19:35 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-10 19:35 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-10 19:35 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-10 19:35 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-10 19:35 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-10 19:35 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-10 19:35 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-10 19:35 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-10 19:35 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-10 19:35 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-10 19:35 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-10 19:35 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-10 19:35 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-10 19:35 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-10 19:35 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-10 19:35 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-10 19:35 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-10 19:35 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-10 19:35 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-10 19:35 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-10 19:35 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-10 19:35 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-10 19:35 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-10 19:35 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-10 19:35 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-10 19:35 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-10 19:35 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-10 19:35 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-10 19:35 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-10 19:35 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-10 19:35 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-10 19:35 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 19:35 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-10 19:35 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-10 19:35 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-10 19:35 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-10 19:34 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-10 19:34 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-10 19:34 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-10 19:34 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-10 19:34 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-10 19:34 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-10 19:34 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-10 19:34 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-10 19:34 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-10 19:34 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-10 19:34 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 19:34 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-10 19:34 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-10 19:34 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-10 19:34 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-10 19:34 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 19:34 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-10 19:34 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-10 19:34 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-10 19:34 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-10 19:34 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-10 19:34 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-10 19:34 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-10 19:34 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-06 19:41 - 2015-11-06 21:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-01 11:55 - 2015-11-01 11:55 - 00000000 ___HD C:\Users\Patrick-A\Desktop\.updtmp
2015-10-30 21:26 - 2015-10-30 21:26 - 00000000 ____D C:\Users\Patrick-A\AppData\Local\fabi.me
2015-10-30 20:51 - 2015-10-30 20:51 - 00000000 ___HD C:\Users\Patrick-A\Downloads\.updtmp
2015-10-30 20:50 - 2015-10-30 20:50 - 00179200 _____ (fabi.me) C:\Users\Patrick-A\Desktop\SpeedAutoClicker.exe
2015-10-20 19:45 - 2015-10-20 19:45 - 00000423 _____ C:\Users\Patrick-A\Downloads\Baum.bat
2015-10-20 19:45 - 2015-10-20 19:45 - 00000062 _____ C:\Users\Patrick-A\Downloads\Blabla.vbs
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-11-17 18:32 - 2012-10-13 21:54 - 01746999 _____ C:\Windows\WindowsUpdate.log
2015-11-17 18:29 - 2014-05-20 14:15 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-17 18:29 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-17 18:29 - 2009-07-14 05:51 - 00269040 _____ C:\Windows\setupact.log
2015-11-17 18:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-17 18:23 - 2013-08-23 18:20 - 00000346 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2015-11-17 18:17 - 2009-07-14 05:45 - 00029120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-17 18:17 - 2009-07-14 05:45 - 00029120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-17 18:07 - 2011-04-12 08:43 - 04050474 _____ C:\Windows\system32\perfh007.dat
2015-11-17 18:07 - 2011-04-12 08:43 - 01191064 _____ C:\Windows\system32\perfc007.dat
2015-11-17 18:07 - 2009-07-14 06:13 - 00006506 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-15 21:46 - 2015-06-12 15:29 - 00173056 ___SH C:\Users\Patrick-A\Desktop\Thumbs.db
2015-11-15 21:39 - 2012-10-13 20:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-15 21:25 - 2015-01-16 22:14 - 00000000 ____D C:\Users\Patrick-A\AppData\Roaming\uTorrent
2015-11-15 21:18 - 2014-01-30 13:24 - 00000000 ____D C:\Users\Patrick-A\AppData\Local\Battle.net
2015-11-15 11:02 - 2010-11-21 04:47 - 00489252 _____ C:\Windows\PFRO.log
2015-11-14 09:28 - 2015-09-30 17:03 - 00000623 _____ C:\Users\Public\Desktop\Guild Wars 2.lnk
2015-11-14 09:28 - 2015-03-05 20:25 - 00001147 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-11-14 09:28 - 2015-02-07 15:20 - 00001009 _____ C:\Users\Public\Desktop\PVZ Garden Warfare.lnk
2015-11-14 09:28 - 2014-12-16 21:58 - 00000421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nether.lnk
2015-11-14 09:28 - 2014-12-14 09:41 - 00000943 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.0.lnk
2015-11-14 09:28 - 2014-12-06 10:22 - 00001293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-11-14 09:28 - 2014-11-13 18:59 - 00001711 _____ C:\Users\Public\Desktop\AutoCAD 2014 - Deutsch (German).lnk
2015-11-14 09:28 - 2014-03-15 08:12 - 00002511 _____ C:\Users\Public\Desktop\Skype.lnk
2015-11-14 09:28 - 2013-11-15 08:00 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-11-14 09:28 - 2013-10-27 17:51 - 00000726 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
2015-11-14 09:28 - 2012-10-13 21:46 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-11-14 09:28 - 2012-10-13 21:46 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-11-14 09:28 - 2012-10-13 17:27 - 00001478 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-11-14 09:28 - 2012-10-13 17:27 - 00001362 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-11-14 09:28 - 2009-07-14 05:57 - 00001511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-14 09:28 - 2009-07-14 05:57 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2015-11-14 09:28 - 2009-07-14 05:57 - 00001292 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2015-11-14 09:28 - 2009-07-14 05:57 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2015-11-14 09:28 - 2009-07-14 05:54 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2015-11-14 09:27 - 2015-07-01 13:37 - 00001030 _____ C:\Users\Patrick-A\Desktop\Play The Witcher 3 Wild Hunt.lnk
2015-11-14 09:27 - 2015-05-11 19:02 - 00000744 _____ C:\Users\Patrick-A\Desktop\4K Video Downloader.lnk
2015-11-14 09:27 - 2015-04-17 16:25 - 00000834 _____ C:\Users\Patrick-A\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-11-14 09:27 - 2013-05-28 12:07 - 00000840 _____ C:\Users\Patrick-A\Desktop\FileZilla Client.lnk
2015-11-14 09:27 - 2012-10-13 17:14 - 00000739 _____ C:\Users\Patrick-A\Desktop\Revo Uninstaller.lnk
2015-11-14 09:27 - 2012-10-13 16:07 - 00001421 _____ C:\Users\Patrick-A\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-11-14 09:27 - 2009-07-14 06:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-14 09:27 - 2009-07-14 06:01 - 00001218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2015-11-14 09:27 - 2009-07-14 05:49 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2015-11-13 21:43 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-13 21:43 - 2009-07-14 05:45 - 00543888 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-13 20:55 - 2012-10-19 13:09 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-11-11 21:50 - 2014-12-13 13:48 - 00000000 ____D C:\Windows\rescache
2015-11-11 01:31 - 2013-08-24 02:00 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 01:26 - 2012-10-13 18:31 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-10 22:12 - 2011-04-12 08:55 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-10 19:39 - 2012-10-13 20:12 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 19:39 - 2012-10-13 20:12 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-10 19:39 - 2012-10-13 20:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 19:13 - 2013-12-06 18:03 - 00000000 ____D C:\Users\Patrick-A\AppData\Roaming\.minecraft
2015-11-08 17:01 - 2012-10-13 22:00 - 00000000 ____D C:\ProgramData\Origin
2015-11-08 16:26 - 2013-02-23 15:31 - 00000000 ____D C:\Users\Patrick-A\AppData\Roaming\Skype
2015-11-07 22:37 - 2015-05-10 16:51 - 00000000 ____D C:\Users\Patrick-A\Desktop\Serien
2015-11-07 22:26 - 2015-07-01 14:36 - 00000000 ____D C:\Users\Patrick-A\Documents\The Witcher 3
2015-11-07 17:29 - 2014-10-28 18:18 - 00000000 ____D C:\Users\Patrick-A\AppData\Local\LogMeIn Hamachi
2015-11-07 10:24 - 2015-03-05 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-06 18:20 - 2012-10-13 17:17 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-11-06 18:20 - 2012-10-13 17:17 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-11-04 18:32 - 2012-10-13 17:26 - 00624828 _____ C:\Windows\DirectX.log
2015-11-04 14:23 - 2015-05-17 13:56 - 00000000 ____D C:\Windows\SysWOW64\.launcher_log
2015-11-03 20:26 - 2013-12-01 08:14 - 00000000 ____D C:\Users\Patrick-A\AppData\Roaming\Craften Terminal
2015-10-30 17:48 - 2014-11-13 19:10 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-30 17:47 - 2014-12-25 19:53 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-10-18 15:52 - 2013-03-10 20:55 - 00000000 ____D C:\Users\Patrick-A\AppData\Roaming\.technic
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-10-13 16:59 - 2012-10-13 17:01 - 0000532 _____ () C:\Users\Patrick-A\AppData\Roaming\All CPU MeterV3_Settings.ini
2012-10-13 17:09 - 2013-02-26 21:23 - 0000345 _____ () C:\Users\Patrick-A\AppData\Roaming\Drives Meter_Settings.ini
2012-10-13 17:10 - 2014-05-22 19:15 - 0000281 _____ () C:\Users\Patrick-A\AppData\Roaming\Network Meter_Settings.ini
2013-11-10 10:24 - 2015-09-30 17:37 - 0007621 _____ () C:\Users\Patrick-A\AppData\Local\Resmon.ResmonCfg
2013-07-29 21:36 - 2013-07-29 21:36 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-11-23 18:25 - 2014-09-24 18:25 - 0000032 ____R () C:\ProgramData\hash.dat
2014-11-13 19:00 - 2014-11-13 19:00 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\ProgramData\hash.dat
Einige Dateien in TEMP:
====================
C:\Users\Andrea\AppData\Local\Temp\FileSystemView.dll
C:\Users\Patrick-A\AppData\Local\Temp\Gw2.exe
C:\Users\Patrick-A\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Patrick-A\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Patrick-A\AppData\Local\Temp\sldlext.dll
C:\Users\Patrick-A\AppData\Local\Temp\SLDL_DLL.dll
C:\Users\Patrick-A\AppData\Local\Temp\StartUp.exe
C:\Users\Patrick-A\AppData\Local\Temp\TnPCacheEngine.exe
C:\Users\Patrick-A\AppData\Local\Temp\TnPUI.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-11-10 23:00
==================== Ende von FRST.txt ============================
|
|
17.11.2015, 18:40
| #5 |
| | Weißer Bildschirm beim Internetsurfen Und die Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:17-11-2015
durchgeführt von Patrick-A (2015-11-17 18:33:33)
Gestartet von F:\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2012-10-13 15:07:07)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2479138526-915371098-1455362348-500 - Administrator - Disabled)
Andrea (S-1-5-21-2479138526-915371098-1455362348-1002 - Administrator - Enabled) => C:\Users\Andrea
Gast (S-1-5-21-2479138526-915371098-1455362348-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2479138526-915371098-1455362348-1005 - Limited - Enabled)
Patrick-A (S-1-5-21-2479138526-915371098-1455362348-1000 - Administrator - Enabled) => C:\Users\Patrick-A
Sascha (S-1-5-21-2479138526-915371098-1455362348-1003 - Limited - Enabled) => C:\Users\Sascha
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
4K Video Downloader 3.5 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.5.4.1695 - Open Media LLC)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1030 - Adobe Systems Incorporated)
Adobe Digital Editions 4.0 (HKLM-x32\...\Adobe Digital Editions 4.0) (Version: 4.0.2 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{81D00339-968D-15D1-3499-8431658E896F}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Arma 2 (HKLM-x32\...\Steam App 33910) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive)
Arma 2: Operation Arrowhead Beta (Obsolete) (HKLM-x32\...\Steam App 219540) (Version: - )
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.0.0 - Asmedia Technology)
AutoCAD 2014 - Deutsch (German) (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - Deutsch (German) (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - Deutsch (German) (HKLM\...\AutoCAD 2014 - Deutsch (German)) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk)
Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.4.2233 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.5.1 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - )
Blend for Visual Studio 2013 DEU resources (x32 Version: 12.0.41002.1 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version: - The Behemoth)
Citrix Online Plug-in - Web (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 12.3.0.8 - Citrix Systems, Inc.)
Command & Conquer™ 3 Tiberium Wars and Kane's Wrath (HKLM-x32\...\{35A2FE53-CC80-4D17-941F-3A7C82824FC7}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ 4 Tiberian Twilight (HKLM-x32\...\{BA4C8F9F-D81B-4AFE-AE5A-3837830F5B89}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ and The Covert Operations™ (HKLM-x32\...\{050E298D-C9B8-4582-A332-26201268A297}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (HKLM-x32\...\{F5275D1C-D133-486D-8F07-D6C571F0A8EC}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert, Counterstrike and The Aftermath (HKLM-x32\...\{B9A7CCBE-48F7-4B3E-BD20-76ADDD4DC69F}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Renegade (HKLM-x32\...\{24DFBE4C-FD7F-48F2-A7D9-D1A0929B2113}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ The Ultimate Collection Additional Content (HKLM-x32\...\{AC663F85-A421-4127-A507-8E24F64D4523}) (Version: 1.0.0.0 - Electronic Arts)
Command & Conquer™ Tiberian Sun™ and Firestorm™ (HKLM-x32\...\{78F60BDD-1923-4CF7-B6BD-087D06D7B5BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{8F0F5689-6900-425B-A8C2-0DBD10DAB694}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Core Temp version 0.99.7 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 0.99.7 - Arthur Liberman)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Craften Terminal 4.1.1 (HKLM-x32\...\{4e7c3936-7c06-4ef0-928b-c5d92f372578}_is1) (Version: 4.1.1 - Craften.de)
Crysis (HKLM-x32\...\{E70E73B2-DABD-40E4-AE50-81B22567F418}) (Version: 1.1.1.6115 - Electronic Arts)
Crysis®3 (HKLM-x32\...\{4198AE83-A3C6-4C41-85C8-EC63E990696E}) (Version: 1.0.0.0 - Electronic Arts)
Cube World version 0.0.1 (HKLM-x32\...\{D692A0E0-1BBB-4E9C-826E-4254EE330830}_is1) (Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Devenv-Ressourcen für Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4954.46574 - PreEmptive Solutions) Hidden
Dungeonland (HKLM-x32\...\Steam App 218130) (Version: - Critical Studio)
Fight The Dragon (HKLM-x32\...\Steam App 250560) (Version: - 3 Sprockets)
FileZilla Client 3.7.0.2 (HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\FileZilla Client) (Version: 3.7.0.2 - FileZilla Project)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HappyFoto-Designer 5.1 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Deskjet 3050A J611 series - Grundlegende Software für das Gerät (HKLM\...\{61ADDE9C-3AE6-46FC-9127-DFFF637AED03}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3050A J611 series Hilfe (HKLM-x32\...\{97DDCAB8-B770-4089-A10F-67568069D78A}) (Version: 140.0.2.2 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12992 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
Internet Manager (HKLM\...\{27D28586-BEF1-4E06-8787-3B1FC3A41489}) (Version: 1.0.0.3 - ZTE CORPORATION)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025F0}) (Version: 7.0.250 - Oracle)
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.62.0 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
LEGO MINDSTORMS NXT - (Deutsch) Sprachenpaket (HKLM-x32\...\{93552E73-A357-4D96-A3AF-2B00B50B719A}) (Version: 2.0.100.0 - The LEGO Group)
LEGO MINDSTORMS NXT Software v2.0 (HKLM-x32\...\{A1902990-45CF-44E2-B01A-88E721EF242B}) (Version: 2.0.132.0 - LEGO)
LEGO MINDSTORMS NXT x64 Driver (HKLM\...\{A0831C28-A6FA-49A3-86AE-B5AE3C9EE19C}) (Version: 1.20.115.0 - LEGO)
LEGO MINDSTORMS NXT x64 Driver Support (x32 Version: 1.20.7.0 - LEGO) Hidden
LIVE gaming on Windows Runtime Version 1.0.6027 (HKLM-x32\...\{839916F4-D8B5-4407-BE6D-6D4EB9D96AF4}) (Version: 1.0.6027 - Microsoft Corporation)
LocalESPCui for de-de Dev12 (x32 Version: 8.100.25984 - Microsoft) Hidden
Logitech Gaming Software 8.35 (HKLM\...\Logitech Gaming Software) (Version: 8.35.18 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Flight Simulator X (HKLM-x32\...\InstallShield_{9527A496-5DF9-412A-ADC7-168BA5379CA6}) (Version: 10.0.60905 - Microsoft Game Studios)
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4763.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (HKLM\...\{58FED865-4F13-408D-A5BF-996019C4B936}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{1B876496-B3A2-4D22-9B12-B608A3FD4B8B}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (x64) (HKLM\...\{A6BA243E-85A3-4635-A269-32949C98AC7F}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{6C026A91-640F-4A23-8B68-05D589CC6F18}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{2F7DBBE6-8EBC-495C-9041-46A772F4E311}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{D411E9C9-CE62-4DBF-9D92-4CB22B750ED5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{54C5041B-0E91-4E92-8417-AAA12493C790}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{04DD7AF4-A6D3-4E30-9BB9-3B3670719234}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{AB8DE9BA-19E1-446A-BCFA-6B3DA9751E21}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - enu (12.0.41012.0) (HKLM-x32\...\{AC8E0CF4-42A1-4151-B684-97CF6FD726CF}) (Version: 12.0.41012.0 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (12.0.30919.1) (HKLM-x32\...\{BCB8A870-2B3D-4CC0-87D6-F931E065AC0C}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - enu (12.0.30919.1) (HKLM-x32\...\{6781FF9B-E87D-4A03-9373-A55A288B83FA}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{4701DEDE-1888-49E0-BAE5-857875924CA2}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{070C38AC-05CE-43DF-9A20-141332F6AB2B}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{05FF8209-C4F1-4C77-BC28-791653156D20}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{8C06D6DB-A391-4686-B050-99CC522A7843}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{4AEB505C-95E1-4964-9B64-8D27F3186D30}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{69A998C5-00A9-42CA-AB4E-C31CFFCD9251}) (Version: 3.1237.1763 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 42.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NEKOPARA vol.1 (HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\{64DC04AF-BD7C-4CF4-9CA4-938953224328}) (Version: - NEKO WORKs)
Nether Launcher (HKLM\...\{94485F33-9350-4920-9CC9-15DAA20FCA89}) (Version: 16.20.0.0 - Nether Productions, LLC.)
