Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: .scr Datei ausversehen heruntergeladen.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 24.11.2015, 03:35   #1
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Hallo Zusammen,

Ich hab ausversehen eine Datei heruntergeladen, welche auf den Namen "img-1624.png.scr" hört. Ich die Datei nicht geöffnet, sondern gleich gelöscht.
Ich weiss nur nicht wie gefährlich so eine Datei sein kann. In einem älteren Forumbeitrag wurde der Betroffene angewiesen, einen FRST-Scan und TDSSKiller-Scan
durchzuführen. Nachfolgend werde ich die Ergebnisse dieser Scans posten, was könnt ihr daraus lesen? Ist mein Computer von einem Virus befallen? Falls ich bei der Ersellung
dieses Beitrages was Falsch gemacht habe - Entschuldigung.

Vielen Dank für euren Rat!

FRST.txt:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
Ran by Nerdy By Nerds (administrator) on MATRIX (24-11-2015 02:38:08)
Running from C:\Users\Nerdy By Nerds\Desktop
Loaded Profiles: Nerdy By Nerds (Available Profiles: Jeremy J. Erb & Nerdy By Nerds)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\lpksetup.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Tanuki Software, Ltd.) C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Oracle Corporation) C:\Program Files (x86)\PS3 Media Server\jre64\bin\java.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [uTorrent] => C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [159744 2015-01-19] (Voobly)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\MountPoints2: {5d4390e4-1303-11e1-8728-806e6f6e6963} - D:\setup\rsrc\Autorun.exe
AppInit_DLLs: C:\PROGRA~3\WinSpeed\WINSPE~1.DLL => C:\ProgramData\WinSpeed\WinSpeed_x64.dll [4513280 2013-12-26] ()
AppInit_DLLs-x32: c:\progra~2\contin~1\sprote~1.dll => No File
AppInit_DLLs-x32:  c:\progra~3\winspeed\winspeed.dll => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
Startup: C:\Users\Jeremy J. Erb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-05-08]
ShortcutTarget: Curse.lnk -> C:\Users\Nerdy By Nerds\AppData\Roaming\Curse Client\Bin\Curse.exe (No File)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20C2A4C4-DFF1-4232-9CFC-010DD5A40F60}: [DhcpNameServer] 91.138.126.128 91.138.1.128
Tcpip\..\Interfaces\{6E745053-D0A6-4597-BEDD-2F3537336362}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA8B5644-3D53-487C-A063-F6BA6AAC75B7}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.simplespeedy.info/?l=1&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13] (Oracle Corporation)
BHO-x32: Avira Savings Advisor BHO -> {A18A516C-AA41-46A9-92DB-60208917E442} -> C:\Program Files (x86)\avira\Internet Explorer\avira32.dll [2013-12-11] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll [No File]
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Extension: Greasemonkey - C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]

Chrome: 
=======
CHR Profile: C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
CHR Extension: (Google-Suche) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-29]
CHR Extension: (Google Mail) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]
CHR HKLM-x32\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files (x86)\avira\Chrome\avira-1.5.14.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [45056 2013-01-31] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3645432 2014-07-18] (devolo AG)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-11-22] (Nalpeiron Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
R2 PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [384280 2012-11-27] (Tanuki Software, Ltd.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 archlp; C:\Windows\SysWow64\drivers\archlp.sys [161792 2009-02-06] ()
S1 Aspi32; no ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-19] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [94440 2014-07-07] (UB658)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-10-13] ()
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [189952 2010-06-23] (Hauppauge, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-02] (Logitech Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2013-08-07] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-12-30] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [33448 2014-08-21] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-24 02:38 - 2015-11-24 02:39 - 00027949 _____ C:\Users\Nerdy By Nerds\Desktop\FRST.txt
2015-11-24 02:37 - 2015-11-24 02:38 - 00000000 ____D C:\FRST
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Downloads\FRST64.exe
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Downloads\tdsskiller.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
2015-11-23 22:43 - 2015-11-23 22:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\LocalLow\uTorrent
2015-11-18 19:22 - 2015-11-18 19:22 - 01107319 _____ C:\Users\Nerdy By Nerds\Downloads\ER Dokumente.zip
2015-11-18 02:02 - 2015-11-18 02:02 - 00135972 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e07.720p.hdtv.x264.killers.rartv.torrent
2015-11-17 19:09 - 2015-11-17 19:09 - 00046320 _____ C:\Users\Nerdy By Nerds\Desktop\test.mmmacro
2015-11-17 18:44 - 2015-11-17 18:44 - 00757560 _____ (Jitbit Software ) C:\Users\Nerdy By Nerds\Downloads\MacroRecorderSetup.exe
2015-11-17 18:44 - 2015-11-17 18:44 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macro Recorder
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2015-11-17 17:58 - 2015-11-17 17:58 - 00844200 _____ (MurGee Softwares ) C:\Users\Nerdy By Nerds\Downloads\setup.exe
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Auto-Mouse-Clicker
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Clicker v4.0
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Program Files (x86)\Auto Mouse Clicker v4.0
2015-11-15 18:52 - 2015-11-15 18:52 - 00004544 _____ C:\Users\Nerdy By Nerds\Desktop\New Journal Document.jnt
2015-11-15 18:52 - 2015-11-15 18:52 - 00000000 _____ C:\Users\Nerdy By Nerds\Desktop\New Text Document.txt
2015-11-13 20:34 - 2015-11-13 20:34 - 00011237 _____ C:\Users\Nerdy By Nerds\Downloads\helsinki.zip
2015-11-12 22:56 - 2015-11-12 22:56 - 29302298 _____ C:\Users\Nerdy By Nerds\Downloads\KiesMac_2.0.0.13023_10_1.dmg
2015-11-10 23:40 - 2015-11-10 23:40 - 05286088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-09 17:10 - 2015-11-09 17:10 - 00133972 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e06.720p.hdtv.x264.killers.rartv.torrent
2015-11-09 17:09 - 2015-11-09 17:09 - 00133813 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.walking.dead.s06e05.720p.hdtv.x264.fleet.rartv.torrent
2015-11-08 20:27 - 2015-11-12 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 19:12 - 2015-11-08 19:12 - 00929872 _____ (Google Inc.) C:\Users\Nerdy By Nerds\Downloads\ChromeSetup.exe
2015-11-08 16:00 - 2015-11-08 16:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Flavio Fotos
2015-11-07 19:11 - 2015-11-07 19:11 - 00153765 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e05.720p.hdtv.x264.killers.rartv.torrent
2015-11-07 19:11 - 2015-11-07 19:11 - 00124773 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e04.720p.hdtv.x264.0sec.rartv.torrent
2015-11-07 19:10 - 2015-11-07 19:10 - 00141034 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e03.720p.hdtv.x264.fleet.rartv.torrent
2015-11-07 19:07 - 2015-11-07 19:07 - 00007277 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e01.hdtv.x264.killers.ettv (1).torrent
2015-11-07 19:03 - 2015-11-07 19:03 - 00007277 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.leftovers.s02e01.hdtv.x264.killers.ettv.torrent
2015-11-07 00:45 - 2015-11-07 00:45 - 00007201 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising (2).xml
2015-11-06 21:33 - 2015-11-06 21:33 - 00001832 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising (1).xml
2015-11-06 19:02 - 2015-11-06 19:02 - 00001692 _____ C:\Users\Nerdy By Nerds\Downloads\Techtree_Empire_Rising.xml
2015-11-06 18:51 - 2015-11-22 18:33 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Empire Rising
2015-11-06 18:01 - 2015-11-06 19:10 - 352186801 ____N C:\Users\Nerdy By Nerds\Desktop\MVI_1036.MOV
2015-11-05 00:10 - 2015-11-05 00:10 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-05 00:09 - 2015-11-05 00:09 - 28849904 _____ C:\Users\Nerdy By Nerds\Downloads\vlc-2.2.1-win32.exe
2015-11-05 00:09 - 2015-11-05 00:09 - 00000000 ____D C:\Program Files (x86)\New folder
2015-10-30 22:09 - 2015-10-30 22:09 - 00737117 _____ C:\Users\Nerdy By Nerds\Downloads\DarkCode_final.ts3_style
2015-10-29 08:01 - 2015-10-29 08:01 - 00143180 _____ C:\Users\Nerdy By Nerds\Downloads\The.Walking.Dead.S06E03.1080p.WEB-DL.Dual.Audio.Dublado.torrent
2015-10-28 23:39 - 2015-10-28 23:39 - 00141811 _____ C:\Users\Nerdy By Nerds\Downloads\[kat.cr]the.walking.dead.season.5.complete.1080p.web.dl.dd5.1.h.264.cyphanix.nl.en.subs.torrent

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-24 02:38 - 2014-11-08 17:23 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Skype
2015-11-24 02:37 - 2015-01-05 00:33 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent
2015-11-24 02:25 - 2014-11-06 23:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\TS3Client
2015-11-24 02:25 - 2011-03-26 02:54 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-24 02:18 - 2011-05-23 00:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-24 02:12 - 2014-02-14 16:12 - 00000322 _____ C:\Windows\Tasks\Funmoods.job
2015-11-24 01:40 - 2013-03-10 23:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-24 01:09 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-23 22:55 - 2011-02-13 00:09 - 01266005 ____N C:\Windows\WindowsUpdate.log
2015-11-23 22:53 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-23 22:53 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-23 22:43 - 2011-11-20 00:24 - 00000144 _____ C:\service.log
2015-11-23 22:42 - 2014-04-07 19:33 - 00000000 ____D C:\ProgramData\PMS
2015-11-23 22:42 - 2011-05-23 00:15 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-23 22:41 - 2013-02-12 20:10 - 00000444 ____H C:\Windows\Tasks\schedule!1143840799.job
2015-11-23 22:41 - 2011-11-20 00:55 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-11-23 22:41 - 2011-02-13 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-23 22:41 - 2011-02-13 12:11 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-23 22:41 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-20 20:40 - 2015-09-26 22:14 - 00157696 _____ C:\Windows\ERUNT.exe
2015-11-19 17:07 - 2013-08-10 12:16 - 00737390 _____ C:\Windows\system32\perfh00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00735432 _____ C:\Windows\system32\perfh013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00675688 _____ C:\Windows\system32\perfh00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00473428 _____ C:\Windows\system32\perfh00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00384278 _____ C:\Windows\system32\perfh00D.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00171272 _____ C:\Windows\system32\perfc00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00158472 _____ C:\Windows\system32\perfc00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00153100 _____ C:\Windows\system32\perfc013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00101518 _____ C:\Windows\system32\perfc00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00084756 _____ C:\Windows\system32\perfc00D.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00731980 _____ C:\Windows\system32\perfh010.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00146844 _____ C:\Windows\system32\perfc010.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00737650 _____ C:\Windows\system32\perfh00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00470948 _____ C:\Windows\system32\perfh001.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00149578 _____ C:\Windows\system32\perfc00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00094770 _____ C:\Windows\system32\perfc001.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00697272 _____ C:\Windows\system32\perfh007.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00149240 _____ C:\Windows\system32\perfc007.dat
2015-11-19 17:07 - 2009-07-14 06:13 - 07620544 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 02:13 - 2014-11-06 19:19 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\vlc
2015-11-19 00:12 - 2014-11-07 21:22 - 00001456 _____ C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-11-17 19:19 - 2015-03-12 00:51 - 00000000 ____D C:\temp
2015-11-14 14:11 - 2009-07-14 05:45 - 05215112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 02:03 - 2014-11-06 20:08 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe
2015-11-13 23:17 - 2014-11-08 15:29 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Battle.net
2015-11-13 20:43 - 2014-11-08 22:03 - 00000132 _____ C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-11-13 20:34 - 2014-11-06 17:55 - 00165760 _____ C:\Users\Nerdy By Nerds\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-13 15:34 - 2014-01-24 15:17 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-11-13 15:27 - 2014-01-24 15:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-12 17:52 - 2015-05-16 01:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 23:40 - 2013-03-10 23:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 23:40 - 2013-03-10 23:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 23:40 - 2011-06-14 23:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 19:13 - 2011-05-23 00:15 - 00004122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-08 19:13 - 2011-05-23 00:15 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-06 21:20 - 2015-09-10 12:32 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Foto Familien Album
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieUserList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieSiteList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieBrowserModeList
2015-11-05 00:10 - 2011-02-13 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-30 12:58 - 2011-02-13 16:37 - 00000000 ____D C:\ProgramData\Skype
2015-10-29 21:06 - 2014-11-07 13:54 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Audacity
2015-10-26 00:51 - 2014-11-06 17:54 - 00000000 ____D C:\Users\Nerdy By Nerds

==================== Files in the root of some directories =======

2014-11-08 22:03 - 2015-11-13 20:43 - 0000132 _____ () C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-11-07 21:22 - 2015-11-19 00:12 - 0001456 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-12-17 05:48 - 2015-10-11 10:13 - 0007168 _____ () C:\Users\Nerdy By Nerds\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 21:44 - 2014-11-10 21:44 - 0007605 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Resmon.ResmonCfg
2013-08-25 21:49 - 2013-08-25 21:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-13 16:38 - 2011-02-13 16:38 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-08-17 17:30 - 2011-08-17 17:31 - 0000000 _____ () C:\ProgramData\Yes

Some files in TEMP:
====================
C:\Users\Jeremy J. Erb\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\avgnt.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptjafqk.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2250463518738937912.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2379732162636497944.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna3653581951061083711.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\swt-win32-3349.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-20 15:56

==================== End of FRST.txt ============================
         
--- --- ---

--- --- ---

Alt 24.11.2015, 03:37   #2
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Addition.txt:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-11-2015
Ran by Nerdy By Nerds (2015-11-24 02:40:16)
Running from C:\Users\Nerdy By Nerds\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2011-02-12 23:09:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

7E281115A23343249B54 (S-1-5-21-1020473624-1478330774-1937670132-1004 - Limited - Enabled)
Administrator (S-1-5-21-1020473624-1478330774-1937670132-500 - Administrator - Disabled)
BE38876218914F369445 (S-1-5-21-1020473624-1478330774-1937670132-1005 - Limited - Enabled)
Guest (S-1-5-21-1020473624-1478330774-1937670132-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1020473624-1478330774-1937670132-1008 - Limited - Enabled)
Jeremy J. Erb (S-1-5-21-1020473624-1478330774-1937670132-1000 - Administrator - Enabled) => C:\Users\Jeremy J. Erb
Nerdy By Nerds (S-1-5-21-1020473624-1478330774-1937670132-1009 - Administrator - Enabled) => C:\Users\Nerdy By Nerds

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe After Effects CC (HKLM-x32\...\{317243C1-6580-4F43-AED7-37D4438C3DD5}) (Version: 12 - Adobe Systems Incorporated)
Adobe After Effects CS5 Third Party Content (HKLM-x32\...\{C0AA232E-BD1B-40B5-A176-A2BEB67FFAE1}) (Version: 10 - Adobe Systems Incorporated)
Adobe After Effects CS5 Third Party Royalty Content (HKLM-x32\...\{CD29B5CA-4727-4114-9AD9-25CCCE6E4014}) (Version: 10 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.0.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{288DB08D-0708-4A94-B055-55B99E39EB62}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Encore CS5 Third Party Royalty Content (HKLM-x32\...\{0E3C6C75-872D-4B0D-B0B2-31C717250691}) (Version: 5.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Media Encoder CS5 Dolby X64 (HKLM-x32\...\{5DDABB74-A879-4BE7-A4C6-FD41793942DB}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Media Encoder CS5 PCI X64 (HKLM-x32\...\{F9C71630-0EE3-475C-9E2B-ED95AE197DBD}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Premiere Pro CS5 Third Party Royalty Content (HKLM-x32\...\{565DE707-5798-4FC3-8DF6-0F58A348A9B0}) (Version: 5.0.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.02) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
Adobe Soundbooth CS5 Codecs (HKLM-x32\...\{DE5DE662-2ECB-4D93-967B-221FBCC8A736}) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Soundbooth CS5 Royalty Codecs (HKLM-x32\...\{F319804F-E3A4-4C02-8AEC-CB39A4F6447E}) (Version: 3.0 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)
Aimersoft DVD Ripper(Build 2.7.2.0) (HKLM-x32\...\Aimersoft DVD Ripper_is1) (Version:  - Aimersoft Software)
Amnesia - The Dark Descent  (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
ANNO 1404 - Königsedition (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 3.10.0000 - Ubisoft)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version: 1.0.9.9 - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version:  - )
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Auto Mouse Clicker v4.0 (HKLM-x32\...\{C83F056D-E3D5-4308-B3ED-9FAFA8ACF821}_is1) (Version:  - MurGee Softwares)
Avid EDL Manager (HKLM-x32\...\{830A8D89-D744-449C-ACE1-0A1A345D9B02}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid FilmScribe (HKLM-x32\...\{ED85F920-DC3C-44FD-80F3-93FA4C484039}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid Log Exchange (HKLM-x32\...\{B0AA273D-06D3-46F2-8E21-E395A7BFC731}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{06928D63-80CF-4563-9E36-0BA52FAD7A1F}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid MediaLog (HKLM-x32\...\{B204C364-9D67-4F5A-A54C-56ED809BF76F}) (Version: 28.0.1 - Avid Technology, Inc.)
Avira Savings Advisor (HKLM-x32\...\{A18A516C-AA41-46A9-92DB-60208917E442}) (Version: 1.5.14 - Avira)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield 3™ Open Beta (HKLM-x32\...\{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}) (Version: 1.0.0.0 - Electronic Arts)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blur Busters Strobe Util (HKLM-x32\...\{57BDAE81-2BE7-4ABA-8B03-1520FBF41AF9}) (Version: 1.0.0 - Blur Busters)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadband Internet Router (HKLM-x32\...\Template One Sample App) (Version:  - )
Brorsoft Video Converter Ver 1.1.1.3688 (HKLM-x32\...\{3231B80A-455C-497a-8425-3E44C006D76C}_is1) (Version:  - )
CamStudio (HKLM-x32\...\CamStudio) (Version:  - )
Camtasia Studio 7 (HKLM-x32\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.0.4 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.4.0.15 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.2.0.10 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.3.0.15 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.3.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.7 (HKLM-x32\...\DPP) (Version: 3.7.1.1 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.7.0.2 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.6.0.0 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3/E4/E5 Utility (HKLM-x32\...\WFTK) (Version: 3.4.0.2 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.4.1.11 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.2.11 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Click Bot (HKLM-x32\...\Click Bot) (Version:  - )
ContinueToSave (HKLM\...\{CFD13E7B-203C-2497-C67C-681E14321C8D}) (Version: 1.0 - ) <==== ATTENTION
ContinueToSave (HKLM\...\ContinueToSave) (Version: 1.0 - BetterSoft) <==== ATTENTION
continuetosave (HKLM-x32\...\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}) (Version:  - continue to save) <==== ATTENTION
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
DAEMON Tools Toolbar (HKLM-x32\...\DAEMON Tools Toolbar) (Version: 1.1.4.0024 - DT Soft Ltd) <==== ATTENTION
DayZ Commander (HKLM-x32\...\{BAD8395E-CE31-44AA-B9FE-A14FCD0ABE4A}) (Version: 0.9.110 - Dotjosh Studios)
DeialExpresss (HKLM-x32\...\{25F259ED-12F6-429F-5783-527C3E2F8586}) (Version:  - DeaLLExpress) <==== ATTENTION
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.2.3.0 - devolo AG)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.22 - DivX, LLC)
DVDFab 9.0.1.5 (08/12/2012) Qt (HKLM-x32\...\DVDFab 9_is1) (Version:  - Fengtao Software Inc.)
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Easy Video to Gif Converter V3.0 (HKLM-x32\...\Easy Video to Gif Converter_is1) (Version:  - corksot.com)
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
EasyTax 2012 AG 1.04 (HKLM-x32\...\3785-6780-1293-3574) (Version: 1.04 - HWI Solutions AG)
Elgato Game Capture HD (HKLM-x32\...\{A04501E6-ED4D-43C9-9D69-9C78224B5BDC}) (Version: 2.01.49.776 - Elgato Systems GmbH)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.0) (Version: 0.70.0 - ESN Social Software AB)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
ffdshow v1.3.4500 [2013-01-06] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4500.0 - )
ffdshow x64 v1.1.4284 [2012-01-28] (HKLM\...\ffdshow64_is1) (Version: 1.1.4284.0 - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.16.2.1 - Futuremark Corporation)
Game Capture HD v2.3.3.38 (HKLM-x32\...\Software_Elgato_Game Capture HD) (Version: 2.3.3.38 - Elgato Systems)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hauppauge HDPVR Scheduler (HKLM-x32\...\Hauppauge HDPVR Scheduler) (Version:  - Hauppauge Computer Works)
Hauppauge WinTV Scheduler (HKLM-x32\...\Hauppauge WinTV Scheduler) (Version:  - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM-x32\...\{46235FF7-2CBE-4A84-BEDA-87348D1F7850}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
iPhone Backup Extractor (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\iPhone Backup Extractor) (Version: 5.7.2.322 - Reincubate Ltd)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
JDownloader (HKLM-x32\...\JDownloader) (Version:  - AppWork UG (haftungsbeschränkt))
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
License Support (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Lime OCR 2.4.1 (HKLM-x32\...\Lime OCR) (Version: 2.4.1 - Lime Consultants)
Logitech Gaming Software 8.40 (HKLM\...\Logitech Gaming Software) (Version: 8.40.83 - Logitech Inc.)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Macro Recorder 5.7.8 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.7.8 - Jitbit Software)
Magic Bullet Looks (HKLM-x32\...\InstallShield_{AEC9311A-90AC-4083-B3CD-428C3BB3891C}) (Version: 1.4.0 - Red Giant Software)
Magic Bullet Looks (Version: 1.4.0 - Red Giant Software) Hidden
Magic Bullet LooksBuilder (HKLM-x32\...\Magic Bullet LooksBuilder) (Version:  - )
MAGIX Screenshare (HKLM-x32\...\{B1FEBE01-42BB-4D05-8180-6C5ABD91E97E}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{6FC5FA2A-1D40-41B9-920B-0F2A758E24A6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.0.32 - MAGIX AG)
MAGIX Video deluxe 17 Premium (x32 Version: 10.0.0.32 - MAGIX AG) Hidden
ManyCam 3.1.58 (HKLM-x32\...\ManyCam) (Version: 3.1.58 - ManyCam LLC)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
mkv2vob (HKLM-x32\...\{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}) (Version: 2.4.9 - 3r1c)
MKVToolNix 6.1.0 (HKLM-x32\...\MKVToolNix) (Version: 6.1.0 - Moritz Bunkus)
MotioninJoy DS3 driver version 0.6.0005 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0005 - www.motioninjoy.com)
Mozilla Firefox 41.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neat Video v2.0 Demo plug-in for Virtual Dub (HKLM-x32\...\Neat Video for VirtualDub_is1) (Version:  - Neat Video team, ABSoft)
Neat Video v3.0 Demo plug-in for VirtualDub (32-bit) (HKLM-x32\...\Neat Video for VirtualDub (32-bit)_is1) (Version:  - Neat Video team, ABSoft)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlueFX Premium Effects (HKLM-x32\...\NewBlueFX Premium Effects) (Version: 1.4 - NewBlue)
NVIDIA 3D Vision Controller Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenSubtitlesPlayer V4.X (HKLM-x32\...\OpenSubtitlesPlayer_is1) (Version:  - ALLCinema Ltd.)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
PDF OCR X Community Edition (HKLM-x32\...\ca.weblite.pdfocrx.CommunityEdition_is1) (Version: 2.0.8 - Web Lite Solutions Corp.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PDFMate Free PDF Merger 1.0.6 (HKLM-x32\...\PDFMate Free PDF Merger_is1) (Version:  - pdfmate.com)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PluralEyes® 2.0.4 for Premiere® Pro (HKLM-x32\...\{CE9ACBCA-B429-4DA7-9728-2A621C6479FA}_is1) (Version: 1.0 - Singular Software Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Project 64 version 2.1.0.1 (HKLM-x32\...\Project 64_is1) (Version: 2.1.0.1 - )
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Python 2.7.10 (Anaconda 2.3.0 64-bit) (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Python 2.7.10 (Anaconda 2.3.0 64-bit)) (Version: 2.3.0 - Continuum Analytics, Inc.)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Razer Lachesis (HKLM-x32\...\{CB4532F7-A1BD-46D2-9938-3E7D4656FB18}) (Version: 1.10.0000 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version:  - )
Scan Tailor (HKLM-x32\...\Scan Tailor) (Version:  - )
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SixaxisPairTool 0.2.3 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.2.3 - Dancing Pixel Studios)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version:  - )
Sony RAW Driver (HKLM-x32\...\{166FCF01-AC98-4288-A01C-90BEB808C059}) (Version: 2.0.00.08130 - Sony Corporation)
SparkoCam (HKLM-x32\...\SparkoCam) (Version: 2.2.7 - Sparkosoft)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Steam App 232890) (Version:  - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM-x32\...\Steam App 16700) (Version:  - Firefly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version:  - FireFly Studios)
Stronghold Kingdoms (HKLM-x32\...\Steam App 47410) (Version:  - FireFly Studios)
SunnyPage 2,1 (HKLM-x32\...\SunnyPage 2,1 2.1) (Version: 2.1 - Daylight)
SunnyPage 2,1 (x32 Version: 2.1 - Daylight) Hidden
Sweet Home 3D version 4.4 (HKLM\...\Sweet Home 3D_is1) (Version:  - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Movies(TM) (HKLM-x32\...\InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}) (Version: 1.0 - Activision)
The Movies(TM) (x32 Version: 1.0 - Activision) Hidden
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.0.3 - Electronic Arts)
Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
TwitchAlerts (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
UnderCoverXP 1.23 (HKLM-x32\...\UnderCoverXP_is1) (Version:  - Wicked & Wild Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.1.7-3 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 2.7.8 - Shark007)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
WinSpeed (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}) (Version:  - Jingo Ltd) <==== ATTENTION
XMind 6 (v3.5.1) (HKLM-x32\...\XMind_is1) (Version: 3.5.1.201411201906 - XMind Ltd.)
XviD v1.3.0 CVS (HKLM\...\XviD MPEG-4 Video Codec_is1) (Version:  - Celtic Druid)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

15-11-2015 19:00:05 Windows Backup
22-11-2015 19:00:05 Windows Backup

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2011-03-22 17:10 - 00004232 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com 
127.0.0.1 pagead2.googlesyndication.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 192.168.112.207
127.0.0.1 192.168.112.2o7.net
127.0.0.1 194.224.66.48
127.0.0.1 199.7.52.190
127.0.0.1 199.7.52.190:80
127.0.0.1 199.7.54.72
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73:443