NI VC2008MSMs x64 (Version: 9.0.201 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.201 - National Instruments) Hidden
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.0.13.2142 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{256f1c3b-aa82-4e11-a1fd-8fc046af23cc}) (Version: latest - ppy Pty Ltd)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 RC für Windows Store-Apps (Deutsch) (x32 Version: 4.5.21005 - Microsoft Corporation) Hidden
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Pivot Stickfigure Animator version 2.2.7 (HKLM-x32\...\Pivot Stickfigure Animator_is1) (Version: 2.2.7 - )
PreEmptive Analytics Client German Language Pack (x32 Version: 1.2.3197.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT (HKLM-x32\...\{21373064-AD95-48DB-A32E-0D9E08EF7355}) (Version: 12.0.2000.8 - Microsoft Corporation)
Prerequisites for SSDT (HKLM-x32\...\{35C1D9D6-87C0-46A3-B1B4-EDBCC063221C}) (Version: 11.1.3000.0 - Microsoft Corporation)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
PVZ Garden Warfare (HKLM-x32\...\{A5AC7D7B-C1D5-4AF9-8829-993DA335BE1B}) (Version: 1.0.3.0 - Electronic Arts)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version: - Wild Shadow Studios)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.43.321.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6251 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version: - Psyonix)
sdrt(5.0, 64bit) (HKLM\...\{63A3DBCF-FB40-4398-9AE5-94EE6206CE12}) (Version: 5.0.3.0 - Paltiosoft Inc.)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Smite (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}) (Version: 1.0.2436.0 - Hi-Rez Studios)
Sonic Generations (HKLM-x32\...\Steam App 71340) (Version: - Devil's Details)
Spiral Knights (HKLM-x32\...\Steam App 99900) (Version: - Three Rings)
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Studie zur Verbesserung von HP Deskjet 3050A J611 series Produkten (HKLM\...\{EF27865C-E636-47C4-8B35-CE8A88045681}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
TeamSpeak 3 Client (HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
Titan Quest (HKLM-x32\...\Steam App 4540) (Version: - Iron Lore Entertainment)
Titan Quest: Immortal Throne (HKLM-x32\...\Steam App 4550) (Version: - Iron Lore Entertainment)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.2.15 - Electronic Arts)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
Tunngle beta (HKLM-x32\...\Tunngle beta_is1) (Version: - Tunngle.net GmbH)
Unity (HKLM-x32\...\Unity) (Version: - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
VLC media player 1.1.9 (HKLM-x32\...\VLC media player) (Version: 1.1.9 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 7.0.0 - VMware, Inc)
VMware Player (Version: 7.0.0 - VMware, Inc.) Hidden
War Thunder Launcher 1.0.1.522 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{5D8DD6A8-C4D7-4554-93F9-F1CC28C72600}) (Version: 4.1.62812.0 - Microsoft Corporation)
WestwoodOnline (HKLM-x32\...\{BBCD6D56-8A26-4DDE-9482-DBC9C7B7341D}) (Version: 1.0.0.0 - WestwoodOnline)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 4.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warships (HKU\S-1-5-21-2479138526-915371098-1455362348-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2479138526-915371098-1455362348-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> F:\AutoCAD + Revit\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2479138526-915371098-1455362348-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> F:\AutoCAD + Revit\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2479138526-915371098-1455362348-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> F:\AutoCAD + Revit\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2479138526-915371098-1455362348-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> F:\AutoCAD + Revit\AutoCAD 2014\de-DE\acadficn.dll (Autodesk, Inc.)
==================== Wiederherstellungspunkte =========================
14-11-2015 20:05:46 Revo Uninstaller's restore point - Malwarebytes Anti-Malware Version 2.2.0.1024
15-11-2015 19:00:13 Windows-Sicherung
15-11-2015 21:33:32 Uniblue DriverScanner installation
15-11-2015 21:36:25 Revo Uninstaller's restore point - DriverScanner
17-11-2015 18:06:21 Windows Update
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {06EDC695-0381-40A2-965D-0133DC03C12C} - System32\Tasks\{0FF52ECF-4249-4158-AA84-D0BACF35ED56} => G:\Program Files (x86)\Origin Games\Crysis\Bin64\Crysis64.exe
Task: {1FAA86FB-4D8D-4EA2-B09C-34D63DA87CF5} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2013-08-23] ()
Task: {22681CCF-D64B-4F31-84FA-4AEADE9F6267} - System32\Tasks\{254042EB-519D-4E4C-9925-81E26F2ADD70} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis64.exe
Task: {2B1CC896-9543-425D-96DD-D1F7BB25D54E} - System32\Tasks\{98403989-352B-4C19-A22C-8431E826AED2} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
Task: {31F79217-3F13-40A2-80FA-4E468A7FBD58} - System32\Tasks\{534257D8-34B8-4FB3-B171-50F18C9990F3} => F:\Downloads\LeagueofLegends.exe
Task: {36617BEF-12EC-474C-B208-1032B0335A3E} - System32\Tasks\{0AD05259-9AE0-48FB-9174-3AE66975D7A9} => F:\Downloads\pctuneupmaestro_setup_part_.exe
Task: {38EA75AF-B550-417D-A453-62D8D7294B4B} - System32\Tasks\{7249334D-ABA2-495E-89CE-4E3F71C5EDB4} => F:\Downloads\pctuneupmaestro_setup_part_.exe
Task: {4374702B-C534-4E2F-AF65-D2ECFE69CBD8} - System32\Tasks\{08CFB591-5CD4-4CC2-ABF6-C7BC3D649A21} => C:\Program Files (x86)\Origin Games\Command and Conquer The Ultimate Collection Additional Content\Launcher.exe
Task: {458FB63C-BA51-4DA2-BF59-D56B9DECB37B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-30] (AVAST Software)
Task: {4AB0C09A-060B-423B-8B1B-8B109CA542DC} - System32\Tasks\{D1FA7ACF-233C-4EF8-8F2D-71398452B6EA} => G:\Program Files (x86)\Crysis\Bin32\Crysis.exe
Task: {513B3BC6-F98D-4593-981C-47E3116C7FCA} - System32\Tasks\elbyExecuteWithUAC => G:\Virutal CD\VirtualCloneDrive\ExecuteWithUAC.exe
Task: {58280682-DCFD-4E8C-8F6E-9A37DB29CF59} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {5BE4A8EF-0DC8-44BF-B50C-8263A80C4BD7} - System32\Tasks\{7974AE00-3313-46C9-A8CD-F4C224987B05} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
Task: {600E9192-A649-4389-9861-43109C922BFF} - System32\Tasks\{48EF143B-77D9-43B4-93ED-E806AC830277} => C:\Program Files (x86)\Origin Games\Command and Conquer The Ultimate Collection Additional Content\Launcher.exe
Task: {79C3BFAA-AC3F-42D3-B682-44C44E571011} - System32\Tasks\{7640FDE8-9871-4199-9C48-D31AF212F746} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
Task: {7E17E91C-B1AD-4B13-B971-95464EF90403} - System32\Tasks\{596992B5-5176-4832-A203-BAD97746E4AE} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
Task: {816408EA-6DC9-4D77-841F-DD23BD72C845} - System32\Tasks\{2FA0218C-3E80-471B-BC5A-C6E706D436A2} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/abandoninstall?page=tsMain
Task: {878F20D4-09EE-4CB8-A5D1-5F6783AA6423} - System32\Tasks\{AC222033-5758-48AD-9068-CDB4809C902A} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
Task: {8EE3457C-8104-421B-ACF1-F09C19AD612C} - System32\Tasks\{B27EB493-1440-4244-922D-8D7AFEBD11A2} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis64.exe
Task: {8F739BF5-E683-4DE0-A208-5F96DFAFEF6A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-10-30] (Microsoft Corporation)
Task: {96413406-249C-4880-AF70-CFD111B15D86} - System32\Tasks\{4BF4DA5D-1383-4665-BF97-B51AF997403F} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis64.exe
Task: {99478740-95A1-429A-A1A0-7FABF5EB1742} - System32\Tasks\{5194C3B6-D283-4DA2-802A-663A0CCA3E43} => F:\Downloads\LeagueofLegends.exe
Task: {A6232A15-A788-4310-8BEF-CDE0AD53E6B1} - System32\Tasks\{8E63FA4B-E37F-4C9A-A1F1-9BA8671790EA} => Firefox.exe hxxp://ui.skype.com/ui/0/7.0.59.102/de/abandoninstall?page=tsPlugin
Task: {A63C5326-4C36-400B-8C96-179F8D496237} - System32\Tasks\{31956144-0D70-4B7B-B56B-460F46CB2499} => pcalua.exe -a G:\Nether\NetherInstall-Nether.exe -d G:\Nether
Task: {B1E49C4B-EA84-49FB-8DB1-17B9A4A17B9C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {B5437467-A5B6-46CF-833D-7A5CFA3DB12B} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {BDDE324D-8286-4382-A4EE-87B1A4A89C96} - System32\Tasks\{3A5C2DBF-A2F1-40BA-8C0D-95A84D85FDEA} => Firefox.exe hxxp://ui.skype.com/ui/0/7.10.0.101/de/abandoninstall?page=tsProgressBar
Task: {C513E36C-91F3-4200-A2C0-B26E215B2E1C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {C52059B7-EAD8-4153-84D0-AEC2BAAA6CC3} - System32\Tasks\{72F6D8C6-9D03-4A5D-995C-1F61D652006B} => pcalua.exe -a G:\XP\SETUP.EXE -d G:\XP
Task: {CA7D4621-4C36-4A27-8D74-C14657937363} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {CAE67AC8-876A-4BBF-BEEC-1D8FC3EE8E06} - System32\Tasks\{BAC49E4C-315A-44B4-AA2B-96B293D5C048} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis64.exe
Task: {CC510E99-D1DB-4A9F-A574-58BC1755276E} - System32\Tasks\{51DE477F-B0C9-4700-A6EB-A6F00F31E16B} => G:\Program Files (x86)\Crysis\Bin32\Crysis.exe
Task: {CF742B40-7FAE-43C3-8EE1-7998B72BB3C5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-10-30] (Microsoft Corporation)
Task: {DA7029F4-2A48-4451-A8F6-D4A7AFDF5687} - System32\Tasks\Core Temp Autostart => C:\Program Files\Core Temp\Core Temp.exe [2010-07-02] ()
Task: {DAC363EC-1A87-45B6-9098-34F6E3D55FA5} - System32\Tasks\{69373842-4AA1-49AD-83DE-2CF275580BF0} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis64.exe
Task: {DC1DB308-4B46-497A-96E8-CF5AA6F182B2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {DD4A7337-C3BD-46D2-A707-84DA75236931} - System32\Tasks\{554F5B48-01CD-4495-BF59-5C4288259259} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
Task: {E2587272-DE0B-4668-8768-73E7F2B2B2C6} - System32\Tasks\{3F8B895D-2B67-47B2-A256-A7A62479BFBD} => F:\Downloads\iTunes64Setup.exe
Task: {F5315A8B-7E8D-44AE-9C99-96A888917D32} - System32\Tasks\{12433246-37C1-426A-8BEF-AC0B96933D54} => pcalua.exe -a F:\Downloads\make32de.exe -d F:\Downloads
Task: {F86E43BB-369C-4FCA-AF86-69AB06401D18} - System32\Tasks\{CF196007-5FA7-48EA-A67C-02B5E061372D} => G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-08-06 11:24 - 2012-08-06 11:24 - 00212480 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-03-05 15:03 - 2012-03-05 15:03 - 00677376 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-02-16 13:53 - 2012-02-16 13:53 - 03642880 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2014-11-13 19:10 - 2015-10-07 19:28 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-07-13 08:16 - 2014-12-14 14:56 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2012-10-13 17:02 - 2010-07-02 12:52 - 00530448 _____ () C:\Program Files\Core Temp\Core Temp.exe
2015-09-30 13:53 - 2015-09-30 13:53 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-30 13:53 - 2015-09-30 13:53 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-17 18:02 - 2015-11-17 18:02 - 02991104 _____ () C:\Program Files\AVAST Software\Avast\defs\15111700\algo.dll
2015-09-30 13:53 - 2015-09-30 13:53 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Andrea\Downloads\launch.ica:icasource
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2479138526-915371098-1455362348-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick-A\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: Autodesk Content Service => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: FlexNet Licensing Service 64 => 3
MSCONFIG\Services: HiPatchService => 2
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: TunngleService => 3
MSCONFIG\Services: UCManSvc => 2
MSCONFIG\Services: VMAuthdService => 2
MSCONFIG\Services: VMnetDHCP => 2
MSCONFIG\Services: VMUSBArbService => 2
MSCONFIG\Services: VMware NAT Service => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^mcserver.lnk => C:\Windows\pss\mcserver.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Patrick-A^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Tintenwarnungen überwachen - HP Deskjet 3050A J611 series (Netzwerk).lnk => C:\Windows\pss\Tintenwarnungen überwachen - HP Deskjet 3050A J611 series (Netzwerk).lnk.Startup
MSCONFIG\startupfolder: C:^Users^Patrick-A^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Tintenwarnungen überwachen - HP Deskjet 3050A J611 series.lnk => C:\Windows\pss\Tintenwarnungen überwachen - HP Deskjet 3050A J611 series.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: ConnectionCenter => "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup
MSCONFIG\startupreg: HP Deskjet 3050A J611 series (NET) => "C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN31J1CG6X05WK:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "F:\Downloads\iTunesHelper.exe"
MSCONFIG\startupreg: JMB36X IDE Setup => C:\Windows\RaidTool\xInsIDE.exe
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "G:\hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "G:\sonic\Steam.exe" -silent
MSCONFIG\startupreg: uTorrent => "C:\Users\Patrick-A\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: WarThunderLauncher => G:\Warthunder\WarThunder\launcher.exe
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{43ECA52C-80B2-4A33-BEAB-BB53095AA050}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3\CNC3Launcher.exe
FirewallRules: [{5114F410-D494-4AA3-B51A-09FC580AAAB0}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3\CNC3Launcher.exe
FirewallRules: [{A8815153-BB8F-4AA9-B255-D4B501E5DCD6}] => (Allow) C:\Program Files (x86)\Origin Games\CNC and The Covert Operations\CNC95Launcher.exe
FirewallRules: [{CA6D722E-6268-4B72-8930-6F0670AA8D2D}] => (Allow) C:\Program Files (x86)\Origin Games\CNC and The Covert Operations\CNC95Launcher.exe
FirewallRules: [{E6BB4EFA-DC0E-44F1-AC14-62F3A8230BC2}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{E6B39374-FABC-465A-8E1C-EBD3CB04404E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Tiberian Sun\TSLauncher.exe
FirewallRules: [{A422669E-84E4-4672-81EE-475B2C32085A}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3\Command Conquer 3 Tiberium Wars\RetailExe\1.9\cnc3game.dat
FirewallRules: [{DABA98A6-B26B-4C8F-9EAC-FC855671E0DE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{35F99674-B279-474E-8078-B96BA04E4A4C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FCCB9ABA-32CE-4F57-8F3C-399AC5E7ECC4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{DF9A8DB6-D0D6-4BF5-9AF8-2DAB9DBD99CE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{24FBD3E9-C5EB-4715-A71A-930B4D01AF74}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe
FirewallRules: [{EE33688E-3F34-42B8-94C9-DF7E841FB7F6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1040\Agent.exe
FirewallRules: [{155B8C07-66E4-483D-9840-BB7DAA27AE8B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{1FE968B8-0DD4-4A23-811B-6A63F1CB4DB1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe
FirewallRules: [{6B4ACEB9-1629-4153-BC3D-D962996A9F1B}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [{19DAE0B7-27C7-48CD-A20B-A51D11963253}] => (Allow) C:\Program Files (x86)\Origin Games\Command Conquer 4 Tiberian Twilight\CNC4.exe
FirewallRules: [TCP Query User{2AE7AD12-2964-49B0-A12A-60A9A5DC4890}C:\program files (x86)\origin games\command conquer 4 tiberian twilight\data\cnc4.game] => (Allow) C:\program files (x86)\origin games\command conquer 4 tiberian twilight\data\cnc4.game
FirewallRules: [UDP Query User{F4F14AD4-6DE4-41D5-8C0A-49CFCA8B0664}C:\program files (x86)\origin games\command conquer 4 tiberian twilight\data\cnc4.game] => (Allow) C:\program files (x86)\origin games\command conquer 4 tiberian twilight\data\cnc4.game
FirewallRules: [{2472FDBB-77F6-46CE-B9EE-AB4763CBEE19}] => (Allow) C:\Program Files (x86)\Origin Games\Renegade\RenegadeLauncher.exe
FirewallRules: [{942EE94F-8333-49FE-A2C3-59F0C7191F17}] => (Allow) C:\Program Files (x86)\Origin Games\Renegade\RenegadeLauncher.exe
FirewallRules: [{CC0E79BF-B836-425F-9A42-834D5E773952}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer The Ultimate Collection Additional Content\Launcher.exe
FirewallRules: [{06CF4505-73CD-4A57-9358-787F11FA6F40}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer The Ultimate Collection Additional Content\Launcher.exe
FirewallRules: [TCP Query User{F2D07472-DDB8-4AEF-B3E0-17CE1C91D187}F:\home-pc\unity\editor\unity.exe] => (Allow) F:\home-pc\unity\editor\unity.exe
FirewallRules: [UDP Query User{7AC10608-5F0F-40E8-916C-08076D5C0132}F:\home-pc\unity\editor\unity.exe] => (Allow) F:\home-pc\unity\editor\unity.exe
FirewallRules: [{614A2447-B07E-47E9-B02A-ED55C69DDF76}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{5923D628-3C7E-408F-A9EB-A87F646DE15B}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{7D278127-2396-4CC4-9BC9-264A90507C4B}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{7DFEB7FC-0DAD-4F05-9031-73FF264D6748}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{8FAF2EC1-C307-4757-B277-29D34931BB0E}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{E6E20CD7-3512-479F-B045-B4F718FE7B57}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer Red Alert\RA95Launcher.exe
FirewallRules: [{4425A396-10F8-4F91-9DAA-F23DE1D56CF4}] => (Allow) G:\bickforce\brick wars\BrickForce\BfLauncher.exe
FirewallRules: [{2970D24C-CCAA-42DB-8604-387A25920B40}] => (Allow) G:\bickforce\brick wars\BrickForce\BrickForce.exe
FirewallRules: [TCP Query User{981D3B81-550E-4DA1-A1A0-59091DC5D147}F:\downloads\bin\javaw.exe] => (Block) F:\downloads\bin\javaw.exe
FirewallRules: [UDP Query User{95CD214E-534E-4959-AE4D-D3097BE4BC19}F:\downloads\bin\javaw.exe] => (Block) F:\downloads\bin\javaw.exe
FirewallRules: [{F30AC3D3-57E4-44F6-802A-8F48BD49A2B5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{25C6F283-05A9-4201-8820-3D930ADD3EAC}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{24B9D12A-F22C-4BD3-B63F-9F4D0930FE43}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{3E261B4D-18FE-4711-A0F2-ECE43441543C}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{4D9C3299-E439-44FD-A146-09DD2DA246AB}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{566A2861-6AF1-414D-BA66-19E999FB952D}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe] => (Allow) C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [UDP Query User{32936023-2992-4B9D-94BF-2922F8C20057}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe] => (Allow) C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [{46B7EF6F-1D82-4BBA-9735-2B92AC86B581}] => (Allow) F:\referate\brick wars\BrickForce\BfLauncher.exe
FirewallRules: [{982108EF-41A7-4A49-945B-D19B125EAC17}] => (Allow) F:\referate\brick wars\BrickForce\BrickForce.exe
FirewallRules: [{84EEDB9E-97B0-481B-8172-A8C289A8857C}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe
FirewallRules: [{517862F3-049F-4E99-B9F4-E5E58E3A30A2}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{3171ACEB-2DAC-44A5-B4B9-EF5E2D7DA8F0}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{96242032-5A6C-4FD4-939D-677587702938}] => (Allow) G:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{ACD01325-2854-41A5-B59E-3218C0794210}] => (Allow) G:\Program Files (x86)\Origin Games\Crysis 3\Bin32\Crysis3.exe
FirewallRules: [{B003CA0C-EB44-4A93-A2BD-A8364B176EC8}] => (Allow) G:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
FirewallRules: [{0DAD67C2-66F7-45B0-9188-475E12153E4E}] => (Allow) G:\Program Files (x86)\Origin Games\Command and Conquer Red Alert II\RA2Launcher.exe
FirewallRules: [TCP Query User{2084C4E2-026B-4DBD-8788-21D20DE97D75}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{608D8209-9BB5-454E-93A0-B43297ECC5AD}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{8F123AC9-83F6-4548-9178-3C9CF30CDE2D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{13D780F8-765B-49B4-A176-669326E7A9CB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe
FirewallRules: [{8FC581CD-0861-4BFE-ABD2-774E33EDB51F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{495C475B-2074-40B0-A45F-2D5C29ED000E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [TCP Query User{F4F7548D-DE79-41EB-B06D-801F48D4D7DC}F:\downloads\bin\javaw.exe] => (Allow) F:\downloads\bin\javaw.exe
FirewallRules: [UDP Query User{050833A1-21E4-4DD5-AC1A-D1ABC5DF7DAA}F:\downloads\bin\javaw.exe] => (Allow) F:\downloads\bin\javaw.exe
FirewallRules: [TCP Query User{920696BD-8539-41E2-9FA7-FD0F1C13F318}F:\downloads\bin\java.exe] => (Allow) F:\downloads\bin\java.exe
FirewallRules: [UDP Query User{71B65959-9D01-470B-B1F8-F65EAC47194F}F:\downloads\bin\java.exe] => (Allow) F:\downloads\bin\java.exe
FirewallRules: [{441A4474-D0D8-4544-8012-C9FE4BD0BB9B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{CCAA92AE-3714-48D3-822E-9A7537E5C9DB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{C59FE110-B836-4436-90FD-239CD9AEAB2F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{6FEDA537-80C6-4FF1-B5BB-E812D3F9DB40}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{90534A88-5A6D-4200-BADF-73FF7C8BC43E}] => (Allow) G:\Hearthstone\Battle.net\Battle.net.exe
FirewallRules: [{EB1E6A92-61F8-413C-B200-C3525CB2AFC1}] => (Allow) G:\Hearthstone\Battle.net\Battle.net.exe
FirewallRules: [{D6E8ED0B-2013-4F29-A173-253573FDA390}] => (Allow) G:\Hearthstone\Hearthstone\Hearthstone.exe
FirewallRules: [{2B21EE46-AD55-418D-BE9A-A25082980B7B}] => (Allow) G:\Hearthstone\Hearthstone\Hearthstone.exe
FirewallRules: [{73BF9E60-86FB-4AF6-853E-B0BDDD9C7E2D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{98EDB9F9-03E1-43EF-9F7B-D3A4C8CED9B1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{485458B8-7307-48F6-933E-39EA44CB872E}] => (Allow) G:\Tunngle\Tunngle\TnglCtrl.exe
FirewallRules: [{3528CC11-7B16-4428-A0D1-44ED8F5DD142}] => (Allow) G:\Tunngle\Tunngle\TnglCtrl.exe
FirewallRules: [{2CBF45C8-5404-4230-B37B-3075327CE862}] => (Allow) G:\Tunngle\Tunngle\TnglCtrl.exe
FirewallRules: [{56B13FAC-AF18-4E52-BA72-CFA83D0E1212}] => (Allow) G:\Tunngle\Tunngle\TnglCtrl.exe
FirewallRules: [{181F3BDA-AB7C-436E-ACA6-06D47A19755E}] => (Allow) G:\Tunngle\Tunngle\Tunngle.exe
FirewallRules: [{83F384B0-0A38-4F47-8880-7FA3AE37A532}] => (Allow) G:\Tunngle\Tunngle\Tunngle.exe
FirewallRules: [{A3F01E3F-EA04-4538-BA3F-3010BC8EB921}] => (Allow) G:\Tunngle\Tunngle\Tunngle.exe
FirewallRules: [{B8A49A3C-5404-4E5B-9533-F73351FA56D7}] => (Allow) G:\Tunngle\Tunngle\Tunngle.exe
FirewallRules: [{65B2BA73-175F-434F-9212-DADBFEF9368C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{40047D2D-4CCD-4A2C-AE8D-026C0D6A93F9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{F212096B-3CBD-444B-829E-C40F0068B6FF}] => (Allow) G:\sonic\Steam.exe
FirewallRules: [{6164BB5D-DC06-440E-A27C-48C7ACC845F9}] => (Allow) G:\sonic\Steam.exe
FirewallRules: [{83B1DD3F-292C-4948-89ED-22C71C34DD71}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{BEF7CFAD-A976-45FB-B66A-EA4BAAC3ED1D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{E00F3296-8667-4793-A4FA-F066D1814697}] => (Allow) G:\sonic\steamapps\common\Sonic Generations\SonicGenerations.exe
FirewallRules: [{C02CB5BC-2FC9-4EA6-95B7-670A915C111C}] => (Allow) G:\sonic\steamapps\common\Sonic Generations\SonicGenerations.exe
FirewallRules: [{B02D75AD-B396-4C14-A6BD-E219929DD093}] => (Allow) G:\sonic\steamapps\common\Sonic Generations\ConfigurationTool.exe
FirewallRules: [{50FE5003-99EB-4242-A852-776185153687}] => (Allow) G:\sonic\steamapps\common\Sonic Generations\ConfigurationTool.exe
FirewallRules: [{7F14DA12-0332-446A-9368-F96614C08CDD}] => (Allow) G:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{F25D44C6-D12A-498D-A14C-9EDFE1A3A8FB}] => (Allow) G:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{1111500A-0A02-40F6-B9AD-B36568F4BFF9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{E0F02269-62DA-4EC0-887F-EC97F614B6B7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{827738FF-A9BC-4FA5-9342-F1EC8EB90F50}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{1EA1E558-5A59-43B6-97CB-627CA7578339}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{C755ADAA-B12F-4406-95B4-B67C06596982}] => (Allow) G:\sonic\steamapps\common\Titan Quest\Titan Quest.exe
FirewallRules: [{0308660A-4E6D-4077-B286-D1CA925F74D4}] => (Allow) G:\sonic\steamapps\common\Titan Quest\Titan Quest.exe
FirewallRules: [{DA484AB7-FA45-4DFA-B148-D67499FC45CC}] => (Allow) F:\Downloads\iTunes.exe
FirewallRules: [{A8055DB2-C2D1-41A3-B9A1-E0A924ADDEA7}] => (Allow) G:\sonic\steamapps\common\Titan Quest Immortal Throne\Tqit.exe
FirewallRules: [{DC6DB2B5-2297-4C92-BF0D-ECFC1B0CADA4}] => (Allow) G:\sonic\steamapps\common\Titan Quest Immortal Throne\Tqit.exe
FirewallRules: [{96CE1296-08E9-4637-AB2F-38AC97BE0CB9}] => (Allow) G:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{6699D667-7B37-41F0-85D7-DB6D754C1E8E}] => (Allow) G:\Program Files (x86)\Origin Games\Plants vs. Zombies\PlantsVsZombies.exe
FirewallRules: [{A6D59EEB-607E-44B2-86C4-DE1BF7574CF1}] => (Allow) G:\sonic\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{4A3B2499-4E94-46CB-93BD-F0862877786B}] => (Allow) G:\sonic\steamapps\common\Arma 2\arma2.exe
FirewallRules: [{0AE0BBC7-D2A3-45E0-8AEE-C43DBA2D2AFB}] => (Allow) G:\sonic\steamapps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{8F5A4F3F-6CE8-40E9-938B-949E40439492}] => (Allow) G:\sonic\steamapps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{3237C4E5-7A74-4204-9513-3205AD8ADDE2}] => (Allow) G:\sonic\steamapps\common\arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [{7E5559F2-9EC0-4125-9E5C-139993CF0F18}] => (Allow) G:\sonic\steamapps\common\arma 2 operation arrowhead\ArmA2OA.exe
FirewallRules: [TCP Query User{711528D6-8D01-4F22-8279-DDC0807804AB}G:\cubeworld\cube world\server.exe] => (Allow) G:\cubeworld\cube world\server.exe
FirewallRules: [UDP Query User{9A4C0C90-950B-4316-8E1B-449DD2120A8A}G:\cubeworld\cube world\server.exe] => (Allow) G:\cubeworld\cube world\server.exe
FirewallRules: [{D8595DED-A072-49FA-A0FF-3FD90D4E7C9D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{600C4CAB-79BB-4927-980E-54C86AF6971F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2816\Agent.exe
FirewallRules: [{EFD812BC-61FC-4538-82B5-885F716FD92A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{138E188D-B180-4F44-9651-B8BBD86C01C9}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{5C2D1E9D-96A2-4028-A39F-4C22AFA2070A}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{D9CDE2BA-4F39-4127-999C-6E8F104B3AA0}] => (Allow) G:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{0F40564A-4000-40F3-80BD-BFAC2E698461}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{842B6800-6E33-46EC-A894-4BF507D044D4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{03F7C805-A24D-4AE8-966A-3A663E364DD6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{F0EB4CF7-1945-4064-9484-C7CB54ED4FF3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{B09FA163-AD0B-4837-B3B7-D8BE77D2F06F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{7104176F-5C8F-4ED1-8B7C-B2F9054FF3CB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3109\Agent.exe
FirewallRules: [{ABC586EF-D16A-4AD9-AA22-AE43E451F529}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{12B8A784-FD37-4C29-95F9-6D9D16DA8C85}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{77C360B9-63EA-4DCD-AACC-28BEBA0CCFB6}] => (Allow) G:\Hearthstone\StarCraft II\StarCraft II.exe
FirewallRules: [{62EFE4C5-78B8-4442-8798-ED78504861AC}] => (Allow) G:\Hearthstone\StarCraft II\StarCraft II.exe
FirewallRules: [{5F34ECC6-E196-4CC4-B5D8-1238F66FB158}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{CC66C2B5-6698-42AC-B046-F7DAABD5BD37}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{9F841E96-2F94-4BD5-80E9-DE4621158A16}] => (Allow) G:\Hearthstone\StarCraft II\Versions\Base28667\SC2.exe
FirewallRules: [{018F8F70-8C45-4FB0-B68D-6BA5A153423E}] => (Allow) G:\Hearthstone\StarCraft II\Versions\Base28667\SC2.exe
FirewallRules: [{C42CB2EF-3478-4320-84A7-5F04E2F3B21B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{1817F5FF-1358-4F45-9136-E891BB083471}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3235\Agent.exe
FirewallRules: [{32B339CC-10B1-47FD-9DA5-15C23A7EBF6D}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{042E5A59-03FF-4432-A216-062D34949A16}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{E77506FD-0990-466D-B408-2496774533B4}] => (Allow) G:\sonic\bin\steamwebhelper.exe
FirewallRules: [{90A96DB8-00A3-4A9A-91DE-D834993808F2}] => (Allow) G:\sonic\bin\steamwebhelper.exe
FirewallRules: [{E8696113-5B33-40FE-AFEF-9324338056DE}] => (Allow) G:\Hearthstone\StarCraft II\Versions\Base28667\SC2.exe
FirewallRules: [{33923DDB-F2B9-48CB-9532-1F7E84CB0CA6}] => (Allow) G:\Hearthstone\StarCraft II\Versions\Base28667\SC2.exe
FirewallRules: [{B83944AB-2F19-4F5D-8425-4F3C4CEA2931}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{29D29586-010D-4900-91C5-CCCEAB5AAF1E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{8EFE18E0-869C-4663-B621-0C6F9EDDDED8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{568FB810-6B65-47FE-AD96-0C3E94D8E8A3}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3372\Agent.exe
FirewallRules: [{0DFFBF13-6216-48F0-836C-37E6750AD7D5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{480C6891-BE76-454F-8323-6C0FBE184891}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3454\Agent.exe
FirewallRules: [{51E50B36-CFFD-4CCF-AA4C-C24A71CCB8ED}] => (Allow) G:\Hearthstone\StarCraft II\Versions\Base32283\SC2.exe
FirewallRules: [{964891D4-E27A-4F2E-96B7-85F58BD51DE6}] => (Allow) G:\Hearthstone\StarCraft II\Versions\Base32283\SC2.exe
FirewallRules: [{0B702428-E866-476A-9DAC-E1CD00F21EB3}] => (Allow) G:\sonic\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{FEF9EFAB-8297-4972-BBA1-7F5011C5D759}] => (Allow) G:\sonic\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{8D31A9C9-5319-48E3-B661-90A38FB974E0}] => (Allow) G:\Steam\Steam.exe
FirewallRules: [{E60810F1-AB2F-4296-B793-9ED95DDD3265}] => (Allow) G:\Steam\Steam.exe
FirewallRules: [{69A1BB07-D787-45E0-B23A-4ABF09B3F2CB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{D62FA57E-AF46-4A0B-8363-54B136917CC2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3478\Agent.exe