There are 80 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {030BA824-1EBF-4741-BB03-AC0F8C9C29AC} - System32\Tasks\schedule!1143840799 => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exe <==== ATTENTION
Task: {03C829C4-EDE1-458E-8F84-72CEC5E1E1ED} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {15621ED5-31F4-4D4E-A807-6E295BF15837} - System32\Tasks\{FB5116E4-4389-41E1-9A09-780C90D44DEA} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {1EDD8CF6-4990-4EE8-9807-64A85F05AB8A} - System32\Tasks\Funmoods => C:\Users\Jeremy J. Erb\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {272575DA-5C7A-4A65-ABE2-F486D293560F} - System32\Tasks\{7F832122-3F8F-4D25-9882-326F0B4C3165} => C:\Users\Jeremy J. Erb\Desktop\Downloads\qc1150_x64.exe
Task: {2A2FA555-C451-4521-9A5D-DD13F0986D94} - System32\Tasks\{95760577-A417-454F-946F-F273DEF6AEF9} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II"
Task: {2F63A731-0606-4930-A601-2327BF3A8620} - System32\Tasks\Google Updater and Installer => C:\Users\Jeremy J. Erb\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3647D943-139B-4687-839E-25826213499F} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {5349671D-0EC9-4118-A29D-0923FA4ED050} - System32\Tasks\{910FE053-B1B9-4E3E-8194-E339FB2E55B1} => pcalua.exe -a "C:\Program Files (x86)\QuickTime Alternative\QTSystem\quicktime.cpl"
Task: {5CF9750A-6450-4EFD-9927-DC778DEDCA1F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {60BCEAB1-F0F3-4806-BC13-A5FE6AC06B32} - System32\Tasks\{BF4F3FA7-43C4-4E38-B12C-4D20E90DB4B5} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-10-14] (Skype Technologies S.A.)
Task: {68E90B7B-4B83-4297-85D3-D6458DF10048} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {71D1DF21-A84B-4D78-BA3B-615E0F1C6D57} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18] (Adobe Systems Incorporated)
Task: {77CD2ACA-8A4C-404B-BC8B-BB5F0A37B2B9} - System32\Tasks\ALL Update => C:\Program Files (x86)\OpenSubtitlesPlayer\ALLUpdate.exe [2011-08-17] ()
Task: {78D29609-E3A5-4F52-BFB5-7F07A1F03B74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {86276313-9C3C-48E4-B04A-A577D228FBE2} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {8749126C-4094-40D6-B31E-4895C6EBF6B6} - System32\Tasks\{C685A2F9-46D7-40D3-96D8-7441DA20A811} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings"
Task: {9558289A-AB6B-4D56-A301-8FF5147534CB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9855C353-7204-49C4-8577-9EE90EB63E90} - System32\Tasks\DivX online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2012-11-30] ()
Task: {A07A5FC7-47C3-4F0F-B511-10ED1F8BBF3F} - System32\Tasks\{472589C8-95B4-4B3D-89C8-F8B42E801DD2} => pcalua.exe -a D:\aocsetup.exe -d D:\ -c /autorun
Task: {A9FA069D-926D-4804-95D4-E41F29C8F627} - System32\Tasks\{4D2B59AF-6764-4EEA-9C74-43C49BE71FC3} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\quicktime\QuickTimeInstaller.exe" -d "C:\Users\Jeremy J. Erb\Desktop\quicktime"
Task: {C2BECC7A-CF6D-4BA9-B822-744AD1B542DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {C6B49042-7A95-4284-A5D6-F9385029CC05} - System32\Tasks\{83CE1FA0-67E1-46C6-9DC4-286B3FA41D9E} => pcalua.exe -a "C:\Users\Jeremy J. Erb\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCG7T566\ChromeSetup[1].exe" -d "C:\Users\Jeremy J. Erb\Desktop"
Task: {D2F2CD1A-7ABE-4378-B597-F4DF9E36BCED} - System32\Tasks\{04DE06AE-4EA6-4876-9BC2-D7357D945528} => C:\Program Files (x86)\Lime OCR\lime-ocr.exe [2009-12-14] (Lime Consultants)
Task: {D51A8F7F-5346-4104-AF50-E70883CB02A7} - System32\Tasks\{1F59B7F6-019B-43CA-85E9-7654146C0CE6} => pcalua.exe -a D:\Setup\Setup.exe -d D:\Setup
Task: {D7BC1633-093D-4305-864E-34609FB0E643} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {F09A251D-75C2-4E59-B680-390D878D5896} - System32\Tasks\aviraSWU => Cscript.exe "C:\Program Files (x86)\avira\Internet Explorer\swu.vbs"
Task: {F2C0F94D-473F-4834-BE74-9B57677BACCB} - System32\Tasks\{A98696DE-F69D-43AC-849F-62CF462DA4A1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.5.0.114.259/en/abandoninstall?page=tsPlugin&amp;installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {FBAD0F83-4AD2-4905-AEFC-07D438571815} - System32\Tasks\{6E5B4A10-2158-4ACD-9074-4242EDA117A2} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Downloads\vcredist_x86.exe" -d "C:\Users\Jeremy J. Erb\Desktop\Downloads"
Task: {FD3504AA-601B-48FE-A2E5-E34BD1EEDE39} - System32\Tasks\AdobeAAMUpdater-1.0-MATRIX-Jeremy J. Erb => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {FDAF9943-EAF8-4716-8677-23E57E4E0EC7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Funmoods.job => C:\Users\JEREMY~1.ERB\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\schedule!1143840799.job => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exeM/schedule /profile c:\programdata\bettersoft\continuetosave\1143840799.ini <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Anaconda Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Users\Nerdy By Nerds\Anaconda\Scripts\anaconda.bat" <==== ATTENTION
ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Wakari (in the cloud).lnk -> C:\Users\Nerdy By Nerds\Anaconda\pythonw.exe () -> -m webbrowser -t "hxxps://www.wakari.io/" <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2011-10-03 14:31 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-11-20 00:24 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2011-10-02 16:52 - 2013-10-31 15:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-23 20:11 - 2015-06-23 20:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2011-02-13 13:50 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2011-10-14 17:20 - 2011-06-06 13:23 - 01183096 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 12:34 - 2009-10-14 12:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2015-03-14 06:49 - 2015-03-14 06:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2011-11-20 00:24 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-04-18 12:59 - 2014-10-31 15:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-04-18 12:59 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 02140944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtCore4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 07704336 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtGui4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00968976 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtNetwork4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00475408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtOpenGL4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00363792 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtXml4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00199952 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtSql4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00027408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\SDL.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 11311888 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtWebKit4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00291600 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\phonon4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00028944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qgif4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00035088 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qico4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00138000 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qjpeg4.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 00181592 _____ () C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 00126464 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamFilter.dll
2014-04-02 14:57 - 2014-04-02 14:57 - 00014336 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamServer.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 11632640 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamLib.dll
2015-05-20 03:29 - 2015-05-20 03:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-01-11 23:45 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Nerdy By Nerds\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 16496456 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\PepperFlash\pepflashplayer.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2012-12-18 20:08 - 2012-12-18 20:08 - 14588632 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\NPSWF32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:DWq8NyBLbUmrYhkdKsN
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:WAD8mEFaKluOpOHzime
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:CCQZHaNqy9CftkQxXk97VvK
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temporary Internet Files:fHhhMOyoB8Xe79tna24YLG
AlternateDataStreams: C:\Users\Nerdy By Nerds\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\Control Panel\Desktop\\Wallpaper -> C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Jeremy J. Erb^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: DS3 Tool => C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe -mini
MSCONFIG\startupreg: Facebook Update => "C:\Users\Jeremy J. Erb\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: facemoods => "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: itype => "c:\Program Files\Microsoft IntelliType Pro\itype.exe"
MSCONFIG\startupreg: Lachesis => C:\Program Files (x86)\Razer\Lachesis\razerhid.exe
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: Logitech Vid => "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RAVCpl64.exe
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium\TrayServer.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe"  /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B3089B53-A18E-4423-83E4-E2548BB4FB3A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D904C0F-5692-4943-8F3C-308E83E4D84C}] => (Allow) LPort=2869
FirewallRules: [{E3F8EBB6-E140-4760-A57B-C762C512431F}] => (Allow) LPort=1900
FirewallRules: [{C13ECE6C-DA99-442A-8605-B5024E3F0A6E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{35E6B91E-A266-41D7-8B48-5FAA7474EE37}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3230E683-D14B-4C9E-9DAE-D5BAA114D5A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BAFA3D1E-3BB4-42AF-B20F-10494F59496A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A08C6421-CBFA-4102-9412-9B69F11C439E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2849588F-C80E-418B-B547-8BFE21093330}] => (Allow) LPort=443
FirewallRules: [{46661EA1-5DCE-4640-B86C-851D5B35D24C}] => (Allow) LPort=443
FirewallRules: [{8D0F4AE5-1103-4E6F-A7B5-B6D92B0DCCF8}] => (Allow) LPort=37674
FirewallRules: [{FE7E891E-A49F-48D4-A706-2F1E24BBA7E0}] => (Allow) LPort=37674
FirewallRules: [{A1F2BD87-36B1-4FFE-B8C5-B86E1307AC76}] => (Allow) LPort=37675
FirewallRules: [{7A5CF0EC-6C92-4905-B53B-A65FEFE14542}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E6655D3D-E4B9-4C36-80DD-361861D06D1D}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{DD6DEC08-1F91-45B0-8627-CF66CDE67920}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{F9F8D5A2-0602-4D18-9FA4-25D22CB411F2}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{10C827B3-9E49-408E-8DBB-FCFC3E097254}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{46763EE7-65D0-486B-A95F-4ED62BEC9DAE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{0CC6DD64-524C-41CD-B9C6-037013484FAB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{16C78BD6-573E-48FB-A5E7-149DC022CAC9}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{8BDE7445-4064-448C-90A8-C79DAEB81A81}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{A0DDD748-F67F-4E08-8702-9E204771CD52}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{B56AA11F-94C5-43AB-85DC-EC65A292A32D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{E2851692-182C-4D46-9399-1ED26334DBBE}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{558CE498-087D-4834-BCDA-AC92FE1B9A8D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{E05D69B4-5B46-46F9-BF6E-F90879B469C0}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{0D867BC3-352B-42B5-998F-914CA8358F47}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{FA588CB5-D82C-4283-9727-7E754618F4E5}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{7A085870-5072-4966-A9F2-9A53C59BAEF4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{139682CD-AE8C-43C5-825D-8F7FFF6C1544}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6482A75B-C655-436E-8CB8-714F8F49E583}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3DDE1B71-821B-42EC-8D38-12FACFD5F0FA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{509842BD-C49F-4ED4-9E23-40316B5D2505}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5032B6EC-EB39-48CC-A349-013A0269064E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E6327220-3954-4078-B800-D2002E6C8967}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B7341029-635E-4D5A-86FF-7B08B1AD2275}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E067F01F-214A-4A88-9465-C87D6CA5355A}] => (Allow) LPort=1542
FirewallRules: [{0672198B-A6C6-4866-BCBD-0F660326EF58}] => (Allow) LPort=1542
FirewallRules: [{F832F4C4-7E03-43DF-AADF-1F07BC0E99BB}] => (Allow) LPort=53
FirewallRules: [{D4ED452C-8340-411B-9919-1254187078C4}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5F623167-EAF0-4CE2-A1A0-91ACAE68A30E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{50AB2368-7A48-4233-BC5B-A30007C01AA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A6F86BBB-AFAA-47B0-A1D9-FF8CCBD5843A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B3C1F393-6978-4258-9F48-EE735A4571DB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{78380C2C-D685-4316-84E3-E5828A5E00DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FC91A540-2416-4EDE-A070-A9A41A8A6571}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{889E6F14-57C7-4708-BCC7-FD61F4AAD7C5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{CF5ABD4F-11D6-46C2-A56B-FF14D105CB29}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{320DD975-38FF-403B-A3C7-11BD40E835EF}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{921C7B44-3BE2-4131-94BD-66DD3D5057E7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{EF2D6E1F-8AFD-4095-B53F-3E0A739BD9BE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{857A5521-2C35-4540-A2A9-31F8A3015D62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{AD220482-DEE5-4658-B2D8-076937135A9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [TCP Query User{268D900A-062B-45AF-9290-DA73D8A93F34}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{A3ED1398-191F-444F-AAEB-7BDDBAF3D41B}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [{5DE3A298-10DF-48CA-8DF7-48975AE72916}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{B3B83EC8-9825-432B-BFF8-E401D2E7BD50}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2CC8427D-0D11-4CEC-890A-4D78C51F68EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{7EEA9D61-1060-444E-8E51-46BE4D847A34}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [TCP Query User{33A59297-AAFD-47B7-8F7E-2E5B64EEB830}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{C8C65F90-6D28-4A9A-BCA6-3EE8B75528AF}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{53623AFE-2E23-45A7-BD98-AF3702E7193E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [UDP Query User{F8F088A7-9ECB-45FE-9F8D-023B649088B3}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [TCP Query User{6F272D99-A5BC-4EA5-A435-365C3396B27E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [UDP Query User{3898B6F0-D702-483F-8D81-EBAB50E1C10D}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [TCP Query User{CD49B4D6-6CA6-4EA7-8388-D4556D18D5F4}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [UDP Query User{F60A2571-7427-44A7-A6A1-861184CB2F75}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [TCP Query User{490A7CC4-C50A-4150-BEA4-7D74D376515F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{45F48BBB-7111-4818-8172-C2DB431C9287}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{308C6B17-DAA3-494C-B667-F580F309FD58}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C477CCFA-35F3-49D5-B21E-3280270F9BA4}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{7C587571-A3EA-4D36-816B-00CC0E873E18}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B0D33493-F397-4A7C-8DB1-168CE9BE2068}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8D309D6F-3B1E-4F3C-9D8F-F9E3D755911E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{33D88020-980C-48F3-A984-DE4F2118B8CE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{CFAA433F-C550-476E-83B8-B4EEA81B2D9E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{A5812739-171F-4670-99BD-115B41973A72}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{A559722E-5EDF-4645-BFA7-80ABEC58E616}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{DF905607-22CE-4A99-B825-7E7AA930DC19}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{F33ECC4C-2B38-43B8-B79B-EB196316A26E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6400F51C-0AAB-44CE-BBBD-96F50F89D618}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{1A8CBDC6-3352-48DC-8F35-4751B55DC78F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F7CE9C11-4B36-4E7C-9478-6A9962CE73F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B7CA082-31A9-4280-A4E0-9FA986E8EB39}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{86B1782C-D965-4E6A-9507-2218D5F8E002}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{01E68ACC-9405-4076-869D-1F8B12B6EE69}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{213C180E-0C7F-46A3-A1EF-FC3D6451726A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A9D2B053-42CC-446F-8497-ECA45ED6677E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0067E024-6C09-4645-9FBB-28D7FC8F8AFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B07D1D8D-507C-4853-879A-E5AB7C11D441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1FAC999B-3895-4C49-BF04-C8A07BA31E6C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{817CFB99-FC3C-4B67-8C34-A4ED21FD2522}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{F24096C2-395A-44C6-8735-0C086989479A}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{A374E69E-E34B-4CA4-8AEF-CDCC5EED7531}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{570E5612-75E4-44E9-A29E-9BC79D5D6008}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{6C3FEF28-30B1-424A-A38D-19966FFBD843}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{72270E0E-7AA7-4C3E-906F-2370041855E5}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{60393738-78EF-4929-BA5B-164294E01C36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{B171A631-B783-4E4D-999F-F452B98B3431}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{8AF5319D-70EA-4257-B8BA-E830F4F60818}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{D25A3A56-32C1-4C00-A044-15DD19D3CC70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [TCP Query User{4DFB828C-533E-4E75-9591-FB6DE29BFAFC}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{70915809-3C26-4448-B5C5-928E914444E8}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [TCP Query User{612A565C-0DAD-4BDE-B291-679E062E835C}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [UDP Query User{D066544D-E8EC-4AA3-8B5F-A0993A772D64}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [{91DE01F1-5D35-425D-A3A5-02B84BCEBBF8}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{834EA968-90AC-474C-A55F-7C2DFD793FCF}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{26A8DCE8-1F8E-4057-ADED-46063E29E46E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{61EAE32D-A30F-49CB-9A74-F987499D65B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{8B54B150-2580-439A-94C9-EE29932615B1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{140FB3D5-989F-44F7-A496-B4C3D88ADC5A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{D70E7A5C-C964-4E52-9F27-EFAC27D2BDE0}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{CE6B7F3C-4745-4135-B63F-C70AD81E5C1B}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{7E517574-BF1A-4F8A-A45B-57102F53C094}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{33EF6873-EF32-4378-8524-2593FB62D7B2}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{0AA28FA5-90DA-48FC-8176-F583B92551BE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{C167C2E4-E3D3-4BF8-A5DB-5EB666F19D5E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{7545ED54-35F4-4C9E-B411-97A081BBA2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{07BA8574-3EC9-4912-A3F8-A3D41B080007}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{942E330D-3678-40E4-9BF8-BA625830E639}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{A5B5245F-1EAE-4D36-BC01-98442D1AE5DA}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{708E1B13-703A-4450-9BE9-67950874C758}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{3FC0CBC2-70B1-4EF8-9906-D24CF2334EF4}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{D5F51D91-8A76-474E-9FC1-9103DE29D51E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{E5A3D1EF-2042-4A07-8B29-D88D38D96B0A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{898B97AB-7D6E-416C-B194-C0179BBF9F69}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{C7818B31-D93E-4C21-B661-039568AB34C5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{37666EE0-052A-43F4-B000-4626C71FE8EF}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{CFB49C33-DABC-4923-A619-01EB6361AADE}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{56C078AA-9E52-4DA5-AFB5-231C285325F1}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0AF347F8-3417-480C-A523-359F337CB9E5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{14D7CAB3-ED49-473D-B758-74AD2D235F5B}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{241AA8F9-366F-49CA-A9D7-EE64E7E3208D}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{133AC2D7-1DCD-478B-BAFB-33CAB293E6CD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6675A05A-5F86-4BDC-B36E-21D47F3DA3CA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4568144A-F313-420D-9783-83FD94F1701D}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{64FCD208-E752-4E2F-A14B-0C8168611060}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{4503E5D3-48FB-491E-902D-6C52383B21C1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{EA131BF6-F6EA-439C-858B-52FB2C05859E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{3D1F4E66-B650-4B06-8C35-5D4EFB2F28F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{B0A9CC4C-B368-4058-81C9-6C06E3E46309}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [TCP Query User{61839F24-6C8E-4390-9103-B4E00D392893}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{2F7C1461-B677-492E-982D-1E50C743CB8A}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{D50B9E70-35C6-4D68-B130-524BE2E7C832}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{92929856-8DD7-49E8-BCCE-FB341943C55A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [TCP Query User{AA4BCFBD-99F5-4F61-8DCB-6A475F69D846}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2B5EF94F-3A91-4278-9CAE-7388545B9E9D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{EA73ABF4-BE8B-43FC-9B45-965F793CB45B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D6BCD7A3-6759-49ED-8D43-70B174B052F9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9A811C76-3ECC-4556-B3C7-E0BD13CB043A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C9D33F34-8363-4FA7-8895-7A529AA32590}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{C82CF0EC-BA56-439E-A88E-380DEC6F84D8}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CFD504F0-E120-496D-B6EB-0BA17BBB979B}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [{F56AA18C-8E42-4AD6-ACF4-141A3A1779B8}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{75D8EF84-478B-4BD0-8B79-A2250DFADF5B}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [TCP Query User{35C610BD-4772-4FC3-BB1D-5BE439559B28}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{30B9A0ED-72B4-4957-92DF-1EC959D2913D}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{714CBFCA-8A91-42AF-A7F1-72AC0E143F03}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CDBF40EC-26B7-4B28-A231-D5A68F106425}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [{A930F9BC-EE63-4D3D-9A31-7F5AF164B1F3}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{769D782C-743E-4466-8210-C39597B86982}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{0AC09FDD-F6E9-48B7-B345-55635E6ED446}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{615EFD5A-3553-4428-9F6E-534433654BE6}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{9DA4E55A-4B01-42FD-BBEE-D24F524D2BAB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{2BEB840B-1B88-40DB-BB64-6AF73A8F2A14}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4374BC2-E39C-4EF1-AABC-AF0CD94DE1EB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{6C58B778-C50F-4C03-9020-4153EEDD0E40}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{3E19199C-A6CE-493A-A5F6-93CFB382ED56}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8CB7949C-B8BC-4F23-A915-1C049BA634C3}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6DC8547C-7C40-4336-9747-0C8362ACEA88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{C95AF62A-F728-473F-AB7D-292292C32FAE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{F96D0567-41A0-427C-A121-0E7EBC92888F}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{FE16D034-8D76-4283-A933-878885CFD05E}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{7D4F5D8B-3F24-42ED-9A37-542017DCDE84}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{35B082F1-FAFC-42C2-9DB5-DC3FD961672D}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{935C2433-8086-4728-8930-9704C543300D}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{14A7A8D0-0BD1-4665-A424-4CFA3288B397}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{3AC9BFE3-6A72-46C7-B079-20B4C8BE9A76}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{1CBCA031-1D3D-45F0-9844-142EF4CBE220}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{6139767E-D08E-4345-A3AF-BEC5206405EC}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{7E5AD342-B1A2-437C-BB0F-E2FEAFB15619}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{4A91C949-A6E3-4FB3-8E65-9429F220F0ED}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{E279F273-BCF3-4363-8677-0BAAD1E58BAF}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{04818325-9BA0-4230-99BF-704A03D5A91C}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{ACF1BE82-F196-4FF4-8A94-17C816FCA113}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{AAEAF55C-F675-4F1C-9B78-7360FFF10B6E}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{29AF9C9A-4025-4267-83F7-1836DE46F489}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{2B80A7F5-9D0C-4684-BD0D-A16483101C5A}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{1098A087-9F4A-4A7C-807C-309DCB1400C0}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{DDF28D39-8364-4F49-9B30-DEE4C01D7BE7}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{4C767AFA-D976-4A2E-B34B-CAA85B865EC9}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{600BD4D4-7789-4971-808A-9177412E7066}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4587B165-D351-40AF-8A29-207EFBBB93A9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C0FD4A12-2BC8-48C7-A292-166D1E218DBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BD5F8C6B-D73A-4E00-A7E4-59ACE92C4270}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [UDP Query User{F3018188-720E-49C7-BF48-6634E366FFBA}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [{105654C7-8991-4FBE-8007-F3D1FFE252DA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{1FE79A1B-A207-4B01-9CFC-6DB75229337F}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4727EFDF-9EFC-4B00-B244-FF5804B0BBEB}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{18DB1C7D-E0E6-43E7-98B5-0FFC6BCDF9FA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [TCP Query User{FE2DB56E-A1A4-4F7C-B46C-3FD52FCE9C8B}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9933450E-9580-4658-9BD4-3B45609020D1}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{562B43D0-3D99-4A53-BD9F-E3C2ADB787AA}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{354359F5-607D-44D5-88B9-CAFB845DB3DB}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{8978604F-5CCA-4731-B39F-085C58CD20BE}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{CBD07C30-193D-4F81-A499-F296AD7ECC7E}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{BC1D5345-4089-4CB4-993A-47FFA6A7327B}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{18A2105B-F91A-4A04-9E1C-27D44A702B6E}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EF8AF549-382B-4390-BD4E-231F42EAAC8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/20/2015 08:08:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (11/17/2015 08:24:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: MATRIX)
Description: Product: Adobe Reader XI - Deutsch - Update '{AC76BA86-7AD7-0000-2550-7A8C40011013}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (11/15/2015 07:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xae0
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/14/2015 02:47:33 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (11/13/2015 05:28:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (11/13/2015 05:28:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x898
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/11/2015 03:48:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xb78
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/10/2015 01:18:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xa8c
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/09/2015 05:21:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xad4
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/06/2015 01:22:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x8f4
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3


System errors:
=============
Error: (11/23/2015 10:43:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
Aspi32

Error: (11/23/2015 10:42:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (11/23/2015 03:03:46 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The PS3 Media Server service terminated with service-specific error %%143.

Error: (11/23/2015 00:43:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/23/2015 00:43:21 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/23/2015 00:38:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/23/2015 00:38:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/22/2015 03:32:50 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (11/22/2015 03:32:00 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
Aspi32

Error: (11/22/2015 01:22:14 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The PS3 Media Server service terminated with service-specific error %%143.


CodeIntegrity:
===================================
  Date: 2011-02-13 18:09:10.937
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2011-02-13 17:34:39.964
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2011-02-13 17:00:03.729
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2011-02-13 14:28:49.982
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: AMD Phenom(tm) II X6 1090T Processor
Percentage of memory in use: 58%
Total physical RAM: 8189.55 MB
Available physical RAM: 3416.83 MB
Total Virtual: 16377.31 MB
Available Virtual: 10547.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:596.07 GB) (Free:25.16 GB) NTFS
Drive d: (MOVIES) (CDROM) (Total:1.89 GB) (Free:0 GB) UDF
Drive j: (2TerraDrive) (Fixed) (Total:1863.01 GB) (Free:1509.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3AE3C223)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 11821181)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
         
__________________


Alt 24.11.2015, 03:50   #3
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



TDSSKiller.txt Teil 1:

Code:
ATTFilter
02:30:41.0373 0x234c  TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
02:30:46.0118 0x234c  ============================================================
02:30:46.0118 0x234c  Current date / time: 2015/11/24 02:30:46.0118
02:30:46.0118 0x234c  SystemInfo:
02:30:46.0118 0x234c  
02:30:46.0118 0x234c  OS Version: 6.1.7601 ServicePack: 1.0
02:30:46.0118 0x234c  Product type: Workstation
02:30:46.0118 0x234c  ComputerName: MATRIX
02:30:46.0118 0x234c  UserName: Nerdy By Nerds
02:30:46.0118 0x234c  Windows directory: C:\Windows
02:30:46.0118 0x234c  System windows directory: C:\Windows
02:30:46.0118 0x234c  Running under WOW64
02:30:46.0118 0x234c  Processor architecture: Intel x64
02:30:46.0118 0x234c  Number of processors: 6
02:30:46.0118 0x234c  Page size: 0x1000
02:30:46.0118 0x234c  Boot type: Normal boot
02:30:46.0118 0x234c  ============================================================
02:30:48.0045 0x234c  KLMD registered as C:\Windows\system32\drivers\47763919.sys
02:30:48.0316 0x234c  System UUID: {AFAD6365-08C2-010F-2D4A-5B2154B481AD}
02:30:48.0690 0x234c  Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
02:30:48.0690 0x234c  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:30:48.0694 0x234c  ============================================================
02:30:48.0694 0x234c  \Device\Harddisk1\DR1:
02:30:48.0694 0x234c  MBR partitions:
02:30:48.0694 0x234c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
02:30:48.0694 0x234c  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A824800