FirewallRules: [{7C0EAB80-7397-464A-B29F-9839CE5F3149}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{C220041A-96B4-4313-BC03-812C1205A19A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{9832DD7E-6F67-4269-BF4B-2F09C9AD3805}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3\Command Conquer 3 Tiberium Wars\RetailExe\1.9\cnc3game.dat
FirewallRules: [{A6F1ACF2-8668-4F8B-AE2D-460F9B37B24F}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3\CNC3Launcher.exe
FirewallRules: [{B652F033-D823-45D7-9276-A671A6A4FB81}] => (Allow) C:\Program Files (x86)\Origin Games\Command and Conquer 3\CNC3Launcher.exe
FirewallRules: [{5E052E2F-663C-47E6-8396-D2D3ABB3CF3D}] => (Allow) LPort=50248
FirewallRules: [{EE516B89-9E85-4813-B6A5-0B53039DE08B}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{4D9645F9-82C2-4946-BB6E-2913A81C171F}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{D6237E11-A84D-433A-8929-4EEB51AB67E3}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{0E9CE120-E6D8-40E4-9722-C2EA047C448B}] => (Allow) F:\Schule\referate\brick wars\BrickForce\BfLauncher.exe
FirewallRules: [{8DB194DA-0C0D-4E8D-BC60-F2CAB2988B95}] => (Allow) F:\Schule\referate\brick wars\BrickForce\BrickForce.exe
FirewallRules: [{7566F4FC-EF3B-4DD1-BB0F-1AEDA1AA8DFF}] => (Allow) G:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{CD4B4265-109D-45A9-9D48-B3D4F7BC3FA2}] => (Allow) G:\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{EE192B6D-261E-4657-83C1-4412397580E7}] => (Allow) G:\Steam\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{632BA7E9-ABCA-40B2-9F43-9D04E5389048}] => (Allow) G:\Steam\steamapps\common\Spiral Knights\java_vm\bin\javaw.exe
FirewallRules: [{36977B17-B020-4457-A390-B22272045200}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{9E54FB13-4AC3-4433-865C-4DDC168D4AE2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{BB71DFD7-6C28-40FF-A018-E341C58AB1FD}] => (Allow) G:\Steam\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{A5F7EDE5-0BA9-4AC9-82C0-5A74CF2777FC}] => (Allow) G:\Steam\steamapps\common\Arma 3\arma3.exe
FirewallRules: [{A3166213-30CB-410D-A93C-0E1D34FB3F9E}] => (Allow) G:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{87EF3F80-27BA-44A4-8BF6-C0BD3856FEF6}] => (Allow) G:\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [TCP Query User{6D6374E9-AD0A-4516-A463-AB098983B379}C:\program files (x86)\origin games\command and conquer 3\command conquer 3 kanes wrath\retailexe\1.2\cnc3ep1.dat] => (Block) C:\program files (x86)\origin games\command and conquer 3\command conquer 3 kanes wrath\retailexe\1.2\cnc3ep1.dat
FirewallRules: [UDP Query User{910226EE-5756-4022-8022-DEE297652359}C:\program files (x86)\origin games\command and conquer 3\command conquer 3 kanes wrath\retailexe\1.2\cnc3ep1.dat] => (Block) C:\program files (x86)\origin games\command and conquer 3\command conquer 3 kanes wrath\retailexe\1.2\cnc3ep1.dat
FirewallRules: [{BCE6EF9D-4084-47FA-B634-C8DFB45B7C3A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{E8550D9A-E283-48A7-BB34-8BD0FDA5E347}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{D7BFC6EA-D477-470B-8D5C-8674CD6E9EFA}] => (Allow) G:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{36ACFB4B-72C4-4C05-B3A8-75F98F5927A2}] => (Allow) G:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{31E68175-67C6-4623-AF60-A881F2865E4A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B3A0A86B-48F1-4EDF-8572-49AC4E8BB410}] => (Allow) LPort=2869
FirewallRules: [{9D509257-D4F6-4558-BF25-AB7410E0EF08}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{CA74E339-245A-4847-97C6-764FC8CF6199}G:\smite\hirezgames\smite\binaries\win32\smite.exe] => (Allow) G:\smite\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{59C34BDA-F807-40D5-BBD1-40D31E75A1E2}G:\smite\hirezgames\smite\binaries\win32\smite.exe] => (Allow) G:\smite\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{6E2ACDEC-857F-4460-BEFF-8F934F63D646}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{2B646249-1D7F-41F9-8BDE-AE5FA5BB4944}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{110485F0-078F-4A1D-9E89-C0FE4506E590}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A3FB7478-5559-495A-9257-93F7233FDCC6}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{604EED0E-FC17-4A34-B880-2ED201AE8985}] => (Allow) G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
FirewallRules: [{944ECE80-4190-4130-8FC5-D32F8FF8D4B5}] => (Allow) G:\Program Files (x86)\Origin Games\Crysis\Bin32\Crysis.exe
FirewallRules: [{61E9A523-A596-4396-8841-E039E80B74D6}] => (Allow) G:\VM\vmware-authd.exe
FirewallRules: [{E0EF99C8-8C51-4184-86E5-3FD5532EE293}] => (Allow) G:\VM\vmware-authd.exe
FirewallRules: [{4A6F815A-368C-4BED-9311-21973453A860}] => (Allow) C:\Users\Patrick-A\AppData\Local\vghd\bin\VirtuaGirl_Downloader.exe
FirewallRules: [{43640DA4-1649-4A8F-B00E-8505D09470F7}] => (Allow) C:\Users\Patrick-A\AppData\Local\vghd\bin\VirtuaGirl_Downloader.exe
FirewallRules: [{A987836A-6320-489D-B4A1-C7CBD90D3527}] => (Allow) G:\Steam\steamapps\common\FightTheDragon\FightTheDragon.exe
FirewallRules: [{A2C724E9-929D-40AB-B027-0D5A845E7F28}] => (Allow) G:\Steam\steamapps\common\FightTheDragon\FightTheDragon.exe
FirewallRules: [{14FE0AC3-B7C1-4EDB-A9A5-F28998A38B1B}] => (Allow) C:\Users\Patrick-A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E092A8A6-E755-4E86-BBA7-A6EE88512BF0}] => (Allow) C:\Users\Patrick-A\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{96FB801D-B1E0-4837-B69D-3B4BC48844AD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{BFCF8911-C89B-4DE1-AE3B-91137862DA86}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{8DFE20ED-0654-4A1B-99DE-E0F984D97FB2}] => (Allow) G:\VB\Common7\IDE\devenv.exe
FirewallRules: [{5A128308-E884-41D3-AFE3-894701E1FF3A}] => (Allow) G:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare\PVZ.Main_Win64_Retail.exe
FirewallRules: [{D922613E-AC19-41E5-AE1C-C742416D35B9}] => (Allow) G:\Program Files (x86)\Origin Games\Plants vs Zombies Garden Warfare\PVZ.Main_Win64_Retail.exe
FirewallRules: [{38E4D6DE-3C1A-4352-B692-1D8AB1DE9B68}] => (Allow) G:\LOL\League of Legends\lol.launcher.admin.exe
FirewallRules: [{864C2B40-233D-496A-BB03-48E711D11496}] => (Allow) G:\LOL\League of Legends\lol.launcher.admin.exe
FirewallRules: [{E9218546-D2DC-445F-9689-96BD83CB51EC}] => (Allow) G:\LOL\League of Legends\lol.launcher.admin.exe
FirewallRules: [{EBB9A269-157F-400D-A9D3-85BBD52306DE}] => (Allow) G:\LOL\League of Legends\lol.launcher.admin.exe
FirewallRules: [{0F7B00B0-1884-424C-BD02-848D9B5D4B73}] => (Allow) G:\LOL\League of Legends\lol.launcher.exe
FirewallRules: [{775CB508-E56C-45C5-B35C-2D525192E3E3}] => (Allow) G:\LOL\League of Legends\lol.launcher.exe
FirewallRules: [{8B433F1F-DF0C-492F-AB1B-1FBE6799EBC9}] => (Allow) G:\LOL\League of Legends\lol.launcher.exe
FirewallRules: [{5737AE56-C754-4B2A-A17F-67E22634A09B}] => (Allow) G:\LOL\League of Legends\lol.launcher.exe
FirewallRules: [{74BA62BA-F4C8-4662-813F-8C2CDB0A83AD}] => (Allow) G:\LOL\LeagueofLegends.exe
FirewallRules: [{C39DDE75-085B-428D-A926-D4465580F704}] => (Allow) G:\LOL\LeagueofLegends.exe
FirewallRules: [{9035CB9F-8C2E-4F5D-8537-70B0095C8F47}] => (Allow) G:\LOL\LeagueofLegends.exe
FirewallRules: [{904CF5FE-0752-43CC-A54A-F208B0174A08}] => (Allow) G:\LOL\LeagueofLegends.exe
FirewallRules: [{C891B046-A58E-4B5E-8929-94A338980DA7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{03557223-0A3E-46FB-8ABC-3F67EC917680}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E1CCE663-60EF-4FE4-BCBA-711D2987449C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [{ACC09DEF-6215-4CC5-B37D-24D1D6F0D7C5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe
FirewallRules: [TCP Query User{33242187-918D-4429-B07C-0C7AAB7C8694}G:\hearthstone\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) G:\hearthstone\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5A45F06B-6024-4BA4-B0A1-034D52D9AEA2}G:\hearthstone\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) G:\hearthstone\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [{3E65D637-5322-40C7-8E73-E63DBBC6B9DD}] => (Allow) G:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{9228AD6B-4925-49B0-9420-28A7EE3052F3}] => (Allow) G:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{067EBDEB-09AB-4C82-8209-0863C5B943B2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{1F53E95D-4C65-4A76-AC80-3BF4891BC43D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{5068BAED-AB3B-4ACF-94D4-2C50B91DB233}] => (Allow) G:\hamachi\hamachi-2-ui.exe
FirewallRules: [{CB592568-55AF-4ACF-A9FA-F6CC23FC15B5}] => (Allow) G:\hamachi\hamachi-2-ui.exe
FirewallRules: [{4BBB3B3B-77F2-4B30-B102-3654F10A1D39}] => (Allow) G:\hamachi\hamachi-2-ui.exe
FirewallRules: [{88EDBC6D-003C-4F46-9C78-AB5DFBD80FDF}] => (Allow) G:\hamachi\hamachi-2-ui.exe
FirewallRules: [{D32A6E20-D8F2-462B-A330-2176400A10DD}] => (Allow) LPort=45565
FirewallRules: [{D6EB33B0-270A-4D55-875F-C2860070E370}] => (Allow) LPort=45566
FirewallRules: [{52E6174F-896A-4DCD-9F7F-4355266DF91C}] => (Allow) G:\Cubeworld\Cube World\Cube.exe
FirewallRules: [{42A0490E-7476-48A1-B8C1-0D32144B7F6D}] => (Allow) G:\Cubeworld\Cube World\Cube.exe
FirewallRules: [TCP Query User{2ECE0D45-EF82-4F2D-BCF1-85F4AF6D9001}C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe
FirewallRules: [UDP Query User{B5000928-3E15-4EC5-8045-B5D6BAD84CD1}C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_40\bin\jp2launcher.exe
FirewallRules: [{B9C62DB2-416D-469D-B3F2-1BA750E3C12F}] => (Allow) G:\Warthunder\WarThunder\launcher.exe
FirewallRules: [{72509D19-A744-46AF-B647-FAB97CEB9155}] => (Allow) G:\Warthunder\WarThunder\launcher.exe
FirewallRules: [{A694C3C4-BA8C-4DA5-81FC-D577664E1931}] => (Allow) G:\Warthunder\WarThunder\bpreport.exe
FirewallRules: [{E62B0087-D42E-4E19-AE89-799159E0F0FD}] => (Allow) G:\Warthunder\WarThunder\bpreport.exe
FirewallRules: [TCP Query User{4A54063A-38D0-485E-B455-1B22AD61DE87}G:\warthunder\warthunder\aces.exe] => (Allow) G:\warthunder\warthunder\aces.exe
FirewallRules: [UDP Query User{6614DFFB-9982-4014-843B-B4D6F2179564}G:\warthunder\warthunder\aces.exe] => (Allow) G:\warthunder\warthunder\aces.exe
FirewallRules: [{3A371D7C-CFE1-4783-99E6-7646E3CF645F}] => (Allow) G:\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [{C88D6094-326A-4E1E-9542-70A1B800F1F5}] => (Allow) G:\Steam\steamapps\common\Dungeonland\dungeonland.exe
FirewallRules: [TCP Query User{59EE40F8-A99C-4FE4-8C4E-C432818AD811}G:\world_of_warships\wowslauncher.exe] => (Allow) G:\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{600CFFE7-D59F-4789-A369-31281443066E}G:\world_of_warships\wowslauncher.exe] => (Allow) G:\world_of_warships\wowslauncher.exe
FirewallRules: [{7F4F85B4-088E-4D2A-851F-2B3B107204E0}] => (Allow) G:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{7B8C21C7-17F3-4C29-928C-9701564D15B5}] => (Allow) G:\Steam\steamapps\common\Terraria\Terraria.exe
FirewallRules: [TCP Query User{B4513019-5257-49C9-83CE-00F0AC96CE25}G:\blizzard\hearthstone\hearthstone.exe] => (Allow) G:\blizzard\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{4D247F2B-849D-4248-B933-4CB0F278DDD7}G:\blizzard\hearthstone\hearthstone.exe] => (Allow) G:\blizzard\hearthstone\hearthstone.exe
FirewallRules: [{DE1E16B4-D398-41A1-9A70-CDD4932D8168}] => (Allow) G:\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{1D38F165-65AF-4886-9A3A-4BCDFA2D5F71}] => (Allow) G:\Steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [TCP Query User{A392AA3D-F14F-4055-A4C5-2910FA804958}G:\java\bin\javaw.exe] => (Allow) G:\java\bin\javaw.exe
FirewallRules: [UDP Query User{0086B3B5-ADE7-4588-BB24-9FD9CD6A6B8A}G:\java\bin\javaw.exe] => (Allow) G:\java\bin\javaw.exe
FirewallRules: [{FC076876-8A92-4D93-91DC-E493C12BE410}] => (Allow) G:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{D0287CC1-1D62-41BC-9719-5BD4E481580B}] => (Allow) G:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{97B78D71-4ECB-4074-8860-D3EACBB0691F}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{CC7A3570-864D-493F-96D8-43A7E97D57D0}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{E8390EAA-39E7-4382-8EE0-A726F347C1F9}] => (Allow) G:\Blizzard\StarCraft II\Versions\Base32283\SC2.exe
FirewallRules: [{E65BDD0A-FE05-4D24-BD12-34858914B632}] => (Allow) G:\Blizzard\StarCraft II\Versions\Base32283\SC2.exe
FirewallRules: [{63397142-3FC3-454A-A99E-1D28D3854621}] => (Allow) G:\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{B22398D4-5FD5-4EBB-9D8E-B060843804EE}] => (Allow) G:\Steam\steamapps\common\CastleCrashers\castle.exe
FirewallRules: [{688B63DB-CDED-49FE-AB74-5904B603AE2D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F1306108-E181-4600-AE68-16AE3C4E826B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6B9EB978-2194-4356-8BD5-240E0CEB09AB}] => (Allow) G:\Blizzard\StarCraft II\Versions\Base38996\SC2_x64.exe
FirewallRules: [{2595D832-2C95-4CB2-A0FE-705488BE68AB}] => (Allow) G:\Blizzard\StarCraft II\Versions\Base38996\SC2_x64.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/17/2015 06:29:37 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/17/2015 06:28:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x501fefb5
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x6f0
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (11/17/2015 06:07:30 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (11/17/2015 06:07:30 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (11/17/2015 06:07:30 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (11/17/2015 06:01:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/15/2015 10:02:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x501fefb5
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x6e8
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (11/15/2015 09:38:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
Error: (11/15/2015 09:38:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Error: (11/15/2015 09:38:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
Systemfehler:
=============
Error: (11/17/2015 06:28:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/15/2015 10:02:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/15/2015 09:32:33 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "LUNA-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{5290B3A8-0174-4DE0-ACE9-2C1CC3FD478E}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (11/15/2015 09:31:51 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 15.11.2015 um 21:30:13 unerwartet heruntergefahren.
Error: (11/15/2015 09:29:07 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "LUNA-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{5290B3A8-0174-4DE0-ACE9-2C1CC3FD478E}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (11/15/2015 09:28:25 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 15.11.2015 um 21:26:23 unerwartet heruntergefahren.
Error: (11/15/2015 08:12:37 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (11/14/2015 04:33:59 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "LUNA-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{5290B3A8-0174-4DE0-ACE9-2C1CC3FD478E}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (11/14/2015 10:02:03 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Server" wurde mit folgendem Fehler beendet:
%%1062
Error: (11/14/2015 10:02:03 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Computerbrowser" wurde mit folgendem Fehler beendet:
%%1115
CodeIntegrity:
===================================
Date: 2015-11-17 18:29:20.487
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-17 18:29:20.393
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-17 18:01:27.721
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-17 18:01:27.612
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-15 21:31:44.549
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-15 21:31:44.440
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-15 21:28:18.048
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-15 21:28:17.955
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-15 20:13:27.627
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-11-15 20:13:27.534
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Speicherinformationen ===========================
Prozessor: AMD FX(tm)-6100 Six-Core Processor
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 8137.36 MB
Verfügbarer physikalischer RAM: 5783.63 MB
Summe virtueller Speicher: 16272.93 MB
Verfügbarer virtueller Speicher: 13874.85 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:111.69 GB) (Free:18.71 GB) NTFS
Drive f: (Sonstiges) (Fixed) (Total:976.56 GB) (Free:142.89 GB) NTFS
Drive g: (GAMES) (Fixed) (Total:886.45 GB) (Free:402.38 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 4DD33BAD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: AB44C8DF)
Partition 1: (Not Active) - (Size=976.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=886.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
18.11.2015, 17:01
| #6 |
| /// the machine /// TB-Ausbilder | Weißer Bildschirm beim Internetsurfen hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ --> Weißer Bildschirm beim Internetsurfen |
|
18.11.2015, 18:03
| #7 |
| | Weißer Bildschirm beim Internetsurfen Hier ist der Log von mbar: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2015.11.18.05
rootkit: v2015.11.14.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18097
Patrick-A :: HOME-PC [administrator]
18.11.2015 17:17:21
mbar-log-2015-11-18 (17-17-21).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 475323
Time elapsed: 26 minute(s), 37 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 17:59:55.0090 0x1588 TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
17:59:57.0378 0x1588 ============================================================
17:59:57.0378 0x1588 Current date / time: 2015/11/18 17:59:57.0378
17:59:57.0378 0x1588 SystemInfo:
17:59:57.0378 0x1588
17:59:57.0379 0x1588 OS Version: 6.1.7601 ServicePack: 1.0
17:59:57.0379 0x1588 Product type: Workstation
17:59:57.0379 0x1588 ComputerName: HOME-PC
17:59:57.0379 0x1588 UserName: Patrick-A
17:59:57.0379 0x1588 Windows directory: C:\Windows
17:59:57.0379 0x1588 System windows directory: C:\Windows
17:59:57.0379 0x1588 Running under WOW64
17:59:57.0379 0x1588 Processor architecture: Intel x64
17:59:57.0379 0x1588 Number of processors: 6
17:59:57.0379 0x1588 Page size: 0x1000
17:59:57.0379 0x1588 Boot type: Normal boot
17:59:57.0379 0x1588 ============================================================
17:59:57.0464 0x1588 KLMD registered as C:\Windows\system32\drivers\66751033.sys
17:59:57.0558 0x1588 System UUID: {735BC307-6182-8292-6C3B-0F740D0A6349}
17:59:57.0978 0x1588 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:59:57.0998 0x1588 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:59:58.0008 0x1588 ============================================================
17:59:58.0008 0x1588 \Device\Harddisk0\DR0:
17:59:58.0008 0x1588 MBR partitions:
17:59:58.0008 0x1588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:59:58.0008 0x1588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
17:59:58.0008 0x1588 \Device\Harddisk1\DR1:
17:59:58.0009 0x1588 MBR partitions:
17:59:58.0009 0x1588 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x7A120000
17:59:58.0009 0x1588 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x7A120800, BlocksNum 0x6ECE7000
17:59:58.0009 0x1588 ============================================================
17:59:58.0010 0x1588 C: <-> \Device\Harddisk0\DR0\Partition2
17:59:58.0034 0x1588 F: <-> \Device\Harddisk1\DR1\Partition1
17:59:58.0099 0x1588 G: <-> \Device\Harddisk1\DR1\Partition2
17:59:58.0099 0x1588 ============================================================
17:59:58.0099 0x1588 Initialize success
17:59:58.0099 0x1588 ============================================================
18:00:27.0118 0x17d0 ============================================================
18:00:27.0118 0x17d0 Scan started
18:00:27.0118 0x17d0 Mode: Manual; SigCheck; TDLFS;
18:00:27.0118 0x17d0 ============================================================
18:00:27.0118 0x17d0 KSN ping started
18:00:32.0710 0x17d0 KSN ping finished: true
18:00:33.0772 0x17d0 ================ Scan system memory ========================
18:00:33.0772 0x17d0 System memory - ok
18:00:33.0773 0x17d0 ================ Scan services =============================
18:00:33.0815 0x17d0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
18:00:33.0905 0x17d0 1394ohci - ok
18:00:33.0923 0x17d0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:00:33.0958 0x17d0 ACPI - ok
18:00:33.0964 0x17d0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:00:33.0999 0x17d0 AcpiPmi - ok
18:00:34.0006 0x17d0 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:00:34.0020 0x17d0 AdobeARMservice - ok
18:00:34.0046 0x17d0 [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:00:34.0062 0x17d0 AdobeFlashPlayerUpdateSvc - ok
18:00:34.0079 0x17d0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:00:34.0122 0x17d0 adp94xx - ok
18:00:34.0136 0x17d0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:00:34.0171 0x17d0 adpahci - ok
18:00:34.0179 0x17d0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:00:34.0208 0x17d0 adpu320 - ok
18:00:34.0215 0x17d0 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:00:34.0233 0x17d0 AeLookupSvc - ok
18:00:34.0249 0x17d0 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
18:00:34.0297 0x17d0 AFD - ok
18:00:34.0305 0x17d0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
18:00:34.0330 0x17d0 agp440 - ok
18:00:34.0337 0x17d0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:00:34.0358 0x17d0 ALG - ok
18:00:34.0364 0x17d0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:00:34.0384 0x17d0 aliide - ok
18:00:34.0400 0x17d0 ALSysIO - ok
18:00:34.0410 0x17d0 [ B3B263B419FC9E7B1D41E61FDAE45BD9, AB4BA2472BB56B4BEB8B18D95B9F44BBF0B7FBF3C3914F5549CD24C5E4428664 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:00:34.0443 0x17d0 AMD External Events Utility - ok
18:00:34.0447 0x17d0 AMD FUEL Service - ok
18:00:34.0452 0x17d0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:00:34.0473 0x17d0 amdide - ok
18:00:34.0478 0x17d0 [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:00:34.0496 0x17d0 amdiox64 - ok
18:00:34.0502 0x17d0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:00:34.0528 0x17d0 AmdK8 - ok
18:00:34.0784 0x17d0 [ 9A6E9363F7A5E5A06629D9DDC76EE6B5, F97553FF6D79CDA5A1B445E4A8F8799D9F5EE8BF31B11869DE0294C562845F7E ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:00:35.0102 0x17d0 amdkmdag - ok
18:00:35.0137 0x17d0 [ 957A4C13E1981B1701E600EF1E823C68, F8760C09F09F347D607FBE8A4F67E8B35CB82B5168954B04E8EB10B73412A609 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:00:35.0162 0x17d0 amdkmdap - ok
18:00:35.0168 0x17d0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:00:35.0193 0x17d0 AmdPPM - ok
18:00:35.0200 0x17d0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:00:35.0225 0x17d0 amdsata - ok
18:00:35.0235 0x17d0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:00:35.0265 0x17d0 amdsbs - ok
18:00:35.0270 0x17d0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:00:35.0292 0x17d0 amdxata - ok
18:00:35.0299 0x17d0 [ 2FBB00A7616106B95104574C6CD640C2, 06DE79B42EBBBBA01DAB289D4280E131D780066CD7E4499229CD5EB1E597A017 ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
18:00:35.0323 0x17d0 amd_sata - ok
18:00:35.0327 0x17d0 [ 87D0D7645CB0D53220649BD5FE15D93E, 195B25BC640BE5D802F530FAA68D3325A6C076DE8A7E56833372C3B2B53B673B ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
18:00:35.0348 0x17d0 amd_xata - ok
18:00:35.0352 0x17d0 [ 5B25D1A753CC3A3EDB909BB759AC1098, 1B931342D8D36C8D177D6D9BFFFD8CDC0C6E6F82BA552DC8E5CDC1CAF528D0B0 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:00:35.0374 0x17d0 AODDriver4.1 - ok
18:00:35.0380 0x17d0 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
18:00:35.0406 0x17d0 AppID - ok
18:00:35.0411 0x17d0 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:00:35.0425 0x17d0 AppIDSvc - ok
18:00:35.0432 0x17d0 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
18:00:35.0449 0x17d0 Appinfo - ok
18:00:35.0456 0x17d0 [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:00:35.0468 0x17d0 Apple Mobile Device - ok
18:00:35.0475 0x17d0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
18:00:35.0499 0x17d0 arc - ok
18:00:35.0505 0x17d0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:00:35.0531 0x17d0 arcsas - ok
18:00:35.0538 0x17d0 [ 954950D11ADA98AC1B7EE3C770E4622C, D6D4700D7359AB84FB362305FBF2389B4EF51B4190EC2E0D4C7FEF80A06A0D0B ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
18:00:35.0569 0x17d0 asmthub3 - ok
18:00:35.0582 0x17d0 [ 01DBB05DB1DB95803E3C9F2B49AFE79C, 286310787F7EB7B237CB0082567BDA2F57D8F88C37015F6637FF6A6775CAA5AE ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
18:00:35.0625 0x17d0 asmtxhci - ok
18:00:35.0640 0x17d0 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:00:35.0656 0x17d0 aspnet_state - ok
18:00:35.0661 0x17d0 [ 30E7D7B63BE378C6DCD31434E1C5EBEB, 6F38FBD6B45506E57D4EC6C84C83F0829F280167E14B65643F583B41AA23C18B ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
18:00:35.0685 0x17d0 aswHwid - ok
18:00:35.0691 0x17d0 [ 6C3B7781075271AD9DFBD77BC7FBB9F7, AC53FD0EE1D7695219225440D3922EEF0B953F45F0ED3034CF5F1630A6B40607 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
18:00:35.0716 0x17d0 aswMonFlt - ok
18:00:35.0722 0x17d0 [ 3C04B80B49697EB7DFE5FA43620F8728, 4BC11901898348318BA807938BEA888BC54FE80ADA17C209C728F14EA4E91F21 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
18:00:35.0748 0x17d0 aswRdr - ok
18:00:35.0754 0x17d0 [ AA8CB23B3B4A4B16F49CB54CA04FE0D9, A94D214B43EDAEC52656EA36C2A830E76C40B90E8F4BABEF4F16BA679A429586 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
18:00:35.0778 0x17d0 aswRvrt - ok
18:00:35.0809 0x17d0 [ 67BD1554B7B9643A95C018DEC38F8C82, CE34F380A5B1A16DA7A6F3EC3079BF7750FA6D198531452CD47C4C02154F0F6B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
18:00:35.0878 0x17d0 aswSnx - ok
18:00:35.0896 0x17d0 [ 7A2A9AE27A2411FA23C9616887CEE200, D6E0468C42E3AB73A8E7465856DB6CB26E7F8E9E1C4EB9C374FD089193FB5FCC ] aswSP C:\Windows\system32\drivers\aswSP.sys
18:00:35.0921 0x17d0 aswSP - ok
18:00:35.0930 0x17d0 [ 0652346DF90731A87E4C7C9A9C45A8E0, 38B8A760B532254A8CB2FD6B922269A1B96BB5E5F243D130B4BBD09ED50DEDB8 ] aswStm C:\Windows\system32\drivers\aswStm.sys
18:00:35.0947 0x17d0 aswStm - ok
18:00:35.0957 0x17d0 [ 54230972D23E6E4D034D7CB577DC784C, 7F51E81CBAFB143982AF2C68675CF0D46DD17A9A17A8805EBF628FAE84DFF8A9 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
18:00:35.0989 0x17d0 aswVmm - ok
18:00:35.0996 0x17d0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:00:36.0069 0x17d0 AsyncMac - ok
18:00:36.0074 0x17d0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:00:36.0096 0x17d0 atapi - ok
18:00:36.0105 0x17d0 [ B0790FF0E25B7A2674296052F2162C1A, 930D1A09E93117E081C532D6EDB1E870736AE3806D13AE7F0C7748FD4EAB3D89 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:00:36.0128 0x17d0 AtiHDAudioService - ok
18:00:36.0148 0x17d0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:00:36.0184 0x17d0 AudioEndpointBuilder - ok
18:00:36.0205 0x17d0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:00:36.0236 0x17d0 AudioSrv - ok
18:00:36.0243 0x17d0 [ 3817558D8D5BBC8B0F190CF0D7C4720F, 7CD250DD22BE0E6CF6BEA639EA8220E46158CA7DF33FF803967CEAEA7FBD14E5 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
18:00:36.0250 0x17d0 Autodesk Content Service - detected UnsignedFile.Multi.Generic ( 1 )
18:00:41.0886 0x17d0 Detect skipped due to KSN trusted
18:00:41.0886 0x17d0 Autodesk Content Service - ok
18:00:41.0897 0x17d0 [ 11120878E5276B367E1A10FF8C9B595B, 7C02EEF3733307C31BAC4DA9975EC017AC40D0893D88228C30FFAA536DAA73FB ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:00:41.0913 0x17d0 avast! Antivirus - ok
18:00:42.0015 0x17d0 [ CF5F47B708C539A40EBBDD7E4675FADA, F324726EB8E5B5A3DB74DC7E78B7141999E2677F1B607D6DEF809C1DA92D4A68 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
18:00:42.0137 0x17d0 AvastVBoxSvc - ok
18:00:42.0155 0x17d0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:00:42.0182 0x17d0 AxInstSV - ok
18:00:42.0198 0x17d0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:00:42.0242 0x17d0 b06bdrv - ok
18:00:42.0254 0x17d0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:00:42.0289 0x17d0 b57nd60a - ok
18:00:42.0298 0x17d0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:00:42.0316 0x17d0 BDESVC - ok
18:00:42.0321 0x17d0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:00:42.0365 0x17d0 Beep - ok
18:00:42.0369 0x17d0 [ B1359701847FF1FF415FA083F1610F48, 991F995B9CF614549F5F7EB5C5B2D47F34EFF0F47B35C4BF4CE716666B9DA1D3 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
18:00:42.0376 0x17d0 BEService - detected UnsignedFile.Multi.Generic ( 1 )
18:00:48.0007 0x17d0 Detect skipped due to KSN trusted
18:00:48.0007 0x17d0 BEService - ok
18:00:48.0029 0x17d0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
18:00:48.0067 0x17d0 BFE - ok
18:00:48.0096 0x17d0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
18:00:48.0184 0x17d0 BITS - ok
18:00:48.0191 0x17d0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:00:48.0217 0x17d0 blbdrive - ok
18:00:48.0222 0x17d0 [ 057F482CFDB57E75202E2E37795F2D3B, EC0B9A058E67F19F9660D899022433BF1AE241CDEB8256A0FC2F54EEEA9BE3A9 ] BMLoad C:\Windows\system32\drivers\BMLoad.sys
18:00:48.0240 0x17d0 BMLoad - detected UnsignedFile.Multi.Generic ( 1 )
18:00:58.0315 0x17d0 BMLoad ( UnsignedFile.Multi.Generic ) - warning
18:01:02.0656 0x1b3c Object required for P2P: [ 11120878E5276B367E1A10FF8C9B595B ] avast! Antivirus
18:01:03.0888 0x17d0 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:01:03.0912 0x17d0 Bonjour Service - ok
18:01:03.0920 0x17d0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:01:03.0950 0x17d0 bowser - ok
18:01:03.0954 0x17d0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:01:03.0980 0x17d0 BrFiltLo - ok
18:01:03.0985 0x17d0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:01:04.0012 0x17d0 BrFiltUp - ok
18:01:04.0021 0x17d0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:01:04.0040 0x17d0 Browser - ok
18:01:04.0052 0x17d0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:01:04.0094 0x17d0 Brserid - ok
18:01:04.0101 0x17d0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:01:04.0129 0x17d0 BrSerWdm - ok
18:01:04.0134 0x17d0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:01:04.0160 0x17d0 BrUsbMdm - ok
18:01:04.0164 0x17d0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:01:04.0187 0x17d0 BrUsbSer - ok
18:01:04.0193 0x17d0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:01:04.0223 0x17d0 BTHMODEM - ok
18:01:04.0231 0x17d0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:01:04.0270 0x17d0 bthserv - ok
18:01:04.0276 0x17d0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:01:04.0326 0x17d0 cdfs - ok
18:01:04.0334 0x17d0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:01:04.0363 0x17d0 cdrom - ok
18:01:04.0369 0x17d0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
18:01:04.0406 0x17d0 CertPropSvc - ok
18:01:04.0411 0x17d0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
18:01:04.0437 0x17d0 circlass - ok
18:01:04.0452 0x17d0 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
18:01:04.0489 0x17d0 CLFS - ok
18:01:04.0570 0x17d0 [ 9A5944952B122BBF68D0032EF440CFB5, D4046BA3F985A7F95F1A4A55B6F2976E292C861771CAC80CEC6DE4C82E8FDBB0 ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
18:01:04.0656 0x17d0 ClickToRunSvc - ok
18:01:04.0670 0x17d0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:01:04.0684 0x17d0 clr_optimization_v2.0.50727_32 - ok