02:30:48.0694 0x234c  \Device\Harddisk0\DR0:
02:30:48.0694 0x234c  MBR partitions:
02:30:48.0694 0x234c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
02:30:48.0694 0x234c  ============================================================
02:30:48.0720 0x234c  C: <-> \Device\Harddisk1\DR1\Partition2
02:30:48.0740 0x234c  J: <-> \Device\Harddisk0\DR0\Partition1
02:30:48.0740 0x234c  ============================================================
02:30:48.0740 0x234c  Initialize success
02:30:48.0740 0x234c  ============================================================
02:31:40.0184 0x2098  ============================================================
02:31:40.0184 0x2098  Scan started
02:31:40.0184 0x2098  Mode: Manual; SigCheck; TDLFS; 
02:31:40.0184 0x2098  ============================================================
02:31:40.0184 0x2098  KSN ping started
02:31:40.0422 0x2098  KSN ping finished: true
02:31:42.0161 0x2098  ================ Scan system memory ========================
02:31:42.0161 0x2098  System memory - ok
02:31:42.0161 0x2098  ================ Scan services =============================
02:31:42.0300 0x2098  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
02:31:42.0357 0x2098  1394ohci - ok
02:31:42.0466 0x2098  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
02:31:42.0480 0x2098  ACDaemon - ok
02:31:42.0532 0x2098  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
02:31:42.0557 0x2098  ACPI - ok
02:31:42.0589 0x2098  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
02:31:42.0650 0x2098  AcpiPmi - ok
02:31:42.0738 0x2098  [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:31:42.0746 0x2098  AdobeARMservice - ok
02:31:42.0877 0x2098  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:31:42.0890 0x2098  AdobeFlashPlayerUpdateSvc - ok
02:31:42.0935 0x2098  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
02:31:42.0961 0x2098  adp94xx - ok
02:31:42.0983 0x2098  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
02:31:42.0998 0x2098  adpahci - ok
02:31:43.0009 0x2098  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
02:31:43.0021 0x2098  adpu320 - ok
02:31:43.0060 0x2098  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
02:31:43.0098 0x2098  AeLookupSvc - ok
02:31:43.0146 0x2098  [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
02:31:43.0153 0x2098  Afc - ok
02:31:43.0222 0x2098  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
02:31:43.0291 0x2098  AFD - ok
02:31:43.0330 0x2098  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
02:31:43.0339 0x2098  agp440 - ok
02:31:43.0359 0x2098  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
02:31:43.0412 0x2098  ALG - ok
02:31:43.0452 0x2098  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
02:31:43.0460 0x2098  aliide - ok
02:31:43.0491 0x2098  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
02:31:43.0499 0x2098  amdide - ok
02:31:43.0520 0x2098  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
02:31:43.0558 0x2098  AmdK8 - ok
02:31:43.0574 0x2098  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
02:31:43.0598 0x2098  AmdPPM - ok
02:31:43.0645 0x2098  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
02:31:43.0655 0x2098  amdsata - ok
02:31:43.0688 0x2098  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
02:31:43.0700 0x2098  amdsbs - ok
02:31:43.0741 0x2098  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
02:31:43.0749 0x2098  amdxata - ok
02:31:43.0834 0x2098  [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID           C:\Windows\system32\drivers\appid.sys
02:31:43.0930 0x2098  AppID - ok
02:31:43.0985 0x2098  [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
02:31:44.0017 0x2098  AppIDSvc - ok
02:31:44.0052 0x2098  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
02:31:44.0100 0x2098  Appinfo - ok
02:31:44.0201 0x2098  [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:31:44.0209 0x2098  Apple Mobile Device Service - ok
02:31:44.0255 0x2098  [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
02:31:44.0261 0x2098  AppleCharger - ok
02:31:44.0296 0x2098  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
02:31:44.0303 0x2098  AppleChargerSrv - ok
02:31:44.0336 0x2098  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
02:31:44.0385 0x2098  AppMgmt - ok
02:31:44.0406 0x2098  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
02:31:44.0416 0x2098  arc - ok
02:31:44.0457 0x2098  [ 29E7252FA743B15BCE1A2245C5643A02, 7008FA6004AB9E4FBC410EAD8929F97056386DD65045F05059ADF436FB655FAD ] archlp          C:\Windows\syswow64\drivers\archlp.sys
02:31:44.0467 0x2098  archlp - ok
02:31:44.0488 0x2098  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
02:31:44.0497 0x2098  arcsas - ok
02:31:44.0535 0x2098  Aspi32 - ok
02:31:44.0623 0x2098  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
02:31:44.0634 0x2098  aspnet_state - ok
02:31:44.0645 0x2098  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
02:31:44.0749 0x2098  AsyncMac - ok
02:31:44.0787 0x2098  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
02:31:44.0794 0x2098  atapi - ok
02:31:44.0850 0x2098  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:31:44.0925 0x2098  AudioEndpointBuilder - ok
02:31:44.0942 0x2098  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
02:31:44.0962 0x2098  AudioSrv - ok
02:31:45.0004 0x2098  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
02:31:45.0094 0x2098  AxInstSV - ok
02:31:45.0127 0x2098  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
02:31:45.0186 0x2098  b06bdrv - ok
02:31:45.0209 0x2098  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
02:31:45.0239 0x2098  b57nd60a - ok
02:31:45.0277 0x2098  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
02:31:45.0316 0x2098  BDESVC - ok
02:31:45.0339 0x2098  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
02:31:45.0392 0x2098  Beep - ok
02:31:45.0445 0x2098  [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
02:31:45.0467 0x2098  BEService - detected UnsignedFile.Multi.Generic ( 1 )
02:31:45.0659 0x2098  BEService ( UnsignedFile.Multi.Generic ) - warning
02:31:45.0941 0x2098  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
02:31:46.0001 0x2098  BFE - ok
02:31:46.0058 0x2098  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
02:31:46.0222 0x2098  BITS - ok
02:31:46.0231 0x2098  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
02:31:46.0255 0x2098  blbdrive - ok
02:31:46.0315 0x2098  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:31:46.0347 0x2098  Bonjour Service - ok
02:31:46.0384 0x2098  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
02:31:46.0428 0x2098  bowser - ok
02:31:46.0456 0x2098  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:31:46.0550 0x2098  BrFiltLo - ok
02:31:46.0565 0x2098  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:31:46.0602 0x2098  BrFiltUp - ok
02:31:46.0641 0x2098  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
02:31:46.0679 0x2098  Browser - ok
02:31:46.0704 0x2098  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
02:31:46.0752 0x2098  Brserid - ok
02:31:46.0771 0x2098  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
02:31:46.0823 0x2098  BrSerWdm - ok
02:31:46.0845 0x2098  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
02:31:46.0879 0x2098  BrUsbMdm - ok
02:31:46.0892 0x2098  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
02:31:46.0921 0x2098  BrUsbSer - ok
02:31:46.0943 0x2098  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
02:31:46.0964 0x2098  BTHMODEM - ok
02:31:46.0990 0x2098  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
02:31:47.0027 0x2098  bthserv - ok
02:31:47.0185 0x2098  [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
02:31:47.0238 0x2098  c2cautoupdatesvc - ok
02:31:47.0311 0x2098  [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
02:31:47.0375 0x2098  c2cpnrsvc - ok
02:31:47.0396 0x2098  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
02:31:47.0433 0x2098  cdfs - ok
02:31:47.0491 0x2098  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
02:31:47.0529 0x2098  cdrom - ok
02:31:47.0577 0x2098  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
02:31:47.0613 0x2098  CertPropSvc - ok
02:31:47.0631 0x2098  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
02:31:47.0666 0x2098  circlass - ok
02:31:47.0723 0x2098  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
02:31:47.0748 0x2098  CLFS - ok
02:31:47.0808 0x2098  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:31:47.0817 0x2098  clr_optimization_v2.0.50727_32 - ok
02:31:47.0873 0x2098  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:31:47.0882 0x2098  clr_optimization_v2.0.50727_64 - ok
02:31:47.0961 0x2098  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:31:47.0972 0x2098  clr_optimization_v4.0.30319_32 - ok
02:31:48.0011 0x2098  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:31:48.0023 0x2098  clr_optimization_v4.0.30319_64 - ok
02:31:48.0047 0x2098  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
02:31:48.0082 0x2098  CmBatt - ok
02:31:48.0113 0x2098  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
02:31:48.0120 0x2098  cmdide - ok
02:31:48.0183 0x2098  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
02:31:48.0213 0x2098  CNG - ok
02:31:48.0224 0x2098  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
02:31:48.0232 0x2098  Compbatt - ok
02:31:48.0285 0x2098  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
02:31:48.0317 0x2098  CompositeBus - ok
02:31:48.0330 0x2098  COMSysApp - ok
02:31:48.0343 0x2098  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
02:31:48.0351 0x2098  crcdisk - ok
02:31:48.0396 0x2098  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
02:31:48.0429 0x2098  CryptSvc - ok
02:31:48.0482 0x2098  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
02:31:48.0537 0x2098  CSC - ok
02:31:48.0587 0x2098  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
02:31:48.0649 0x2098  CscService - ok
02:31:48.0698 0x2098  [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
02:31:48.0706 0x2098  dc3d - ok
02:31:48.0756 0x2098  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
02:31:48.0807 0x2098  DcomLaunch - ok
02:31:48.0862 0x2098  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
02:31:48.0934 0x2098  defragsvc - ok
02:31:49.0322 0x2098  [ 541C3C58BAB622549E8F96E7E88F71AA, 79D6710673B4F205B3918A14DF58B0933E2A631D5FF8C10D06C91ABD2D50BC7B ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
02:31:49.0432 0x2098  DevoloNetworkService - ok
02:31:49.0478 0x2098  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
02:31:49.0515 0x2098  DfsC - ok
02:31:49.0578 0x2098  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
02:31:49.0588 0x2098  dg_ssudbus - ok
02:31:49.0641 0x2098  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
02:31:49.0712 0x2098  Dhcp - ok
02:31:49.0843 0x2098  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
02:31:49.0934 0x2098  DiagTrack - ok
02:31:49.0957 0x2098  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
02:31:50.0003 0x2098  discache - ok
02:31:50.0041 0x2098  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
02:31:50.0051 0x2098  Disk - ok
02:31:50.0088 0x2098  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
02:31:50.0152 0x2098  Dnscache - ok
02:31:50.0204 0x2098  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
02:31:50.0243 0x2098  dot3svc - ok
02:31:50.0281 0x2098  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
02:31:50.0318 0x2098  DPS - ok
02:31:50.0364 0x2098  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
02:31:50.0399 0x2098  drmkaud - ok
02:31:50.0450 0x2098  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
02:31:50.0461 0x2098  dtsoftbus01 - ok
02:31:50.0519 0x2098  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
02:31:50.0554 0x2098  DXGKrnl - ok
02:31:50.0578 0x2098  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
02:31:50.0617 0x2098  EapHost - ok
02:31:50.0718 0x2098  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
02:31:50.0861 0x2098  ebdrv - ok
02:31:50.0916 0x2098  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS             C:\Windows\System32\lsass.exe
02:31:50.0954 0x2098  EFS - ok
02:31:50.0993 0x2098  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
02:31:51.0054 0x2098  ehRecvr - ok
02:31:51.0075 0x2098  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
02:31:51.0120 0x2098  ehSched - ok
02:31:51.0161 0x2098  [ 2E6CE12D16B40DD96B4EBAFFAE79742D, E279713284279459671AEE7B86120BFA4C285A1ED721CFAEE2D6B8579518EA49 ] ElgatoGC656Y    C:\Windows\system32\Drivers\ElgatoGC656.sys
02:31:51.0169 0x2098  ElgatoGC656Y - ok
02:31:51.0220 0x2098  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
02:31:51.0245 0x2098  elxstor - ok
02:31:51.0285 0x2098  [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64        C:\Windows\system32\DRIVERS\ENTECH64.sys
02:31:51.0293 0x2098  ENTECH64 - ok
02:31:51.0332 0x2098  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
02:31:51.0353 0x2098  ErrDev - ok
02:31:51.0442 0x2098  [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
02:31:51.0449 0x2098  ES lite Service - ok
02:31:51.0502 0x2098  [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv           C:\Windows\etdrv.sys
02:31:51.0508 0x2098  etdrv - ok
02:31:51.0548 0x2098  [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
02:31:51.0580 0x2098  EtronHub3 - ok
02:31:51.0618 0x2098  [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
02:31:51.0648 0x2098  EtronXHCI - ok
02:31:51.0693 0x2098  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
02:31:51.0746 0x2098  EventSystem - ok
02:31:51.0791 0x2098  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
02:31:51.0831 0x2098  exfat - ok
02:31:51.0861 0x2098  Fabs - ok
02:31:51.0892 0x2098  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
02:31:51.0936 0x2098  fastfat - ok
02:31:52.0005 0x2098  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
02:31:52.0061 0x2098  Fax - ok
02:31:52.0066 0x2098  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
02:31:52.0091 0x2098  fdc - ok
02:31:52.0116 0x2098  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
02:31:52.0167 0x2098  fdPHost - ok
02:31:52.0182 0x2098  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
02:31:52.0224 0x2098  FDResPub - ok
02:31:52.0229 0x2098  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
02:31:52.0237 0x2098  FileInfo - ok
02:31:52.0249 0x2098  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
02:31:52.0290 0x2098  Filetrace - ok
02:31:52.0387 0x2098  [ FFF1130F7C9FA01D093A1EDFC5CCE8FC, 159EAA1893D871C309A063829CB3BC51A019FBCA1E07530B5CA1A382B2CCAF61 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
02:31:52.0499 0x2098  FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic ( 1 )
02:31:52.0611 0x2098  Detect skipped due to KSN trusted
02:31:52.0612 0x2098  FirebirdServerMAGIXInstance - ok
02:31:52.0628 0x2098  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
02:31:52.0663 0x2098  flpydisk - ok
02:31:52.0702 0x2098  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
02:31:52.0718 0x2098  FltMgr - ok
02:31:52.0787 0x2098  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
02:31:52.0861 0x2098  FontCache - ok
02:31:52.0924 0x2098  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:31:52.0932 0x2098  FontCache3.0.0.0 - ok
02:31:52.0946 0x2098  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
02:31:52.0955 0x2098  FsDepends - ok
02:31:52.0989 0x2098  [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
02:31:52.0996 0x2098  fssfltr - ok
02:31:53.0088 0x2098  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
02:31:53.0141 0x2098  fsssvc - ok
02:31:53.0179 0x2098  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
02:31:53.0187 0x2098  Fs_Rec - ok
02:31:53.0232 0x2098  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
02:31:53.0246 0x2098  fvevol - ok
02:31:53.0268 0x2098  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
02:31:53.0278 0x2098  gagp30kx - ok
02:31:53.0330 0x2098  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
02:31:53.0336 0x2098  gdrv - ok
02:31:53.0382 0x2098  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:31:53.0388 0x2098  GEARAspiWDM - ok
02:31:53.0443 0x2098  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
02:31:53.0501 0x2098  gpsvc - ok
02:31:53.0588 0x2098  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:53.0597 0x2098  gupdate - ok
02:31:53.0630 0x2098  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:53.0638 0x2098  gupdatem - ok
02:31:53.0686 0x2098  [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64        C:\Windows\GVTDrv64.sys
02:31:53.0693 0x2098  GVTDrv64 - ok
02:31:53.0707 0x2098  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
02:31:53.0738 0x2098  hcw85cir - ok
02:31:53.0776 0x2098  [ 8D7F985CE023640B8D24EAC045D7BABE, 8B3A2CBDA0D48D74519CB3B5928F77D65730D38E50D59995F2167C741F42FEC0 ] hcwhdpvr        C:\Windows\system32\DRIVERS\hcwhdpvr.sys
02:31:53.0822 0x2098  hcwhdpvr - ok
02:31:53.0874 0x2098  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:31:53.0915 0x2098  HdAudAddService - ok
02:31:53.0963 0x2098  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
02:31:53.0987 0x2098  HDAudBus - ok
02:31:54.0002 0x2098  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
02:31:54.0018 0x2098  HidBatt - ok
02:31:54.0024 0x2098  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
02:31:54.0049 0x2098  HidBth - ok
02:31:54.0053 0x2098  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
02:31:54.0064 0x2098  HidIr - ok
02:31:54.0094 0x2098  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
02:31:54.0134 0x2098  hidserv - ok
02:31:54.0180 0x2098  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
02:31:54.0208 0x2098  HidUsb - ok
02:31:54.0254 0x2098  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
02:31:54.0329 0x2098  hkmsvc - ok
02:31:54.0378 0x2098  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:31:54.0448 0x2098  HomeGroupListener - ok
02:31:54.0491 0x2098  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:31:54.0515 0x2098  HomeGroupProvider - ok
02:31:54.0546 0x2098  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
02:31:54.0556 0x2098  HpSAMD - ok
02:31:54.0614 0x2098  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
02:31:54.0674 0x2098  HTTP - ok
02:31:54.0720 0x2098  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
02:31:54.0727 0x2098  hwpolicy - ok
02:31:54.0765 0x2098  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
02:31:54.0775 0x2098  i8042prt - ok
02:31:54.0823 0x2098  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
02:31:54.0848 0x2098  iaStorV - ok
02:31:54.0963 0x2098  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
02:31:54.0987 0x2098  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
02:31:55.0090 0x2098  Detect skipped due to KSN trusted
02:31:55.0090 0x2098  IDriverT - ok
02:31:55.0159 0x2098  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:31:55.0195 0x2098  idsvc - ok
02:31:55.0218 0x2098  IEEtwCollectorService - ok
02:31:55.0241 0x2098  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
02:31:55.0249 0x2098  iirsp - ok
02:31:55.0321 0x2098  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
02:31:55.0369 0x2098  IKEEXT - ok
02:31:55.0507 0x2098  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
02:31:55.0627 0x2098  IntcAzAudAddService - ok
02:31:55.0668 0x2098  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
02:31:55.0676 0x2098  intelide - ok
02:31:55.0703 0x2098  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
02:31:55.0712 0x2098  intelppm - ok
02:31:55.0735 0x2098  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
02:31:55.0780 0x2098  IPBusEnum - ok
02:31:55.0819 0x2098  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:31:55.0854 0x2098  IpFilterDriver - ok
02:31:55.0903 0x2098  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
02:31:55.0951 0x2098  iphlpsvc - ok
02:31:55.0988 0x2098  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
02:31:56.0005 0x2098  IPMIDRV - ok
02:31:56.0022 0x2098  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
02:31:56.0062 0x2098  IPNAT - ok
02:31:56.0131 0x2098  [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
02:31:56.0155 0x2098  iPod Service - ok
02:31:56.0172 0x2098  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
02:31:56.0236 0x2098  IRENUM - ok
02:31:56.0267 0x2098  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
02:31:56.0275 0x2098  isapnp - ok
02:31:56.0318 0x2098  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
02:31:56.0334 0x2098  iScsiPrt - ok
02:31:56.0372 0x2098  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
02:31:56.0380 0x2098  kbdclass - ok
02:31:56.0430 0x2098  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
02:31:56.0449 0x2098  kbdhid - ok
02:31:56.0474 0x2098  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso          C:\Windows\system32\lsass.exe
02:31:56.0482 0x2098  KeyIso - ok
02:31:56.0519 0x2098  [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
02:31:56.0529 0x2098  KSecDD - ok
02:31:56.0568 0x2098  [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
02:31:56.0578 0x2098  KSecPkg - ok
02:31:56.0589 0x2098  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
02:31:56.0630 0x2098  ksthunk - ok
02:31:56.0670 0x2098  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
02:31:56.0711 0x2098  KtmRm - ok
02:31:56.0749 0x2098  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
02:31:56.0806 0x2098  LanmanServer - ok
02:31:56.0841 0x2098  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:31:56.0898 0x2098  LanmanWorkstation - ok
02:31:56.0958 0x2098  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
02:31:56.0964 0x2098  LGBusEnum - ok
02:31:57.0022 0x2098  [ F7205E939F50B1C8D16F895916BE6756, 914326BAF54691AE880F6A3817B277F027F32AD7EF507A83F9A60DCA02901EDA ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
02:31:57.0030 0x2098  LGSHidFilt - ok
02:31:57.0071 0x2098  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
02:31:57.0077 0x2098  LGVirHid - ok
02:31:57.0139 0x2098  [ C7D21310EA0A644AA6394DE1E46E3D31, 597F27A2696F945FD6388CA62D5EE98E44694F477F57EF8A68C2151B2276E838 ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
02:31:57.0148 0x2098  libusb0 - ok
02:31:57.0191 0x2098  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
02:31:57.0249 0x2098  lltdio - ok
02:31:57.0281 0x2098  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
02:31:57.0338 0x2098  lltdsvc - ok
02:31:57.0355 0x2098  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
02:31:57.0434 0x2098  lmhosts - ok
02:31:57.0490 0x2098  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
02:31:57.0500 0x2098  LSI_FC - ok
02:31:57.0505 0x2098  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
02:31:57.0515 0x2098  LSI_SAS - ok
02:31:57.0524 0x2098  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:31:57.0534 0x2098  LSI_SAS2 - ok
02:31:57.0539 0x2098  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:31:57.0549 0x2098  LSI_SCSI - ok
02:31:57.0565 0x2098  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
02:31:57.0606 0x2098  luafv - ok
02:31:57.0634 0x2098  [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64        C:\Windows\system32\DRIVERS\lv302a64.sys
02:31:57.0640 0x2098  lvpepf64 - ok
02:31:57.0677 0x2098  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:31:57.0684 0x2098  LVPr2M64 - ok
02:31:57.0700 0x2098  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:31:57.0706 0x2098  LVPr2Mon - ok
02:31:57.0755 0x2098  [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
02:31:57.0765 0x2098  LVPrcS64 - ok
02:31:57.0799 0x2098  [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
02:31:57.0822 0x2098  LVRS64 - ok
02:31:57.0846 0x2098  [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
02:31:57.0853 0x2098  LVUSBS64 - ok
02:31:58.0023 0x2098  [ 644E919936A8017B5F205E7FE7EDD19F, AE0BE09DF7192B2E8504DA8D65928C59C62635E0C8D08C6A4EB2A15D512E3E52 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
02:31:58.0174 0x2098  LVUVC64 - ok
02:31:58.0223 0x2098  [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
02:31:58.0256 0x2098  ManyCam - ok
02:31:58.0291 0x2098  [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv_x64.sys
02:31:58.0315 0x2098  mcaudrv_simple - ok
02:31:58.0420 0x2098  [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
02:31:58.0433 0x2098  McComponentHostService - ok
02:31:58.0469 0x2098  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
02:31:58.0480 0x2098  Mcx2Svc - ok
02:31:58.0492 0x2098  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
02:31:58.0500 0x2098  megasas - ok
02:31:58.0526 0x2098  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
02:31:58.0550 0x2098  MegaSR - ok
02:31:58.0621 0x2098  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
02:31:58.0649 0x2098  Microsoft Office Groove Audit Service - ok
02:31:58.0681 0x2098  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
02:31:58.0714 0x2098  MMCSS - ok
02:31:58.0726 0x2098  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
02:31:58.0762 0x2098  Modem - ok
02:31:58.0784 0x2098  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
02:31:58.0803 0x2098  monitor - ok
02:31:58.0823 0x2098  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
02:31:58.0832 0x2098  mouclass - ok
02:31:58.0863 0x2098  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
02:31:58.0883 0x2098  mouhid - ok
02:31:58.0935 0x2098  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
02:31:58.0944 0x2098  mountmgr - ok
02:31:59.0014 0x2098  [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:31:59.0025 0x2098  MozillaMaintenance - ok
02:31:59.0067 0x2098  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
02:31:59.0078 0x2098  mpio - ok
02:31:59.0091 0x2098  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
02:31:59.0128 0x2098  mpsdrv - ok
02:31:59.0185 0x2098  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
02:31:59.0241 0x2098  MpsSvc - ok
02:31:59.0283 0x2098  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
02:31:59.0323 0x2098  MRxDAV - ok
02:31:59.0378 0x2098  [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
02:31:59.0496 0x2098  mrxsmb - ok
02:31:59.0581 0x2098  [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:31:59.0619 0x2098  mrxsmb10 - ok
02:31:59.0643 0x2098  [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:31:59.0675 0x2098  mrxsmb20 - ok
02:31:59.0709 0x2098  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
02:31:59.0717 0x2098  msahci - ok
02:31:59.0729 0x2098  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
02:31:59.0739 0x2098  msdsm - ok
02:31:59.0759 0x2098  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
02:31:59.0780 0x2098  MSDTC - ok
02:31:59.0812 0x2098  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
02:31:59.0849 0x2098  Msfs - ok
02:31:59.0875 0x2098  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
02:31:59.0909 0x2098  mshidkmdf - ok
02:31:59.0942 0x2098  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
02:31:59.0950 0x2098  msisadrv - ok
02:31:59.0976 0x2098  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
02:32:00.0036 0x2098  MSiSCSI - ok
02:32:00.0040 0x2098  msiserver - ok
02:32:00.0066 0x2098  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
02:32:00.0112 0x2098  MSKSSRV - ok
02:32:00.0125 0x2098  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
02:32:00.0164 0x2098  MSPCLOCK - ok
02:32:00.0180 0x2098  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
02:32:00.0213 0x2098  MSPQM - ok
02:32:00.0257 0x2098  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
02:32:00.0282 0x2098  MsRPC - ok
02:32:00.0291 0x2098  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
02:32:00.0299 0x2098  mssmbios - ok
02:32:00.0303 0x2098  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
02:32:00.0341 0x2098  MSTEE - ok
02:32:00.0358 0x2098  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
02:32:00.0366 0x2098  MTConfig - ok
02:32:00.0378 0x2098  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
02:32:00.0387 0x2098  Mup - ok
02:32:00.0434 0x2098  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
02:32:00.0486 0x2098  napagent - ok
02:32:00.0528 0x2098  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
02:32:00.0556 0x2098  NativeWifiP - ok
02:32:00.0611 0x2098  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
02:32:00.0646 0x2098  NDIS - ok
02:32:00.0665 0x2098  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
02:32:00.0708 0x2098  NdisCap - ok
02:32:00.0733 0x2098  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
02:32:00.0765 0x2098  NdisTapi - ok
02:32:00.0806 0x2098  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
02:32:00.0845 0x2098  Ndisuio - ok
02:32:00.0888 0x2098  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
02:32:00.0915 0x2098  NdisWan - ok
02:32:00.0953 0x2098  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
02:32:00.0994 0x2098  NDProxy - ok
02:32:01.0055 0x2098  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
02:32:01.0064 0x2098  Netaapl - ok
02:32:01.0079 0x2098  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
02:32:01.0111 0x2098  NetBIOS - ok
02:32:01.0151 0x2098  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
02:32:01.0192 0x2098  NetBT - ok
02:32:01.0216 0x2098  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon        C:\Windows\system32\lsass.exe
02:32:01.0224 0x2098  Netlogon - ok
02:32:01.0254 0x2098  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
02:32:01.0306 0x2098  Netman - ok
02:32:01.0361 0x2098  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0374 0x2098  NetMsmqActivator - ok
02:32:01.0403 0x2098  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0414 0x2098  NetPipeActivator - ok
02:32:01.0441 0x2098  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
02:32:01.0505 0x2098  netprofm - ok
02:32:01.0561 0x2098  [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
02:32:01.0610 0x2098  netr28x - ok
02:32:01.0635 0x2098  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0647 0x2098  NetTcpActivator - ok
02:32:01.0652 0x2098  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:01.0663 0x2098  NetTcpPortSharing - ok
02:32:01.0688 0x2098  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
02:32:01.0697 0x2098  nfrd960 - ok
02:32:01.0739 0x2098  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
02:32:01.0782 0x2098  NlaSvc - ok
02:32:01.0800 0x2098  nlsX86cc - ok
02:32:01.0813 0x2098  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
02:32:01.0838 0x2098  Npfs - ok
02:32:01.0924 0x2098  [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo      C:\Windows\sysWOW64\drivers\npf_devolo.sys
02:32:01.0931 0x2098  NPF_devolo - ok
02:32:01.0952 0x2098  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
02:32:02.0003 0x2098  nsi - ok
02:32:02.0016 0x2098  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
02:32:02.0054 0x2098  nsiproxy - ok
02:32:02.0134 0x2098  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
02:32:02.0189 0x2098  Ntfs - ok
02:32:02.0203 0x2098  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
02:32:02.0239 0x2098  Null - ok
02:32:02.0627 0x2098  [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:32:03.0015 0x2098  nvlddmkm - ok
02:32:03.0111 0x2098  [ C50CD479FD1BB886244E2663DFFBCF6A, CCFB60425E56A12C097EC05A9E5549B4F4A10379818ABC64945487C16F882E3D ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
02:32:03.0162 0x2098  NvNetworkService - ok
02:32:03.0202 0x2098  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
02:32:03.0213 0x2098  nvraid - ok
02:32:03.0232 0x2098  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
02:32:03.0243 0x2098  nvstor - ok
02:32:03.0346 0x2098  [ AD7A2F3AF147B2CF302EBF7C1E01E027, B8DAAE7FE4B13C9CA3F1DEE7C98F5CA49D4D1678C82C51D6801210838319BAE5 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
02:32:03.0353 0x2098  NvStreamKms - ok
02:32:03.0378 0x2098  NvStreamSvc - ok
02:32:03.0456 0x2098  [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc           C:\Windows\system32\nvvsvc.exe
02:32:03.0491 0x2098  nvsvc - ok
02:32:03.0513 0x2098  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
02:32:03.0521 0x2098  nvvad_WaveExtensible - ok
02:32:03.0563 0x2098  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
02:32:03.0573 0x2098  nv_agp - ok
02:32:03.0650 0x2098  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:32:03.0673 0x2098  odserv - ok
02:32:03.0712 0x2098  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
02:32:03.0734 0x2098  ohci1394 - ok
02:32:03.0774 0x2098  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:32:03.0784 0x2098  ose - ok
02:32:03.0816 0x2098  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
02:32:03.0877 0x2098  p2pimsvc - ok
02:32:03.0912 0x2098  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
02:32:03.0951 0x2098  p2psvc - ok
02:32:04.0068 0x2098  [ F7BAC457D6AE2F7E18FA69C8180A7843, 19C1B162FD17A0D5441183C331BF3020D6EF00DAFFBF0464C317BA208BFD2B2A ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
02:32:04.0174 0x2098  PaceLicenseDServices - detected UnsignedFile.Multi.Generic ( 1 )
02:32:04.0252 0x2098  Detect skipped due to KSN trusted
02:32:04.0253 0x2098  PaceLicenseDServices - ok
         
__________________

Alt 24.11.2015, 03:51   #4
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



TDSSKiller.txt Teil 2:

Code:
ATTFilter
02:32:04.0290 0x2098  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
02:32:04.0300 0x2098  Parport - ok
02:32:04.0338 0x2098  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
02:32:04.0346 0x2098  partmgr - ok
02:32:04.0395 0x2098  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
02:32:04.0429 0x2098  PcaSvc - ok
02:32:04.0465 0x2098  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
02:32:04.0476 0x2098  pci - ok
02:32:04.0515 0x2098  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
02:32:04.0523 0x2098  pciide - ok
02:32:04.0541 0x2098  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
02:32:04.0554 0x2098  pcmcia - ok
02:32:04.0609 0x2098  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
02:32:04.0617 0x2098  pcw - ok
02:32:04.0732 0x2098  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
02:32:04.0826 0x2098  PEAUTH - ok
02:32:04.0884 0x2098  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
02:32:04.0970 0x2098  PeerDistSvc - ok
02:32:04.0993 0x2098  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
02:32:05.0018 0x2098  PerfHost - ok
02:32:05.0127 0x2098  [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
02:32:05.0219 0x2098  PID_PEPI - ok
02:32:05.0294 0x2098  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
02:32:05.0377 0x2098  pla - ok
02:32:05.0433 0x2098  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
02:32:05.0465 0x2098  PlugPlay - ok
02:32:05.0494 0x2098  PnkBstrA - ok
02:32:05.0509 0x2098  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
02:32:05.0528 0x2098  PNRPAutoReg - ok
02:32:05.0550 0x2098  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
02:32:05.0563 0x2098  PNRPsvc - ok
02:32:05.0612 0x2098  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
02:32:05.0667 0x2098  PolicyAgent - ok
02:32:05.0691 0x2098  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
02:32:05.0730 0x2098  Power - ok
02:32:05.0763 0x2098  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
02:32:05.0801 0x2098  PptpMiniport - ok
02:32:05.0832 0x2098  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
02:32:05.0852 0x2098  Processor - ok
02:32:05.0891 0x2098  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
02:32:05.0933 0x2098  ProfSvc - ok
02:32:05.0941 0x2098  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:32:05.0949 0x2098  ProtectedStorage - ok
02:32:06.0073 0x2098  [ 77D05941A147C152CA088D7364D8944B, 1296DF0BAA4228C437C2691B1C5E533921A4A97305179D0E0CE1CA4CE1A318D3 ] PS3 Media Server C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
02:32:06.0085 0x2098  PS3 Media Server - ok
02:32:06.0129 0x2098  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
02:32:06.0164 0x2098  Psched - ok
02:32:06.0216 0x2098  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
02:32:06.0223 0x2098  PxHlpa64 - ok
02:32:06.0278 0x2098  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
02:32:06.0333 0x2098  ql2300 - ok
02:32:06.0348 0x2098  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
02:32:06.0358 0x2098  ql40xx - ok
02:32:06.0386 0x2098  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
02:32:06.0403 0x2098  QWAVE - ok
02:32:06.0412 0x2098  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
02:32:06.0440 0x2098  QWAVEdrv - ok
02:32:06.0532 0x2098  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
02:32:06.0547 0x2098  RapiMgr - ok
02:32:06.0557 0x2098  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
02:32:06.0618 0x2098  RasAcd - ok
02:32:06.0649 0x2098  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
02:32:06.0698 0x2098  RasAgileVpn - ok
02:32:06.0718 0x2098  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
02:32:06.0753 0x2098  RasAuto - ok
02:32:06.0793 0x2098  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
02:32:06.0850 0x2098  Rasl2tp - ok
02:32:06.0911 0x2098  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
02:32:06.0974 0x2098  RasMan - ok
02:32:07.0017 0x2098  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
02:32:07.0057 0x2098  RasPppoe - ok
02:32:07.0073 0x2098  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
02:32:07.0114 0x2098  RasSstp - ok
02:32:07.0234 0x2098  [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
02:32:07.0244 0x2098  Razer Game Scanner Service - ok
02:32:07.0286 0x2098  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
02:32:07.0349 0x2098  rdbss - ok
02:32:07.0370 0x2098  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
02:32:07.0398 0x2098  rdpbus - ok
02:32:07.0415 0x2098  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
02:32:07.0451 0x2098  RDPCDD - ok
02:32:07.0488 0x2098  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
02:32:07.0527 0x2098  RDPDR - ok
02:32:07.0536 0x2098  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
02:32:07.0580 0x2098  RDPENCDD - ok
02:32:07.0597 0x2098  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
02:32:07.0631 0x2098  RDPREFMP - ok
02:32:07.0677 0x2098  [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:32:07.0708 0x2098  RdpVideoMiniport - ok
02:32:07.0749 0x2098  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
02:32:07.0776 0x2098  RDPWD - ok
02:32:07.0825 0x2098  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
02:32:07.0836 0x2098  rdyboost - ok
02:32:07.0853 0x2098  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
02:32:07.0891 0x2098  RemoteAccess - ok
02:32:07.0917 0x2098  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
02:32:07.0960 0x2098  RemoteRegistry - ok
02:32:07.0982 0x2098  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
02:32:08.0006 0x2098  RpcEptMapper - ok
02:32:08.0017 0x2098  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
02:32:08.0025 0x2098  RpcLocator - ok
02:32:08.0090 0x2098  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
02:32:08.0122 0x2098  RpcSs - ok
02:32:08.0133 0x2098  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
02:32:08.0177 0x2098  rspndr - ok
02:32:08.0215 0x2098  [ 60EB8A87357CA5B088B422D1E55A2405, A4E8ACACB9EFB094D05EC24DFB65D969DBA14634EEB6B4DBEF500BDEA8D78DB5 ] rt61x64         C:\Windows\system32\DRIVERS\netr6164.sys
02:32:08.0238 0x2098  rt61x64 - ok
02:32:08.0294 0x2098  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
02:32:08.0317 0x2098  RTL8167 - ok
02:32:08.0386 0x2098  [ B3F36B4B3F192EA87DDC119F3A0B3E45, DE80502994ED9977AD64483385A0BC0C6060EA9E9C08645E72FBBCFE8B2358C7 ] RTL8192su       C:\Windows\system32\DRIVERS\RTL8192su.sys
02:32:08.0419 0x2098  RTL8192su - ok
02:32:08.0471 0x2098  [ 5FA5ED95D2B02E92B9BC269A6B0B5039, 9C7CAB795658EC965B350318A9F5FC4EEFD2086C0BD71BAC7DD8B4A4863F6AE7 ] rzjstk          C:\Windows\system32\DRIVERS\rzjstk.sys
02:32:08.0478 0x2098  rzjstk - ok
02:32:08.0527 0x2098  [ D76C183CC06A1AF1F25377DA2C2FB324, 00188E5965764036A388CDD28A2A4F49B0EECFF8A4FE08E43E63F9D35801FF0B ] rzkeypadendpt   C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
02:32:08.0534 0x2098  rzkeypadendpt - ok
02:32:08.0589 0x2098  [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
02:32:08.0595 0x2098  rzpmgrk - ok
02:32:08.0657 0x2098  [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
02:32:08.0666 0x2098  rzpnk - ok
02:32:08.0706 0x2098  [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd           C:\Windows\system32\DRIVERS\rzudd.sys
02:32:08.0716 0x2098  rzudd - ok
02:32:08.0754 0x2098  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
02:32:08.0794 0x2098  s3cap - ok
02:32:08.0808 0x2098  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs           C:\Windows\system32\lsass.exe
02:32:08.0816 0x2098  SamSs - ok
02:32:08.0852 0x2098  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
02:32:08.0861 0x2098  sbp2port - ok
02:32:08.0892 0x2098  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
02:32:08.0935 0x2098  SCardSvr - ok
02:32:08.0983 0x2098  [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
02:32:08.0992 0x2098  SCDEmu - ok
02:32:09.0030 0x2098  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
02:32:09.0053 0x2098  scfilter - ok
02:32:09.0110 0x2098  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
02:32:09.0172 0x2098  Schedule - ok
02:32:09.0210 0x2098  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
02:32:09.0234 0x2098  SCPolicySvc - ok
02:32:09.0277 0x2098  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
02:32:09.0316 0x2098  SDRSVC - ok
02:32:09.0342 0x2098  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
02:32:09.0376 0x2098  secdrv - ok
02:32:09.0418 0x2098  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
02:32:09.0453 0x2098  seclogon - ok
02:32:09.0468 0x2098  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
02:32:09.0503 0x2098  SENS - ok
02:32:09.0521 0x2098  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
02:32:09.0553 0x2098  SensrSvc - ok
02:32:09.0599 0x2098  [ 84AC127242DD3CCDE02F9A4673214B1F, 87E229138AAF10951C153F0BEC9B46CB459FE80074E02DE1DA0BC0FA5A11F237 ] Sentinel64      C:\Windows\System32\Drivers\Sentinel64.sys
02:32:09.0609 0x2098  Sentinel64 - ok
02:32:09.0616 0x2098  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
02:32:09.0634 0x2098  Serenum - ok
02:32:09.0656 0x2098  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
02:32:09.0682 0x2098  Serial - ok
02:32:09.0718 0x2098  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
02:32:09.0726 0x2098  sermouse - ok
02:32:09.0769 0x2098  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
02:32:09.0817 0x2098  SessionEnv - ok
02:32:09.0912 0x2098  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
02:32:09.0935 0x2098  sffdisk - ok
02:32:09.0952 0x2098  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
02:32:09.0962 0x2098  sffp_mmc - ok
02:32:09.0968 0x2098  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
02:32:09.0993 0x2098  sffp_sd - ok
02:32:10.0005 0x2098  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
02:32:10.0014 0x2098  sfloppy - ok
02:32:10.0055 0x2098  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
02:32:10.0112 0x2098  SharedAccess - ok
02:32:10.0157 0x2098  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:32:10.0211 0x2098  ShellHWDetection - ok
02:32:10.0231 0x2098  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:32:10.0239 0x2098  SiSRaid2 - ok
02:32:10.0256 0x2098  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
02:32:10.0265 0x2098  SiSRaid4 - ok
02:32:10.0362 0x2098  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
02:32:10.0380 0x2098  SkypeUpdate - ok
02:32:10.0397 0x2098  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
02:32:10.0436 0x2098  Smb - ok
02:32:10.0465 0x2098  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
02:32:10.0491 0x2098  SNMPTRAP - ok
02:32:10.0509 0x2098  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
02:32:10.0517 0x2098  spldr - ok
02:32:10.0567 0x2098  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
02:32:10.0620 0x2098  Spooler - ok
02:32:10.0745 0x2098  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
02:32:10.0883 0x2098  sppsvc - ok
02:32:10.0908 0x2098  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
02:32:10.0948 0x2098  sppuinotify - ok
02:32:10.0998 0x2098  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
02:32:11.0039 0x2098  srv - ok
02:32:11.0087 0x2098  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
02:32:11.0153 0x2098  srv2 - ok
02:32:11.0177 0x2098  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
02:32:11.0196 0x2098  srvnet - ok
02:32:11.0217 0x2098  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
02:32:11.0252 0x2098  SSDPSRV - ok
02:32:11.0262 0x2098  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
02:32:11.0311 0x2098  SstpSvc - ok
02:32:11.0357 0x2098  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
02:32:11.0369 0x2098  ssudmdm - ok
02:32:11.0450 0x2098  [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
02:32:11.0602 0x2098  Steam Client Service - ok
02:32:11.0661 0x2098  [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
02:32:11.0694 0x2098  Stereo Service - ok
02:32:11.0722 0x2098  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
02:32:11.0731 0x2098  stexstor - ok
02:32:11.0782 0x2098  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\drivers\serscan.sys
02:32:11.0826 0x2098  StillCam - ok
02:32:11.0885 0x2098  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
02:32:11.0929 0x2098  stisvc - ok
02:32:11.0983 0x2098  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
02:32:11.0992 0x2098  storflt - ok
02:32:12.0010 0x2098  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
02:32:12.0018 0x2098  storvsc - ok
02:32:12.0058 0x2098  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
02:32:12.0067 0x2098  swenum - ok
02:32:12.0185 0x2098  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
02:32:12.0217 0x2098  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
02:32:12.0310 0x2098  Detect skipped due to KSN trusted
02:32:12.0310 0x2098  SwitchBoard - ok
02:32:12.0349 0x2098  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
02:32:12.0392 0x2098  swprv - ok
02:32:12.0405 0x2098  Synth3dVsc - ok
02:32:12.0487 0x2098  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
02:32:12.0575 0x2098  SysMain - ok
02:32:12.0613 0x2098  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:32:12.0646 0x2098  TabletInputService - ok
02:32:12.0894 0x2098  [ 34D92E8CB04DCAEEAE054FEDE7526282, 73F38FAB499EBA5344251F9A4B1883D326AB7F55022B81C596EAA664906482F1 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
02:32:13.0080 0x2098  TabletServiceWacom - ok
02:32:13.0133 0x2098  [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
02:32:13.0161 0x2098  tap0901t - ok
02:32:13.0204 0x2098  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
02:32:13.0249 0x2098  TapiSrv - ok
02:32:13.0270 0x2098  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
02:32:13.0310 0x2098  TBS - ok
02:32:13.0384 0x2098  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
02:32:13.0448 0x2098  Tcpip - ok
02:32:13.0508 0x2098  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
02:32:13.0550 0x2098  TCPIP6 - ok
02:32:13.0587 0x2098  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
02:32:13.0596 0x2098  tcpipreg - ok
02:32:13.0619 0x2098  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
02:32:13.0652 0x2098  TDPIPE - ok
02:32:13.0691 0x2098  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
02:32:13.0713 0x2098  TDTCP - ok
02:32:13.0771 0x2098  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
02:32:13.0787 0x2098  tdx - ok
02:32:13.0996 0x2098  [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
02:32:14.0093 0x2098  TeamViewer9 - ok
02:32:14.0137 0x2098  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
02:32:14.0145 0x2098  TermDD - ok
02:32:14.0199 0x2098  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
02:32:14.0238 0x2098  TermService - ok
02:32:14.0257 0x2098  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
02:32:14.0279 0x2098  Themes - ok
02:32:14.0305 0x2098  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
02:32:14.0330 0x2098  THREADORDER - ok
02:32:14.0360 0x2098  [ 8DD33A57339ADAE34CDB12994ACBC50F, 58FD3AC48E3EE6BECCED4E0227C73D6783BF552A3A0B5FD43F091580108E1A0D ] Tpkd            C:\Windows\system32\drivers\Tpkd.sys
02:32:14.0368 0x2098  Tpkd - ok
02:32:14.0383 0x2098  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
02:32:14.0427 0x2098  TrkWks - ok
02:32:14.0490 0x2098  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:32:14.0536 0x2098  TrustedInstaller - ok
02:32:14.0571 0x2098  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
02:32:14.0591 0x2098  tssecsrv - ok
02:32:14.0627 0x2098  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
02:32:14.0659 0x2098  TsUsbFlt - ok
02:32:14.0672 0x2098  tsusbhub - ok
02:32:14.0712 0x2098  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
02:32:14.0758 0x2098  tunnel - ok
02:32:14.0862 0x2098  [ A96BE6F92EDE53BA5997B2AE7367EACD, D2CE331F0BBA15C19A66BEF91FBDA96536F656C89DC9FE1A2F88D0C368986BB2 ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
02:32:14.0894 0x2098  TunngleService - ok
02:32:14.0947 0x2098  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
02:32:14.0973 0x2098  uagp35 - ok
02:32:15.0045 0x2098  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
02:32:15.0134 0x2098  udfs - ok
02:32:15.0154 0x2098  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
02:32:15.0183 0x2098  UI0Detect - ok
02:32:15.0205 0x2098  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
02:32:15.0214 0x2098  uliagpkx - ok
02:32:15.0252 0x2098  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
02:32:15.0269 0x2098  umbus - ok
02:32:15.0284 0x2098  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
02:32:15.0292 0x2098  UmPass - ok
02:32:15.0328 0x2098  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
02:32:15.0352 0x2098  UmRdpService - ok
02:32:15.0444 0x2098  [ AEBE8F338432F9DE5AE0CAE4D4BAED76, A11DE1BAEF6E0D30B8801C0AEC589F0DA6FEC5E010BD6A18584D96E0AF9243B8 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
02:32:15.0468 0x2098  UMVPFSrv - ok
02:32:15.0493 0x2098  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
02:32:15.0534 0x2098  upnphost - ok
02:32:15.0599 0x2098  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
02:32:15.0640 0x2098  USBAAPL64 - ok
02:32:15.0692 0x2098  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
02:32:15.0722 0x2098  usbaudio - ok
02:32:15.0761 0x2098  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
02:32:15.0794 0x2098  usbccgp - ok
02:32:15.0845 0x2098  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
02:32:15.0888 0x2098  usbcir - ok
02:32:15.0928 0x2098  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
02:32:15.0950 0x2098  usbehci - ok
02:32:15.0978 0x2098  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
02:32:15.0992 0x2098  usbhub - ok
02:32:15.0999 0x2098  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
02:32:16.0019 0x2098  usbohci - ok
02:32:16.0046 0x2098  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
02:32:16.0075 0x2098  usbprint - ok
02:32:16.0116 0x2098  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:32:16.0149 0x2098  USBSTOR - ok
02:32:16.0164 0x2098  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
02:32:16.0182 0x2098  usbuhci - ok
02:32:16.0240 0x2098  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
02:32:16.0251 0x2098  usbvideo - ok
02:32:16.0275 0x2098  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
02:32:16.0320 0x2098  UxSms - ok
02:32:16.0354 0x2098  [ 18436F7006443FB76145B3D35162A810, 1670A711D808AEA66A63443CE752EB771D4BF34CA838B0040849A436FFF77E69 ] VaneFltr        C:\Windows\system32\drivers\Lachesis.sys
02:32:16.0377 0x2098  VaneFltr - ok
02:32:16.0383 0x2098  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc        C:\Windows\system32\lsass.exe
02:32:16.0392 0x2098  VaultSvc - ok
02:32:16.0427 0x2098  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
02:32:16.0435 0x2098  vdrvroot - ok
02:32:16.0493 0x2098  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
02:32:16.0548 0x2098  vds - ok
02:32:16.0572 0x2098  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
02:32:16.0598 0x2098  vga - ok
02:32:16.0614 0x2098  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
02:32:16.0653 0x2098  VgaSave - ok
02:32:16.0656 0x2098  VGPU - ok
02:32:16.0690 0x2098  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
02:32:16.0702 0x2098  vhdmp - ok
02:32:16.0738 0x2098  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
02:32:16.0746 0x2098  viaide - ok
02:32:16.0781 0x2098  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
02:32:16.0793 0x2098  vmbus - ok
02:32:16.0810 0x2098  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
02:32:16.0827 0x2098  VMBusHID - ok
02:32:16.0865 0x2098  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
02:32:16.0874 0x2098  volmgr - ok
02:32:16.0937 0x2098  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
02:32:16.0961 0x2098  volmgrx - ok
02:32:16.0974 0x2098  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
02:32:16.0999 0x2098  volsnap - ok
02:32:17.0020 0x2098  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
02:32:17.0031 0x2098  vsmraid - ok
02:32:17.0117 0x2098  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
02:32:17.0186 0x2098  VSS - ok
02:32:17.0203 0x2098  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
02:32:17.0223 0x2098  vwifibus - ok
02:32:17.0241 0x2098  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
02:32:17.0262 0x2098  vwififlt - ok
02:32:17.0294 0x2098  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
02:32:17.0349 0x2098  W32Time - ok
02:32:17.0402 0x2098  [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor   C:\Windows\system32\DRIVERS\wacmoumonitor.sys
02:32:17.0432 0x2098  wacmoumonitor - ok
02:32:17.0466 0x2098  [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
02:32:17.0472 0x2098  wacommousefilter - ok
02:32:17.0482 0x2098  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
02:32:17.0503 0x2098  WacomPen - ok
02:32:17.0538 0x2098  [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid       C:\Windows\system32\DRIVERS\wacomvhid.sys
02:32:17.0544 0x2098  wacomvhid - ok
02:32:17.0674 0x2098  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
02:32:17.0750 0x2098  WANARP - ok
02:32:17.0766 0x2098  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
02:32:17.0790 0x2098  Wanarpv6 - ok
02:32:17.0859 0x2098  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
02:32:17.0940 0x2098  wbengine - ok
02:32:17.0961 0x2098  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
02:32:17.0998 0x2098  WbioSrvc - ok
02:32:18.0071 0x2098  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
02:32:18.0097 0x2098  WcesComm - ok
02:32:18.0157 0x2098  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
02:32:18.0206 0x2098  wcncsvc - ok
02:32:18.0222 0x2098  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:32:18.0261 0x2098  WcsPlugInService - ok
02:32:18.0278 0x2098  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
02:32:18.0286 0x2098  Wd - ok
02:32:18.0343 0x2098  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
02:32:18.0379 0x2098  Wdf01000 - ok
02:32:18.0394 0x2098  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
02:32:18.0467 0x2098  WdiServiceHost - ok
02:32:18.0471 0x2098  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
02:32:18.0485 0x2098  WdiSystemHost - ok
02:32:18.0528 0x2098  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
02:32:18.0572 0x2098  WebClient - ok
02:32:18.0586 0x2098  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
02:32:18.0631 0x2098  Wecsvc - ok
02:32:18.0653 0x2098  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
02:32:18.0695 0x2098  wercplsupport - ok
02:32:18.0722 0x2098  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
02:32:18.0765 0x2098  WerSvc - ok
02:32:18.0794 0x2098  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
02:32:18.0819 0x2098  WfpLwf - ok
02:32:18.0835 0x2098  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
02:32:18.0843 0x2098  WIMMount - ok
02:32:18.0870 0x2098  WinDefend - ok
02:32:18.0884 0x2098  WinHttpAutoProxySvc - ok
02:32:18.0929 0x2098  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
02:32:18.0995 0x2098  Winmgmt - ok
02:32:19.0076 0x2098  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
02:32:19.0177 0x2098  WinRM - ok
02:32:19.0233 0x2098  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
02:32:19.0258 0x2098  WinUsb - ok
02:32:19.0295 0x2098  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
02:32:19.0352 0x2098  Wlansvc - ok
02:32:19.0384 0x2098  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
02:32:19.0392 0x2098  wlcrasvc - ok
02:32:19.0543 0x2098  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
02:32:19.0616 0x2098  wlidsvc - ok
02:32:19.0656 0x2098  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
02:32:19.0679 0x2098  WmiAcpi - ok
02:32:19.0709 0x2098  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
02:32:19.0736 0x2098  wmiApSrv - ok
02:32:19.0770 0x2098  WMPNetworkSvc - ok
02:32:19.0781 0x2098  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
02:32:19.0815 0x2098  WPCSvc - ok
02:32:19.0849 0x2098  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
02:32:19.0873 0x2098  WPDBusEnum - ok
02:32:19.0888 0x2098  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
02:32:19.0911 0x2098  ws2ifsl - ok
02:32:19.0925 0x2098  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
02:32:19.0953 0x2098  wscsvc - ok
02:32:20.0002 0x2098  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
02:32:20.0027 0x2098  WSDPrintDevice - ok
02:32:20.0030 0x2098  WSearch - ok
02:32:20.0132 0x2098  [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv        C:\Windows\system32\wuaueng.dll
02:32:20.0255 0x2098  wuauserv - ok
02:32:20.0297 0x2098  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
02:32:20.0400 0x2098  WudfPf - ok
02:32:20.0440 0x2098  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
02:32:20.0465 0x2098  WUDFRd - ok
02:32:20.0497 0x2098  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
02:32:20.0507 0x2098  wudfsvc - ok
02:32:20.0554 0x2098  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
02:32:20.0590 0x2098  WwanSvc - ok
02:32:20.0637 0x2098  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
02:32:20.0676 0x2098  xusb21 - ok
02:32:20.0705 0x2098  ================ Scan global ===============================
02:32:20.0743 0x2098  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
02:32:20.0785 0x2098  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:32:20.0802 0x2098  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:32:20.0823 0x2098  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
02:32:20.0877 0x2098  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
02:32:20.0893 0x2098  [ Global ] - ok
02:32:20.0893 0x2098  ================ Scan MBR ==================================
02:32:20.0915 0x2098  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
02:32:21.0103 0x2098  \Device\Harddisk1\DR1 - ok
02:32:21.0142 0x2098  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:32:21.0210 0x2098  \Device\Harddisk0\DR0 - ok
02:32:21.0210 0x2098  ================ Scan VBR ==================================
02:32:21.0212 0x2098  [ CDB057F2BB39ED9D067F761AEC114D0F ] \Device\Harddisk1\DR1\Partition1
02:32:21.0214 0x2098  \Device\Harddisk1\DR1\Partition1 - ok
02:32:21.0216 0x2098  [ 1932210E82096A1056F7A312EBF08D66 ] \Device\Harddisk1\DR1\Partition2
02:32:21.0217 0x2098  \Device\Harddisk1\DR1\Partition2 - ok
02:32:21.0219 0x2098  [ A087C0120C9361BE942045AE6FAFCA2A ] \Device\Harddisk0\DR0\Partition1
02:32:21.0273 0x2098  \Device\Harddisk0\DR0\Partition1 - ok
02:32:21.0274 0x2098  ================ Scan generic autorun ======================
02:32:21.0637 0x2098  [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
02:32:22.0000 0x2098  RtHDVCpl - ok
02:32:22.0095 0x2098  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
02:32:22.0118 0x2098  AdobeAAMUpdater-1.0 - ok
02:32:22.0248 0x2098  [ 5EA707336336DDFADE5FD3726CEA1523, 6136D88012140B3A43C7DC6CD0CBDB867BC6BA62D718269B73ED9F1B340F6768 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
02:32:22.0317 0x2098  NvBackend - ok
02:32:22.0357 0x2098  [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
02:32:22.0367 0x2098  iTunesHelper - ok
02:32:22.0424 0x2098  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
02:32:22.0457 0x2098  Windows Mobile-based device management - ok
02:32:22.0558 0x2098  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
02:32:22.0565 0x2098  HP Software Update - ok
02:32:22.0643 0x2098  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:32:22.0716 0x2098  Sidebar - ok
02:32:22.0736 0x2098  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:32:22.0759 0x2098  mctadmin - ok
02:32:22.0799 0x2098  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:32:22.0828 0x2098  Sidebar - ok
02:32:22.0835 0x2098  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:32:22.0848 0x2098  mctadmin - ok
02:32:22.0970 0x2098  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
02:32:23.0050 0x2098  HP Officejet Pro 8600 (NET) - ok
02:32:23.0181 0x2098  [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Jeremy J. Erb\AppData\Roaming\uTorrent\uTorrent.exe
02:32:24.0243 0x2098  uTorrent - ok
02:32:24.0323 0x2098  [ 7A2870C2A8283B3630BF7670D0362B94, A36AA6F2A78DF3E66ACA484E9E33D0CB01207FF52A0A8C006424493A5C489C48 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
02:32:24.0355 0x2098  GoogleChromeAutoLaunch_90C1996279C19B2AA865F0F198BD9F08 - ok
02:32:24.0499 0x2098  [ E17E53F297560C31631C4AC549385AE3, 7A5A6895D7DEF32B4CC7EF037E15CF5C4B01E28A3903F30686910C4AA89835A5 ] C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
02:32:24.0560 0x2098  uTorrent - ok
02:32:24.0629 0x2098  [ 8D80BFF016E907AAE76E5667E0A8F1E0, 63728CD5E6EEBCC90B5FF854B6ACB565B194E46B71CAF89FB992E65433DD20E0 ] C:\Program Files (x86)\Voobly\voobly.exe
02:32:24.0635 0x2098  Voobly - detected UnsignedFile.Multi.Generic ( 1 )
02:32:24.0735 0x2098  Voobly ( UnsignedFile.Multi.Generic ) - warning
02:32:24.0735 0x2098  Force sending object to P2P due to detect: C:\Program Files (x86)\Voobly\voobly.exe
02:32:24.0968 0x2098  Object send P2P result: true
02:32:25.0357 0x2098  [ D192592FD0A99D9F360906D3F6DFBFF1, E0ED95A8AB4D26A40BF95B8DB2D968AD1FDB36B8C4DF2990185E0458B3948CA3 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
02:32:25.0399 0x2098  WSHelperSetup.exe - ok
02:32:25.0569 0x2098  [ E1473471169EC64C57B49F9C984DFB1A, 3E05B4AD77F5CE13B01B7E1FD460F9779FF9E7C9E6DEBD5225EC840D96D12AA1 ] C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe
02:32:25.0725 0x2098  Logitech Vid - ok
02:32:25.0734 0x2098  Waiting for KSN requests completion. In queue: 152
02:32:26.0744 0x2098  Win FW state via NFP2: enabled ( trusted )
02:32:26.0953 0x2098  ============================================================
02:32:26.0953 0x2098  Scan finished
02:32:26.0953 0x2098  ============================================================
02:32:26.0961 0x22f8  Detected object count: 2
02:32:26.0961 0x22f8  Actual detected object count: 2
02:33:59.0708 0x22f8  BEService ( UnsignedFile.Multi.Generic ) - skipped by user
02:33:59.0708 0x22f8  BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
02:33:59.0708 0x22f8  Voobly ( UnsignedFile.Multi.Generic ) - skipped by user
02:33:59.0708 0x22f8  Voobly ( UnsignedFile.Multi.Generic ) - User select action: Skip 
02:34:45.0903 0x23f0  ============================================================
02:34:45.0903 0x23f0  Scan started
02:34:45.0903 0x23f0  Mode: Manual; SigCheck; TDLFS; 
02:34:45.0903 0x23f0  ============================================================
02:34:45.0903 0x23f0  KSN ping started
02:34:46.0013 0x23f0  KSN ping finished: true
02:34:46.0664 0x23f0  ================ Scan system memory ========================
02:34:46.0664 0x23f0  System memory - ok
02:34:46.0665 0x23f0  ================ Scan services =============================
02:34:46.0775 0x23f0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
02:34:46.0792 0x23f0  1394ohci - ok
02:34:46.0858 0x23f0  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
02:34:46.0869 0x23f0  ACDaemon - ok
02:34:46.0932 0x23f0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
02:34:46.0946 0x23f0  ACPI - ok
02:34:46.0981 0x23f0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
02:34:46.0990 0x23f0  AcpiPmi - ok
02:34:47.0063 0x23f0  [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:34:47.0071 0x23f0  AdobeARMservice - ok
02:34:47.0169 0x23f0  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:34:47.0180 0x23f0  AdobeFlashPlayerUpdateSvc - ok
02:34:47.0211 0x23f0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
02:34:47.0226 0x23f0  adp94xx - ok
02:34:47.0238 0x23f0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
02:34:47.0251 0x23f0  adpahci - ok
02:34:47.0258 0x23f0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
02:34:47.0268 0x23f0  adpu320 - ok
02:34:47.0302 0x23f0  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
02:34:47.0311 0x23f0  AeLookupSvc - ok
02:34:47.0354 0x23f0  [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
02:34:47.0361 0x23f0  Afc - ok
02:34:47.0414 0x23f0  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
02:34:47.0431 0x23f0  AFD - ok
02:34:47.0472 0x23f0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
02:34:47.0480 0x23f0  agp440 - ok
02:34:47.0501 0x23f0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
02:34:47.0510 0x23f0  ALG - ok
02:34:47.0544 0x23f0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
02:34:47.0551 0x23f0  aliide - ok
02:34:47.0583 0x23f0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
02:34:47.0590 0x23f0  amdide - ok
02:34:47.0604 0x23f0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
02:34:47.0612 0x23f0  AmdK8 - ok
02:34:47.0625 0x23f0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
02:34:47.0633 0x23f0  AmdPPM - ok
02:34:47.0670 0x23f0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
02:34:47.0679 0x23f0  amdsata - ok
02:34:47.0687 0x23f0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
02:34:47.0697 0x23f0  amdsbs - ok
02:34:47.0708 0x23f0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
02:34:47.0715 0x23f0  amdxata - ok
02:34:47.0751 0x23f0  [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID           C:\Windows\system32\drivers\appid.sys
02:34:47.0759 0x23f0  AppID - ok
02:34:47.0794 0x23f0  [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
02:34:47.0801 0x23f0  AppIDSvc - ok
02:34:47.0836 0x23f0  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
02:34:47.0844 0x23f0  Appinfo - ok
02:34:47.0935 0x23f0  [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:34:47.0942 0x23f0  Apple Mobile Device Service - ok
02:34:47.0972 0x23f0  [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
02:34:47.0978 0x23f0  AppleCharger - ok
02:34:48.0013 0x23f0  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
02:34:48.0019 0x23f0  AppleChargerSrv - ok
02:34:48.0037 0x23f0  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
02:34:48.0047 0x23f0  AppMgmt - ok
02:34:48.0065 0x23f0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
02:34:48.0073 0x23f0  arc - ok
02:34:48.0108 0x23f0  [ 29E7252FA743B15BCE1A2245C5643A02, 7008FA6004AB9E4FBC410EAD8929F97056386DD65045F05059ADF436FB655FAD ] archlp          C:\Windows\syswow64\drivers\archlp.sys
02:34:48.0116 0x23f0  archlp - ok
02:34:48.0130 0x23f0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
02:34:48.0138 0x23f0  arcsas - ok
02:34:48.0145 0x23f0  Aspi32 - ok
02:34:48.0223 0x23f0  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
02:34:48.0233 0x23f0  aspnet_state - ok
02:34:48.0262 0x23f0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
02:34:48.0285 0x23f0  AsyncMac - ok
02:34:48.0321 0x23f0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
02:34:48.0328 0x23f0  atapi - ok
02:34:48.0383 0x23f0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:34:48.0403 0x23f0  AudioEndpointBuilder - ok
02:34:48.0425 0x23f0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
02:34:48.0444 0x23f0  AudioSrv - ok
02:34:48.0488 0x23f0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
02:34:48.0501 0x23f0  AxInstSV - ok
02:34:48.0528 0x23f0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
02:34:48.0543 0x23f0  b06bdrv - ok
02:34:48.0554 0x23f0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
02:34:48.0566 0x23f0  b57nd60a - ok
02:34:48.0586 0x23f0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
02:34:48.0595 0x23f0  BDESVC - ok
02:34:48.0598 0x23f0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
02:34:48.0622 0x23f0  Beep - ok
02:34:48.0662 0x23f0  [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
02:34:48.0665 0x23f0  BEService - detected UnsignedFile.Multi.Generic ( 1 )
02:34:48.0665 0x23f0  BEService ( UnsignedFile.Multi.Generic ) - warning
02:34:48.0966 0x23f0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
02:34:48.0986 0x23f0  BFE - ok
02:34:49.0042 0x23f0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
02:34:49.0081 0x23f0  BITS - ok
02:34:49.0091 0x23f0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
02:34:49.0099 0x23f0  blbdrive - ok
02:34:49.0149 0x23f0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:34:49.0163 0x23f0  Bonjour Service - ok
02:34:49.0201 0x23f0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
02:34:49.0209 0x23f0  bowser - ok
02:34:49.0223 0x23f0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
02:34:49.0232 0x23f0  BrFiltLo - ok
02:34:49.0241 0x23f0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
02:34:49.0250 0x23f0  BrFiltUp - ok
02:34:49.0292 0x23f0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
02:34:49.0302 0x23f0  Browser - ok
02:34:49.0321 0x23f0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
02:34:49.0334 0x23f0  Brserid - ok
02:34:49.0346 0x23f0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
02:34:49.0356 0x23f0  BrSerWdm - ok
02:34:49.0371 0x23f0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
02:34:49.0379 0x23f0  BrUsbMdm - ok
02:34:49.0393 0x23f0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
02:34:49.0400 0x23f0  BrUsbSer - ok
02:34:49.0418 0x23f0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
02:34:49.0428 0x23f0  BTHMODEM - ok
02:34:49.0441 0x23f0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
02:34:49.0466 0x23f0  bthserv - ok
02:34:49.0611 0x23f0  [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
02:34:49.0646 0x23f0  c2cautoupdatesvc - ok
02:34:49.0702 0x23f0  [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
02:34:49.0743 0x23f0  c2cpnrsvc - ok
02:34:49.0763 0x23f0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
02:34:49.0787 0x23f0  cdfs - ok
02:34:49.0833 0x23f0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
02:34:49.0843 0x23f0  cdrom - ok
02:34:49.0878 0x23f0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
02:34:49.0901 0x23f0  CertPropSvc - ok
02:34:49.0905 0x23f0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
02:34:49.0915 0x23f0  circlass - ok
02:34:49.0957 0x23f0  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
02:34:49.0971 0x23f0  CLFS - ok
02:34:50.0026 0x23f0  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:34:50.0034 0x23f0  clr_optimization_v2.0.50727_32 - ok
02:34:50.0090 0x23f0  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
02:34:50.0098 0x23f0  clr_optimization_v2.0.50727_64 - ok
02:34:50.0161 0x23f0  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:34:50.0172 0x23f0  clr_optimization_v4.0.30319_32 - ok
02:34:50.0187 0x23f0  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
02:34:50.0198 0x23f0  clr_optimization_v4.0.30319_64 - ok
02:34:50.0214 0x23f0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
02:34:50.0222 0x23f0  CmBatt - ok
02:34:50.0255 0x23f0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
02:34:50.0262 0x23f0  cmdide - ok
02:34:50.0317 0x23f0  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
02:34:50.0336 0x23f0  CNG - ok
02:34:50.0350 0x23f0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
02:34:50.0357 0x23f0  Compbatt - ok
02:34:50.0394 0x23f0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
02:34:50.0404 0x23f0  CompositeBus - ok
02:34:50.0408 0x23f0  COMSysApp - ok
02:34:50.0419 0x23f0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
02:34:50.0426 0x23f0  crcdisk - ok
02:34:50.0463 0x23f0  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
02:34:50.0474 0x23f0  CryptSvc - ok
02:34:50.0524 0x23f0  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
02:34:50.0540 0x23f0  CSC - ok
02:34:50.0588 0x23f0  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
02:34:50.0608 0x23f0  CscService - ok
02:34:50.0648 0x23f0  [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
02:34:50.0656 0x23f0  dc3d - ok
02:34:50.0707 0x23f0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
02:34:50.0739 0x23f0  DcomLaunch - ok
02:34:50.0762 0x23f0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
02:34:50.0791 0x23f0  defragsvc - ok
02:34:50.0948 0x23f0  [ 541C3C58BAB622549E8F96E7E88F71AA, 79D6710673B4F205B3918A14DF58B0933E2A631D5FF8C10D06C91ABD2D50BC7B ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
02:34:51.0020 0x23f0  DevoloNetworkService - ok
02:34:51.0062 0x23f0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
02:34:51.0085 0x23f0  DfsC - ok
02:34:51.0129 0x23f0  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
02:34:51.0137 0x23f0  dg_ssudbus - ok
02:34:51.0175 0x23f0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
02:34:51.0188 0x23f0  Dhcp - ok
02:34:51.0275 0x23f0  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
02:34:51.0308 0x23f0  DiagTrack - ok
02:34:51.0324 0x23f0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
02:34:51.0348 0x23f0  discache - ok
02:34:51.0358 0x23f0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
02:34:51.0366 0x23f0  Disk - ok
02:34:51.0405 0x23f0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
02:34:51.0415 0x23f0  Dnscache - ok
02:34:51.0471 0x23f0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
02:34:51.0497 0x23f0  dot3svc - ok
02:34:51.0540 0x23f0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
02:34:51.0565 0x23f0  DPS - ok
02:34:51.0598 0x23f0  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
02:34:51.0605 0x23f0  drmkaud - ok
02:34:51.0650 0x23f0  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
02:34:51.0661 0x23f0  dtsoftbus01 - ok
02:34:51.0719 0x23f0  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
02:34:51.0744 0x23f0  DXGKrnl - ok
02:34:51.0762 0x23f0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
02:34:51.0787 0x23f0  EapHost - ok
02:34:51.0891 0x23f0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
02:34:51.0960 0x23f0  ebdrv - ok
02:34:52.0000 0x23f0  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS             C:\Windows\System32\lsass.exe
02:34:52.0008 0x23f0  EFS - ok
02:34:52.0044 0x23f0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
02:34:52.0064 0x23f0  ehRecvr - ok
02:34:52.0084 0x23f0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
02:34:52.0094 0x23f0  ehSched - ok
02:34:52.0128 0x23f0  [ 2E6CE12D16B40DD96B4EBAFFAE79742D, E279713284279459671AEE7B86120BFA4C285A1ED721CFAEE2D6B8579518EA49 ] ElgatoGC656Y    C:\Windows\system32\Drivers\ElgatoGC656.sys
02:34:52.0136 0x23f0  ElgatoGC656Y - ok
02:34:52.0162 0x23f0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
02:34:52.0179 0x23f0  elxstor - ok
02:34:52.0202 0x23f0  [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64        C:\Windows\system32\DRIVERS\ENTECH64.sys
02:34:52.0209 0x23f0  ENTECH64 - ok
02:34:52.0249 0x23f0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
02:34:52.0257 0x23f0  ErrDev - ok
02:34:52.0301 0x23f0  [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
02:34:52.0308 0x23f0  ES lite Service - ok
02:34:52.0344 0x23f0  [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv           C:\Windows\etdrv.sys
02:34:52.0350 0x23f0  etdrv - ok
02:34:52.0390 0x23f0  [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
02:34:52.0396 0x23f0  EtronHub3 - ok
02:34:52.0435 0x23f0  [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
02:34:52.0441 0x23f0  EtronXHCI - ok
02:34:52.0460 0x23f0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
02:34:52.0491 0x23f0  EventSystem - ok
02:34:52.0508 0x23f0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
02:34:52.0535 0x23f0  exfat - ok
02:34:52.0553 0x23f0  Fabs - ok
02:34:52.0567 0x23f0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
02:34:52.0594 0x23f0  fastfat - ok
02:34:52.0646 0x23f0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
02:34:52.0666 0x23f0  Fax - ok
02:34:52.0671 0x23f0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
02:34:52.0678 0x23f0  fdc - ok
02:34:52.0692 0x23f0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
02:34:52.0715 0x23f0  fdPHost - ok
02:34:52.0724 0x23f0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
02:34:52.0748 0x23f0  FDResPub - ok
02:34:52.0752 0x23f0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
02:34:52.0760 0x23f0  FileInfo - ok
02:34:52.0766 0x23f0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
02:34:52.0790 0x23f0  Filetrace - ok
02:34:52.0888 0x23f0  [ FFF1130F7C9FA01D093A1EDFC5CCE8FC, 159EAA1893D871C309A063829CB3BC51A019FBCA1E07530B5CA1A382B2CCAF61 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
02:34:52.0955 0x23f0  FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic ( 1 )
02:34:52.0955 0x23f0  Detect skipped due to KSN trusted
02:34:52.0956 0x23f0  FirebirdServerMAGIXInstance - ok
02:34:52.0980 0x23f0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
02:34:52.0987 0x23f0  flpydisk - ok
02:34:53.0028 0x23f0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
02:34:53.0041 0x23f0  FltMgr - ok
02:34:53.0106 0x23f0  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
02:34:53.0135 0x23f0  FontCache - ok
02:34:53.0193 0x23f0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:34:53.0200 0x23f0  FontCache3.0.0.0 - ok
02:34:53.0215 0x23f0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
02:34:53.0223 0x23f0  FsDepends - ok
02:34:53.0257 0x23f0  [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
02:34:53.0264 0x23f0  fssfltr - ok
02:34:53.0448 0x23f0  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
02:34:53.0482 0x23f0  fsssvc - ok
02:34:53.0539 0x23f0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
02:34:53.0546 0x23f0  Fs_Rec - ok
02:34:53.0592 0x23f0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
02:34:53.0605 0x23f0  fvevol - ok
02:34:53.0628 0x23f0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
02:34:53.0636 0x23f0  gagp30kx - ok
02:34:53.0664 0x23f0  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
02:34:53.0670 0x23f0  gdrv - ok
02:34:53.0701 0x23f0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
02:34:53.0706 0x23f0  GEARAspiWDM - ok
02:34:53.0761 0x23f0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
02:34:53.0798 0x23f0  gpsvc - ok
02:34:53.0873 0x23f0  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:34:53.0881 0x23f0  gupdate - ok
02:34:53.0888 0x23f0  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:34:53.0896 0x23f0  gupdatem - ok
02:34:53.0937 0x23f0  [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64        C:\Windows\GVTDrv64.sys
02:34:53.0944 0x23f0  GVTDrv64 - ok
02:34:53.0958 0x23f0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
02:34:53.0966 0x23f0  hcw85cir - ok
02:34:54.0003 0x23f0  [ 8D7F985CE023640B8D24EAC045D7BABE, 8B3A2CBDA0D48D74519CB3B5928F77D65730D38E50D59995F2167C741F42FEC0 ] hcwhdpvr        C:\Windows\system32\DRIVERS\hcwhdpvr.sys
02:34:54.0012 0x23f0  hcwhdpvr - ok
         

Alt 24.11.2015, 03:53   #5
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



TDSSKiller.txt Teil 3:

Code:
ATTFilter
02:34:54.0051 0x23f0  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:34:54.0066 0x23f0  HdAudAddService - ok
02:34:54.0106 0x23f0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
02:34:54.0118 0x23f0  HDAudBus - ok
02:34:54.0128 0x23f0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
02:34:54.0136 0x23f0  HidBatt - ok
02:34:54.0141 0x23f0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
02:34:54.0152 0x23f0  HidBth - ok
02:34:54.0157 0x23f0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
02:34:54.0168 0x23f0  HidIr - ok
02:34:54.0195 0x23f0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
02:34:54.0220 0x23f0  hidserv - ok
02:34:54.0256 0x23f0  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
02:34:54.0264 0x23f0  HidUsb - ok
02:34:54.0305 0x23f0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
02:34:54.0330 0x23f0  hkmsvc - ok
02:34:54.0380 0x23f0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:34:54.0392 0x23f0  HomeGroupListener - ok
02:34:54.0434 0x23f0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:34:54.0446 0x23f0  HomeGroupProvider - ok
02:34:54.0464 0x23f0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
02:34:54.0473 0x23f0  HpSAMD - ok
02:34:54.0525 0x23f0  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
02:34:54.0547 0x23f0  HTTP - ok
02:34:54.0588 0x23f0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
02:34:54.0595 0x23f0  hwpolicy - ok
02:34:54.0633 0x23f0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
02:34:54.0642 0x23f0  i8042prt - ok
02:34:54.0683 0x23f0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
02:34:54.0697 0x23f0  iaStorV - ok
02:34:54.0798 0x23f0  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
02:34:54.0802 0x23f0  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
02:34:54.0802 0x23f0  Detect skipped due to KSN trusted
02:34:54.0802 0x23f0  IDriverT - ok
02:34:54.0887 0x23f0  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
02:34:54.0911 0x23f0  idsvc - ok
02:34:54.0916 0x23f0  IEEtwCollectorService - ok
02:34:54.0959 0x23f0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
02:34:54.0966 0x23f0  iirsp - ok
02:34:55.0056 0x23f0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
02:34:55.0080 0x23f0  IKEEXT - ok
02:34:55.0218 0x23f0  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
02:34:55.0306 0x23f0  IntcAzAudAddService - ok
02:34:55.0345 0x23f0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
02:34:55.0352 0x23f0  intelide - ok
02:34:55.0363 0x23f0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
02:34:55.0372 0x23f0  intelppm - ok
02:34:55.0395 0x23f0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
02:34:55.0422 0x23f0  IPBusEnum - ok
02:34:55.0462 0x23f0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:34:55.0485 0x23f0  IpFilterDriver - ok
02:34:55.0529 0x23f0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
02:34:55.0547 0x23f0  iphlpsvc - ok
02:34:55.0589 0x23f0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
02:34:55.0598 0x23f0  IPMIDRV - ok
02:34:55.0616 0x23f0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
02:34:55.0641 0x23f0  IPNAT - ok
02:34:55.0699 0x23f0  [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
02:34:55.0716 0x23f0  iPod Service - ok
02:34:55.0732 0x23f0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
02:34:55.0742 0x23f0  IRENUM - ok
02:34:55.0777 0x23f0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
02:34:55.0785 0x23f0  isapnp - ok
02:34:55.0853 0x23f0  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
02:34:55.0865 0x23f0  iScsiPrt - ok
02:34:55.0899 0x23f0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
02:34:55.0908 0x23f0  kbdclass - ok
02:34:55.0948 0x23f0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
02:34:55.0956 0x23f0  kbdhid - ok
02:34:55.0967 0x23f0  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso          C:\Windows\system32\lsass.exe
02:34:55.0975 0x23f0  KeyIso - ok
02:34:56.0013 0x23f0  [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
02:34:56.0021 0x23f0  KSecDD - ok
02:34:56.0061 0x23f0  [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
02:34:56.0071 0x23f0  KSecPkg - ok
02:34:56.0083 0x23f0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
02:34:56.0107 0x23f0  ksthunk - ok
02:34:56.0138 0x23f0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
02:34:56.0171 0x23f0  KtmRm - ok
02:34:56.0209 0x23f0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
02:34:56.0237 0x23f0  LanmanServer - ok
02:34:56.0276 0x23f0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:34:56.0302 0x23f0  LanmanWorkstation - ok
02:34:56.0334 0x23f0  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
02:34:56.0340 0x23f0  LGBusEnum - ok
02:34:56.0374 0x23f0  [ F7205E939F50B1C8D16F895916BE6756, 914326BAF54691AE880F6A3817B277F027F32AD7EF507A83F9A60DCA02901EDA ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
02:34:56.0381 0x23f0  LGSHidFilt - ok
02:34:56.0414 0x23f0  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
02:34:56.0420 0x23f0  LGVirHid - ok
02:34:56.0457 0x23f0  [ C7D21310EA0A644AA6394DE1E46E3D31, 597F27A2696F945FD6388CA62D5EE98E44694F477F57EF8A68C2151B2276E838 ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
02:34:56.0465 0x23f0  libusb0 - ok
02:34:56.0484 0x23f0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
02:34:56.0510 0x23f0  lltdio - ok
02:34:56.0541 0x23f0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
02:34:56.0572 0x23f0  lltdsvc - ok
02:34:56.0590 0x23f0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
02:34:56.0615 0x23f0  lmhosts - ok
02:34:56.0641 0x23f0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
02:34:56.0651 0x23f0  LSI_FC - ok
02:34:56.0657 0x23f0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
02:34:56.0666 0x23f0  LSI_SAS - ok
02:34:56.0676 0x23f0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
02:34:56.0685 0x23f0  LSI_SAS2 - ok
02:34:56.0690 0x23f0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
02:34:56.0700 0x23f0  LSI_SCSI - ok
02:34:56.0717 0x23f0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
02:34:56.0742 0x23f0  luafv - ok
02:34:56.0752 0x23f0  [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64        C:\Windows\system32\DRIVERS\lv302a64.sys
02:34:56.0758 0x23f0  lvpepf64 - ok
02:34:56.0779 0x23f0  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:34:56.0786 0x23f0  LVPr2M64 - ok
02:34:56.0789 0x23f0  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
02:34:56.0795 0x23f0  LVPr2Mon - ok
02:34:56.0840 0x23f0  [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
02:34:56.0849 0x23f0  LVPrcS64 - ok
02:34:56.0919 0x23f0  [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
02:34:56.0931 0x23f0  LVRS64 - ok
02:34:56.0940 0x23f0  [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
02:34:56.0946 0x23f0  LVUSBS64 - ok
02:34:57.0108 0x23f0  [ 644E919936A8017B5F205E7FE7EDD19F, AE0BE09DF7192B2E8504DA8D65928C59C62635E0C8D08C6A4EB2A15D512E3E52 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
02:34:57.0205 0x23f0  LVUVC64 - ok
02:34:57.0240 0x23f0  [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
02:34:57.0248 0x23f0  ManyCam - ok
02:34:57.0283 0x23f0  [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv_x64.sys
02:34:57.0291 0x23f0  mcaudrv_simple - ok
02:34:57.0371 0x23f0  [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
02:34:57.0382 0x23f0  McComponentHostService - ok
02:34:57.0419 0x23f0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
02:34:57.0429 0x23f0  Mcx2Svc - ok
02:34:57.0442 0x23f0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
02:34:57.0450 0x23f0  megasas - ok
02:34:57.0468 0x23f0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
02:34:57.0480 0x23f0  MegaSR - ok
02:34:57.0547 0x23f0  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
02:34:57.0554 0x23f0  Microsoft Office Groove Audit Service - ok
02:34:57.0582 0x23f0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
02:34:57.0606 0x23f0  MMCSS - ok
02:34:57.0618 0x23f0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
02:34:57.0641 0x23f0  Modem - ok
02:34:57.0652 0x23f0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
02:34:57.0661 0x23f0  monitor - ok
02:34:57.0674 0x23f0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
02:34:57.0682 0x23f0  mouclass - ok
02:34:57.0686 0x23f0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
02:34:57.0695 0x23f0  mouhid - ok
02:34:57.0736 0x23f0  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
02:34:57.0746 0x23f0  mountmgr - ok
02:34:57.0798 0x23f0  [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:34:57.0808 0x23f0  MozillaMaintenance - ok
02:34:57.0843 0x23f0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
02:34:57.0853 0x23f0  mpio - ok
02:34:57.0867 0x23f0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
02:34:57.0891 0x23f0  mpsdrv - ok
02:34:57.0952 0x23f0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
02:34:57.0990 0x23f0  MpsSvc - ok
02:34:58.0034 0x23f0  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
02:34:58.0043 0x23f0  MRxDAV - ok
02:34:58.0078 0x23f0  [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
02:34:58.0088 0x23f0  mrxsmb - ok
02:34:58.0165 0x23f0  [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:34:58.0178 0x23f0  mrxsmb10 - ok
02:34:58.0194 0x23f0  [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:34:58.0204 0x23f0  mrxsmb20 - ok
02:34:58.0243 0x23f0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
02:34:58.0251 0x23f0  msahci - ok
02:34:58.0263 0x23f0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
02:34:58.0273 0x23f0  msdsm - ok
02:34:58.0293 0x23f0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
02:34:58.0304 0x23f0  MSDTC - ok
02:34:58.0321 0x23f0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
02:34:58.0344 0x23f0  Msfs - ok
02:34:58.0350 0x23f0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
02:34:58.0373 0x23f0  mshidkmdf - ok
02:34:58.0401 0x23f0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
02:34:58.0409 0x23f0  msisadrv - ok
02:34:58.0435 0x23f0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
02:34:58.0461 0x23f0  MSiSCSI - ok
02:34:58.0465 0x23f0  msiserver - ok
02:34:58.0475 0x23f0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
02:34:58.0498 0x23f0  MSKSSRV - ok
02:34:58.0501 0x23f0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
02:34:58.0524 0x23f0  MSPCLOCK - ok
02:34:58.0572 0x23f0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
02:34:58.0595 0x23f0  MSPQM - ok
02:34:58.0658 0x23f0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
02:34:58.0672 0x23f0  MsRPC - ok
02:34:58.0708 0x23f0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
02:34:58.0716 0x23f0  mssmbios - ok
02:34:58.0745 0x23f0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
02:34:58.0771 0x23f0  MSTEE - ok
02:34:58.0784 0x23f0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
02:34:58.0793 0x23f0  MTConfig - ok
02:34:58.0804 0x23f0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
02:34:58.0812 0x23f0  Mup - ok
02:34:58.0868 0x23f0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
02:34:58.0899 0x23f0  napagent - ok
02:34:58.0929 0x23f0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
02:34:58.0945 0x23f0  NativeWifiP - ok
02:34:59.0003 0x23f0  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
02:34:59.0028 0x23f0  NDIS - ok
02:34:59.0041 0x23f0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
02:34:59.0065 0x23f0  NdisCap - ok
02:34:59.0075 0x23f0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
02:34:59.0099 0x23f0  NdisTapi - ok
02:34:59.0140 0x23f0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
02:34:59.0163 0x23f0  Ndisuio - ok
02:34:59.0206 0x23f0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
02:34:59.0232 0x23f0  NdisWan - ok
02:34:59.0270 0x23f0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
02:34:59.0294 0x23f0  NDProxy - ok
02:34:59.0331 0x23f0  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
02:34:59.0339 0x23f0  Netaapl - ok
02:34:59.0344 0x23f0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
02:34:59.0368 0x23f0  NetBIOS - ok
02:34:59.0410 0x23f0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
02:34:59.0437 0x23f0  NetBT - ok
02:34:59.0450 0x23f0  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon        C:\Windows\system32\lsass.exe
02:34:59.0459 0x23f0  Netlogon - ok
02:34:59.0480 0x23f0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
02:34:59.0510 0x23f0  Netman - ok
02:34:59.0545 0x23f0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0558 0x23f0  NetMsmqActivator - ok
02:34:59.0571 0x23f0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0583 0x23f0  NetPipeActivator - ok
02:34:59.0608 0x23f0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
02:34:59.0641 0x23f0  netprofm - ok
02:34:59.0678 0x23f0  [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
02:34:59.0699 0x23f0  netr28x - ok
02:34:59.0706 0x23f0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0718 0x23f0  NetTcpActivator - ok
02:34:59.0723 0x23f0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:34:59.0735 0x23f0  NetTcpPortSharing - ok
02:34:59.0747 0x23f0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
02:34:59.0755 0x23f0  nfrd960 - ok
02:34:59.0798 0x23f0  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
02:34:59.0811 0x23f0  NlaSvc - ok
02:34:59.0816 0x23f0  nlsX86cc - ok
02:34:59.0820 0x23f0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
02:34:59.0845 0x23f0  Npfs - ok
02:34:59.0933 0x23f0  [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo      C:\Windows\sysWOW64\drivers\npf_devolo.sys
02:34:59.0939 0x23f0  NPF_devolo - ok
02:34:59.0961 0x23f0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
02:34:59.0985 0x23f0  nsi - ok
02:34:59.0991 0x23f0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
02:35:00.0015 0x23f0  nsiproxy - ok
02:35:00.0093 0x23f0  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
02:35:00.0131 0x23f0  Ntfs - ok
02:35:00.0146 0x23f0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
02:35:00.0169 0x23f0  Null - ok
02:35:00.0543 0x23f0  [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
02:35:00.0786 0x23f0  nvlddmkm - ok
02:35:00.0904 0x23f0  [ C50CD479FD1BB886244E2663DFFBCF6A, CCFB60425E56A12C097EC05A9E5549B4F4A10379818ABC64945487C16F882E3D ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
02:35:00.0941 0x23f0  NvNetworkService - ok
02:35:00.0978 0x23f0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
02:35:00.0987 0x23f0  nvraid - ok
02:35:01.0008 0x23f0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
02:35:01.0018 0x23f0  nvstor - ok
02:35:01.0072 0x23f0  [ AD7A2F3AF147B2CF302EBF7C1E01E027, B8DAAE7FE4B13C9CA3F1DEE7C98F5CA49D4D1678C82C51D6801210838319BAE5 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
02:35:01.0079 0x23f0  NvStreamKms - ok
02:35:01.0095 0x23f0  NvStreamSvc - ok
02:35:01.0140 0x23f0  [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc           C:\Windows\system32\nvvsvc.exe
02:35:01.0165 0x23f0  nvsvc - ok
02:35:01.0172 0x23f0  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
02:35:01.0180 0x23f0  nvvad_WaveExtensible - ok
02:35:01.0214 0x23f0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
02:35:01.0223 0x23f0  nv_agp - ok
02:35:01.0300 0x23f0  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
02:35:01.0314 0x23f0  odserv - ok
02:35:01.0354 0x23f0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
02:35:01.0362 0x23f0  ohci1394 - ok
02:35:01.0392 0x23f0  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:35:01.0400 0x23f0  ose - ok
02:35:01.0434 0x23f0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
02:35:01.0449 0x23f0  p2pimsvc - ok
02:35:01.0480 0x23f0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
02:35:01.0496 0x23f0  p2psvc - ok
02:35:01.0602 0x23f0  [ F7BAC457D6AE2F7E18FA69C8180A7843, 19C1B162FD17A0D5441183C331BF3020D6EF00DAFFBF0464C317BA208BFD2B2A ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
02:35:01.0663 0x23f0  PaceLicenseDServices - detected UnsignedFile.Multi.Generic ( 1 )
02:35:01.0663 0x23f0  Detect skipped due to KSN trusted
02:35:01.0664 0x23f0  PaceLicenseDServices - ok
02:35:01.0690 0x23f0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
02:35:01.0699 0x23f0  Parport - ok
02:35:01.0738 0x23f0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
02:35:01.0747 0x23f0  partmgr - ok
02:35:01.0787 0x23f0  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
02:35:01.0798 0x23f0  PcaSvc - ok
02:35:01.0841 0x23f0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
02:35:01.0851 0x23f0  pci - ok
02:35:01.0890 0x23f0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
02:35:01.0898 0x23f0  pciide - ok
02:35:01.0917 0x23f0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
02:35:01.0928 0x23f0  pcmcia - ok
02:35:01.0943 0x23f0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
02:35:01.0950 0x23f0  pcw - ok
02:35:02.0002 0x23f0  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
02:35:02.0022 0x23f0  PEAUTH - ok
02:35:02.0068 0x23f0  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
02:35:02.0101 0x23f0  PeerDistSvc - ok
02:35:02.0127 0x23f0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
02:35:02.0136 0x23f0  PerfHost - ok
02:35:02.0228 0x23f0  [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
02:35:02.0286 0x23f0  PID_PEPI - ok
02:35:02.0362 0x23f0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
02:35:02.0411 0x23f0  pla - ok
02:35:02.0459 0x23f0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
02:35:02.0474 0x23f0  PlugPlay - ok
02:35:02.0479 0x23f0  PnkBstrA - ok
02:35:02.0485 0x23f0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
02:35:02.0493 0x23f0  PNRPAutoReg - ok
02:35:02.0509 0x23f0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
02:35:02.0523 0x23f0  PNRPsvc - ok
02:35:02.0579 0x23f0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
02:35:02.0611 0x23f0  PolicyAgent - ok
02:35:02.0634 0x23f0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
02:35:02.0662 0x23f0  Power - ok
02:35:02.0697 0x23f0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
02:35:02.0721 0x23f0  PptpMiniport - ok
02:35:02.0741 0x23f0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
02:35:02.0749 0x23f0  Processor - ok
02:35:02.0791 0x23f0  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
02:35:02.0803 0x23f0  ProfSvc - ok
02:35:02.0817 0x23f0  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
02:35:02.0825 0x23f0  ProtectedStorage - ok
02:35:02.0941 0x23f0  [ 77D05941A147C152CA088D7364D8944B, 1296DF0BAA4228C437C2691B1C5E533921A4A97305179D0E0CE1CA4CE1A318D3 ] PS3 Media Server C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
02:35:02.0953 0x23f0  PS3 Media Server - ok
02:35:02.0997 0x23f0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
02:35:03.0021 0x23f0  Psched - ok
02:35:03.0058 0x23f0  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
02:35:03.0065 0x23f0  PxHlpa64 - ok
02:35:03.0120 0x23f0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
02:35:03.0155 0x23f0  ql2300 - ok
02:35:03.0173 0x23f0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
02:35:03.0183 0x23f0  ql40xx - ok
02:35:03.0204 0x23f0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
02:35:03.0219 0x23f0  QWAVE - ok
02:35:03.0229 0x23f0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
02:35:03.0240 0x23f0  QWAVEdrv - ok
02:35:03.0316 0x23f0  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
02:35:03.0326 0x23f0  RapiMgr - ok
02:35:03.0341 0x23f0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
02:35:03.0364 0x23f0  RasAcd - ok
02:35:03.0392 0x23f0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
02:35:03.0416 0x23f0  RasAgileVpn - ok
02:35:03.0427 0x23f0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
02:35:03.0452 0x23f0  RasAuto - ok
02:35:03.0485 0x23f0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
02:35:03.0509 0x23f0  Rasl2tp - ok
02:35:03.0562 0x23f0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
02:35:03.0591 0x23f0  RasMan - ok
02:35:03.0601 0x23f0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
02:35:03.0626 0x23f0  RasPppoe - ok
02:35:03.0640 0x23f0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
02:35:03.0665 0x23f0  RasSstp - ok
02:35:03.0753 0x23f0  [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
02:35:03.0762 0x23f0  Razer Game Scanner Service - ok
02:35:03.0837 0x23f0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
02:35:03.0864 0x23f0  rdbss - ok
02:35:03.0879 0x23f0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
02:35:03.0888 0x23f0  rdpbus - ok
02:35:03.0891 0x23f0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
02:35:03.0915 0x23f0  RDPCDD - ok
02:35:03.0955 0x23f0  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
02:35:03.0965 0x23f0  RDPDR - ok
02:35:03.0969 0x23f0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
02:35:03.0992 0x23f0  RDPENCDD - ok
02:35:04.0006 0x23f0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
02:35:04.0029 0x23f0  RDPREFMP - ok
02:35:04.0069 0x23f0  [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:35:04.0076 0x23f0  RdpVideoMiniport - ok
02:35:04.0116 0x23f0  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
02:35:04.0127 0x23f0  RDPWD - ok
02:35:04.0167 0x23f0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
02:35:04.0178 0x23f0  rdyboost - ok
02:35:04.0195 0x23f0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
02:35:04.0220 0x23f0  RemoteAccess - ok
02:35:04.0235 0x23f0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
02:35:04.0262 0x23f0  RemoteRegistry - ok
02:35:04.0282 0x23f0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
02:35:04.0307 0x23f0  RpcEptMapper - ok
02:35:04.0317 0x23f0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
02:35:04.0326 0x23f0  RpcLocator - ok
02:35:04.0374 0x23f0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
02:35:04.0406 0x23f0  RpcSs - ok
02:35:04.0417 0x23f0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
02:35:04.0442 0x23f0  rspndr - ok
02:35:04.0474 0x23f0  [ 60EB8A87357CA5B088B422D1E55A2405, A4E8ACACB9EFB094D05EC24DFB65D969DBA14634EEB6B4DBEF500BDEA8D78DB5 ] rt61x64         C:\Windows\system32\DRIVERS\netr6164.sys
02:35:04.0488 0x23f0  rt61x64 - ok
02:35:04.0536 0x23f0  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
02:35:04.0550 0x23f0  RTL8167 - ok
02:35:04.0603 0x23f0  [ B3F36B4B3F192EA87DDC119F3A0B3E45, DE80502994ED9977AD64483385A0BC0C6060EA9E9C08645E72FBBCFE8B2358C7 ] RTL8192su       C:\Windows\system32\DRIVERS\RTL8192su.sys
02:35:04.0622 0x23f0  RTL8192su - ok
02:35:04.0656 0x23f0  [ 5FA5ED95D2B02E92B9BC269A6B0B5039, 9C7CAB795658EC965B350318A9F5FC4EEFD2086C0BD71BAC7DD8B4A4863F6AE7 ] rzjstk          C:\Windows\system32\DRIVERS\rzjstk.sys
02:35:04.0662 0x23f0  rzjstk - ok
02:35:04.0703 0x23f0  [ D76C183CC06A1AF1F25377DA2C2FB324, 00188E5965764036A388CDD28A2A4F49B0EECFF8A4FE08E43E63F9D35801FF0B ] rzkeypadendpt   C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
02:35:04.0709 0x23f0  rzkeypadendpt - ok
02:35:04.0748 0x23f0  [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
02:35:04.0754 0x23f0  rzpmgrk - ok
02:35:04.0791 0x23f0  [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
02:35:04.0799 0x23f0  rzpnk - ok
02:35:04.0852 0x23f0  [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd           C:\Windows\system32\DRIVERS\rzudd.sys
02:35:04.0861 0x23f0  rzudd - ok
02:35:04.0905 0x23f0  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
02:35:04.0912 0x23f0  s3cap - ok
02:35:04.0934 0x23f0  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs           C:\Windows\system32\lsass.exe
02:35:04.0941 0x23f0  SamSs - ok
02:35:05.0003 0x23f0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
02:35:05.0012 0x23f0  sbp2port - ok
02:35:05.0067 0x23f0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
02:35:05.0094 0x23f0  SCardSvr - ok
02:35:05.0126 0x23f0  [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
02:35:05.0134 0x23f0  SCDEmu - ok
02:35:05.0173 0x23f0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
02:35:05.0195 0x23f0  scfilter - ok
02:35:05.0252 0x23f0  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
02:35:05.0280 0x23f0  Schedule - ok
02:35:05.0319 0x23f0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
02:35:05.0343 0x23f0  SCPolicySvc - ok
02:35:05.0378 0x23f0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
02:35:05.0389 0x23f0  SDRSVC - ok
02:35:05.0401 0x23f0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
02:35:05.0409 0x23f0  secdrv - ok
02:35:05.0452 0x23f0  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
02:35:05.0475 0x23f0  seclogon - ok
02:35:05.0494 0x23f0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
02:35:05.0519 0x23f0  SENS - ok
02:35:05.0530 0x23f0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
02:35:05.0538 0x23f0  SensrSvc - ok
02:35:05.0583 0x23f0  [ 84AC127242DD3CCDE02F9A4673214B1F, 87E229138AAF10951C153F0BEC9B46CB459FE80074E02DE1DA0BC0FA5A11F237 ] Sentinel64      C:\Windows\System32\Drivers\Sentinel64.sys
02:35:05.0591 0x23f0  Sentinel64 - ok
02:35:05.0600 0x23f0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
02:35:05.0608 0x23f0  Serenum - ok
02:35:05.0623 0x23f0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
02:35:05.0632 0x23f0  Serial - ok
02:35:05.0668 0x23f0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
02:35:05.0676 0x23f0  sermouse - ok
02:35:05.0720 0x23f0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
02:35:05.0745 0x23f0  SessionEnv - ok
02:35:05.0788 0x23f0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
02:35:05.0797 0x23f0  sffdisk - ok
02:35:05.0803 0x23f0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
02:35:05.0812 0x23f0  sffp_mmc - ok
02:35:05.0819 0x23f0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
02:35:05.0828 0x23f0  sffp_sd - ok
02:35:05.0848 0x23f0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
02:35:05.0855 0x23f0  sfloppy - ok
02:35:05.0881 0x23f0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
02:35:05.0911 0x23f0  SharedAccess - ok
02:35:05.0958 0x23f0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:35:05.0988 0x23f0  ShellHWDetection - ok
02:35:06.0006 0x23f0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
02:35:06.0014 0x23f0  SiSRaid2 - ok
02:35:06.0032 0x23f0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
02:35:06.0040 0x23f0  SiSRaid4 - ok
02:35:06.0113 0x23f0  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
02:35:06.0128 0x23f0  SkypeUpdate - ok
02:35:06.0148 0x23f0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
02:35:06.0172 0x23f0  Smb - ok
02:35:06.0191 0x23f0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
02:35:06.0200 0x23f0  SNMPTRAP - ok
02:35:06.0209 0x23f0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
02:35:06.0217 0x23f0  spldr - ok
02:35:06.0268 0x23f0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
02:35:06.0286 0x23f0  Spooler - ok
02:35:06.0410 0x23f0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
02:35:06.0498 0x23f0  sppsvc - ok
02:35:06.0526 0x23f0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
02:35:06.0551 0x23f0  sppuinotify - ok
02:35:06.0599 0x23f0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
02:35:06.0614 0x23f0  srv - ok
02:35:06.0663 0x23f0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
02:35:06.0677 0x23f0  srv2 - ok
02:35:06.0694 0x23f0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
02:35:06.0704 0x23f0  srvnet - ok
02:35:06.0718 0x23f0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
02:35:06.0745 0x23f0  SSDPSRV - ok
02:35:06.0755 0x23f0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
02:35:06.0780 0x23f0  SstpSvc - ok
02:35:06.0816 0x23f0  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
02:35:06.0826 0x23f0  ssudmdm - ok
02:35:06.0876 0x23f0  [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
02:35:06.0897 0x23f0  Steam Client Service - ok
02:35:06.0945 0x23f0  [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
02:35:06.0959 0x23f0  Stereo Service - ok
02:35:06.0973 0x23f0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
02:35:06.0981 0x23f0  stexstor - ok
02:35:07.0016 0x23f0  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\drivers\serscan.sys
02:35:07.0024 0x23f0  StillCam - ok
02:35:07.0078 0x23f0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
02:35:07.0100 0x23f0  stisvc - ok
02:35:07.0134 0x23f0  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
02:35:07.0142 0x23f0  storflt - ok
02:35:07.0152 0x23f0  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
02:35:07.0160 0x23f0  storvsc - ok
02:35:07.0201 0x23f0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
02:35:07.0208 0x23f0  swenum - ok
02:35:07.0319 0x23f0  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
02:35:07.0335 0x23f0  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
02:35:07.0335 0x23f0  Detect skipped due to KSN trusted
02:35:07.0335 0x23f0  SwitchBoard - ok
02:35:07.0358 0x23f0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
02:35:07.0392 0x23f0  swprv - ok
02:35:07.0396 0x23f0  Synth3dVsc - ok
02:35:07.0479 0x23f0  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
02:35:07.0519 0x23f0  SysMain - ok
02:35:07.0556 0x23f0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:35:07.0569 0x23f0  TabletInputService - ok
02:35:07.0776 0x23f0  [ 34D92E8CB04DCAEEAE054FEDE7526282, 73F38FAB499EBA5344251F9A4B1883D326AB7F55022B81C596EAA664906482F1 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
02:35:07.0903 0x23f0  TabletServiceWacom - ok
02:35:07.0950 0x23f0  [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
02:35:07.0959 0x23f0  tap0901t - ok
02:35:08.0005 0x23f0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
02:35:08.0034 0x23f0  TapiSrv - ok
02:35:08.0045 0x23f0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
02:35:08.0071 0x23f0  TBS - ok
02:35:08.0151 0x23f0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
02:35:08.0193 0x23f0  Tcpip - ok
02:35:08.0251 0x23f0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
02:35:08.0293 0x23f0  TCPIP6 - ok
02:35:08.0337 0x23f0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
02:35:08.0345 0x23f0  tcpipreg - ok
02:35:08.0361 0x23f0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
02:35:08.0369 0x23f0  TDPIPE - ok
02:35:08.0405 0x23f0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
02:35:08.0412 0x23f0  TDTCP - ok
02:35:08.0455 0x23f0  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
02:35:08.0464 0x23f0  tdx - ok
02:35:08.0655 0x23f0  [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
02:35:08.0751 0x23f0  TeamViewer9 - ok
02:35:08.0771 0x23f0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
02:35:08.0779 0x23f0  TermDD - ok
02:35:08.0844 0x23f0  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
02:35:08.0865 0x23f0  TermService - ok
02:35:08.0900 0x23f0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
02:35:08.0912 0x23f0  Themes - ok
02:35:08.0965 0x23f0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
02:35:08.0990 0x23f0  THREADORDER - ok
02:35:09.0019 0x23f0  [ 8DD33A57339ADAE34CDB12994ACBC50F, 58FD3AC48E3EE6BECCED4E0227C73D6783BF552A3A0B5FD43F091580108E1A0D ] Tpkd            C:\Windows\system32\drivers\Tpkd.sys
02:35:09.0027 0x23f0  Tpkd - ok
02:35:09.0076 0x23f0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
02:35:09.0102 0x23f0  TrkWks - ok
02:35:09.0157 0x23f0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:35:09.0183 0x23f0  TrustedInstaller - ok
02:35:09.0222 0x23f0  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
02:35:09.0230 0x23f0  tssecsrv - ok
02:35:09.0270 0x23f0  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
02:35:09.0278 0x23f0  TsUsbFlt - ok
02:35:09.0281 0x23f0  tsusbhub - ok
02:35:09.0321 0x23f0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
02:35:09.0346 0x23f0  tunnel - ok
02:35:09.0413 0x23f0  [ A96BE6F92EDE53BA5997B2AE7367EACD, D2CE331F0BBA15C19A66BEF91FBDA96536F656C89DC9FE1A2F88D0C368986BB2 ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
02:35:09.0431 0x23f0  TunngleService - ok
02:35:09.0448 0x23f0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
02:35:09.0456 0x23f0  uagp35 - ok
02:35:09.0512 0x23f0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
02:35:09.0540 0x23f0  udfs - ok
02:35:09.0555 0x23f0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
02:35:09.0565 0x23f0  UI0Detect - ok
02:35:09.0573 0x23f0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
02:35:09.0581 0x23f0  uliagpkx - ok
02:35:09.0620 0x23f0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
02:35:09.0628 0x23f0  umbus - ok
02:35:09.0643 0x23f0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
02:35:09.0651 0x23f0  UmPass - ok
02:35:09.0687 0x23f0  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
02:35:09.0699 0x23f0  UmRdpService - ok
02:35:09.0761 0x23f0  [ AEBE8F338432F9DE5AE0CAE4D4BAED76, A11DE1BAEF6E0D30B8801C0AEC589F0DA6FEC5E010BD6A18584D96E0AF9243B8 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
02:35:09.0775 0x23f0  UMVPFSrv - ok
02:35:09.0802 0x23f0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
02:35:09.0833 0x23f0  upnphost - ok
02:35:09.0875 0x23f0  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
02:35:09.0883 0x23f0  USBAAPL64 - ok
02:35:09.0925 0x23f0  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
02:35:09.0934 0x23f0  usbaudio - ok
02:35:09.0970 0x23f0  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
02:35:09.0978 0x23f0  usbccgp - ok
02:35:10.0020 0x23f0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
02:35:10.0029 0x23f0  usbcir - ok
02:35:10.0061 0x23f0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
02:35:10.0069 0x23f0  usbehci - ok
02:35:10.0086 0x23f0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
02:35:10.0099 0x23f0  usbhub - ok
02:35:10.0107 0x23f0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
02:35:10.0115 0x23f0  usbohci - ok
02:35:10.0129 0x23f0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
02:35:10.0138 0x23f0  usbprint - ok
02:35:10.0174 0x23f0  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:35:10.0182 0x23f0  USBSTOR - ok
02:35:10.0197 0x23f0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
02:35:10.0204 0x23f0  usbuhci - ok
02:35:10.0240 0x23f0  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
02:35:10.0250 0x23f0  usbvideo - ok
02:35:10.0266 0x23f0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
02:35:10.0291 0x23f0  UxSms - ok
02:35:10.0312 0x23f0  [ 18436F7006443FB76145B3D35162A810, 1670A711D808AEA66A63443CE752EB771D4BF34CA838B0040849A436FFF77E69 ] VaneFltr        C:\Windows\system32\drivers\Lachesis.sys
02:35:10.0318 0x23f0  VaneFltr - ok
02:35:10.0333 0x23f0  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc        C:\Windows\system32\lsass.exe
02:35:10.0341 0x23f0  VaultSvc - ok
02:35:10.0377 0x23f0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
02:35:10.0385 0x23f0  vdrvroot - ok
02:35:10.0434 0x23f0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
02:35:10.0468 0x23f0  vds - ok
02:35:10.0481 0x23f0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
02:35:10.0490 0x23f0  vga - ok
02:35:10.0507 0x23f0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
02:35:10.0531 0x23f0  VgaSave - ok
02:35:10.0535 0x23f0  VGPU - ok
02:35:10.0574 0x23f0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
02:35:10.0586 0x23f0  vhdmp - ok
02:35:10.0622 0x23f0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
02:35:10.0630 0x23f0  viaide - ok
02:35:10.0665 0x23f0  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
02:35:10.0677 0x23f0  vmbus - ok
02:35:10.0694 0x23f0  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
02:35:10.0701 0x23f0  VMBusHID - ok
02:35:10.0740 0x23f0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
02:35:10.0749 0x23f0  volmgr - ok
02:35:10.0796 0x23f0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
02:35:10.0810 0x23f0  volmgrx - ok
02:35:10.0825 0x23f0  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
02:35:10.0838 0x23f0  volsnap - ok
02:35:10.0863 0x23f0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
02:35:10.0873 0x23f0  vsmraid - ok
02:35:10.0943 0x23f0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
02:35:10.0995 0x23f0  VSS - ok
02:35:11.0012 0x23f0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
02:35:11.0021 0x23f0  vwifibus - ok
02:35:11.0034 0x23f0  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
02:35:11.0045 0x23f0  vwififlt - ok
02:35:11.0061 0x23f0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
02:35:11.0092 0x23f0  W32Time - ok
02:35:11.0136 0x23f0  [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor   C:\Windows\system32\DRIVERS\wacmoumonitor.sys
02:35:11.0142 0x23f0  wacmoumonitor - ok
02:35:11.0175 0x23f0  [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
02:35:11.0181 0x23f0  wacommousefilter - ok
02:35:11.0191 0x23f0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
02:35:11.0199 0x23f0  WacomPen - ok
02:35:11.0231 0x23f0  [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid       C:\Windows\system32\DRIVERS\wacomvhid.sys
02:35:11.0236 0x23f0  wacomvhid - ok
02:35:11.0249 0x23f0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
02:35:11.0273 0x23f0  WANARP - ok
02:35:11.0277 0x23f0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
02:35:11.0300 0x23f0  Wanarpv6 - ok
02:35:11.0377 0x23f0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
02:35:11.0413 0x23f0  wbengine - ok
02:35:11.0429 0x23f0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
02:35:11.0444 0x23f0  WbioSrvc - ok
02:35:11.0489 0x23f0  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
02:35:11.0504 0x23f0  WcesComm - ok
02:35:11.0566 0x23f0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
02:35:11.0584 0x23f0  wcncsvc - ok
02:35:11.0598 0x23f0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:35:11.0607 0x23f0  WcsPlugInService - ok
02:35:11.0621 0x23f0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
02:35:11.0628 0x23f0  Wd - ok
02:35:11.0686 0x23f0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
02:35:11.0709 0x23f0  Wdf01000 - ok
02:35:11.0720 0x23f0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
02:35:11.0733 0x23f0  WdiServiceHost - ok
02:35:11.0737 0x23f0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
02:35:11.0750 0x23f0  WdiSystemHost - ok
02:35:11.0788 0x23f0  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
02:35:11.0800 0x23f0  WebClient - ok
02:35:11.0812 0x23f0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
02:35:11.0841 0x23f0  Wecsvc - ok
02:35:11.0854 0x23f0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
02:35:11.0880 0x23f0  wercplsupport - ok
02:35:11.0890 0x23f0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
02:35:11.0915 0x23f0  WerSvc - ok
02:35:11.0928 0x23f0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
02:35:11.0951 0x23f0  WfpLwf - ok
02:35:11.0961 0x23f0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
02:35:11.0968 0x23f0  WIMMount - ok
02:35:11.0987 0x23f0  WinDefend - ok
02:35:11.0992 0x23f0  WinHttpAutoProxySvc - ok
02:35:12.0029 0x23f0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
02:35:12.0057 0x23f0  Winmgmt - ok
02:35:12.0145 0x23f0  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
02:35:12.0191 0x23f0  WinRM - ok
02:35:12.0234 0x23f0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
02:35:12.0244 0x23f0  WinUsb - ok
02:35:12.0279 0x23f0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
02:35:12.0307 0x23f0  Wlansvc - ok
02:35:12.0335 0x23f0  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
02:35:12.0341 0x23f0  wlcrasvc - ok
02:35:12.0461 0x23f0  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
02:35:12.0510 0x23f0  wlidsvc - ok
02:35:12.0557 0x23f0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
02:35:12.0566 0x23f0  WmiAcpi - ok
02:35:12.0585 0x23f0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
02:35:12.0597 0x23f0  wmiApSrv - ok
02:35:12.0600 0x23f0  WMPNetworkSvc - ok
02:35:12.0615 0x23f0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
02:35:12.0623 0x23f0  WPCSvc - ok
02:35:12.0659 0x23f0  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
02:35:12.0670 0x23f0  WPDBusEnum - ok
02:35:12.0674 0x23f0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
02:35:12.0697 0x23f0  ws2ifsl - ok
02:35:12.0709 0x23f0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
02:35:12.0722 0x23f0  wscsvc - ok
02:35:12.0753 0x23f0  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
02:35:12.0762 0x23f0  WSDPrintDevice - ok
02:35:12.0766 0x23f0  WSearch - ok
02:35:12.0868 0x23f0  [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv        C:\Windows\system32\wuaueng.dll
02:35:12.0927 0x23f0  wuauserv - ok
02:35:12.0964 0x23f0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
02:35:12.0973 0x23f0  WudfPf - ok
02:35:12.0990 0x23f0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
02:35:13.0001 0x23f0  WUDFRd - ok
02:35:13.0040 0x23f0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
02:35:13.0049 0x23f0  wudfsvc - ok
02:35:13.0088 0x23f0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
02:35:13.0101 0x23f0  WwanSvc - ok
02:35:13.0138 0x23f0  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
02:35:13.0146 0x23f0  xusb21 - ok
02:35:13.0165 0x23f0  ================ Scan global ===============================
02:35:13.0202 0x23f0  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
02:35:13.0236 0x23f0  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:35:13.0253 0x23f0  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
02:35:13.0274 0x23f0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
02:35:13.0310 0x23f0  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
02:35:13.0316 0x23f0  [ Global ] - ok
02:35:13.0317 0x23f0  ================ Scan MBR ==================================
02:35:13.0324 0x23f0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
02:35:13.0487 0x23f0  \Device\Harddisk1\DR1 - ok
02:35:13.0490 0x23f0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:35:13.0508 0x23f0  \Device\Harddisk0\DR0 - ok
02:35:13.0508 0x23f0  ================ Scan VBR ==================================
02:35:13.0510 0x23f0  [ CDB057F2BB39ED9D067F761AEC114D0F ] \Device\Harddisk1\DR1\Partition1
02:35:13.0512 0x23f0  \Device\Harddisk1\DR1\Partition1 - ok
02:35:13.0515 0x23f0  [ 1932210E82096A1056F7A312EBF08D66 ] \Device\Harddisk1\DR1\Partition2
02:35:13.0517 0x23f0  \Device\Harddisk1\DR1\Partition2 - ok
02:35:13.0520 0x23f0  [ A087C0120C9361BE942045AE6FAFCA2A ] \Device\Harddisk0\DR0\Partition1
02:35:13.0522 0x23f0  \Device\Harddisk0\DR0\Partition1 - ok
02:35:13.0522 0x23f0  ================ Scan generic autorun ======================
02:35:13.0866 0x23f0  [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
02:35:14.0098 0x23f0  RtHDVCpl - ok
02:35:14.0329 0x23f0  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
02:35:14.0346 0x23f0  AdobeAAMUpdater-1.0 - ok
02:35:14.0466 0x23f0  [ 5EA707336336DDFADE5FD3726CEA1523, 6136D88012140B3A43C7DC6CD0CBDB867BC6BA62D718269B73ED9F1B340F6768 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
02:35:14.0512 0x23f0  NvBackend - ok
02:35:14.0558 0x23f0  [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
02:35:14.0567 0x23f0  iTunesHelper - ok
02:35:14.0617 0x23f0  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
02:35:14.0635 0x23f0  Windows Mobile-based device management - ok
02:35:14.0742 0x23f0  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
02:35:14.0748 0x23f0  HP Software Update - ok
02:35:14.0827 0x23f0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:35:14.0857 0x23f0  Sidebar - ok
02:35:14.0887 0x23f0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:35:14.0900 0x23f0  mctadmin - ok
02:35:14.0944 0x23f0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
02:35:14.0973 0x23f0  Sidebar - ok
02:35:14.0979 0x23f0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
02:35:14.0992 0x23f0  mctadmin - ok
02:35:15.0112 0x23f0  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
02:35:15.0166 0x23f0  HP Officejet Pro 8600 (NET) - ok
02:35:15.0300 0x23f0  [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Jeremy J. Erb\AppData\Roaming\uTorrent\uTorrent.exe
02:35:15.0333 0x23f0  uTorrent - ok
02:35:15.0532 0x23f0  [ 7A2870C2A8283B3630BF7670D0362B94, A36AA6F2A78DF3E66ACA484E9E33D0CB01207FF52A0A8C006424493A5C489C48 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
02:35:15.0551 0x23f0  GoogleChromeAutoLaunch_90C1996279C19B2AA865F0F198BD9F08 - ok
02:35:15.0692 0x23f0  [ E17E53F297560C31631C4AC549385AE3, 7A5A6895D7DEF32B4CC7EF037E15CF5C4B01E28A3903F30686910C4AA89835A5 ] C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
02:35:15.0729 0x23f0  uTorrent - ok
02:35:15.0805 0x23f0  [ 8D80BFF016E907AAE76E5667E0A8F1E0, 63728CD5E6EEBCC90B5FF854B6ACB565B194E46B71CAF89FB992E65433DD20E0 ] C:\Program Files (x86)\Voobly\voobly.exe
02:35:15.0810 0x23f0  Voobly - detected UnsignedFile.Multi.Generic ( 1 )
02:35:15.0810 0x23f0  Voobly ( UnsignedFile.Multi.Generic ) - warning
02:35:16.0049 0x23f0  [ D192592FD0A99D9F360906D3F6DFBFF1, E0ED95A8AB4D26A40BF95B8DB2D968AD1FDB36B8C4DF2990185E0458B3948CA3 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
02:35:16.0091 0x23f0  WSHelperSetup.exe - ok
02:35:16.0245 0x23f0  [ E1473471169EC64C57B49F9C984DFB1A, 3E05B4AD77F5CE13B01B7E1FD460F9779FF9E7C9E6DEBD5225EC840D96D12AA1 ] C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe
02:35:16.0348 0x23f0  Logitech Vid - ok
02:35:16.0362 0x23f0  Win FW state via NFP2: enabled ( trusted )
02:35:16.0557 0x23f0  ============================================================
02:35:16.0557 0x23f0  Scan finished
02:35:16.0557 0x23f0  ============================================================
02:35:16.0564 0x2104  Detected object count: 2
02:35:16.0564 0x2104  Actual detected object count: 2
02:43:21.0605 0x2104  BEService ( UnsignedFile.Multi.Generic ) - skipped by user
02:43:21.0605 0x2104  BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
02:43:21.0606 0x2104  Voobly ( UnsignedFile.Multi.Generic ) - skipped by user
02:43:21.0606 0x2104  Voobly ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
--> Die in Dateien "BEService.exe" und "Voobly.exe", welche in bei diesem Scan angegeben wurden, sind meines erachtens vertrauenswürdig, wenn ich mich nicht täusche,
dann hab ich diese Softwares einst heruntergeladen um "Age of Empires II" online zu spielen.


Vielen Dank für eure Hilfe !


Alt 24.11.2015, 10:30   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Hi,

Zitat:
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
Du hast da gecrackte Adobe Software => CS5
Das und alles andere etwaig vorhandene Crackzeugs muss verschwinden, bevor es hier weitergehen kann.

Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
--> .scr Datei ausversehen heruntergeladen.

Alt 24.11.2015, 17:29   #7
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Soll ich also die gesamte Creative Suite deinstallieren und die ursprüngliche Datei, welche den Crack durchführt (Keygen) löschen?

Also ich hab auf vielerlei Seiten nachgelesen, dass wenn man die Datei nicht ausführt, keine Bedrohung bestehen sollte. Ich hab die Datei wirklich nicht geöffnet, sondern gleich aus dem Chrome-Download-Ordner gelöscht. Gibt es hier eine Sicherheitslücke?