18:01:04.0696 0x17d0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:01:04.0712 0x17d0 clr_optimization_v2.0.50727_64 - ok
18:01:04.0724 0x17d0 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:01:04.0740 0x17d0 clr_optimization_v4.0.30319_32 - ok
18:01:04.0746 0x17d0 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:01:04.0765 0x17d0 clr_optimization_v4.0.30319_64 - ok
18:01:04.0770 0x17d0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
18:01:04.0793 0x17d0 CmBatt - ok
18:01:04.0798 0x17d0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:01:04.0819 0x17d0 cmdide - ok
18:01:04.0834 0x17d0 [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
18:01:04.0880 0x17d0 CNG - ok
18:01:04.0887 0x17d0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:01:04.0909 0x17d0 Compbatt - ok
18:01:04.0914 0x17d0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:01:04.0944 0x17d0 CompositeBus - ok
18:01:04.0948 0x17d0 COMSysApp - ok
18:01:04.0954 0x17d0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:01:04.0978 0x17d0 crcdisk - ok
18:01:04.0989 0x17d0 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:01:05.0019 0x17d0 CryptSvc - ok
18:01:05.0026 0x17d0 [ EB7439918F3E04B51CD8822FD8C8E018, 3B79A87B867F769D9E67B34143E90E6A55F493C2BA7ADD4C3FD08AAC85C07C74 ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
18:01:05.0060 0x17d0 ctxusbm - ok
18:01:05.0080 0x17d0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:01:05.0134 0x17d0 DcomLaunch - ok
18:01:05.0148 0x17d0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:01:05.0194 0x17d0 defragsvc - ok
18:01:05.0201 0x17d0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:01:05.0250 0x17d0 DfsC - ok
18:01:05.0262 0x17d0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:01:05.0290 0x17d0 Dhcp - ok
18:01:05.0331 0x17d0 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
18:01:05.0385 0x17d0 DiagTrack - ok
18:01:05.0394 0x17d0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
18:01:05.0439 0x17d0 discache - ok
18:01:05.0446 0x17d0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
18:01:05.0469 0x17d0 Disk - ok
18:01:05.0478 0x17d0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:01:05.0498 0x17d0 Dnscache - ok
18:01:05.0510 0x17d0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
18:01:05.0553 0x17d0 dot3svc - ok
18:01:05.0561 0x17d0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:01:05.0602 0x17d0 DPS - ok
18:01:05.0606 0x17d0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:01:05.0631 0x17d0 drmkaud - ok
18:01:05.0662 0x17d0 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:01:05.0730 0x17d0 DXGKrnl - ok
18:01:05.0743 0x17d0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:01:05.0787 0x17d0 EapHost - ok
18:01:05.0875 0x17d0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:01:05.0987 0x17d0 ebdrv - ok
18:01:05.0999 0x17d0 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS C:\Windows\System32\lsass.exe
18:01:06.0014 0x17d0 EFS - ok
18:01:06.0035 0x17d0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:01:06.0071 0x17d0 ehRecvr - ok
18:01:06.0078 0x17d0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:01:06.0096 0x17d0 ehSched - ok
18:01:06.0113 0x17d0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:01:06.0156 0x17d0 elxstor - ok
18:01:06.0161 0x17d0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:01:06.0183 0x17d0 ErrDev - ok
18:01:06.0193 0x17d0 [ BE646F166163211CD9790F93D89C3981, C57543A72191B9484E51A11951302E9DC0D15B2C6CB2E3A004782551605E6761 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
18:01:06.0211 0x17d0 EuMusDesignVirtualAudioCableWdm - detected UnsignedFile.Multi.Generic ( 1 )
18:01:08.0361 0x1b3c Object send P2P result: true
18:01:11.0893 0x17d0 Detect skipped due to KSN trusted
18:01:11.0893 0x17d0 EuMusDesignVirtualAudioCableWdm - ok
18:01:11.0910 0x17d0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:01:11.0957 0x17d0 EventSystem - ok
18:01:11.0967 0x17d0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
18:01:12.0019 0x17d0 exfat - ok
18:01:12.0030 0x17d0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:01:12.0082 0x17d0 fastfat - ok
18:01:12.0104 0x17d0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:01:12.0144 0x17d0 Fax - ok
18:01:12.0150 0x17d0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
18:01:12.0173 0x17d0 fdc - ok
18:01:12.0178 0x17d0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:01:12.0216 0x17d0 fdPHost - ok
18:01:12.0221 0x17d0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:01:12.0259 0x17d0 FDResPub - ok
18:01:12.0265 0x17d0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:01:12.0289 0x17d0 FileInfo - ok
18:01:12.0295 0x17d0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:01:12.0340 0x17d0 Filetrace - ok
18:01:12.0379 0x17d0 [ ECC329F6104EE208C24C4A8C1B4A9D14, E120DAAB58C4083577A8445230DBB841984818188BFD0609576BC704C836DF3F ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
18:01:12.0433 0x17d0 FlexNet Licensing Service 64 - ok
18:01:12.0441 0x17d0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:01:12.0464 0x17d0 flpydisk - ok
18:01:12.0476 0x17d0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:01:12.0509 0x17d0 FltMgr - ok
18:01:12.0544 0x17d0 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
18:01:12.0595 0x17d0 FontCache - ok
18:01:12.0603 0x17d0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:01:12.0616 0x17d0 FontCache3.0.0.0 - ok
18:01:12.0622 0x17d0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:01:12.0645 0x17d0 FsDepends - ok
18:01:12.0650 0x17d0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:01:12.0672 0x17d0 Fs_Rec - ok
18:01:12.0681 0x17d0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:01:12.0715 0x17d0 fvevol - ok
18:01:12.0722 0x17d0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:01:12.0746 0x17d0 gagp30kx - ok
18:01:12.0752 0x17d0 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:01:12.0773 0x17d0 GEARAspiWDM - ok
18:01:12.0797 0x17d0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
18:01:12.0856 0x17d0 gpsvc - ok
18:01:12.0863 0x17d0 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
18:01:12.0886 0x17d0 hamachi - ok
18:01:12.0918 0x17d0 Hamachi2Svc - ok
18:01:12.0925 0x17d0 [ F7C1611768AFDE163772E9D703EFD2A8, F4D8D0AFA56601F1D20E1FE40B44D7A23B88A2E019993FD4CE1173E78723940E ] hcmon C:\Windows\system32\drivers\hcmon.sys
18:01:12.0946 0x17d0 hcmon - ok
18:01:12.0952 0x17d0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:01:12.0976 0x17d0 hcw85cir - ok
18:01:12.0989 0x17d0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:01:13.0031 0x17d0 HdAudAddService - ok
18:01:13.0039 0x17d0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:01:13.0069 0x17d0 HDAudBus - ok
18:01:13.0074 0x17d0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:01:13.0096 0x17d0 HidBatt - ok
18:01:13.0103 0x17d0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:01:13.0131 0x17d0 HidBth - ok
18:01:13.0137 0x17d0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
18:01:13.0163 0x17d0 HidIr - ok
18:01:13.0169 0x17d0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
18:01:13.0206 0x17d0 hidserv - ok
18:01:13.0211 0x17d0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:01:13.0234 0x17d0 HidUsb - ok
18:01:13.0295 0x17d0 [ C193FE8507607B2917A6F9B554132559, 962B065219D305B2DE1B4816D234438FBF8F6A79D45389683A21657733C14D5B ] HiPatchService G:\Smite\HiPatchService.exe
18:01:13.0301 0x17d0 HiPatchService - detected UnsignedFile.Multi.Generic ( 1 )
18:01:18.0925 0x17d0 HiPatchService ( UnsignedFile.Multi.Generic ) - warning
18:01:24.0477 0x17d0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:01:24.0514 0x17d0 hkmsvc - ok
18:01:24.0525 0x17d0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:01:24.0548 0x17d0 HomeGroupListener - ok
18:01:24.0561 0x17d0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:01:24.0583 0x17d0 HomeGroupProvider - ok
18:01:24.0590 0x17d0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:01:24.0614 0x17d0 HpSAMD - ok
18:01:24.0637 0x17d0 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:01:24.0696 0x17d0 HTTP - ok
18:01:24.0704 0x17d0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:01:24.0725 0x17d0 hwpolicy - ok
18:01:24.0732 0x17d0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:01:24.0760 0x17d0 i8042prt - ok
18:01:24.0775 0x17d0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:01:24.0813 0x17d0 iaStorV - ok
18:01:24.0819 0x17d0 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:01:24.0826 0x17d0 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
18:01:30.0483 0x17d0 Detect skipped due to KSN trusted
18:01:30.0483 0x17d0 IDriverT - ok
18:01:30.0508 0x17d0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:01:30.0545 0x17d0 idsvc - ok
18:01:30.0554 0x17d0 IEEtwCollectorService - ok
18:01:30.0560 0x17d0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:01:30.0582 0x17d0 iirsp - ok
18:01:30.0609 0x17d0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
18:01:30.0650 0x17d0 IKEEXT - ok
18:01:30.0725 0x17d0 [ 589B94A9B73A0E819FF873743A480834, 49FA8EC38F1C78F38F818CC28F2734802739247F0B89A971D65FDAF3110041A8 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:01:30.0851 0x17d0 IntcAzAudAddService - ok
18:01:30.0861 0x17d0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:01:30.0882 0x17d0 intelide - ok
18:01:30.0888 0x17d0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
18:01:30.0914 0x17d0 intelppm - ok
18:01:30.0921 0x17d0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:01:30.0960 0x17d0 IPBusEnum - ok
18:01:30.0966 0x17d0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:01:31.0013 0x17d0 IpFilterDriver - ok
18:01:31.0032 0x17d0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:01:31.0063 0x17d0 iphlpsvc - ok
18:01:31.0073 0x17d0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:01:31.0101 0x17d0 IPMIDRV - ok
18:01:31.0108 0x17d0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:01:31.0158 0x17d0 IPNAT - ok
18:01:31.0161 0x17d0 iPod Service - ok
18:01:31.0168 0x17d0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:01:31.0196 0x17d0 IRENUM - ok
18:01:31.0201 0x17d0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:01:31.0222 0x17d0 isapnp - ok
18:01:31.0233 0x17d0 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:01:31.0266 0x17d0 iScsiPrt - ok
18:01:31.0274 0x17d0 [ 79A55E8907F34AB569029505418C35EF, 2B97AD5800AD3F4467D30DC2F3E4A1614570D267231FBBD7C0251A2DC73402EF ] JRAID C:\Windows\system32\DRIVERS\jraid.sys
18:01:31.0298 0x17d0 JRAID - ok
18:01:31.0305 0x17d0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:01:31.0329 0x17d0 kbdclass - ok
18:01:31.0335 0x17d0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:01:31.0358 0x17d0 kbdhid - ok
18:01:31.0364 0x17d0 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso C:\Windows\system32\lsass.exe
18:01:31.0378 0x17d0 KeyIso - ok
18:01:31.0385 0x17d0 [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:01:31.0409 0x17d0 KSecDD - ok
18:01:31.0418 0x17d0 [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:01:31.0445 0x17d0 KSecPkg - ok
18:01:31.0453 0x17d0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:01:31.0497 0x17d0 ksthunk - ok
18:01:31.0514 0x17d0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:01:31.0563 0x17d0 KtmRm - ok
18:01:31.0575 0x17d0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:01:31.0619 0x17d0 LanmanServer - ok
18:01:31.0626 0x17d0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:01:31.0674 0x17d0 LanmanWorkstation - ok
18:01:31.0681 0x17d0 [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
18:01:31.0701 0x17d0 LGBusEnum - ok
18:01:31.0707 0x17d0 [ 14179E7B64F8A17AEA464D4E2D271FAA, 47CC51ACF8AD167305E07AA0AC2A7D829787100E008CD606A64D10B7FC638730 ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
18:01:31.0721 0x17d0 LGSHidFilt - ok
18:01:31.0725 0x17d0 [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
18:01:31.0745 0x17d0 LGVirHid - ok
18:01:31.0750 0x17d0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:01:31.0797 0x17d0 lltdio - ok
18:01:31.0812 0x17d0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:01:31.0857 0x17d0 lltdsvc - ok
18:01:31.0862 0x17d0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:01:31.0899 0x17d0 lmhosts - ok
18:01:31.0910 0x17d0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:01:31.0936 0x17d0 LSI_FC - ok
18:01:31.0945 0x17d0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:01:31.0971 0x17d0 LSI_SAS - ok
18:01:31.0977 0x17d0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:01:32.0005 0x17d0 LSI_SAS2 - ok
18:01:32.0013 0x17d0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:01:32.0039 0x17d0 LSI_SCSI - ok
18:01:32.0047 0x17d0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
18:01:32.0099 0x17d0 luafv - ok
18:01:32.0103 0x17d0 massfilter - ok
18:01:32.0109 0x17d0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:01:32.0126 0x17d0 Mcx2Svc - ok
18:01:32.0131 0x17d0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
18:01:32.0152 0x17d0 megasas - ok
18:01:32.0164 0x17d0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:01:32.0198 0x17d0 MegaSR - ok
18:01:32.0205 0x17d0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:01:32.0242 0x17d0 MMCSS - ok
18:01:32.0247 0x17d0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
18:01:32.0290 0x17d0 Modem - ok
18:01:32.0295 0x17d0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:01:32.0321 0x17d0 monitor - ok
18:01:32.0326 0x17d0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:01:32.0348 0x17d0 mouclass - ok
18:01:32.0356 0x17d0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:01:32.0380 0x17d0 mouhid - ok
18:01:32.0386 0x17d0 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:01:32.0410 0x17d0 mountmgr - ok
18:01:32.0418 0x17d0 [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:01:32.0433 0x17d0 MozillaMaintenance - ok
18:01:32.0441 0x17d0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
18:01:32.0468 0x17d0 mpio - ok
18:01:32.0475 0x17d0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:01:32.0522 0x17d0 mpsdrv - ok
18:01:32.0548 0x17d0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:01:32.0606 0x17d0 MpsSvc - ok
18:01:32.0616 0x17d0 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:01:32.0645 0x17d0 MRxDAV - ok
18:01:32.0655 0x17d0 [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:01:32.0686 0x17d0 mrxsmb - ok
18:01:32.0699 0x17d0 [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:01:32.0734 0x17d0 mrxsmb10 - ok
18:01:32.0743 0x17d0 [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:01:32.0769 0x17d0 mrxsmb20 - ok
18:01:32.0774 0x17d0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:01:32.0794 0x17d0 msahci - ok
18:01:32.0802 0x17d0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:01:32.0828 0x17d0 msdsm - ok
18:01:32.0836 0x17d0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:01:32.0856 0x17d0 MSDTC - ok
18:01:32.0864 0x17d0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:01:32.0907 0x17d0 Msfs - ok
18:01:32.0911 0x17d0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:01:32.0954 0x17d0 mshidkmdf - ok
18:01:32.0958 0x17d0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:01:32.0978 0x17d0 msisadrv - ok
18:01:32.0987 0x17d0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:01:33.0027 0x17d0 MSiSCSI - ok
18:01:33.0030 0x17d0 msiserver - ok
18:01:33.0035 0x17d0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:01:33.0078 0x17d0 MSKSSRV - ok
18:01:33.0085 0x17d0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:01:33.0129 0x17d0 MSPCLOCK - ok
18:01:33.0135 0x17d0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:01:33.0177 0x17d0 MSPQM - ok
18:01:33.0193 0x17d0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:01:33.0227 0x17d0 MsRPC - ok
18:01:33.0235 0x17d0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:01:33.0256 0x17d0 mssmbios - ok
18:01:33.0260 0x17d0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:01:33.0305 0x17d0 MSTEE - ok
18:01:33.0309 0x17d0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:01:33.0331 0x17d0 MTConfig - ok
18:01:33.0339 0x17d0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:01:33.0362 0x17d0 Mup - ok
18:01:33.0378 0x17d0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:01:33.0429 0x17d0 napagent - ok
18:01:33.0442 0x17d0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:01:33.0483 0x17d0 NativeWifiP - ok
18:01:33.0511 0x17d0 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:01:33.0573 0x17d0 NDIS - ok
18:01:33.0579 0x17d0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:01:33.0624 0x17d0 NdisCap - ok
18:01:33.0629 0x17d0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:01:33.0681 0x17d0 NdisTapi - ok
18:01:33.0687 0x17d0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:01:33.0733 0x17d0 Ndisuio - ok