Alt 24.11.2015, 21:08   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Zitat:
Zitat von MrButsch Beitrag anzeigen
Soll ich also die gesamte Creative Suite deinstallieren und die ursprüngliche Datei, welche den Crack durchführt (Keygen) löschen?
Ja, es steht doch deutlich genug im Lesestoff, oder nicht?

Zitat:
Zitat von MrButsch Beitrag anzeigen
Also ich hab auf vielerlei Seiten nachgelesen, dass wenn man die Datei nicht ausführt, keine Bedrohung bestehen sollte. Ich hab die Datei wirklich nicht geöffnet, sondern gleich aus dem Chrome-Download-Ordner gelöscht. Gibt es hier eine Sicherheitslücke?
Ja, das ist richtig, Schaden kann erst entstehen, wenn Schadcode ausgeführt wurde.
Warum fragst du nach Sicherheitslücke? Begründung?
Den anderen Schrott im FRST-Log hast du gesehen? (schau mal nach Zeilen mit ATTENTION am Ende)
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 25.11.2015, 01:45   #9
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Ich hab die besagte Software deinstalliert und einen neuen Scan durchgeführt.

FRST.txt:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:23-11-2015
Ran by Nerdy By Nerds (administrator) on MATRIX (25-11-2015 01:50:38)
Running from C:\Users\Nerdy By Nerds\Desktop
Loaded Profiles: Nerdy By Nerds (Available Profiles: Jeremy J. Erb & Nerdy By Nerds)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
() C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Tanuki Software, Ltd.) C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Oracle Corporation) C:\Program Files (x86)\PS3 Media Server\jre64\bin\java.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
(BitTorrent Inc.) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\updates\3.4.5_41202\utorrentie.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\calc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-06] (Apple Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [592704 2015-07-08] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [uTorrent] => C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe [1822048 2015-10-08] (BitTorrent Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Voobly] => C:\Program Files (x86)\Voobly\voobly.exe [159744 2015-01-19] (Voobly)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.)
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\MountPoints2: {5d4390e4-1303-11e1-8728-806e6f6e6963} - D:\setup\rsrc\Autorun.exe
AppInit_DLLs: C:\PROGRA~3\WinSpeed\WINSPE~1.DLL => C:\ProgramData\WinSpeed\WinSpeed_x64.dll [4513280 2013-12-26] ()
AppInit_DLLs-x32: c:\progra~2\contin~1\sprote~1.dll => No File
AppInit_DLLs-x32:  c:\progra~3\winspeed\winspeed.dll => No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
Startup: C:\Users\Jeremy J. Erb\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2014-05-08]
ShortcutTarget: Curse.lnk -> C:\Users\Nerdy By Nerds\AppData\Roaming\Curse Client\Bin\Curse.exe (No File)
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{20C2A4C4-DFF1-4232-9CFC-010DD5A40F60}: [DhcpNameServer] 91.138.126.128 91.138.1.128
Tcpip\..\Interfaces\{6E745053-D0A6-4597-BEDD-2F3537336362}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{8598B077-B1B5-480B-B2FC-FD44B5A554BD}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{BA8B5644-3D53-487C-A063-F6BA6AAC75B7}: [DhcpNameServer] 172.20.10.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
SearchScopes: HKLM-x32 -> DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2645238
SearchScopes: HKLM-x32 -> {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.simplespeedy.info/?l=1&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-04-13] (Oracle Corporation)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-13] (Oracle Corporation)
BHO-x32: Avira Savings Advisor BHO -> {A18A516C-AA41-46A9-92DB-60208917E442} -> C:\Program Files (x86)\avira\Internet Explorer\avira32.dll [2013-12-11] ()
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll [No File]
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.0 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [No File]
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.116.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.122.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=1.96.0 -> C:\Program Files (x86)\Battlelog Web Plugins\1.96.0\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll [No File]
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll [2013-02-05] (McAfee, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-11-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll [2011-04-20] (Wacom, Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-02-15] (Adobe Systems Inc.)
FF Extension: Greasemonkey - C:\Users\Nerdy By Nerds\AppData\Roaming\Mozilla\Firefox\Profiles\0osjas9y.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-11-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]

Chrome: 
=======
CHR Profile: C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-29]
CHR Extension: (Google Drive) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
CHR Extension: (Google-Suche) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Docs Offline) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (AdBlock) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-11-24]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-30]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-29]
CHR Extension: (Google Mail) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-29]
CHR HKLM-x32\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files (x86)\avira\Chrome\avira-1.5.14.crx [2013-12-11]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [45056 2013-01-31] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3645432 2014-07-18] (devolo AG)
R2 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376 2009-08-27] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [235216 2013-02-05] (McAfee, Inc.)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2010-11-22] (Nalpeiron Ltd.) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-31] ()
R2 PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [384280 2012-11-27] (Tanuki Software, Ltd.)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187048 2015-06-23] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2014-11-04] (Tunngle.net GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21104 2011-01-10] ()
R1 archlp; C:\Windows\SysWow64\drivers\archlp.sys [161792 2009-02-06] ()
S1 Aspi32; no ImagePath
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2011-02-19] (DT Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ElgatoGC656Y; C:\Windows\System32\Drivers\ElgatoGC656.sys [94440 2014-07-07] (UB658)
S3 ENTECH64; C:\Windows\system32\DRIVERS\ENTECH64.sys [12744 2008-04-22] (EnTech Taiwan)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2012-10-13] ()
S3 hcwhdpvr; C:\Windows\System32\DRIVERS\hcwhdpvr.sys [189952 2010-06-23] (Hauppauge, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-02] (Logitech Inc.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52320 2013-08-07] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (CACE Technologies)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-12-30] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [33448 2014-08-21] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-06-12] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129472 2015-06-27] (Razer, Inc.)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 VaneFltr; C:\Windows\System32\drivers\Lachesis.sys [29952 2009-10-16] (Razer (Asia-Pacific) Pte Ltd)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-25 01:50 - 2015-11-25 01:50 - 00025690 _____ C:\Users\Nerdy By Nerds\Desktop\FRST.txt
2015-11-25 01:03 - 2015-11-25 01:03 - 00000588 _____ C:\Users\Nerdy By Nerds\Desktop\Attention einträge.txt
2015-11-25 00:55 - 2015-11-25 01:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\New folder (2)
2015-11-24 16:53 - 2015-11-24 16:53 - 00000302 _____ C:\Windows\PFRO.log
2015-11-24 16:53 - 2015-11-24 16:53 - 00000168 _____ C:\Windows\setupact.log
2015-11-24 16:53 - 2015-11-24 16:53 - 00000000 _____ C:\Windows\setuperr.log
2015-11-24 03:48 - 2015-11-24 03:48 - 00083577 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller 3.txt
2015-11-24 03:47 - 2015-11-24 03:48 - 00083625 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller 2.txt
2015-11-24 03:46 - 2015-11-24 03:48 - 00063335 _____ C:\Users\Nerdy By Nerds\Desktop\TDSSKiller.txt
2015-11-24 02:37 - 2015-11-25 01:50 - 00000000 ____D C:\FRST
2015-11-24 02:36 - 2015-11-24 02:36 - 02348544 _____ (Farbar) C:\Users\Nerdy By Nerds\Desktop\FRST64.exe
2015-11-24 02:30 - 2015-11-24 02:30 - 04397752 _____ (Kaspersky Lab ZAO) C:\Users\Nerdy By Nerds\Desktop\tdsskiller.exe
2015-11-23 22:43 - 2015-11-24 16:55 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\LocalLow\uTorrent
2015-11-17 19:09 - 2015-11-17 19:09 - 00046320 _____ C:\Users\Nerdy By Nerds\Desktop\test.mmmacro
2015-11-17 18:44 - 2015-11-17 18:44 - 00001071 _____ C:\Users\Public\Desktop\Macro Recorder.lnk
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macro Recorder
2015-11-17 18:44 - 2015-11-17 18:44 - 00000000 ____D C:\Program Files (x86)\MacroRecorder
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Auto-Mouse-Clicker
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Mouse Clicker v4.0
2015-11-17 17:58 - 2015-11-17 17:58 - 00000000 ____D C:\Program Files (x86)\Auto Mouse Clicker v4.0
2015-11-15 18:52 - 2015-11-15 18:52 - 00004544 _____ C:\Users\Nerdy By Nerds\Desktop\New Journal Document.jnt
2015-11-15 18:52 - 2015-11-15 18:52 - 00000000 _____ C:\Users\Nerdy By Nerds\Desktop\New Text Document.txt
2015-11-10 23:40 - 2015-11-10 23:40 - 05286088 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-08 20:27 - 2015-11-12 18:02 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-11-08 16:00 - 2015-11-08 16:06 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Flavio Fotos
2015-11-06 18:51 - 2015-11-22 18:33 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Empire Rising
2015-11-06 18:01 - 2015-11-06 19:10 - 352186801 ____N C:\Users\Nerdy By Nerds\Desktop\MVI_1036.MOV
2015-11-05 00:10 - 2015-11-05 00:10 - 00001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-11-05 00:09 - 2015-11-05 00:09 - 00000000 ____D C:\Program Files (x86)\New folder

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-25 01:49 - 2015-01-05 00:33 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent
2015-11-25 01:49 - 2011-04-16 09:48 - 00000000 ____D C:\Program Files\Adobe
2015-11-25 01:49 - 2011-03-14 19:37 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-25 01:49 - 2011-03-14 19:28 - 00000000 ____D C:\ProgramData\Adobe
2015-11-25 01:40 - 2013-03-10 23:43 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-25 01:37 - 2014-11-06 19:19 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\vlc
2015-11-25 01:21 - 2014-11-06 17:54 - 00000000 ____D C:\Users\Nerdy By Nerds
2015-11-25 01:18 - 2011-05-23 00:15 - 00001126 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-25 01:16 - 2014-11-06 18:07 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Games
2015-11-25 01:14 - 2011-03-14 19:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-11-25 01:12 - 2014-02-14 16:12 - 00000322 _____ C:\Windows\Tasks\Funmoods.job
2015-11-25 01:10 - 2011-03-14 20:17 - 00000000 ____D C:\Users\Jeremy J. Erb\Adobe Flash Builder 4
2015-11-25 01:08 - 2011-02-13 12:20 - 00000000 ____D C:\Users\Jeremy J. Erb\AppData\Roaming\Adobe
2015-11-25 01:07 - 2014-11-08 17:23 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Skype
2015-11-25 00:54 - 2014-11-06 23:43 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\TS3Client
2015-11-24 23:54 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2015-11-24 23:27 - 2011-02-13 00:09 - 01339443 _____ C:\Windows\WindowsUpdate.log
2015-11-24 19:18 - 2011-05-23 00:15 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-24 17:10 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-24 17:10 - 2009-07-14 05:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-24 16:54 - 2011-11-20 00:24 - 00000144 _____ C:\service.log
2015-11-24 16:53 - 2014-04-07 19:33 - 00000000 ____D C:\ProgramData\PMS
2015-11-24 16:53 - 2013-02-12 20:10 - 00000444 ____H C:\Windows\Tasks\schedule!1143840799.job
2015-11-24 16:53 - 2011-11-20 00:55 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-11-24 16:53 - 2011-02-13 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2015-11-24 16:53 - 2011-02-13 12:11 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-24 16:53 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-24 02:25 - 2011-03-26 02:54 - 00000000 ____D C:\Program Files (x86)\Steam
2015-11-20 20:40 - 2015-09-26 22:14 - 00157696 _____ C:\Windows\ERUNT.exe
2015-11-19 17:07 - 2013-08-10 12:16 - 00737390 _____ C:\Windows\system32\perfh00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00735432 _____ C:\Windows\system32\perfh013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00675688 _____ C:\Windows\system32\perfh00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00473428 _____ C:\Windows\system32\perfh00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00384278 _____ C:\Windows\system32\perfh00D.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00171272 _____ C:\Windows\system32\perfc00E.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00158472 _____ C:\Windows\system32\perfc00A.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00153100 _____ C:\Windows\system32\perfc013.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00101518 _____ C:\Windows\system32\perfc00B.dat
2015-11-19 17:07 - 2013-08-10 12:16 - 00084756 _____ C:\Windows\system32\perfc00D.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00731980 _____ C:\Windows\system32\perfh010.dat
2015-11-19 17:07 - 2013-08-09 22:18 - 00146844 _____ C:\Windows\system32\perfc010.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00737650 _____ C:\Windows\system32\perfh00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00470948 _____ C:\Windows\system32\perfh001.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00149578 _____ C:\Windows\system32\perfc00C.dat
2015-11-19 17:07 - 2013-08-09 22:12 - 00094770 _____ C:\Windows\system32\perfc001.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00697272 _____ C:\Windows\system32\perfh007.dat
2015-11-19 17:07 - 2011-02-13 20:19 - 00149240 _____ C:\Windows\system32\perfc007.dat
2015-11-19 17:07 - 2009-07-14 06:13 - 07620544 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-19 00:12 - 2014-11-07 21:22 - 00001456 _____ C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2015-11-17 19:19 - 2015-03-12 00:51 - 00000000 ____D C:\temp
2015-11-14 14:11 - 2009-07-14 05:45 - 05215112 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 02:03 - 2014-11-06 20:08 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe
2015-11-13 23:17 - 2014-11-08 15:29 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Local\Battle.net
2015-11-13 20:43 - 2014-11-08 22:03 - 00000132 _____ C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2015-11-13 20:34 - 2014-11-06 17:55 - 00165760 _____ C:\Users\Nerdy By Nerds\AppData\Local\GDIPFONTCACHEV1.DAT
2015-11-13 15:34 - 2014-01-24 15:17 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2015-11-13 15:27 - 2014-01-24 15:11 - 00000000 ____D C:\Program Files (x86)\Battle.net
2015-11-12 17:52 - 2015-05-16 01:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 23:40 - 2013-03-10 23:43 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 23:40 - 2013-03-10 23:43 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 23:40 - 2011-06-14 23:21 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-08 19:13 - 2011-05-23 00:15 - 00004122 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-11-08 19:13 - 2011-05-23 00:15 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-11-06 21:20 - 2015-09-10 12:32 - 00000000 ____D C:\Users\Nerdy By Nerds\Desktop\Foto Familien Album
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieUserList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieSiteList
2015-11-05 23:21 - 2015-06-12 21:47 - 00000000 __SHD C:\Users\Nerdy By Nerds\AppData\Local\EmieBrowserModeList
2015-11-05 00:10 - 2011-02-13 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-30 12:58 - 2011-02-13 16:37 - 00000000 ____D C:\ProgramData\Skype
2015-10-29 21:06 - 2014-11-07 13:54 - 00000000 ____D C:\Users\Nerdy By Nerds\AppData\Roaming\Audacity

==================== Files in the root of some directories =======

2014-11-08 22:03 - 2015-11-13 20:43 - 0000132 _____ () C:\Users\Nerdy By Nerds\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-11-07 21:22 - 2015-11-19 00:12 - 0001456 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Adobe Save for Web 12.0 Prefs
2014-12-17 05:48 - 2015-10-11 10:13 - 0007168 _____ () C:\Users\Nerdy By Nerds\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 21:44 - 2014-11-10 21:44 - 0007605 _____ () C:\Users\Nerdy By Nerds\AppData\Local\Resmon.ResmonCfg
2013-08-25 21:49 - 2013-08-25 21:49 - 0000057 _____ () C:\ProgramData\Ament.ini
2011-02-13 16:38 - 2011-02-13 16:38 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-08-17 17:30 - 2011-08-17 17:31 - 0000000 _____ () C:\ProgramData\Yes

Some files in TEMP:
====================
C:\Users\Jeremy J. Erb\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\avgnt.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptjafqk.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2250463518738937912.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna2379732162636497944.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\jna3653581951061083711.dll
C:\Users\Jeremy J. Erb\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Jeremy J. Erb\AppData\Local\Temp\swt-win32-3349.dll


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-20 15:56

==================== End of FRST.txt ============================
         
--- --- ---

--- --- ---

Geändert von MrButsch (25.11.2015 um 01:52 Uhr)

Alt 25.11.2015, 01:47   #10
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Addition.txt:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version:23-11-2015
Ran by Nerdy By Nerds (2015-11-25 01:51:03)
Running from C:\Users\Nerdy By Nerds\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2011-02-12 23:09:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

7E281115A23343249B54 (S-1-5-21-1020473624-1478330774-1937670132-1004 - Limited - Enabled)
Administrator (S-1-5-21-1020473624-1478330774-1937670132-500 - Administrator - Disabled)
BE38876218914F369445 (S-1-5-21-1020473624-1478330774-1937670132-1005 - Limited - Enabled)
Guest (S-1-5-21-1020473624-1478330774-1937670132-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1020473624-1478330774-1937670132-1008 - Limited - Enabled)
Jeremy J. Erb (S-1-5-21-1020473624-1478330774-1937670132-1000 - Administrator - Enabled) => C:\Users\Jeremy J. Erb
Nerdy By Nerds (S-1-5-21-1020473624-1478330774-1937670132-1009 - Administrator - Enabled) => C:\Users\Nerdy By Nerds

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
µTorrent (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.2.12610 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.02) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.02 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)
Aimersoft DVD Ripper(Build 2.7.2.0) (HKLM-x32\...\Aimersoft DVD Ripper_is1) (Version:  - Aimersoft Software)
Amnesia - The Dark Descent  (HKLM-x32\...\{54B7A3C7-0940-4C16-A509-FC3C3758D22A}_is1) (Version: 1.0.0 - Frictional Games)
ANNO 1404 - Königsedition (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 3.10.0000 - Ubisoft)
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft TotalMedia Extreme (HKLM-x32\...\{88B05038-C890-468B-A563-0015FD53CDC3}) (Version: 1.0.9.9 - ArcSoft)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version:  - Studio Wildcard)
ARMA 2 (HKLM-x32\...\Steam App 33910) (Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
ARMA 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version:  - )
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Auto Mouse Clicker v4.0 (HKLM-x32\...\{C83F056D-E3D5-4308-B3ED-9FAFA8ACF821}_is1) (Version:  - MurGee Softwares)
Avid EDL Manager (HKLM-x32\...\{830A8D89-D744-449C-ACE1-0A1A345D9B02}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid FilmScribe (HKLM-x32\...\{ED85F920-DC3C-44FD-80F3-93FA4C484039}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid License Control (HKLM-x32\...\{89A9B9EE-839E-4820-9450-2912C82F46AF}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid Log Exchange (HKLM-x32\...\{B0AA273D-06D3-46F2-8E21-E395A7BFC731}) (Version: 28.0.1 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{06928D63-80CF-4563-9E36-0BA52FAD7A1F}) (Version: 6.0.1 - Avid Technology, Inc.)
Avid MediaLog (HKLM-x32\...\{B204C364-9D67-4F5A-A54C-56ED809BF76F}) (Version: 28.0.1 - Avid Technology, Inc.)
Avira Savings Advisor (HKLM-x32\...\{A18A516C-AA41-46A9-92DB-60208917E442}) (Version: 1.5.14 - Avira)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield 3™ Open Beta (HKLM-x32\...\{45C8D17D-B5E0-4e93-8370-4329AB16D2A0}) (Version: 1.0.0.0 - Electronic Arts)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blur Busters Strobe Util (HKLM-x32\...\{57BDAE81-2BE7-4ABA-8B03-1520FBF41AF9}) (Version: 1.0.0 - Blur Busters)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadband Internet Router (HKLM-x32\...\Template One Sample App) (Version:  - )
Brorsoft Video Converter Ver 1.1.1.3688 (HKLM-x32\...\{3231B80A-455C-497a-8425-3E44C006D76C}_is1) (Version:  - )
CamStudio (HKLM-x32\...\CamStudio) (Version:  - )
Camtasia Studio 7 (HKLM-x32\...\{53FA9A9F-3C19-4D43-AD6B-DEF365D469BA}) (Version: 7.0.0 - TechSmith Corporation)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.0.4 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.4.0.15 - Canon Inc.)
Canon MOV Encoder (HKLM-x32\...\Canon MOV Encoder) (Version: 1.2.0.10 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM-x32\...\MovieEditTask) (Version: 3.3.0.15 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.3.0.4 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.7 (HKLM-x32\...\DPP) (Version: 3.7.1.1 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.7.0.2 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.6.0.0 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3/E4/E5 Utility (HKLM-x32\...\WFTK) (Version: 3.4.0.2 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.4.1.11 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.2.11 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Click Bot (HKLM-x32\...\Click Bot) (Version:  - )
ContinueToSave (HKLM\...\{CFD13E7B-203C-2497-C67C-681E14321C8D}) (Version: 1.0 - ) <==== ATTENTION
ContinueToSave (HKLM\...\ContinueToSave) (Version: 1.0 - BetterSoft) <==== ATTENTION
continuetosave (HKLM-x32\...\{C1C6816E-CBB3-A748-85F9-A8B47B68985B}) (Version:  - continue to save) <==== ATTENTION
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.40.2.0131 - DT Soft Ltd)
DAEMON Tools Toolbar (HKLM-x32\...\DAEMON Tools Toolbar) (Version: 1.1.4.0024 - DT Soft Ltd) <==== ATTENTION
DayZ Commander (HKLM-x32\...\{BAD8395E-CE31-44AA-B9FE-A14FCD0ABE4A}) (Version: 0.9.110 - Dotjosh Studios)
DeialExpresss (HKLM-x32\...\{25F259ED-12F6-429F-5783-527C3E2F8586}) (Version:  - DeaLLExpress) <==== ATTENTION
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.2.3.0 - devolo AG)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Design-Garten-Accessoires (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
Die Sims™ 3 Gib Gas-Accessoires (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
Die Sims™ 3 Katy Perry Süße Welt (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
Die Sims™ 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Die Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
Die Sims™ 3 Stadt-Accessoires (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
Die Sims™ 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
Die Sims™ 3 Traumsuite-Accessoires (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.22 - DivX, LLC)
DVDFab 9.0.1.5 (08/12/2012) Qt (HKLM-x32\...\DVDFab 9_is1) (Version:  - Fengtao Software Inc.)
Easy Tune 6 B11.0120.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B11.0120.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Easy Video to Gif Converter V3.0 (HKLM-x32\...\Easy Video to Gif Converter_is1) (Version:  - corksot.com)
EasySaver B9.1214.1  (HKLM-x32\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
EasyTax 2012 AG 1.04 (HKLM-x32\...\3785-6780-1293-3574) (Version: 1.04 - HWI Solutions AG)
Elgato Game Capture HD (HKLM-x32\...\{A04501E6-ED4D-43C9-9D69-9C78224B5BDC}) (Version: 2.01.49.776 - Elgato Systems GmbH)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.0) (Version: 0.70.0 - ESN Social Software AB)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.95 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.95 - Etron Technology) Hidden
ffdshow v1.3.4500 [2013-01-06] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4500.0 - )
ffdshow x64 v1.1.4284 [2012-01-28] (HKLM\...\ffdshow64_is1) (Version: 1.1.4284.0 - )
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 3.16.2.1 - Futuremark Corporation)
Game Capture HD v2.3.3.38 (HKLM-x32\...\Software_Elgato_Game Capture HD) (Version: 2.3.3.38 - Elgato Systems)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hauppauge HDPVR Scheduler (HKLM-x32\...\Hauppauge HDPVR Scheduler) (Version:  - Hauppauge Computer Works)
Hauppauge WinTV Scheduler (HKLM-x32\...\Hauppauge WinTV Scheduler) (Version:  - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM-x32\...\{46235FF7-2CBE-4A84-BEDA-87348D1F7850}) (Version: 28.0.0 - Hewlett Packard)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
iPhone Backup Extractor (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\iPhone Backup Extractor) (Version: 5.7.2.322 - Reincubate Ltd)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
JDownloader (HKLM-x32\...\JDownloader) (Version:  - AppWork UG (haftungsbeschränkt))
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Killing Floor 2 (HKLM-x32\...\Steam App 232090) (Version:  - Tripwire Interactive)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
License Support (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
Life Is Strange™ (HKLM-x32\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
Lime OCR 2.4.1 (HKLM-x32\...\Lime OCR) (Version: 2.4.1 - Lime Consultants)
Logitech Gaming Software 8.40 (HKLM\...\Logitech Gaming Software) (Version: 8.40.83 - Logitech Inc.)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Macro Recorder 5.7.8 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.7.8 - Jitbit Software)
Magic Bullet Looks (HKLM-x32\...\InstallShield_{AEC9311A-90AC-4083-B3CD-428C3BB3891C}) (Version: 1.4.0 - Red Giant Software)
Magic Bullet Looks (Version: 1.4.0 - Red Giant Software) Hidden
Magic Bullet LooksBuilder (HKLM-x32\...\Magic Bullet LooksBuilder) (Version:  - )
MAGIX Screenshare (HKLM-x32\...\{B1FEBE01-42BB-4D05-8180-6C5ABD91E97E}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\{6FC5FA2A-1D40-41B9-920B-0F2A758E24A6}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_premium) (Version: 10.0.0.32 - MAGIX AG)
MAGIX Video deluxe 17 Premium (x32 Version: 10.0.0.32 - MAGIX AG) Hidden
ManyCam 3.1.58 (HKLM-x32\...\ManyCam) (Version: 3.1.58 - ManyCam LLC)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.318.3 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft IntelliType Pro 8.0 (HKLM\...\{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}) (Version: 8.0.225.0 - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
mkv2vob (HKLM-x32\...\{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}) (Version: 2.4.9 - 3r1c)
MKVToolNix 6.1.0 (HKLM-x32\...\MKVToolNix) (Version: 6.1.0 - Moritz Bunkus)
MotioninJoy DS3 driver version 0.6.0005 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.6.0005 - www.motioninjoy.com)
Mozilla Firefox 41.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 de)) (Version: 41.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Neat Video v2.0 Demo plug-in for Virtual Dub (HKLM-x32\...\Neat Video for VirtualDub_is1) (Version:  - Neat Video team, ABSoft)
Neat Video v3.0 Demo plug-in for VirtualDub (32-bit) (HKLM-x32\...\Neat Video for VirtualDub (32-bit)_is1) (Version:  - Neat Video team, ABSoft)
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: 1.4 - NewBlue)
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Blends for Windows (HKLM-x32\...\NewBlue Art Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Art Effects for Windows (HKLM-x32\...\NewBlue Art Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Blends for Windows (HKLM-x32\...\NewBlue Motion Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Motion Effects for Windows (HKLM-x32\...\NewBlue Motion Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Blends for Windows (HKLM-x32\...\NewBlue Paint Blends for Windows) (Version: 1.4 - NewBlue)
NewBlue Paint Effects for Windows (HKLM-x32\...\NewBlue Paint Effects for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials II for Windows (HKLM-x32\...\NewBlue Video Essentials II for Windows) (Version: 1.4 - NewBlue)
NewBlue Video Essentials III for Windows (HKLM-x32\...\NewBlue Video Essentials III for Windows) (Version: 1.4 - NewBlue)
NewBlueFX Premium Effects (HKLM-x32\...\NewBlueFX Premium Effects) (Version: 1.4 - NewBlue)
NVIDIA 3D Vision Controller Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
ON_OFF Charge B11.0110.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenSubtitlesPlayer V4.X (HKLM-x32\...\OpenSubtitlesPlayer_is1) (Version:  - ALLCinema Ltd.)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
PDF OCR X Community Edition (HKLM-x32\...\ca.weblite.pdfocrx.CommunityEdition_is1) (Version: 2.0.8 - Web Lite Solutions Corp.)
PDFMate Free PDF Merger 1.0.6 (HKLM-x32\...\PDFMate Free PDF Merger_is1) (Version:  - pdfmate.com)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PluralEyes® 2.0.4 for Premiere® Pro (HKLM-x32\...\{CE9ACBCA-B429-4DA7-9728-2A621C6479FA}_is1) (Version: 1.0 - Singular Software Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version:  - PokerStars)
PowerISO (HKLM-x32\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Project 64 version 2.1.0.1 (HKLM-x32\...\Project 64_is1) (Version: 2.1.0.1 - )
PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Python 2.7.10 (Anaconda 2.3.0 64-bit) (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\Python 2.7.10 (Anaconda 2.3.0 64-bit)) (Version: 2.3.0 - Continuum Analytics, Inc.)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Razer Lachesis (HKLM-x32\...\{CB4532F7-A1BD-46D2-9938-3E7D4656FB18}) (Version: 1.10.0000 - Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Roll (HKLM-x32\...\RollerCoaster Tycoon Setup) (Version:  - )
Scan Tailor (HKLM-x32\...\Scan Tailor) (Version:  - )
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
SixaxisPairTool 0.2.3 (HKLM-x32\...\SixaxisPairTool_is1) (Version: 0.2.3 - Dancing Pixel Studios)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.13 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Sniper Elite: Nazi Zombie Army 2 (HKLM-x32\...\Steam App 247910) (Version:  - )
Sony RAW Driver (HKLM-x32\...\{166FCF01-AC98-4288-A01C-90BEB808C059}) (Version: 2.0.00.08130 - Sony Corporation)
SparkoCam (HKLM-x32\...\SparkoCam) (Version: 2.2.7 - Sparkosoft)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Steam App 232890) (Version:  - FireFly Studios)
Stronghold Crusader Extreme HD (HKLM-x32\...\Steam App 16700) (Version:  - Firefly Studios)
Stronghold Crusader HD (HKLM-x32\...\Steam App 40970) (Version:  - FireFly Studios)
Stronghold Kingdoms (HKLM-x32\...\Steam App 47410) (Version:  - FireFly Studios)
SunnyPage 2,1 (HKLM-x32\...\SunnyPage 2,1 2.1) (Version: 2.1 - Daylight)
SunnyPage 2,1 (x32 Version: 2.1 - Daylight) Hidden
Sweet Home 3D version 4.4 (HKLM\...\Sweet Home 3D_is1) (Version:  - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Movies(TM) (HKLM-x32\...\InstallShield_{0556F885-2415-4666-B53E-33727E46AEA1}) (Version: 1.0 - Activision)
The Movies(TM) (x32 Version: 1.0 - Activision) Hidden
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.0.3 - Electronic Arts)
Tunngle version Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
TwitchAlerts (HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
UnderCoverXP 1.23 (HKLM-x32\...\UnderCoverXP_is1) (Version:  - Wicked & Wild Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Voobly Game Data (HKLM-x32\...\Voobly_is1) (Version: Voobly Game Datas - Voobly)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.1.7-3 - Wacom Technology Corp.)
WebTablet IE Plugin (HKLM-x32\...\Wacom WebTabletPlugin for IE) (Version: 1.1.0.12 - Wacom Technology Corp.)
WebTablet Netscape Plugin (HKLM-x32\...\Wacom WebTabletPlugin for Netscape) (Version: 1.1.0.10 - Wacom Technology Corp.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
Win7codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 2.7.8 - Shark007)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version:  - )
WinSpeed (HKLM-x32\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{f1f78e38}) (Version:  - Jingo Ltd) <==== ATTENTION
XMind 6 (v3.5.1) (HKLM-x32\...\XMind_is1) (Version: 3.5.1.201411201906 - XMind Ltd.)
XviD v1.3.0 CVS (HKLM\...\XviD MPEG-4 Video Codec_is1) (Version:  - Celtic Druid)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

15-11-2015 19:00:05 Windows Backup
22-11-2015 19:00:05 Windows Backup

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2011-03-22 17:10 - 00004232 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com 
127.0.0.1 pagead2.googlesyndication.com
127.0.0.1 192.150.14.69
127.0.0.1 192.150.18.101
127.0.0.1 192.150.18.108
127.0.0.1 192.150.22.40
127.0.0.1 192.150.8.100
127.0.0.1 192.150.8.118
127.0.0.1 192.168.112.207
127.0.0.1 192.168.112.2o7.net
127.0.0.1 194.224.66.48
127.0.0.1 199.7.52.190
127.0.0.1 199.7.52.190:80
127.0.0.1 199.7.54.72
127.0.0.1 209.34.83.73
127.0.0.1 209.34.83.73:43
127.0.0.1 209.34.83.73:443