18:01:33.0741 0x17d0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:01:33.0789 0x17d0 NdisWan - ok
18:01:33.0795 0x17d0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:01:33.0839 0x17d0 NDProxy - ok
18:01:33.0845 0x17d0 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
18:01:33.0860 0x17d0 Netaapl - ok
18:01:33.0865 0x17d0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:01:33.0910 0x17d0 NetBIOS - ok
18:01:33.0921 0x17d0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:01:33.0975 0x17d0 NetBT - ok
18:01:33.0980 0x17d0 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon C:\Windows\system32\lsass.exe
18:01:33.0996 0x17d0 Netlogon - ok
18:01:34.0009 0x17d0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:01:34.0056 0x17d0 Netman - ok
18:01:34.0063 0x17d0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:01:34.0082 0x17d0 NetMsmqActivator - ok
18:01:34.0088 0x17d0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:01:34.0104 0x17d0 NetPipeActivator - ok
18:01:34.0121 0x17d0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:01:34.0170 0x17d0 netprofm - ok
18:01:34.0177 0x17d0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:01:34.0193 0x17d0 NetTcpActivator - ok
18:01:34.0200 0x17d0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:01:34.0216 0x17d0 NetTcpPortSharing - ok
18:01:34.0223 0x17d0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:01:34.0245 0x17d0 nfrd960 - ok
18:01:34.0254 0x17d0 [ 8AED7DEF1F9659C911E1B1C9DD3CE8CD, 3ECFF30C8D8E7CF4514055F4E63B36C900EF104ECC75F804B11AF6307874153B ] ngvss C:\Windows\system32\drivers\ngvss.sys
18:01:34.0279 0x17d0 ngvss - ok
18:01:34.0291 0x17d0 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
18:01:34.0316 0x17d0 NlaSvc - ok
18:01:34.0323 0x17d0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:01:34.0369 0x17d0 Npfs - ok
18:01:34.0375 0x17d0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
18:01:34.0412 0x17d0 nsi - ok
18:01:34.0416 0x17d0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:01:34.0461 0x17d0 nsiproxy - ok
18:01:34.0514 0x17d0 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:01:34.0606 0x17d0 Ntfs - ok
18:01:34.0614 0x17d0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:01:34.0658 0x17d0 Null - ok
18:01:34.0666 0x17d0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:01:34.0693 0x17d0 nvraid - ok
18:01:34.0704 0x17d0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:01:34.0734 0x17d0 nvstor - ok
18:01:34.0742 0x17d0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:01:34.0768 0x17d0 nv_agp - ok
18:01:34.0775 0x17d0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:01:34.0800 0x17d0 ohci1394 - ok
18:01:35.0310 0x17d0 [ 10202AD89DEF5E0F7CDCF2CE8C5EF1EE, F2A9CAC054A440EBF71D7372DAA7A57BC9DB1893C45EA01F21537CE714B7451B ] Origin Client Service G:\origin\OriginClientService.exe
18:01:35.0405 0x17d0 Origin Client Service - ok
18:01:35.0420 0x17d0 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:01:35.0436 0x17d0 ose - ok
18:01:35.0572 0x17d0 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:01:35.0742 0x17d0 osppsvc - ok
18:01:35.0767 0x17d0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:01:35.0793 0x17d0 p2pimsvc - ok
18:01:35.0810 0x17d0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
18:01:35.0840 0x17d0 p2psvc - ok
18:01:35.0847 0x17d0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
18:01:35.0873 0x17d0 Parport - ok
18:01:35.0879 0x17d0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:01:35.0903 0x17d0 partmgr - ok
18:01:35.0912 0x17d0 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:01:35.0932 0x17d0 PcaSvc - ok
18:01:35.0941 0x17d0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
18:01:35.0970 0x17d0 pci - ok
18:01:35.0974 0x17d0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:01:35.0996 0x17d0 pciide - ok
18:01:36.0005 0x17d0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:01:36.0035 0x17d0 pcmcia - ok
18:01:36.0041 0x17d0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:01:36.0063 0x17d0 pcw - ok
18:01:36.0083 0x17d0 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:01:36.0115 0x17d0 PEAUTH - ok
18:01:36.0140 0x17d0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:01:36.0156 0x17d0 PerfHost - ok
18:01:36.0201 0x17d0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
18:01:36.0284 0x17d0 pla - ok
18:01:36.0303 0x17d0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:01:36.0332 0x17d0 PlugPlay - ok
18:01:36.0337 0x17d0 PnkBstrA - ok
18:01:36.0344 0x17d0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:01:36.0360 0x17d0 PNRPAutoReg - ok
18:01:36.0373 0x17d0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:01:36.0395 0x17d0 PNRPsvc - ok
18:01:36.0415 0x17d0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:01:36.0465 0x17d0 PolicyAgent - ok
18:01:36.0478 0x17d0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
18:01:36.0523 0x17d0 Power - ok
18:01:36.0530 0x17d0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:01:36.0578 0x17d0 PptpMiniport - ok
18:01:36.0585 0x17d0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
18:01:36.0609 0x17d0 Processor - ok
18:01:36.0619 0x17d0 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
18:01:36.0641 0x17d0 ProfSvc - ok
18:01:36.0646 0x17d0 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:01:36.0660 0x17d0 ProtectedStorage - ok
18:01:36.0668 0x17d0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:01:36.0717 0x17d0 Psched - ok
18:01:36.0762 0x17d0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:01:36.0848 0x17d0 ql2300 - ok
18:01:36.0859 0x17d0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:01:36.0885 0x17d0 ql40xx - ok
18:01:36.0896 0x17d0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:01:36.0923 0x17d0 QWAVE - ok
18:01:36.0929 0x17d0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:01:36.0957 0x17d0 QWAVEdrv - ok
18:01:36.0962 0x17d0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:01:37.0007 0x17d0 RasAcd - ok
18:01:37.0013 0x17d0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:01:37.0063 0x17d0 RasAgileVpn - ok
18:01:37.0072 0x17d0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:01:37.0113 0x17d0 RasAuto - ok
18:01:37.0121 0x17d0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:01:37.0171 0x17d0 Rasl2tp - ok
18:01:37.0184 0x17d0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
18:01:37.0229 0x17d0 RasMan - ok
18:01:37.0236 0x17d0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:01:37.0283 0x17d0 RasPppoe - ok
18:01:37.0289 0x17d0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:01:37.0337 0x17d0 RasSstp - ok
18:01:37.0351 0x17d0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:01:37.0407 0x17d0 rdbss - ok
18:01:37.0412 0x17d0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
18:01:37.0437 0x17d0 rdpbus - ok
18:01:37.0442 0x17d0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:01:37.0484 0x17d0 RDPCDD - ok
18:01:37.0491 0x17d0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:01:37.0534 0x17d0 RDPENCDD - ok
18:01:37.0542 0x17d0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:01:37.0585 0x17d0 RDPREFMP - ok
18:01:37.0593 0x17d0 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:01:37.0619 0x17d0 RdpVideoMiniport - ok
18:01:37.0629 0x17d0 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:01:37.0661 0x17d0 RDPWD - ok
18:01:37.0673 0x17d0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:01:37.0704 0x17d0 rdyboost - ok
18:01:37.0712 0x17d0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:01:37.0754 0x17d0 RemoteAccess - ok
18:01:37.0762 0x17d0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:01:37.0805 0x17d0 RemoteRegistry - ok
18:01:37.0811 0x17d0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:01:37.0850 0x17d0 RpcEptMapper - ok
18:01:37.0855 0x17d0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:01:37.0871 0x17d0 RpcLocator - ok
18:01:37.0888 0x17d0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
18:01:37.0936 0x17d0 RpcSs - ok
18:01:37.0945 0x17d0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:01:37.0994 0x17d0 rspndr - ok
18:01:38.0014 0x17d0 [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:01:38.0056 0x17d0 RTL8167 - ok
18:01:38.0062 0x17d0 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs C:\Windows\system32\lsass.exe
18:01:38.0077 0x17d0 SamSs - ok
18:01:38.0083 0x17d0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:01:38.0107 0x17d0 sbp2port - ok
18:01:38.0117 0x17d0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:01:38.0162 0x17d0 SCardSvr - ok
18:01:38.0167 0x17d0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:01:38.0211 0x17d0 scfilter - ok
18:01:38.0241 0x17d0 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
18:01:38.0287 0x17d0 Schedule - ok
18:01:38.0296 0x17d0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:01:38.0332 0x17d0 SCPolicySvc - ok
18:01:38.0340 0x17d0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:01:38.0361 0x17d0 SDRSVC - ok
18:01:38.0366 0x17d0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:01:38.0388 0x17d0 secdrv - ok
18:01:38.0393 0x17d0 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
18:01:38.0430 0x17d0 seclogon - ok
18:01:38.0436 0x17d0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
18:01:38.0475 0x17d0 SENS - ok
18:01:38.0480 0x17d0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:01:38.0497 0x17d0 SensrSvc - ok
18:01:38.0504 0x17d0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:01:38.0527 0x17d0 Serenum - ok
18:01:38.0534 0x17d0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:01:38.0561 0x17d0 Serial - ok
18:01:38.0566 0x17d0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:01:38.0589 0x17d0 sermouse - ok
18:01:38.0602 0x17d0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
18:01:38.0643 0x17d0 SessionEnv - ok
18:01:38.0647 0x17d0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:01:38.0674 0x17d0 sffdisk - ok
18:01:38.0678 0x17d0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:01:38.0703 0x17d0 sffp_mmc - ok
18:01:38.0707 0x17d0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:01:38.0732 0x17d0 sffp_sd - ok
18:01:38.0742 0x17d0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:01:38.0771 0x17d0 sfloppy - ok
18:01:38.0784 0x17d0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:01:38.0831 0x17d0 SharedAccess - ok
18:01:38.0845 0x17d0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:01:38.0891 0x17d0 ShellHWDetection - ok
18:01:38.0896 0x17d0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:01:38.0917 0x17d0 SiSRaid2 - ok
18:01:38.0925 0x17d0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:01:38.0948 0x17d0 SiSRaid4 - ok
18:01:38.0960 0x17d0 [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:01:38.0984 0x17d0 SkypeUpdate - ok
18:01:38.0991 0x17d0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:01:39.0040 0x17d0 Smb - ok
18:01:39.0048 0x17d0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:01:39.0065 0x17d0 SNMPTRAP - ok
18:01:39.0070 0x17d0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:01:39.0090 0x17d0 spldr - ok
18:01:39.0108 0x17d0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
18:01:39.0140 0x17d0 Spooler - ok
18:01:39.0242 0x17d0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
18:01:39.0390 0x17d0 sppsvc - ok
18:01:39.0406 0x17d0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:01:39.0446 0x17d0 sppuinotify - ok
18:01:39.0453 0x17d0 [ 8FD8EE71D7D639F85805EEE4ADB2AA15, 027E680BE49F705843B0117A72FAFC7681798B99685B91989928EF03767CD7A5 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:01:39.0469 0x17d0 SQLWriter - ok
18:01:39.0485 0x17d0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:01:39.0527 0x17d0 srv - ok
18:01:39.0542 0x17d0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:01:39.0582 0x17d0 srv2 - ok
18:01:39.0591 0x17d0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:01:39.0619 0x17d0 srvnet - ok
18:01:39.0631 0x17d0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:01:39.0675 0x17d0 SSDPSRV - ok
18:01:39.0681 0x17d0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:01:39.0720 0x17d0 SstpSvc - ok
18:01:39.0746 0x17d0 [ EBAA82F7C9B97C0E450449178E007340, D470927CC216C4E3EA23236E6C6464187CD3A49C3A4A456F488FEC8E713EA31B ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:01:39.0780 0x17d0 Steam Client Service - ok
18:01:39.0789 0x17d0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:01:39.0811 0x17d0 stexstor - ok
18:01:39.0815 0x17d0 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
18:01:39.0838 0x17d0 StillCam - ok
18:01:39.0857 0x17d0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:01:39.0895 0x17d0 stisvc - ok
18:01:39.0901 0x17d0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:01:39.0922 0x17d0 swenum - ok
18:01:39.0939 0x17d0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
18:01:39.0992 0x17d0 swprv - ok
18:01:40.0044 0x17d0 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
18:01:40.0112 0x17d0 SysMain - ok
18:01:40.0125 0x17d0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:01:40.0148 0x17d0 TabletInputService - ok
18:01:40.0155 0x17d0 [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t C:\Windows\system32\DRIVERS\tap0901t.sys
18:01:40.0182 0x17d0 tap0901t - ok
18:01:40.0195 0x17d0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
18:01:40.0241 0x17d0 TapiSrv - ok
18:01:40.0247 0x17d0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:01:40.0288 0x17d0 TBS - ok
18:01:40.0342 0x17d0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:01:40.0449 0x17d0 Tcpip - ok
18:01:40.0504 0x17d0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:01:40.0597 0x17d0 TCPIP6 - ok
18:01:40.0611 0x17d0 [ 1A95043750E359F993154EF8559BE518, C1CDFAA87084B4D7CF38598E6C723EDD2E1DCA23D29449F48D016F589DACEA29 ] tcpipBM C:\Windows\system32\drivers\tcpipBM.sys
18:01:40.0628 0x17d0 tcpipBM - detected UnsignedFile.Multi.Generic ( 1 )
18:01:46.0256 0x17d0 Detect skipped due to KSN trusted
18:01:46.0256 0x17d0 tcpipBM - ok
18:01:46.0262 0x17d0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:01:46.0286 0x17d0 tcpipreg - ok
18:01:46.0293 0x17d0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:01:46.0315 0x17d0 TDPIPE - ok
18:01:46.0322 0x17d0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:01:46.0344 0x17d0 TDTCP - ok
18:01:46.0352 0x17d0 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:01:46.0379 0x17d0 tdx - ok
18:01:46.0385 0x17d0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:01:46.0407 0x17d0 TermDD - ok
18:01:46.0429 0x17d0 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
18:01:46.0465 0x17d0 TermService - ok
18:01:46.0473 0x17d0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:01:46.0497 0x17d0 Themes - ok
18:01:46.0506 0x17d0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:01:46.0547 0x17d0 THREADORDER - ok
18:01:46.0555 0x17d0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:01:46.0601 0x17d0 TrkWks - ok
18:01:46.0611 0x17d0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:01:46.0651 0x17d0 TrustedInstaller - ok
18:01:46.0658 0x17d0 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:01:46.0680 0x17d0 tssecsrv - ok
18:01:46.0686 0x17d0 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:01:46.0711 0x17d0 TsUsbFlt - ok
18:01:46.0717 0x17d0 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
18:01:46.0741 0x17d0 TsUsbGD - ok
18:01:46.0749 0x17d0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:01:46.0800 0x17d0 tunnel - ok
18:01:47.0240 0x17d0 [ 9B67EEB5ECCA7E7A57942D967DD59089, 6CD1575BB52A936875DB6E2EA541C7630CF1B0BC4947A5B12356F7C493316324 ] TunngleService G:\Tunngle\Tunngle\TnglCtrl.exe
18:01:47.0271 0x17d0 TunngleService - ok
18:01:47.0281 0x17d0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:01:47.0304 0x17d0 uagp35 - ok
18:01:47.0313 0x17d0 [ 6ED5BAAF4CF1FE809D2511D001B0A7C6, 0A6439000CB2A237403F9CF8B76530A295341B94D7D335DE352ECCC50BFFD64D ] UCManSvc C:\Program Files (x86)\SoftDenchi\UCManSvc.exe
18:01:47.0325 0x17d0 UCManSvc - detected UnsignedFile.Multi.Generic ( 1 )
18:01:48.0304 0x1fbc Object required for P2P: [ 10202AD89DEF5E0F7CDCF2CE8C5EF1EE ] Origin Client Service
18:01:52.0962 0x17d0 Detect skipped due to KSN trusted
18:01:52.0962 0x17d0 UCManSvc - ok
18:01:52.0977 0x17d0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:01:53.0035 0x17d0 udfs - ok
18:01:53.0046 0x17d0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:01:53.0065 0x17d0 UI0Detect - ok
18:01:53.0071 0x17d0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:01:53.0094 0x17d0 uliagpkx - ok
18:01:53.0102 0x17d0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:01:53.0125 0x17d0 umbus - ok
18:01:53.0129 0x17d0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
18:01:53.0152 0x17d0 UmPass - ok
18:01:53.0167 0x17d0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:01:53.0217 0x17d0 upnphost - ok
18:01:53.0224 0x17d0 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
18:01:53.0248 0x17d0 USBAAPL64 - ok
18:01:53.0258 0x17d0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:01:53.0285 0x17d0 usbaudio - ok
18:01:53.0292 0x17d0 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:01:53.0318 0x17d0 usbccgp - ok
18:01:53.0326 0x17d0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:01:53.0352 0x17d0 usbcir - ok
18:01:53.0360 0x17d0 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:01:53.0385 0x17d0 usbehci - ok
18:01:53.0391 0x17d0 [ 573D192E268F0C5B486B7E96F661E538, 0F32BD82CA7B5D4DE234EFC6527EF4C854BD15B3057FE4A0151C70115493FFDC ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:01:53.0411 0x17d0 usbfilter - ok
18:01:53.0424 0x17d0 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:01:53.0460 0x17d0 usbhub - ok
18:01:53.0465 0x17d0 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:01:53.0487 0x17d0 usbohci - ok
18:01:53.0493 0x17d0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:01:53.0519 0x17d0 usbprint - ok
18:01:53.0526 0x17d0 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:01:53.0549 0x17d0 usbscan - ok
18:01:53.0556 0x17d0 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:01:53.0582 0x17d0 USBSTOR - ok
18:01:53.0588 0x17d0 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:01:53.0610 0x17d0 usbuhci - ok
18:01:53.0616 0x17d0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
18:01:53.0654 0x17d0 UxSms - ok
18:01:53.0659 0x17d0 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc C:\Windows\system32\lsass.exe
18:01:53.0674 0x17d0 VaultSvc - ok
18:01:53.0690 0x17d0 [ 3470D2C83CA7A056B91216EA1D571304, 3189ABF6E8C08B1B0F406DB5E78F9ABD9A0AE3FF52615B681A8DEB1A38E26B83 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
18:01:53.0722 0x17d0 VBoxAswDrv - ok
18:01:53.0729 0x17d0 [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone C:\Windows\system32\DRIVERS\VClone.sys
18:01:53.0752 0x17d0 VClone - ok
18:01:53.0757 0x17d0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:01:53.0779 0x17d0 vdrvroot - ok
18:01:53.0797 0x17d0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
18:01:53.0852 0x17d0 vds - ok
18:01:53.0859 0x17d0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:01:53.0885 0x17d0 vga - ok
18:01:53.0890 0x17d0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:01:53.0935 0x17d0 VgaSave - ok
18:01:53.0946 0x17d0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:01:53.0976 0x17d0 vhdmp - ok
18:01:53.0982 0x17d0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:01:53.0990 0x1fbc Object send P2P result: true
18:01:54.0010 0x17d0 viaide - ok
18:01:54.0018 0x17d0 VMAuthdService - ok
18:01:54.0026 0x17d0 [ BE8E5E5D53ACF71D4E8E686B68C99B04, 4F30A360095FCB2627068FA6A65A951688058E8FDDF5CE895E2AE39500A413B1 ] vmci C:\Windows\system32\DRIVERS\vmci.sys
18:01:54.0040 0x17d0 vmci - ok
18:01:54.0045 0x17d0 [ 043A5587EC004AC43BEDB3A1DAC6D2C7, F6D52F50517AE3C136B4A5459388DC1FAEF1F81C7B43B529A16DC847F3FA6C61 ] vmkbd C:\Windows\system32\drivers\VMkbd.sys
18:01:54.0066 0x17d0 vmkbd - ok
18:01:54.0072 0x17d0 [ A3412EC3FF7A5AC2CA3A3951476BFA9C, 8A3D241168205B6B5348F44DF89875067CDD5B29BE8CF14ADA8403225AE2A379 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys
18:01:54.0093 0x17d0 VMnetAdapter - ok
18:01:54.0100 0x17d0 [ F76AD463DBE8D30CB715A09DF9FF2BE9, 5B2184582496ED0EE8582C6AD3BCF49674690C585439B6F57B43ADC12DF941F6 ] VMnetBridge C:\Windows\system32\DRIVERS\vmnetbridge.sys
18:01:54.0122 0x17d0 VMnetBridge - ok
18:01:54.0149 0x17d0 [ 67399AB0DFD6C0F8C227767B98C64934, D583A102E722EC2397FB923DC632BD4947050C6E2E200F5AE995E25F01B77037 ] VMnetDHCP C:\WINDOWS\SYSWOW64\VMNETDHCP.EXE
18:01:54.0173 0x17d0 VMnetDHCP - ok
18:01:54.0179 0x17d0 [ 06DF68D38A11E13C0EBAF8B540314949, C294872AB853CCA093C9C7C691AA31ECE09C7A58311D41F3AF481E9DFDA0E7A8 ] VMnetuserif C:\Windows\system32\drivers\vmnetuserif.sys
18:01:54.0192 0x17d0 VMnetuserif - ok
18:01:54.0198 0x17d0 [ 5C33E873349CF67272A8B342AC963A6E, 9CB419F422C88C0055440E1AF94716C537E9D9CD34DF6F2AE81C3D2CDDD1FD31 ] vmusb C:\Windows\system32\DRIVERS\vmusb.sys
18:01:54.0219 0x17d0 vmusb - ok
18:01:54.0246 0x17d0 [ BDE23563704BC06CB01F4E3502B57118, 4A8B1B852194B6D30B61A6F8574405F601978891B02190308CBF97D6EAD353F5 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
18:01:54.0284 0x17d0 VMUSBArbService - ok
18:01:54.0303 0x17d0 [ 4FA842AF1F403F5738BD451D39B79BEF, 61B7AFB02A5261673C40E9EAB63A5414DB9805E142C11CADC01937B3220FFA31 ] VMware NAT Service C:\WINDOWS\SYSWOW64\VMNAT.EXE
18:01:54.0329 0x17d0 VMware NAT Service - ok
18:01:54.0337 0x17d0 [ E6FE9E71EEFC1840ED5FDBB739E17565, 8B19873EB405BDF4A5B125ECFC12908109C5536EDF4B338E80FE3F7ED1A65760 ] vmx86 C:\Windows\system32\drivers\vmx86.sys
18:01:54.0359 0x17d0 vmx86 - ok
18:01:54.0370 0x17d0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:01:54.0394 0x17d0 volmgr - ok
18:01:54.0407 0x17d0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:01:54.0444 0x17d0 volmgrx - ok
18:01:54.0457 0x17d0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:01:54.0491 0x17d0 volsnap - ok
18:01:54.0501 0x17d0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:01:54.0529 0x17d0 vsmraid - ok
18:01:54.0538 0x17d0 [ 6E099CBD96170E0F1472DD45B8DEA787, 2A9E095BC6F9167D16DFF089606AC31554DDEC24F12ECFB0330C55CEC3B20787 ] vsock C:\Windows\system32\drivers\vsock.sys
18:01:54.0562 0x17d0 vsock - ok
18:01:54.0608 0x17d0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
18:01:54.0693 0x17d0 VSS - ok
18:01:54.0701 0x17d0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:01:54.0725 0x17d0 vwifibus - ok
18:01:54.0739 0x17d0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
18:01:54.0790 0x17d0 W32Time - ok
18:01:54.0798 0x17d0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:01:54.0823 0x17d0 WacomPen - ok
18:01:54.0830 0x17d0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:01:54.0882 0x17d0 WANARP - ok
18:01:54.0889 0x17d0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:01:54.0935 0x17d0 Wanarpv6 - ok
18:01:54.0973 0x17d0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:01:55.0024 0x17d0 WatAdminSvc - ok
18:01:55.0070 0x17d0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
18:01:55.0131 0x17d0 wbengine - ok
18:01:55.0145 0x17d0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:01:55.0173 0x17d0 WbioSrvc - ok
18:01:55.0187 0x17d0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:01:55.0218 0x17d0 wcncsvc - ok
18:01:55.0225 0x17d0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:01:55.0243 0x17d0 WcsPlugInService - ok
18:01:55.0248 0x17d0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
18:01:55.0270 0x17d0 Wd - ok
18:01:55.0294 0x17d0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:01:55.0349 0x17d0 Wdf01000 - ok
18:01:55.0358 0x17d0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:01:55.0376 0x17d0 WdiServiceHost - ok
18:01:55.0384 0x17d0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:01:55.0402 0x17d0 WdiSystemHost - ok
18:01:55.0414 0x17d0 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
18:01:55.0439 0x17d0 WebClient - ok
18:01:55.0450 0x17d0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:01:55.0495 0x17d0 Wecsvc - ok
18:01:55.0504 0x17d0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:01:55.0546 0x17d0 wercplsupport - ok
18:01:55.0553 0x17d0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:01:55.0597 0x17d0 WerSvc - ok
18:01:55.0604 0x17d0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:01:55.0650 0x17d0 WfpLwf - ok
18:01:55.0656 0x17d0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:01:55.0677 0x17d0 WIMMount - ok
18:01:55.0683 0x17d0 WinDefend - ok
18:01:55.0692 0x17d0 WinHttpAutoProxySvc - ok
18:01:55.0706 0x17d0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:01:55.0748 0x17d0 Winmgmt - ok
18:01:55.0803 0x17d0 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
18:01:55.0879 0x17d0 WinRM - ok
18:01:55.0898 0x17d0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
18:01:55.0926 0x17d0 WinUsb - ok
18:01:55.0955 0x17d0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:01:56.0006 0x17d0 Wlansvc - ok
18:01:56.0070 0x17d0 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:01:56.0142 0x17d0 wlidsvc - ok
18:01:56.0153 0x17d0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
18:01:56.0175 0x17d0 WmiAcpi - ok
18:01:56.0189 0x17d0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:01:56.0210 0x17d0 wmiApSrv - ok
18:01:56.0215 0x17d0 WMPNetworkSvc - ok
18:01:56.0222 0x17d0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:01:56.0239 0x17d0 WPCSvc - ok
18:01:56.0249 0x17d0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:01:56.0273 0x17d0 WPDBusEnum - ok
18:01:56.0279 0x17d0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:01:56.0325 0x17d0 ws2ifsl - ok
18:01:56.0333 0x17d0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
18:01:56.0357 0x17d0 wscsvc - ok
18:01:56.0361 0x17d0 WSearch - ok
18:01:56.0434 0x17d0 [ 361845875ED8ED13086E7F37265C45DA, A0931DC1E35712036E93BBC3600530C0DA12E94E0D898787C818C526DFF240C2 ] wuauserv C:\Windows\system32\wuaueng.dll
18:01:56.0534 0x17d0 wuauserv - ok
18:01:56.0549 0x17d0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:01:56.0577 0x17d0 WudfPf - ok
18:01:56.0589 0x17d0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:01:56.0620 0x17d0 WUDFRd - ok
18:01:56.0627 0x17d0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:01:56.0646 0x17d0 wudfsvc - ok
18:01:56.0658 0x17d0 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
18:01:56.0682 0x17d0 WwanSvc - ok
18:01:56.0689 0x17d0 X6va011 - ok
18:01:56.0694 0x17d0 X6va015 - ok
18:01:56.0703 0x17d0 ZTEusbmdm6k - ok
18:01:56.0707 0x17d0 ZTEusbnmea - ok
18:01:56.0712 0x17d0 ZTEusbser6k - ok
18:01:56.0720 0x17d0 [ 858076A3D56558A813A735CABD315A06, 3A5962F36AE0A1217BCA6B5DBB6FD1482C10C1B6335DCCE15D546FDF6DA35AFC ] zte_cdc_acm C:\Windows\system32\DRIVERS\zte_cdc_acm.sys
18:01:56.0736 0x17d0 zte_cdc_acm - ok
18:01:56.0742 0x17d0 [ C57E79CECB9535312FCF5F37BBC1AFE9, 821894906C4D7B7CEA2E2647F8468837478698A315CEF272B45AD9046808ECFB ] zte_cpo C:\Windows\system32\DRIVERS\zte_cpo.sys
18:01:56.0764 0x17d0 zte_cpo - ok
18:01:56.0783 0x17d0 ================ Scan global ===============================
18:01:56.0788 0x17d0 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
18:01:56.0798 0x17d0 [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
18:01:56.0814 0x17d0 [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
18:01:56.0825 0x17d0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
18:01:56.0840 0x17d0 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
18:01:56.0851 0x17d0 [ Global ] - ok
18:01:56.0851 0x17d0 ================ Scan MBR ==================================
18:01:56.0853 0x17d0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:01:56.0950 0x17d0 \Device\Harddisk0\DR0 - ok
18:01:56.0953 0x17d0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:01:57.0418 0x17d0 \Device\Harddisk1\DR1 - ok
18:01:57.0421 0x17d0 ================ Scan VBR ==================================
18:01:57.0424 0x17d0 [ 038CE56B5856C9C8DAC9F468E10DED3C ] \Device\Harddisk0\DR0\Partition1
18:01:57.0425 0x17d0 \Device\Harddisk0\DR0\Partition1 - ok
18:01:57.0428 0x17d0 [ 0492F82D90A0DEF57817DFEFB6FC88F7 ] \Device\Harddisk0\DR0\Partition2
18:01:57.0429 0x17d0 \Device\Harddisk0\DR0\Partition2 - ok
18:01:57.0432 0x17d0 [ 44B528617571AE0801145BA8FAD0EBF3 ] \Device\Harddisk1\DR1\Partition1
18:01:57.0532 0x17d0 \Device\Harddisk1\DR1\Partition1 - ok
18:01:57.0535 0x17d0 [ 8C490B536FBD578668B0495EAAAAE6B3 ] \Device\Harddisk1\DR1\Partition2
18:01:57.0587 0x17d0 \Device\Harddisk1\DR1\Partition2 - ok
18:01:57.0587 0x17d0 ================ Scan generic autorun ======================
18:01:57.0885 0x17d0 [ FBDF607ED7EF0467639DB501E1FD938C, 040528158D85D13122DB043144A982D6DC8744E75D140DB17A9BA5B93DC6B74D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
18:01:58.0187 0x17d0 RtHDVCpl - ok
18:01:58.0391 0x17d0 [ 89BFE6DBB612131D2718589745D82983, E9047757DB1FC0D76C5020CE35B8301150E6DB463F627CEB3C5B7363016C9405 ] C:\Program Files\Logitech Gaming Software\LCore.exe
18:01:58.0580 0x17d0 Launch LCore - ok
18:01:58.0755 0x17d0 [ 6FCCCAA9144312CD4AA1B38834DD9857, 8BF6926699B5A4408244FE1C2A8CBA10DE7263B7788B5F13212DAC4DA91C5E0F ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
18:01:58.0927 0x17d0 AvastUI.exe - ok
18:01:58.0973 0x17d0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:01:59.0023 0x17d0 Sidebar - ok
18:01:59.0031 0x17d0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:01:59.0053 0x17d0 mctadmin - ok
18:01:59.0087 0x17d0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:01:59.0129 0x17d0 Sidebar - ok
18:01:59.0138 0x17d0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:01:59.0158 0x17d0 mctadmin - ok
18:01:59.0198 0x17d0 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
18:01:59.0253 0x17d0 Sidebar - ok
18:01:59.0321 0x17d0 [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
18:01:59.0394 0x17d0 HP Deskjet 3050A J611 series (NET) - ok
18:01:59.0402 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:00.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:01.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:02.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:03.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:04.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:05.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:06.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:07.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:08.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:09.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:10.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:11.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:12.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:13.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:14.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:15.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:16.0403 0x17d0 Waiting for KSN requests completion. In queue: 90
18:02:17.0434 0x17d0 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.4.2233.1299 ), 0x41000 ( enabled : updated )
18:02:17.0444 0x17d0 Win FW state via NFP2: enabled ( trusted )
18:02:22.0991 0x17d0 ============================================================
18:02:22.0991 0x17d0 Scan finished
18:02:22.0991 0x17d0 ============================================================
18:02:22.0999 0x0a78 Detected object count: 2
18:02:22.0999 0x0a78 Actual detected object count: 2
18:02:37.0638 0x0a78 BMLoad ( UnsignedFile.Multi.Generic ) - skipped by user
18:02:37.0638 0x0a78 BMLoad ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:02:37.0638 0x0a78 HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
18:02:37.0638 0x0a78 HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
19.11.2015, 16:07
| #8 |
| /// the machine /// TB-Ausbilder | Weißer Bildschirm beim Internetsurfen Revo Uninstaller - Download - Filepony damit Firefox deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren. Dann: https://support.mozilla.org/de/kb/fi...einfach-loesen Und die Hardwarebeschleunigung abschalten in FF.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.11.2015, 19:04
| #9 |
| | Weißer Bildschirm beim Internetsurfen Okay hab ich alles gemacht. Was jetzt? (TDSSKiller hat ja 2 Rootkits gefunden). |
|
20.11.2015, 16:39
| #10 |
| /// the machine /// TB-Ausbilder | Weißer Bildschirm beim Internetsurfen Nö, hat es nicht  Bestehen die Probleme noch?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.11.2015, 18:52
| #11 |
| | Weißer Bildschirm beim Internetsurfen Bis jetzt nicht. Danke für die schnelle Hilfe |
|
21.11.2015, 19:41
| #12 |
| /// the machine /// TB-Ausbilder | Weißer Bildschirm beim Internetsurfen Cleanup: (Die Reihenfolge ist hier entscheidend) Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken. Falls Combofix verwendet wurde:  Combofix deinstallieren .
Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.   Absicherung:Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank. Meine Empfehlung:  Emsisoft Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional:  NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.Lade Software von einem sauberen Portal wie  .Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwarecleaner . Abschließend noch ein paar grundsätzliche Bemerkungen: Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems. Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Weißer Bildschirm beim Internetsurfen |
| bestimmte, bestimmten, bildschirm, erschein, erscheint, firefox, herunterfahren, inter, interne, internet, internetsurfen, mozilla, mozilla firefox, nichts, schei, seite, seiten, strg, surfe, surfen, taskma, taskmanager, weißer, wenig, zufällig |
+ R Taste und schreibe Combofix /Uninstall in das 
Linear-Darstellung