There are 80 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {030BA824-1EBF-4741-BB03-AC0F8C9C29AC} - System32\Tasks\schedule!1143840799 => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exe <==== ATTENTION
Task: {03C829C4-EDE1-458E-8F84-72CEC5E1E1ED} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {15621ED5-31F4-4D4E-A807-6E295BF15837} - System32\Tasks\{FB5116E4-4389-41E1-9A09-780C90D44DEA} => Chrome.exe hxxp://ui.skype.com/ui/0/7.8.0.102/de/abandoninstall?page=tsProgressBar
Task: {1EDD8CF6-4990-4EE8-9807-64A85F05AB8A} - System32\Tasks\Funmoods => C:\Users\Jeremy J. Erb\AppData\Roaming\Funmoods\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {272575DA-5C7A-4A65-ABE2-F486D293560F} - System32\Tasks\{7F832122-3F8F-4D25-9882-326F0B4C3165} => C:\Users\Jeremy J. Erb\Desktop\Downloads\qc1150_x64.exe
Task: {2A2FA555-C451-4521-9A5D-DD13F0986D94} - System32\Tasks\{95760577-A417-454F-946F-F273DEF6AEF9} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\Age of Empires II"
Task: {2F63A731-0606-4930-A601-2327BF3A8620} - System32\Tasks\Google Updater and Installer => C:\Users\Jeremy J. Erb\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {3647D943-139B-4687-839E-25826213499F} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => c:\Program Files\Microsoft IntelliType Pro\IType.exe [2010-07-21] (Microsoft Corporation)
Task: {5349671D-0EC9-4118-A29D-0923FA4ED050} - System32\Tasks\{910FE053-B1B9-4E3E-8194-E339FB2E55B1} => pcalua.exe -a "C:\Program Files (x86)\QuickTime Alternative\QTSystem\quicktime.cpl"
Task: {5CF9750A-6450-4EFD-9927-DC778DEDCA1F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {60BCEAB1-F0F3-4806-BC13-A5FE6AC06B32} - System32\Tasks\{BF4F3FA7-43C4-4E38-B12C-4D20E90DB4B5} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-10-14] (Skype Technologies S.A.)
Task: {68E90B7B-4B83-4297-85D3-D6458DF10048} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {71D1DF21-A84B-4D78-BA3B-615E0F1C6D57} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-18] (Adobe Systems Incorporated)
Task: {77CD2ACA-8A4C-404B-BC8B-BB5F0A37B2B9} - System32\Tasks\ALL Update => C:\Program Files (x86)\OpenSubtitlesPlayer\ALLUpdate.exe [2011-08-17] ()
Task: {78D29609-E3A5-4F52-BFB5-7F07A1F03B74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {86276313-9C3C-48E4-B04A-A577D228FBE2} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {8749126C-4094-40D6-B31E-4895C6EBF6B6} - System32\Tasks\{C685A2F9-46D7-40D3-96D8-7441DA20A811} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings\AOESETUP.EXE" -d "C:\Users\Jeremy J. Erb\Desktop\AOE\Age of Empires - The age of Kings"
Task: {9558289A-AB6B-4D56-A301-8FF5147534CB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9855C353-7204-49C4-8577-9EE90EB63E90} - System32\Tasks\DivX online update program => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2012-11-30] ()
Task: {A07A5FC7-47C3-4F0F-B511-10ED1F8BBF3F} - System32\Tasks\{472589C8-95B4-4B3D-89C8-F8B42E801DD2} => pcalua.exe -a D:\aocsetup.exe -d D:\ -c /autorun
Task: {A9FA069D-926D-4804-95D4-E41F29C8F627} - System32\Tasks\{4D2B59AF-6764-4EEA-9C74-43C49BE71FC3} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\quicktime\QuickTimeInstaller.exe" -d "C:\Users\Jeremy J. Erb\Desktop\quicktime"
Task: {C2BECC7A-CF6D-4BA9-B822-744AD1B542DF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-08] (Google Inc.)
Task: {C6B49042-7A95-4284-A5D6-F9385029CC05} - System32\Tasks\{83CE1FA0-67E1-46C6-9DC4-286B3FA41D9E} => pcalua.exe -a "C:\Users\Jeremy J. Erb\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCG7T566\ChromeSetup[1].exe" -d "C:\Users\Jeremy J. Erb\Desktop"
Task: {D2F2CD1A-7ABE-4378-B597-F4DF9E36BCED} - System32\Tasks\{04DE06AE-4EA6-4876-9BC2-D7357D945528} => C:\Program Files (x86)\Lime OCR\lime-ocr.exe [2009-12-14] (Lime Consultants)
Task: {D51A8F7F-5346-4104-AF50-E70883CB02A7} - System32\Tasks\{1F59B7F6-019B-43CA-85E9-7654146C0CE6} => pcalua.exe -a D:\Setup\Setup.exe -d D:\Setup
Task: {D7BC1633-093D-4305-864E-34609FB0E643} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation)
Task: {F09A251D-75C2-4E59-B680-390D878D5896} - System32\Tasks\aviraSWU => Cscript.exe "C:\Program Files (x86)\avira\Internet Explorer\swu.vbs"
Task: {F2C0F94D-473F-4834-BE74-9B57677BACCB} - System32\Tasks\{A98696DE-F69D-43AC-849F-62CF462DA4A1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.5.0.114.259/en/abandoninstall?page=tsPlugin&amp;installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;ienotdefaultbrowser2
Task: {FBAD0F83-4AD2-4905-AEFC-07D438571815} - System32\Tasks\{6E5B4A10-2158-4ACD-9074-4242EDA117A2} => pcalua.exe -a "C:\Users\Jeremy J. Erb\Desktop\Downloads\vcredist_x86.exe" -d "C:\Users\Jeremy J. Erb\Desktop\Downloads"
Task: {FDAF9943-EAF8-4716-8677-23E57E4E0EC7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-03-07] (Oracle Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Funmoods.job => C:\Users\JEREMY~1.ERB\AppData\Roaming\Funmoods\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\schedule!1143840799.job => C:\ProgramData\BetterSoft\ContinueToSave\ContinueToSave.exeM/schedule /profile c:\programdata\bettersoft\continuetosave\1143840799.ini <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Anaconda (64-bit)\Anaconda Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation) -> /k "C:\Users\Nerdy By Nerds\Anaconda\Scripts\anaconda.bat" <==== ATTENTION

==================== Loaded Modules (Whitelisted) ==============

2011-10-03 14:31 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-11-20 00:24 - 2009-08-24 14:38 - 00068136 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
2011-10-02 16:52 - 2013-10-31 15:04 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-23 20:11 - 2015-06-23 20:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2011-02-13 13:50 - 2010-03-15 11:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2009-10-14 12:34 - 2009-10-14 12:34 - 00560472 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\COCIManager.exe
2015-03-14 06:49 - 2015-03-14 06:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2011-11-20 00:24 - 2009-03-13 11:30 - 00109096 _____ () C:\Program Files (x86)\Gigabyte\EasySaver\YCC.DLL
2015-04-18 12:59 - 2014-10-31 15:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-04-18 12:59 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 02140944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtCore4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 07704336 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtGui4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00968976 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtNetwork4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00475408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtOpenGL4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00363792 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtXml4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00199952 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtSql4.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 00027408 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\SDL.dll
2009-07-16 14:35 - 2009-07-16 14:35 - 11311888 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\QtWebKit4.dll
2009-07-16 14:34 - 2009-07-16 14:34 - 00291600 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\phonon4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00028944 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qgif4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00035088 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qico4.dll
2009-07-16 14:36 - 2009-07-16 14:36 - 00138000 _____ () C:\Program Files (x86)\Logitech\Logitech Vid\plugins\imageformats\qjpeg4.dll
2009-10-14 12:36 - 2009-10-14 12:36 - 00181592 _____ () C:\Program Files (x86)\Common Files\LogiShrd\LvApi11\LvApi11.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 01241088 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_imgproc220.dll
2013-06-21 01:21 - 2013-06-21 01:21 - 02010624 _____ () C:\Program Files (x86)\ManyCam\Bin\opencv_core220.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 00126464 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamFilter.dll
2014-04-02 14:57 - 2014-04-02 14:57 - 00014336 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamServer.dll
2014-04-02 14:58 - 2014-04-02 14:58 - 11632640 _____ () C:\Program Files (x86)\SparkoCam\SparkoCamLib.dll
2015-05-20 03:29 - 2015-05-20 03:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-01-11 23:45 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Nerdy By Nerds\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 00:21 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:DWq8NyBLbUmrYhkdKsN
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Jeremy J. Erb\Cookies:WAD8mEFaKluOpOHzime
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\Local Settings:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:miqk6aD0m1tsljFGR0SCzg
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Application Data:X63tyx9VYsjImcGNHd6V
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temp:CCQZHaNqy9CftkQxXk97VvK
AlternateDataStreams: C:\Users\Jeremy J. Erb\AppData\Local\Temporary Internet Files:fHhhMOyoB8Xe79tna24YLG
AlternateDataStreams: C:\Users\Nerdy By Nerds\Cookies:sdDeH80Y6L3Ew4wBW2qIU
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:2K0O7hgcrTJbzs84ArYckNK3olh
AlternateDataStreams: C:\Users\Nerdy By Nerds\AppData\Local\Temp:ADyxnMQBYJRj1f7Ce

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1020473624-1478330774-1937670132-1009\Control Panel\Desktop\\Wallpaper -> C:\Users\Nerdy By Nerds\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Jeremy J. Erb^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Produktregistrierung.lnk => C:\Windows\pss\Logitech . Produktregistrierung.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS5ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: ApplePhotoStreams => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: DivXMediaServer => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: DS3 Tool => C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe -mini
MSCONFIG\startupreg: Facebook Update => "C:\Users\Jeremy J. Erb\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: facemoods => "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.5\facemoodssrv.exe" /md I
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: itype => "c:\Program Files\Microsoft IntelliType Pro\itype.exe"
MSCONFIG\startupreg: Lachesis => C:\Program Files (x86)\Razer\Lachesis\razerhid.exe
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: Logitech Vid => "C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe" -bootmode
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVCpl => RAVCpl64.exe
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Premium\TrayServer.exe
MSCONFIG\startupreg: uTorrent => "C:\Program Files (x86)\uTorrent\uTorrent.exe"  /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B3089B53-A18E-4423-83E4-E2548BB4FB3A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{2D904C0F-5692-4943-8F3C-308E83E4D84C}] => (Allow) LPort=2869
FirewallRules: [{E3F8EBB6-E140-4760-A57B-C762C512431F}] => (Allow) LPort=1900
FirewallRules: [{C13ECE6C-DA99-442A-8605-B5024E3F0A6E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{35E6B91E-A266-41D7-8B48-5FAA7474EE37}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3230E683-D14B-4C9E-9DAE-D5BAA114D5A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BAFA3D1E-3BB4-42AF-B20F-10494F59496A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A08C6421-CBFA-4102-9412-9B69F11C439E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2849588F-C80E-418B-B547-8BFE21093330}] => (Allow) LPort=443
FirewallRules: [{46661EA1-5DCE-4640-B86C-851D5B35D24C}] => (Allow) LPort=443
FirewallRules: [{8D0F4AE5-1103-4E6F-A7B5-B6D92B0DCCF8}] => (Allow) LPort=37674
FirewallRules: [{FE7E891E-A49F-48D4-A706-2F1E24BBA7E0}] => (Allow) LPort=37674
FirewallRules: [{A1F2BD87-36B1-4FFE-B8C5-B86E1307AC76}] => (Allow) LPort=37675
FirewallRules: [{7A5CF0EC-6C92-4905-B53B-A65FEFE14542}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E6655D3D-E4B9-4C36-80DD-361861D06D1D}] => (Allow) C:\Users\Jeremy J. Erb\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{DD6DEC08-1F91-45B0-8627-CF66CDE67920}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{F9F8D5A2-0602-4D18-9FA4-25D22CB411F2}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3 Beta\bf3.exe
FirewallRules: [{10C827B3-9E49-408E-8DBB-FCFC3E097254}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{46763EE7-65D0-486B-A95F-4ED62BEC9DAE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{0CC6DD64-524C-41CD-B9C6-037013484FAB}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{16C78BD6-573E-48FB-A5E7-149DC022CAC9}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Anno4.exe
FirewallRules: [{8BDE7445-4064-448C-90A8-C79DAEB81A81}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{A0DDD748-F67F-4E08-8702-9E204771CD52}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\Addon.exe
FirewallRules: [{B56AA11F-94C5-43AB-85DC-EC65A292A32D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{E2851692-182C-4D46-9399-1ED26334DBBE}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Anno4Web.exe
FirewallRules: [{558CE498-087D-4834-BCDA-AC92FE1B9A8D}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{E05D69B4-5B46-46F9-BF6E-F90879B469C0}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\AddonWeb.exe
FirewallRules: [{0D867BC3-352B-42B5-998F-914CA8358F47}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{FA588CB5-D82C-4283-9727-7E754618F4E5}] => (Allow) C:\Program Files (x86)\Ubisoft\Related Designs\ANNO 1404 - Königsedition\tools\Benchmark.exe
FirewallRules: [{7A085870-5072-4966-A9F2-9A53C59BAEF4}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{139682CD-AE8C-43C5-825D-8F7FFF6C1544}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{6482A75B-C655-436E-8CB8-714F8F49E583}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{3DDE1B71-821B-42EC-8D38-12FACFD5F0FA}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{509842BD-C49F-4ED4-9E23-40316B5D2505}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{5032B6EC-EB39-48CC-A349-013A0269064E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E6327220-3954-4078-B800-D2002E6C8967}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B7341029-635E-4D5A-86FF-7B08B1AD2275}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E067F01F-214A-4A88-9465-C87D6CA5355A}] => (Allow) LPort=1542
FirewallRules: [{0672198B-A6C6-4866-BCBD-0F660326EF58}] => (Allow) LPort=1542
FirewallRules: [{F832F4C4-7E03-43DF-AADF-1F07BC0E99BB}] => (Allow) LPort=53
FirewallRules: [{D4ED452C-8340-411B-9919-1254187078C4}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5F623167-EAF0-4CE2-A1A0-91ACAE68A30E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{50AB2368-7A48-4233-BC5B-A30007C01AA0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{A6F86BBB-AFAA-47B0-A1D9-FF8CCBD5843A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B3C1F393-6978-4258-9F48-EE735A4571DB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{78380C2C-D685-4316-84E3-E5828A5E00DC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{FC91A540-2416-4EDE-A070-A9A41A8A6571}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{889E6F14-57C7-4708-BCC7-FD61F4AAD7C5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{CF5ABD4F-11D6-46C2-A56B-FF14D105CB29}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{320DD975-38FF-403B-A3C7-11BD40E835EF}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{921C7B44-3BE2-4131-94BD-66DD3D5057E7}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{EF2D6E1F-8AFD-4095-B53F-3E0A739BD9BE}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{857A5521-2C35-4540-A2A9-31F8A3015D62}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{AD220482-DEE5-4658-B2D8-076937135A9D}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [TCP Query User{268D900A-062B-45AF-9290-DA73D8A93F34}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [UDP Query User{A3ED1398-191F-444F-AAEB-7BDDBAF3D41B}C:\program files (x86)\origin games\battlefield 3\bf3.exe] => (Allow) C:\program files (x86)\origin games\battlefield 3\bf3.exe
FirewallRules: [{5DE3A298-10DF-48CA-8DF7-48975AE72916}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{B3B83EC8-9825-432B-BFF8-E401D2E7BD50}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA.exe
FirewallRules: [{2CC8427D-0D11-4CEC-890A-4D78C51F68EF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [{7EEA9D61-1060-444E-8E51-46BE4D847A34}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\BEsetup\Setup_BattlEyeARMA2OA.exe
FirewallRules: [TCP Query User{33A59297-AAFD-47B7-8F7E-2E5B64EEB830}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{C8C65F90-6D28-4A9A-BCA6-3EE8B75528AF}C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\jeremy j. erb\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{53623AFE-2E23-45A7-BD98-AF3702E7193E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [UDP Query User{F8F088A7-9ECB-45FE-9F8D-023B649088B3}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\addonweb.exe
FirewallRules: [TCP Query User{6F272D99-A5BC-4EA5-A435-365C3396B27E}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [UDP Query User{3898B6F0-D702-483F-8D81-EBAB50E1C10D}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\addon.exe
FirewallRules: [TCP Query User{CD49B4D6-6CA6-4EA7-8388-D4556D18D5F4}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [UDP Query User{F60A2571-7427-44A7-A6A1-861184CB2F75}C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe] => (Allow) C:\program files (x86)\ubisoft\related designs\anno 1404 - königsedition\tools\anno4web.exe
FirewallRules: [TCP Query User{490A7CC4-C50A-4150-BEA4-7D74D376515F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{45F48BBB-7111-4818-8172-C2DB431C9287}C:\program files (x86)\videolan\vlc\vlc.exe] => (Block) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{308C6B17-DAA3-494C-B667-F580F309FD58}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C477CCFA-35F3-49D5-B21E-3280270F9BA4}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{7C587571-A3EA-4D36-816B-00CC0E873E18}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{B0D33493-F397-4A7C-8DB1-168CE9BE2068}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe
FirewallRules: [{8D309D6F-3B1E-4F3C-9D8F-F9E3D755911E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{33D88020-980C-48F3-A984-DE4F2118B8CE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\Expansion\beta\Arma2OA.exe
FirewallRules: [{CFAA433F-C550-476E-83B8-B4EEA81B2D9E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe
FirewallRules: [{A5812739-171F-4670-99BD-115B41973A72}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe
FirewallRules: [{A559722E-5EDF-4645-BFA7-80ABEC58E616}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe
FirewallRules: [{DF905607-22CE-4A99-B825-7E7AA930DC19}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{F33ECC4C-2B38-43B8-B79B-EB196316A26E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6400F51C-0AAB-44CE-BBBD-96F50F89D618}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{1A8CBDC6-3352-48DC-8F35-4751B55DC78F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{F7CE9C11-4B36-4E7C-9478-6A9962CE73F5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{8B7CA082-31A9-4280-A4E0-9FA986E8EB39}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{86B1782C-D965-4E6A-9507-2218D5F8E002}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{01E68ACC-9405-4076-869D-1F8B12B6EE69}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{213C180E-0C7F-46A3-A1EF-FC3D6451726A}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{A9D2B053-42CC-446F-8497-ECA45ED6677E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{0067E024-6C09-4645-9FBB-28D7FC8F8AFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{B07D1D8D-507C-4853-879A-E5AB7C11D441}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1FAC999B-3895-4C49-BF04-C8A07BA31E6C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{817CFB99-FC3C-4B67-8C34-A4ED21FD2522}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [UDP Query User{F24096C2-395A-44C6-8735-0C086989479A}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe
FirewallRules: [{A374E69E-E34B-4CA4-8AEF-CDCC5EED7531}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{570E5612-75E4-44E9-A29E-9BC79D5D6008}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{6C3FEF28-30B1-424A-A38D-19966FFBD843}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{72270E0E-7AA7-4C3E-906F-2370041855E5}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{60393738-78EF-4929-BA5B-164294E01C36}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{B171A631-B783-4E4D-999F-F452B98B3431}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{8AF5319D-70EA-4257-B8BA-E830F4F60818}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{D25A3A56-32C1-4C00-A044-15DD19D3CC70}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [TCP Query User{4DFB828C-533E-4E75-9591-FB6DE29BFAFC}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{70915809-3C26-4448-B5C5-928E914444E8}C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe] => (Allow) C:\users\jeremy j. erb\desktop\7 days to die\7 days to die\7daystodie.exe
FirewallRules: [TCP Query User{612A565C-0DAD-4BDE-B291-679E062E835C}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [UDP Query User{D066544D-E8EC-4AA3-8B5F-A0993A772D64}C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe] => (Block) C:\program files (x86)\adobe\adobe flash builder 4\flashbuilder.exe
FirewallRules: [{91DE01F1-5D35-425D-A3A5-02B84BCEBBF8}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{834EA968-90AC-474C-A55F-7C2DFD793FCF}] => (Allow) J:\Games\Titanfall\Titanfall.exe
FirewallRules: [{26A8DCE8-1F8E-4057-ADED-46063E29E46E}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{61EAE32D-A30F-49CB-9A74-F987499D65B5}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{8B54B150-2580-439A-94C9-EE29932615B1}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{140FB3D5-989F-44F7-A496-B4C3D88ADC5A}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{D70E7A5C-C964-4E52-9F27-EFAC27D2BDE0}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{CE6B7F3C-4745-4135-B63F-C70AD81E5C1B}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{7E517574-BF1A-4F8A-A45B-57102F53C094}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{33EF6873-EF32-4378-8524-2593FB62D7B2}] => (Allow) J:\Steam\SteamApps\common\Terraria\Terraria.exe
FirewallRules: [{0AA28FA5-90DA-48FC-8176-F583B92551BE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{C167C2E4-E3D3-4BF8-A5DB-5EB666F19D5E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite Nazi Zombie Army 2\bin\NZA2.exe
FirewallRules: [{7545ED54-35F4-4C9E-B411-97A081BBA2CA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{07BA8574-3EC9-4912-A3F8-A3D41B080007}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{942E330D-3678-40E4-9BF8-BA625830E639}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{A5B5245F-1EAE-4D36-BC01-98442D1AE5DA}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{708E1B13-703A-4450-9BE9-67950874C758}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{3FC0CBC2-70B1-4EF8-9906-D24CF2334EF4}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{D5F51D91-8A76-474E-9FC1-9103DE29D51E}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{E5A3D1EF-2042-4A07-8B29-D88D38D96B0A}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Arma 2 Operation Arrowhead\ArmA2OA_BE.exe
FirewallRules: [{898B97AB-7D6E-416C-B194-C0179BBF9F69}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{C7818B31-D93E-4C21-B661-039568AB34C5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader 2\bin\win32_release\Crusader2.exe
FirewallRules: [{37666EE0-052A-43F4-B000-4626C71FE8EF}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{CFB49C33-DABC-4923-A619-01EB6361AADE}] => (Allow) J:\Steam\SteamApps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{56C078AA-9E52-4DA5-AFB5-231C285325F1}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{0AF347F8-3417-480C-A523-359F337CB9E5}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold_Crusader_Extreme.exe
FirewallRules: [{14D7CAB3-ED49-473D-B758-74AD2D235F5B}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{241AA8F9-366F-49CA-A9D7-EE64E7E3208D}] => (Allow) J:\Steam\SteamApps\common\Stronghold Crusader Extreme\Stronghold Crusader.exe
FirewallRules: [{133AC2D7-1DCD-478B-BAFB-33CAB293E6CD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6675A05A-5F86-4BDC-B36E-21D47F3DA3CA}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4568144A-F313-420D-9783-83FD94F1701D}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{64FCD208-E752-4E2F-A14B-0C8168611060}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{4503E5D3-48FB-491E-902D-6C52383B21C1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{EA131BF6-F6EA-439C-858B-52FB2C05859E}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{3D1F4E66-B650-4B06-8C35-5D4EFB2F28F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{B0A9CC4C-B368-4058-81C9-6C06E3E46309}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [TCP Query User{61839F24-6C8E-4390-9103-B4E00D392893}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{2F7C1461-B677-492E-982D-1E50C743CB8A}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{D50B9E70-35C6-4D68-B130-524BE2E7C832}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{92929856-8DD7-49E8-BCCE-FB341943C55A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [TCP Query User{AA4BCFBD-99F5-4F61-8DCB-6A475F69D846}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{2B5EF94F-3A91-4278-9CAE-7388545B9E9D}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{EA73ABF4-BE8B-43FC-9B45-965F793CB45B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D6BCD7A3-6759-49ED-8D43-70B174B052F9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{9A811C76-3ECC-4556-B3C7-E0BD13CB043A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{C9D33F34-8363-4FA7-8895-7A529AA32590}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [TCP Query User{C82CF0EC-BA56-439E-A88E-380DEC6F84D8}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CFD504F0-E120-496D-B6EB-0BA17BBB979B}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\aoc.exe
FirewallRules: [{F56AA18C-8E42-4AD6-ACF4-141A3A1779B8}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{75D8EF84-478B-4BD0-8B79-A2250DFADF5B}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [TCP Query User{35C610BD-4772-4FC3-BB1D-5BE439559B28}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{30B9A0ED-72B4-4957-92DF-1EC959D2913D}C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe] => (Allow) C:\users\nerdy by nerds\desktop\aoe ii\age of empires ii\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{714CBFCA-8A91-42AF-A7F1-72AC0E143F03}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [UDP Query User{CDBF40EC-26B7-4B28-A231-D5A68F106425}C:\program files\age of empires ii\aoc.exe] => (Allow) C:\program files\age of empires ii\aoc.exe
FirewallRules: [{A930F9BC-EE63-4D3D-9A31-7F5AF164B1F3}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{769D782C-743E-4466-8210-C39597B86982}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{0AC09FDD-F6E9-48B7-B345-55635E6ED446}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{615EFD5A-3553-4428-9F6E-534433654BE6}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [TCP Query User{9DA4E55A-4B01-42FD-BBEE-D24F524D2BAB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [UDP Query User{2BEB840B-1B88-40DB-BB64-6AF73A8F2A14}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe
FirewallRules: [TCP Query User{C4374BC2-E39C-4EF1-AABC-AF0CD94DE1EB}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [UDP Query User{6C58B778-C50F-4C03-9020-4153EEDD0E40}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe
FirewallRules: [{3E19199C-A6CE-493A-A5F6-93CFB382ED56}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8CB7949C-B8BC-4F23-A915-1C049BA634C3}] => (Allow) C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6DC8547C-7C40-4336-9747-0C8362ACEA88}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{C95AF62A-F728-473F-AB7D-292292C32FAE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [TCP Query User{F96D0567-41A0-427C-A121-0E7EBC92888F}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [UDP Query User{FE16D034-8D76-4283-A933-878885CFD05E}C:\program files (x86)\voobly\voobly.exe] => (Allow) C:\program files (x86)\voobly\voobly.exe
FirewallRules: [TCP Query User{7D4F5D8B-3F24-42ED-9A37-542017DCDE84}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [UDP Query User{35B082F1-FAFC-42C2-9DB5-DC3FD961672D}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1\age2_x1.exe
FirewallRules: [TCP Query User{935C2433-8086-4728-8930-9704C543300D}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{14A7A8D0-0BD1-4665-A424-4CFA3288B397}J:\ps3 media server\jre64\bin\javaw.exe] => (Allow) J:\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [TCP Query User{3AC9BFE3-6A72-46C7-B079-20B4C8BE9A76}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{1CBCA031-1D3D-45F0-9844-142EF4CBE220}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{6139767E-D08E-4345-A3AF-BEC5206405EC}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{7E5AD342-B1A2-437C-BB0F-E2FEAFB15619}C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jeremy j. erb\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{4A91C949-A6E3-4FB3-8E65-9429F220F0ED}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [UDP Query User{E279F273-BCF3-4363-8677-0BAAD1E58BAF}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Block) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe
FirewallRules: [{04818325-9BA0-4230-99BF-704A03D5A91C}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{ACF1BE82-F196-4FF4-8A94-17C816FCA113}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{AAEAF55C-F675-4F1C-9B78-7360FFF10B6E}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{29AF9C9A-4025-4267-83F7-1836DE46F489}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\MobileTrans.exe
FirewallRules: [{2B80A7F5-9D0C-4684-BD0D-A16483101C5A}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{1098A087-9F4A-4A7C-807C-309DCB1400C0}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{DDF28D39-8364-4F49-9B30-DEE4C01D7BE7}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{4C767AFA-D976-4A2E-B34B-CAA85B865EC9}] => (Allow) C:\Program Files (x86)\Wondershare\MobileTrans\unins000.exe
FirewallRules: [{600BD4D4-7789-4971-808A-9177412E7066}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4587B165-D351-40AF-8A29-207EFBBB93A9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C0FD4A12-2BC8-48C7-A292-166D1E218DBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BD5F8C6B-D73A-4E00-A7E4-59ACE92C4270}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [UDP Query User{F3018188-720E-49C7-BF48-6634E366FFBA}C:\program files (x86)\logitech\logitech vid\vid.exe] => (Allow) C:\program files (x86)\logitech\logitech vid\vid.exe
FirewallRules: [{105654C7-8991-4FBE-8007-F3D1FFE252DA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{1FE79A1B-A207-4B01-9CFC-6DB75229337F}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{4727EFDF-9EFC-4B00-B244-FF5804B0BBEB}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{18DB1C7D-E0E6-43E7-98B5-0FFC6BCDF9FA}] => (Allow) J:\Steam\SteamApps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [TCP Query User{FE2DB56E-A1A4-4F7C-B46C-3FD52FCE9C8B}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{9933450E-9580-4658-9BD4-3B45609020D1}J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Allow) J:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{562B43D0-3D99-4A53-BD9F-E3C2ADB787AA}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{354359F5-607D-44D5-88B9-CAFB845DB3DB}] => (Allow) J:\Steam\SteamApps\common\killingfloor2\Binaries\Win64\KFGame.exe
FirewallRules: [{8978604F-5CCA-4731-B39F-085C58CD20BE}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{CBD07C30-193D-4F81-A499-F296AD7ECC7E}] => (Allow) J:\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{BC1D5345-4089-4CB4-993A-47FFA6A7327B}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{18A2105B-F91A-4A04-9E1C-27D44A702B6E}] => (Allow) J:\Steam\SteamApps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EF8AF549-382B-4390-BD4E-231F42EAAC8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/25/2015 01:28:49 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 23.11.2015.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1848

Start Time: 01d127180d7f5dcb

Termination Time: 2

Application Path: C:\Users\Nerdy By Nerds\Desktop\FRST64.exe

Report Id: 5a89e92f-930b-11e5-beea-50e5493c3802

Error: (11/24/2015 06:06:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x858
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/20/2015 08:08:08 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (11/17/2015 08:24:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: MATRIX)
Description: Product: Adobe Reader XI - Deutsch - Update '{AC76BA86-7AD7-0000-2550-7A8C40011013}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (11/15/2015 07:26:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xae0
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/14/2015 02:47:33 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (11/13/2015 05:28:52 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (11/13/2015 05:28:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0x898
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/11/2015 03:48:37 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xb78
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3

Error: (11/10/2015 01:18:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Faulting module name: LVPrcSrv.exe, version: 12.10.1110.0, time stamp: 0x4acc50c4
Exception code: 0xc0000005
Fault offset: 0x0000000000007af2
Faulting process id: 0xa8c
Faulting application start time: 0xLVPrcSrv.exe0
Faulting application path: LVPrcSrv.exe1
Faulting module path: LVPrcSrv.exe2
Report Id: LVPrcSrv.exe3


System errors:
=============
Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:46 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:40:45 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:28:10 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.

Error: (11/25/2015 01:28:10 AM) (Source: Schannel) (EventID: 4120) (User: NT AUTHORITY)
Description: The following fatal alert was generated: 10. The internal error state is 10.


CodeIntegrity:
===================================
  Date: 2011-02-13 18:09:10.937
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2011-02-13 17:34:39.964
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2011-02-13 17:00:03.729
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2011-02-13 14:28:49.982
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info =========================== 

Processor: AMD Phenom(tm) II X6 1090T Processor
Percentage of memory in use: 51%
Total physical RAM: 8189.55 MB
Available physical RAM: 3960.12 MB
Total Virtual: 16377.31 MB
Available Virtual: 12164.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:596.07 GB) (Free:61.81 GB) NTFS
Drive d: (MOVIES) (CDROM) (Total:1.89 GB) (Free:0 GB) UDF
Drive j: (2TerraDrive) (Fixed) (Total:1863.01 GB) (Free:1587.85 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3AE3C223)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 11821181)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
         

Alt 25.11.2015, 02:11   #11
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



TDSSKiller-Report Teil 1:

Code:
ATTFilter
01:53:34.0711 0x36d4  TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
01:53:38.0391 0x36d4  ============================================================
01:53:38.0391 0x36d4  Current date / time: 2015/11/25 01:53:38.0391
01:53:38.0391 0x36d4  SystemInfo:
01:53:38.0391 0x36d4  
01:53:38.0391 0x36d4  OS Version: 6.1.7601 ServicePack: 1.0
01:53:38.0391 0x36d4  Product type: Workstation
01:53:38.0391 0x36d4  ComputerName: MATRIX
01:53:38.0391 0x36d4  UserName: Nerdy By Nerds
01:53:38.0391 0x36d4  Windows directory: C:\Windows
01:53:38.0391 0x36d4  System windows directory: C:\Windows
01:53:38.0391 0x36d4  Running under WOW64
01:53:38.0391 0x36d4  Processor architecture: Intel x64
01:53:38.0391 0x36d4  Number of processors: 6
01:53:38.0391 0x36d4  Page size: 0x1000
01:53:38.0391 0x36d4  Boot type: Normal boot
01:53:38.0391 0x36d4  ============================================================
01:53:40.0257 0x36d4  KLMD registered as C:\Windows\system32\drivers\72557972.sys
01:53:40.0565 0x36d4  System UUID: {AFAD6365-08C2-010F-2D4A-5B2154B481AD}
01:53:40.0976 0x36d4  Drive \Device\Harddisk1\DR1 - Size: 0x950AF4DE00 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
01:53:40.0976 0x36d4  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:53:40.0980 0x36d4  ============================================================
01:53:40.0980 0x36d4  \Device\Harddisk1\DR1:
01:53:40.0980 0x36d4  MBR partitions:
01:53:40.0980 0x36d4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
01:53:40.0980 0x36d4  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A824800
01:53:40.0980 0x36d4  \Device\Harddisk0\DR0:
01:53:40.0980 0x36d4  MBR partitions:
01:53:40.0980 0x36d4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
01:53:40.0980 0x36d4  ============================================================
01:53:40.0998 0x36d4  C: <-> \Device\Harddisk1\DR1\Partition2
01:53:41.0046 0x36d4  J: <-> \Device\Harddisk0\DR0\Partition1
01:53:41.0046 0x36d4  ============================================================
01:53:41.0046 0x36d4  Initialize success
01:53:41.0046 0x36d4  ============================================================
01:54:54.0551 0x1960  ============================================================
01:54:54.0551 0x1960  Scan started
01:54:54.0551 0x1960  Mode: Manual; SigCheck; TDLFS; 
01:54:54.0551 0x1960  ============================================================
01:54:54.0551 0x1960  KSN ping started
01:54:54.0774 0x1960  KSN ping finished: true
01:54:58.0005 0x1960  ================ Scan system memory ========================
01:54:58.0005 0x1960  System memory - ok
01:54:58.0005 0x1960  ================ Scan services =============================
01:54:58.0137 0x1960  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:54:58.0169 0x1960  1394ohci - ok
01:54:58.0286 0x1960  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
01:54:58.0300 0x1960  ACDaemon - ok
01:54:58.0353 0x1960  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:54:58.0366 0x1960  ACPI - ok
01:54:58.0401 0x1960  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:54:58.0410 0x1960  AcpiPmi - ok
01:54:58.0500 0x1960  [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:54:58.0507 0x1960  AdobeARMservice - ok
01:54:58.0639 0x1960  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:54:58.0650 0x1960  AdobeFlashPlayerUpdateSvc - ok
01:54:58.0689 0x1960  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
01:54:58.0705 0x1960  adp94xx - ok
01:54:58.0728 0x1960  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
01:54:58.0740 0x1960  adpahci - ok
01:54:58.0748 0x1960  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
01:54:58.0758 0x1960  adpu320 - ok
01:54:58.0797 0x1960  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:54:58.0806 0x1960  AeLookupSvc - ok
01:54:58.0866 0x1960  [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
01:54:58.0873 0x1960  Afc - ok
01:54:58.0943 0x1960  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
01:54:58.0958 0x1960  AFD - ok
01:54:59.0000 0x1960  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
01:54:59.0008 0x1960  agp440 - ok
01:54:59.0029 0x1960  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
01:54:59.0038 0x1960  ALG - ok
01:54:59.0073 0x1960  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:54:59.0080 0x1960  aliide - ok
01:54:59.0111 0x1960  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
01:54:59.0118 0x1960  amdide - ok
01:54:59.0132 0x1960  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
01:54:59.0140 0x1960  AmdK8 - ok
01:54:59.0161 0x1960  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
01:54:59.0169 0x1960  AmdPPM - ok
01:54:59.0207 0x1960  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:54:59.0216 0x1960  amdsata - ok
01:54:59.0223 0x1960  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
01:54:59.0233 0x1960  amdsbs - ok
01:54:59.0286 0x1960  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:54:59.0294 0x1960  amdxata - ok
01:54:59.0329 0x1960  [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID           C:\Windows\system32\drivers\appid.sys
01:54:59.0337 0x1960  AppID - ok
01:54:59.0372 0x1960  [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:54:59.0379 0x1960  AppIDSvc - ok
01:54:59.0414 0x1960  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
01:54:59.0422 0x1960  Appinfo - ok
01:54:59.0522 0x1960  [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:54:59.0528 0x1960  Apple Mobile Device Service - ok
01:54:59.0575 0x1960  [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
01:54:59.0582 0x1960  AppleCharger - ok
01:54:59.0625 0x1960  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
01:54:59.0632 0x1960  AppleChargerSrv - ok
01:54:59.0665 0x1960  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
01:54:59.0676 0x1960  AppMgmt - ok
01:54:59.0701 0x1960  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
01:54:59.0710 0x1960  arc - ok
01:54:59.0744 0x1960  [ 29E7252FA743B15BCE1A2245C5643A02, 7008FA6004AB9E4FBC410EAD8929F97056386DD65045F05059ADF436FB655FAD ] archlp          C:\Windows\syswow64\drivers\archlp.sys
01:54:59.0753 0x1960  archlp - ok
01:54:59.0766 0x1960  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
01:54:59.0775 0x1960  arcsas - ok
01:54:59.0814 0x1960  Aspi32 - ok
01:54:59.0902 0x1960  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
01:54:59.0942 0x1960  aspnet_state - ok
01:54:59.0965 0x1960  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:54:59.0988 0x1960  AsyncMac - ok
01:55:00.0024 0x1960  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
01:55:00.0031 0x1960  atapi - ok
01:55:00.0087 0x1960  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:55:00.0106 0x1960  AudioEndpointBuilder - ok
01:55:00.0128 0x1960  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:55:00.0148 0x1960  AudioSrv - ok
01:55:00.0191 0x1960  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:55:00.0204 0x1960  AxInstSV - ok
01:55:00.0231 0x1960  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
01:55:00.0246 0x1960  b06bdrv - ok
01:55:00.0269 0x1960  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:55:00.0281 0x1960  b57nd60a - ok
01:55:00.0306 0x1960  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:55:00.0315 0x1960  BDESVC - ok
01:55:00.0323 0x1960  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:55:00.0362 0x1960  Beep - ok
01:55:00.0416 0x1960  [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
01:55:00.0419 0x1960  BEService - detected UnsignedFile.Multi.Generic ( 1 )
01:55:00.0590 0x1960  BEService ( UnsignedFile.Multi.Generic ) - warning
01:55:00.0590 0x1960  Force sending object to P2P due to detect: BEService
01:55:00.0820 0x1960  Object send P2P result: true
01:55:01.0071 0x1960  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
01:55:01.0093 0x1960  BFE - ok
01:55:01.0153 0x1960  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
01:55:01.0192 0x1960  BITS - ok
01:55:01.0203 0x1960  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
01:55:01.0211 0x1960  blbdrive - ok
01:55:01.0260 0x1960  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
01:55:01.0274 0x1960  Bonjour Service - ok
01:55:01.0312 0x1960  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:55:01.0320 0x1960  bowser - ok
01:55:01.0335 0x1960  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:55:01.0344 0x1960  BrFiltLo - ok
01:55:01.0352 0x1960  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:55:01.0361 0x1960  BrFiltUp - ok
01:55:01.0403 0x1960  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
01:55:01.0413 0x1960  Browser - ok
01:55:01.0433 0x1960  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:55:01.0445 0x1960  Brserid - ok
01:55:01.0458 0x1960  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:55:01.0468 0x1960  BrSerWdm - ok
01:55:01.0482 0x1960  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:55:01.0491 0x1960  BrUsbMdm - ok
01:55:01.0504 0x1960  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:55:01.0512 0x1960  BrUsbSer - ok
01:55:01.0530 0x1960  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
01:55:01.0540 0x1960  BTHMODEM - ok
01:55:01.0561 0x1960  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
01:55:01.0585 0x1960  bthserv - ok
01:55:01.0739 0x1960  [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
01:55:01.0775 0x1960  c2cautoupdatesvc - ok
01:55:01.0847 0x1960  [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
01:55:01.0889 0x1960  c2cpnrsvc - ok
01:55:01.0917 0x1960  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:55:01.0940 0x1960  cdfs - ok
01:55:01.0986 0x1960  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
01:55:01.0996 0x1960  cdrom - ok
01:55:02.0048 0x1960  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
01:55:02.0071 0x1960  CertPropSvc - ok
01:55:02.0075 0x1960  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
01:55:02.0085 0x1960  circlass - ok
01:55:02.0127 0x1960  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
01:55:02.0141 0x1960  CLFS - ok
01:55:02.0196 0x1960  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:55:02.0204 0x1960  clr_optimization_v2.0.50727_32 - ok
01:55:02.0260 0x1960  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:55:02.0269 0x1960  clr_optimization_v2.0.50727_64 - ok
01:55:02.0348 0x1960  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:55:02.0419 0x1960  clr_optimization_v4.0.30319_32 - ok
01:55:02.0457 0x1960  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:55:02.0487 0x1960  clr_optimization_v4.0.30319_64 - ok
01:55:02.0510 0x1960  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
01:55:02.0518 0x1960  CmBatt - ok
01:55:02.0533 0x1960  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:55:02.0540 0x1960  cmdide - ok
01:55:02.0587 0x1960  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
01:55:02.0617 0x1960  CNG - ok
01:55:02.0637 0x1960  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
01:55:02.0644 0x1960  Compbatt - ok
01:55:02.0689 0x1960  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
01:55:02.0699 0x1960  CompositeBus - ok
01:55:02.0709 0x1960  COMSysApp - ok
01:55:02.0722 0x1960  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
01:55:02.0729 0x1960  crcdisk - ok
01:55:02.0775 0x1960  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:55:02.0785 0x1960  CryptSvc - ok
01:55:02.0836 0x1960  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
01:55:02.0852 0x1960  CSC - ok
01:55:02.0908 0x1960  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
01:55:02.0927 0x1960  CscService - ok
01:55:02.0985 0x1960  [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
01:55:02.0993 0x1960  dc3d - ok
01:55:03.0052 0x1960  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:55:03.0084 0x1960  DcomLaunch - ok
01:55:03.0116 0x1960  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
01:55:03.0144 0x1960  defragsvc - ok
01:55:03.0320 0x1960  [ 541C3C58BAB622549E8F96E7E88F71AA, 79D6710673B4F205B3918A14DF58B0933E2A631D5FF8C10D06C91ABD2D50BC7B ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
01:55:03.0401 0x1960  DevoloNetworkService - ok
01:55:03.0448 0x1960  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:55:03.0472 0x1960  DfsC - ok
01:55:03.0524 0x1960  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
01:55:03.0532 0x1960  dg_ssudbus - ok
01:55:03.0586 0x1960  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:55:03.0600 0x1960  Dhcp - ok
01:55:03.0729 0x1960  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
01:55:03.0763 0x1960  DiagTrack - ok
01:55:03.0786 0x1960  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
01:55:03.0810 0x1960  discache - ok
01:55:03.0828 0x1960  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
01:55:03.0836 0x1960  Disk - ok
01:55:03.0875 0x1960  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:55:03.0885 0x1960  Dnscache - ok
01:55:03.0932 0x1960  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:55:03.0959 0x1960  dot3svc - ok
01:55:04.0002 0x1960  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
01:55:04.0026 0x1960  DPS - ok
01:55:04.0076 0x1960  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:55:04.0083 0x1960  drmkaud - ok
01:55:04.0137 0x1960  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
01:55:04.0147 0x1960  dtsoftbus01 - ok
01:55:04.0206 0x1960  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:55:04.0232 0x1960  DXGKrnl - ok
01:55:04.0257 0x1960  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
01:55:04.0282 0x1960  EapHost - ok
01:55:04.0680 0x1960  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
01:55:04.0748 0x1960  ebdrv - ok
01:55:04.0795 0x1960  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] EFS             C:\Windows\System32\lsass.exe
01:55:04.0802 0x1960  EFS - ok
01:55:04.0839 0x1960  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:55:04.0860 0x1960  ehRecvr - ok
01:55:04.0879 0x1960  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
01:55:04.0889 0x1960  ehSched - ok
01:55:04.0923 0x1960  [ 2E6CE12D16B40DD96B4EBAFFAE79742D, E279713284279459671AEE7B86120BFA4C285A1ED721CFAEE2D6B8579518EA49 ] ElgatoGC656Y    C:\Windows\system32\Drivers\ElgatoGC656.sys
01:55:04.0931 0x1960  ElgatoGC656Y - ok
01:55:04.0965 0x1960  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
01:55:04.0990 0x1960  elxstor - ok
01:55:05.0031 0x1960  [ 12C061D9F9621BE916D58191872EC281, 5285C5AF9ECDAF9CBB7A5D0FC97D882EC06778CF5688E86890A617E2670C413B ] ENTECH64        C:\Windows\system32\DRIVERS\ENTECH64.sys
01:55:05.0037 0x1960  ENTECH64 - ok
01:55:05.0078 0x1960  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:55:05.0085 0x1960  ErrDev - ok
01:55:05.0171 0x1960  [ B8FA96995726D1FA58476E352C02AD82, 6BBD49B16A19CC3C3337707EFBEB6BC355CB077CBBBC99D8985A3FBB6E871A89 ] ES lite Service C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
01:55:05.0179 0x1960  ES lite Service - ok
01:55:05.0231 0x1960  [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv           C:\Windows\etdrv.sys
01:55:05.0237 0x1960  etdrv - ok
01:55:05.0285 0x1960  [ 6C17A702399B0205AB7836C2B45CD806, 54BACC652D905A31959031DE1F6116187D6E7961D05DBC2211904CB7EE7E9CFC ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
01:55:05.0291 0x1960  EtronHub3 - ok
01:55:05.0330 0x1960  [ B5348A55CC9541FFA930E30BB0CC8EF6, D20DC1B5BD6DB6AF621611ADE9CDA413587C58515B84814423339AC7BD89F775 ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
01:55:05.0337 0x1960  EtronXHCI - ok
01:55:05.0364 0x1960  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
01:55:05.0394 0x1960  EventSystem - ok
01:55:05.0412 0x1960  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
01:55:05.0438 0x1960  exfat - ok
01:55:05.0465 0x1960  Fabs - ok
01:55:05.0487 0x1960  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:55:05.0513 0x1960  fastfat - ok
01:55:05.0574 0x1960  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
01:55:05.0594 0x1960  Fax - ok
01:55:05.0599 0x1960  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
01:55:05.0606 0x1960  fdc - ok
01:55:05.0620 0x1960  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
01:55:05.0643 0x1960  fdPHost - ok
01:55:05.0652 0x1960  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:55:05.0676 0x1960  FDResPub - ok
01:55:05.0681 0x1960  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:55:05.0689 0x1960  FileInfo - ok
01:55:05.0695 0x1960  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:55:05.0718 0x1960  Filetrace - ok
01:55:05.0808 0x1960  [ FFF1130F7C9FA01D093A1EDFC5CCE8FC, 159EAA1893D871C309A063829CB3BC51A019FBCA1E07530B5CA1A382B2CCAF61 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
01:55:05.0877 0x1960  FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic ( 1 )
01:55:06.0051 0x1960  Detect skipped due to KSN trusted
01:55:06.0051 0x1960  FirebirdServerMAGIXInstance - ok
01:55:06.0074 0x1960  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
01:55:06.0081 0x1960  flpydisk - ok
01:55:06.0175 0x1960  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:55:06.0187 0x1960  FltMgr - ok
01:55:06.0334 0x1960  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
01:55:06.0367 0x1960  FontCache - ok
01:55:06.0428 0x1960  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:55:06.0435 0x1960  FontCache3.0.0.0 - ok
01:55:06.0467 0x1960  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:55:06.0476 0x1960  FsDepends - ok
01:55:06.0535 0x1960  [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
01:55:06.0542 0x1960  fssfltr - ok
01:55:06.0717 0x1960  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
01:55:06.0751 0x1960  fsssvc - ok
01:55:06.0808 0x1960  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:55:06.0816 0x1960  Fs_Rec - ok
01:55:06.0912 0x1960  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:55:06.0926 0x1960  fvevol - ok
01:55:07.0064 0x1960  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
01:55:07.0072 0x1960  gagp30kx - ok
01:55:07.0164 0x1960  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
01:55:07.0170 0x1960  gdrv - ok
01:55:07.0236 0x1960  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:55:07.0280 0x1960  GEARAspiWDM - ok
01:55:07.0355 0x1960  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
01:55:07.0391 0x1960  gpsvc - ok
01:55:07.0475 0x1960  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:55:07.0483 0x1960  gupdate - ok
01:55:07.0516 0x1960  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:55:07.0524 0x1960  gupdatem - ok
01:55:07.0565 0x1960  [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64        C:\Windows\GVTDrv64.sys
01:55:07.0571 0x1960  GVTDrv64 - ok
01:55:07.0585 0x1960  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:55:07.0593 0x1960  hcw85cir - ok
01:55:07.0630 0x1960  [ 8D7F985CE023640B8D24EAC045D7BABE, 8B3A2CBDA0D48D74519CB3B5928F77D65730D38E50D59995F2167C741F42FEC0 ] hcwhdpvr        C:\Windows\system32\DRIVERS\hcwhdpvr.sys
01:55:07.0639 0x1960  hcwhdpvr - ok
01:55:07.0695 0x1960  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:55:07.0710 0x1960  HdAudAddService - ok
         
TDSSKiller-Report Teil 2:

Code:
ATTFilter
01:55:07.0759 0x1960  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
01:55:07.0769 0x1960  HDAudBus - ok
01:55:07.0781 0x1960  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
01:55:07.0788 0x1960  HidBatt - ok
01:55:07.0793 0x1960  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
01:55:07.0803 0x1960  HidBth - ok
01:55:07.0807 0x1960  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
01:55:07.0817 0x1960  HidIr - ok
01:55:07.0839 0x1960  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
01:55:07.0863 0x1960  hidserv - ok
01:55:07.0900 0x1960  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
01:55:07.0907 0x1960  HidUsb - ok
01:55:07.0949 0x1960  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:55:07.0973 0x1960  hkmsvc - ok
01:55:08.0024 0x1960  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:55:08.0035 0x1960  HomeGroupListener - ok
01:55:08.0078 0x1960  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:55:08.0089 0x1960  HomeGroupProvider - ok
01:55:08.0116 0x1960  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:55:08.0124 0x1960  HpSAMD - ok
01:55:08.0185 0x1960  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:55:08.0205 0x1960  HTTP - ok
01:55:08.0249 0x1960  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:55:08.0255 0x1960  hwpolicy - ok
01:55:08.0302 0x1960  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
01:55:08.0311 0x1960  i8042prt - ok
01:55:08.0360 0x1960  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:55:08.0375 0x1960  iaStorV - ok
01:55:08.0501 0x1960  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
01:55:08.0504 0x1960  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
01:55:08.0593 0x1960  Detect skipped due to KSN trusted
01:55:08.0593 0x1960  IDriverT - ok
01:55:08.0647 0x1960  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:55:08.0669 0x1960  idsvc - ok
01:55:08.0696 0x1960  IEEtwCollectorService - ok
01:55:08.0720 0x1960  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
01:55:08.0727 0x1960  iirsp - ok
01:55:08.0791 0x1960  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
01:55:08.0815 0x1960  IKEEXT - ok
01:55:08.0951 0x1960  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
01:55:09.0044 0x1960  IntcAzAudAddService - ok
01:55:09.0080 0x1960  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
01:55:09.0087 0x1960  intelide - ok
01:55:09.0116 0x1960  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:55:09.0124 0x1960  intelppm - ok
01:55:09.0147 0x1960  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:55:09.0172 0x1960  IPBusEnum - ok
01:55:09.0214 0x1960  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:55:09.0237 0x1960  IpFilterDriver - ok
01:55:09.0281 0x1960  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
01:55:09.0299 0x1960  iphlpsvc - ok
01:55:09.0342 0x1960  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:55:09.0350 0x1960  IPMIDRV - ok
01:55:09.0368 0x1960  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:55:09.0392 0x1960  IPNAT - ok
01:55:09.0460 0x1960  [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
01:55:09.0477 0x1960  iPod Service - ok
01:55:09.0484 0x1960  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:55:09.0495 0x1960  IRENUM - ok
01:55:09.0530 0x1960  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:55:09.0537 0x1960  isapnp - ok
01:55:09.0580 0x1960  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:55:09.0592 0x1960  iScsiPrt - ok
01:55:09.0610 0x1960  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
01:55:09.0617 0x1960  kbdclass - ok
01:55:09.0692 0x1960  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
01:55:09.0700 0x1960  kbdhid - ok
01:55:09.0720 0x1960  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] KeyIso          C:\Windows\system32\lsass.exe
01:55:09.0727 0x1960  KeyIso - ok
01:55:09.0773 0x1960  [ A405647429DE231CD954D93F792CFBA2, EDE6095A20FE10EB26B3018457A44807A120508E6C514F2EAC12F5BA1F74841E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:55:09.0781 0x1960  KSecDD - ok
01:55:09.0847 0x1960  [ E4DC0909B5EACB5BF50F6252095BCFF2, 18779648B7FD9D3DFFD8F314E2197962DF98884CC9F025BC5D884984C1C0759D ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:55:09.0856 0x1960  KSecPkg - ok
01:55:09.0935 0x1960  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:55:09.0957 0x1960  ksthunk - ok
01:55:09.0990 0x1960  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:55:10.0020 0x1960  KtmRm - ok
01:55:10.0061 0x1960  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
01:55:10.0088 0x1960  LanmanServer - ok
01:55:10.0128 0x1960  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:55:10.0153 0x1960  LanmanWorkstation - ok
01:55:10.0195 0x1960  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
01:55:10.0201 0x1960  LGBusEnum - ok
01:55:10.0234 0x1960  [ F7205E939F50B1C8D16F895916BE6756, 914326BAF54691AE880F6A3817B277F027F32AD7EF507A83F9A60DCA02901EDA ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
01:55:10.0242 0x1960  LGSHidFilt - ok
01:55:10.0283 0x1960  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
01:55:10.0288 0x1960  LGVirHid - ok
01:55:10.0343 0x1960  [ C7D21310EA0A644AA6394DE1E46E3D31, 597F27A2696F945FD6388CA62D5EE98E44694F477F57EF8A68C2151B2276E838 ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
01:55:10.0351 0x1960  libusb0 - ok
01:55:10.0370 0x1960  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:55:10.0393 0x1960  lltdio - ok
01:55:10.0418 0x1960  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:55:10.0446 0x1960  lltdsvc - ok
01:55:10.0459 0x1960  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:55:10.0482 0x1960  lmhosts - ok
01:55:10.0502 0x1960  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
01:55:10.0511 0x1960  LSI_FC - ok
01:55:10.0516 0x1960  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
01:55:10.0525 0x1960  LSI_SAS - ok
01:55:10.0536 0x1960  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:55:10.0545 0x1960  LSI_SAS2 - ok
01:55:10.0550 0x1960  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:55:10.0559 0x1960  LSI_SCSI - ok
01:55:10.0577 0x1960  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
01:55:10.0601 0x1960  luafv - ok
01:55:10.0621 0x1960  [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64        C:\Windows\system32\DRIVERS\lv302a64.sys
01:55:10.0627 0x1960  lvpepf64 - ok
01:55:10.0665 0x1960  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:55:10.0670 0x1960  LVPr2M64 - ok
01:55:10.0687 0x1960  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:55:10.0692 0x1960  LVPr2Mon - ok
01:55:10.0734 0x1960  [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
01:55:10.0743 0x1960  LVPrcS64 - ok
01:55:10.0778 0x1960  [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
01:55:10.0789 0x1960  LVRS64 - ok
01:55:10.0809 0x1960  [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
01:55:10.0815 0x1960  LVUSBS64 - ok
01:55:10.0977 0x1960  [ 644E919936A8017B5F205E7FE7EDD19F, AE0BE09DF7192B2E8504DA8D65928C59C62635E0C8D08C6A4EB2A15D512E3E52 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
01:55:11.0075 0x1960  LVUVC64 - ok
01:55:11.0126 0x1960  [ DE585D1D266805E5EEDAE911FDD16F38, D954C1795D98653F1FB0AE8650FF0DEDDAA730B98C9449E6F608154D573DAB27 ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
01:55:11.0133 0x1960  ManyCam - ok
01:55:11.0169 0x1960  [ 5858C4ABE87D0A842A941D6BD08038F1, FA082135752ECE107AC5E94066541F07FC1D56CE070CE8476A30375308F290A9 ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv_x64.sys
01:55:11.0176 0x1960  mcaudrv_simple - ok
01:55:11.0264 0x1960  [ DDCC236009C707761D60E5C76D639176, 7D88944E4DC258C9B7B23E44CAF515BBB2A6E3831CF059AC03DF2CDB3953A04C ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
01:55:11.0275 0x1960  McComponentHostService - ok
01:55:11.0305 0x1960  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:55:11.0314 0x1960  Mcx2Svc - ok
01:55:11.0328 0x1960  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
01:55:11.0336 0x1960  megasas - ok
01:55:11.0362 0x1960  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
01:55:11.0373 0x1960  MegaSR - ok
01:55:11.0441 0x1960  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
01:55:11.0448 0x1960  Microsoft Office Groove Audit Service - ok
01:55:11.0484 0x1960  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
01:55:11.0508 0x1960  MMCSS - ok
01:55:11.0520 0x1960  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
01:55:11.0543 0x1960  Modem - ok
01:55:11.0562 0x1960  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:55:11.0572 0x1960  monitor - ok
01:55:11.0643 0x1960  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:55:11.0650 0x1960  mouclass - ok
01:55:11.0691 0x1960  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
01:55:11.0698 0x1960  mouhid - ok
01:55:11.0738 0x1960  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:55:11.0746 0x1960  mountmgr - ok
01:55:11.0809 0x1960  [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:55:11.0818 0x1960  MozillaMaintenance - ok
01:55:11.0853 0x1960  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:55:11.0862 0x1960  mpio - ok
01:55:11.0877 0x1960  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:55:11.0900 0x1960  mpsdrv - ok
01:55:11.0962 0x1960  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:55:11.0999 0x1960  MpsSvc - ok
01:55:12.0044 0x1960  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:55:12.0053 0x1960  MRxDAV - ok
01:55:12.0089 0x1960  [ 43E1F4B0EFDC244D2A83995CCD7846F7, B8FB3CB6C736E20399AF3164197B14E977DDEC8FD164564501A328A8A3A30267 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:55:12.0098 0x1960  mrxsmb - ok
01:55:12.0176 0x1960  [ 62CEA59FF56B66154E08BD51D87392C2, 5DC63583E417659139FACD2365C2F8F3C9867E331F7374BD4F6C6E2386B5F746 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:55:12.0188 0x1960  mrxsmb10 - ok
01:55:12.0204 0x1960  [ 7D65B5E9573A26C204AA547457DBF544, CE88A733D031DEDBA6ADADB7D9911B3D151A2DDB566A65E0C9E1F07B1A4364AF ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:55:12.0213 0x1960  mrxsmb20 - ok
01:55:12.0246 0x1960  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:55:12.0253 0x1960  msahci - ok
01:55:12.0265 0x1960  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:55:12.0274 0x1960  msdsm - ok
01:55:12.0295 0x1960  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
01:55:12.0305 0x1960  MSDTC - ok
01:55:12.0331 0x1960  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:55:12.0368 0x1960  Msfs - ok
01:55:12.0394 0x1960  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:55:12.0416 0x1960  mshidkmdf - ok
01:55:12.0445 0x1960  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:55:12.0452 0x1960  msisadrv - ok
01:55:12.0479 0x1960  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:55:12.0504 0x1960  MSiSCSI - ok
01:55:12.0507 0x1960  msiserver - ok
01:55:12.0527 0x1960  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:55:12.0550 0x1960  MSKSSRV - ok
01:55:12.0562 0x1960  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:55:12.0584 0x1960  MSPCLOCK - ok
01:55:12.0591 0x1960  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:55:12.0613 0x1960  MSPQM - ok
01:55:12.0660 0x1960  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:55:12.0684 0x1960  MsRPC - ok
01:55:12.0694 0x1960  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
01:55:12.0701 0x1960  mssmbios - ok
01:55:12.0705 0x1960  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:55:12.0728 0x1960  MSTEE - ok
01:55:12.0736 0x1960  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
01:55:12.0743 0x1960  MTConfig - ok
01:55:12.0756 0x1960  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
01:55:12.0764 0x1960  Mup - ok
01:55:12.0812 0x1960  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
01:55:12.0842 0x1960  napagent - ok
01:55:12.0873 0x1960  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:55:12.0888 0x1960  NativeWifiP - ok
01:55:12.0997 0x1960  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:55:13.0021 0x1960  NDIS - ok
01:55:13.0043 0x1960  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:55:13.0066 0x1960  NdisCap - ok
01:55:13.0086 0x1960  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:55:13.0108 0x1960  NdisTapi - ok
01:55:13.0151 0x1960  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:55:13.0173 0x1960  Ndisuio - ok
01:55:13.0216 0x1960  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:55:13.0240 0x1960  NdisWan - ok
01:55:13.0281 0x1960  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:55:13.0322 0x1960  NDProxy - ok
01:55:13.0383 0x1960  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
01:55:13.0390 0x1960  Netaapl - ok
01:55:13.0407 0x1960  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:55:13.0430 0x1960  NetBIOS - ok
01:55:13.0479 0x1960  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:55:13.0505 0x1960  NetBT - ok
01:55:13.0511 0x1960  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] Netlogon        C:\Windows\system32\lsass.exe
01:55:13.0518 0x1960  Netlogon - ok
01:55:13.0540 0x1960  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
01:55:13.0570 0x1960  Netman - ok
01:55:13.0622 0x1960  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0634 0x1960  NetMsmqActivator - ok
01:55:13.0664 0x1960  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0675 0x1960  NetPipeActivator - ok
01:55:13.0701 0x1960  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
01:55:13.0732 0x1960  netprofm - ok
01:55:13.0780 0x1960  [ B72BB9496A126FCFC7FC5945DED9B411, FA5CC4E93761FB2B59B9B34C699B1486560BDB39280AB1125DE42DB7C4BE303A ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
01:55:13.0800 0x1960  netr28x - ok
01:55:13.0821 0x1960  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0833 0x1960  NetTcpActivator - ok
01:55:13.0838 0x1960  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:55:13.0849 0x1960  NetTcpPortSharing - ok
01:55:13.0875 0x1960  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
01:55:13.0883 0x1960  nfrd960 - ok
01:55:13.0926 0x1960  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:55:13.0939 0x1960  NlaSvc - ok
01:55:13.0954 0x1960  nlsX86cc - ok
01:55:13.0959 0x1960  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:55:13.0981 0x1960  Npfs - ok
01:55:14.0061 0x1960  [ 49697C2C761ACB5C0DE99CC8FE93E95B, 02EEA7FB21D28B235A05FE0A6061170F366470EF6E45C9B21D7C8C0E7C728FC5 ] NPF_devolo      C:\Windows\sysWOW64\drivers\npf_devolo.sys
01:55:14.0067 0x1960  NPF_devolo - ok
01:55:14.0081 0x1960  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
01:55:14.0104 0x1960  nsi - ok
01:55:14.0111 0x1960  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:55:14.0133 0x1960  nsiproxy - ok
01:55:14.0212 0x1960  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:55:14.0267 0x1960  Ntfs - ok
01:55:14.0282 0x1960  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
01:55:14.0304 0x1960  Null - ok
01:55:14.0672 0x1960  [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:55:14.0922 0x1960  nvlddmkm - ok
01:55:15.0050 0x1960  [ C50CD479FD1BB886244E2663DFFBCF6A, CCFB60425E56A12C097EC05A9E5549B4F4A10379818ABC64945487C16F882E3D ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
01:55:15.0087 0x1960  NvNetworkService - ok
01:55:15.0225 0x1960  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:55:15.0235 0x1960  nvraid - ok
01:55:15.0427 0x1960  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:55:15.0438 0x1960  nvstor - ok
01:55:15.0542 0x1960  [ AD7A2F3AF147B2CF302EBF7C1E01E027, B8DAAE7FE4B13C9CA3F1DEE7C98F5CA49D4D1678C82C51D6801210838319BAE5 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
01:55:15.0549 0x1960  NvStreamKms - ok
01:55:15.0573 0x1960  NvStreamSvc - ok
01:55:15.0652 0x1960  [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc           C:\Windows\system32\nvvsvc.exe
01:55:15.0676 0x1960  nvsvc - ok
01:55:15.0701 0x1960  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
01:55:15.0708 0x1960  nvvad_WaveExtensible - ok
01:55:15.0742 0x1960  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:55:15.0751 0x1960  nv_agp - ok
01:55:15.0829 0x1960  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:55:15.0843 0x1960  odserv - ok
01:55:15.0882 0x1960  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
01:55:15.0890 0x1960  ohci1394 - ok
01:55:15.0928 0x1960  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:55:15.0936 0x1960  ose - ok
01:55:15.0970 0x1960  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:55:15.0983 0x1960  p2pimsvc - ok
01:55:15.0999 0x1960  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
01:55:16.0015 0x1960  p2psvc - ok
01:55:16.0122 0x1960  [ F7BAC457D6AE2F7E18FA69C8180A7843, 19C1B162FD17A0D5441183C331BF3020D6EF00DAFFBF0464C317BA208BFD2B2A ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
01:55:16.0183 0x1960  PaceLicenseDServices - detected UnsignedFile.Multi.Generic ( 1 )
01:55:16.0270 0x1960  Detect skipped due to KSN trusted
01:55:16.0271 0x1960  PaceLicenseDServices - ok
01:55:16.0327 0x1960  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
01:55:16.0336 0x1960  Parport - ok
01:55:16.0375 0x1960  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:55:16.0383 0x1960  partmgr - ok
01:55:16.0424 0x1960  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:55:16.0435 0x1960  PcaSvc - ok
01:55:16.0477 0x1960  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
01:55:16.0487 0x1960  pci - ok
01:55:16.0527 0x1960  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
01:55:16.0534 0x1960  pciide - ok
01:55:16.0554 0x1960  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
01:55:16.0565 0x1960  pcmcia - ok
01:55:16.0579 0x1960  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:55:16.0587 0x1960  pcw - ok
01:55:16.0639 0x1960  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:55:16.0658 0x1960  PEAUTH - ok
01:55:16.0705 0x1960  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
01:55:16.0737 0x1960  PeerDistSvc - ok
01:55:16.0764 0x1960  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:55:16.0773 0x1960  PerfHost - ok
01:55:16.0865 0x1960  [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
01:55:16.0945 0x1960  PID_PEPI - ok
01:55:17.0032 0x1960  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
01:55:17.0080 0x1960  pla - ok
01:55:17.0121 0x1960  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:55:17.0137 0x1960  PlugPlay - ok
01:55:17.0175 0x1960  PnkBstrA - ok
01:55:17.0221 0x1960  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:55:17.0230 0x1960  PNRPAutoReg - ok
01:55:17.0262 0x1960  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:55:17.0276 0x1960  PNRPsvc - ok
01:55:17.0332 0x1960  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:55:17.0363 0x1960  PolicyAgent - ok
01:55:17.0387 0x1960  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
01:55:17.0412 0x1960  Power - ok
01:55:17.0450 0x1960  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:55:17.0474 0x1960  PptpMiniport - ok
01:55:17.0502 0x1960  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
01:55:17.0511 0x1960  Processor - ok
01:55:17.0561 0x1960  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:55:17.0573 0x1960  ProfSvc - ok
01:55:17.0587 0x1960  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] ProtectedStorage C:\Windows\system32\lsass.exe
01:55:17.0594 0x1960  ProtectedStorage - ok
01:55:17.0719 0x1960  [ 77D05941A147C152CA088D7364D8944B, 1296DF0BAA4228C437C2691B1C5E533921A4A97305179D0E0CE1CA4CE1A318D3 ] PS3 Media Server C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
01:55:17.0732 0x1960  PS3 Media Server - ok
01:55:17.0775 0x1960  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:55:17.0799 0x1960  Psched - ok
01:55:17.0836 0x1960  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
01:55:17.0843 0x1960  PxHlpa64 - ok
01:55:17.0899 0x1960  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
01:55:17.0934 0x1960  ql2300 - ok
01:55:17.0951 0x1960  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
01:55:17.0960 0x1960  ql40xx - ok
01:55:17.0982 0x1960  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
01:55:17.0997 0x1960  QWAVE - ok
01:55:18.0007 0x1960  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:55:18.0017 0x1960  QWAVEdrv - ok
01:55:18.0111 0x1960  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
01:55:18.0121 0x1960  RapiMgr - ok
01:55:18.0136 0x1960  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:55:18.0158 0x1960  RasAcd - ok
01:55:18.0186 0x1960  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:55:18.0209 0x1960  RasAgileVpn - ok
01:55:18.0221 0x1960  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
01:55:18.0246 0x1960  RasAuto - ok
01:55:18.0280 0x1960  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:55:18.0304 0x1960  Rasl2tp - ok
01:55:18.0348 0x1960  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
01:55:18.0376 0x1960  RasMan - ok
01:55:18.0388 0x1960  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:55:18.0411 0x1960  RasPppoe - ok
01:55:18.0427 0x1960  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:55:18.0450 0x1960  RasSstp - ok
01:55:18.0563 0x1960  [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
01:55:18.0573 0x1960  Razer Game Scanner Service - ok
01:55:18.0644 0x1960  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:55:18.0671 0x1960  rdbss - ok
01:55:18.0682 0x1960  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
01:55:18.0691 0x1960  rdpbus - ok
01:55:18.0703 0x1960  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:55:18.0725 0x1960  RDPCDD - ok
01:55:18.0767 0x1960  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
01:55:18.0777 0x1960  RDPDR - ok
01:55:18.0790 0x1960  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:55:18.0812 0x1960  RDPENCDD - ok
01:55:18.0826 0x1960  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:55:18.0850 0x1960  RDPREFMP - ok
01:55:18.0906 0x1960  [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
01:55:18.0912 0x1960  RdpVideoMiniport - ok
01:55:18.0944 0x1960  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:55:18.0956 0x1960  RDPWD - ok
01:55:18.0995 0x1960  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:55:19.0006 0x1960  rdyboost - ok
01:55:19.0023 0x1960  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:55:19.0048 0x1960  RemoteAccess - ok
01:55:19.0071 0x1960  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:55:19.0098 0x1960  RemoteRegistry - ok
01:55:19.0111 0x1960  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:55:19.0135 0x1960  RpcEptMapper - ok
         
TDSSKiller-Report Teil 3:

Code:
ATTFilter
01:55:19.0146 0x1960  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
01:55:19.0154 0x1960  RpcLocator - ok
01:55:19.0202 0x1960  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
01:55:19.0234 0x1960  RpcSs - ok
01:55:19.0245 0x1960  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:55:19.0269 0x1960  rspndr - ok
01:55:19.0303 0x1960  [ 60EB8A87357CA5B088B422D1E55A2405, A4E8ACACB9EFB094D05EC24DFB65D969DBA14634EEB6B4DBEF500BDEA8D78DB5 ] rt61x64         C:\Windows\system32\DRIVERS\netr6164.sys
01:55:19.0316 0x1960  rt61x64 - ok
01:55:19.0373 0x1960  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
01:55:19.0386 0x1960  RTL8167 - ok
01:55:19.0457 0x1960  [ B3F36B4B3F192EA87DDC119F3A0B3E45, DE80502994ED9977AD64483385A0BC0C6060EA9E9C08645E72FBBCFE8B2358C7 ] RTL8192su       C:\Windows\system32\DRIVERS\RTL8192su.sys
01:55:19.0481 0x1960  RTL8192su - ok
01:55:19.0534 0x1960  [ 5FA5ED95D2B02E92B9BC269A6B0B5039, 9C7CAB795658EC965B350318A9F5FC4EEFD2086C0BD71BAC7DD8B4A4863F6AE7 ] rzjstk          C:\Windows\system32\DRIVERS\rzjstk.sys
01:55:19.0540 0x1960  rzjstk - ok
01:55:19.0589 0x1960  [ D76C183CC06A1AF1F25377DA2C2FB324, 00188E5965764036A388CDD28A2A4F49B0EECFF8A4FE08E43E63F9D35801FF0B ] rzkeypadendpt   C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
01:55:19.0596 0x1960  rzkeypadendpt - ok
01:55:19.0651 0x1960  [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
01:55:19.0657 0x1960  rzpmgrk - ok
01:55:19.0719 0x1960  [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
01:55:19.0727 0x1960  rzpnk - ok
01:55:19.0768 0x1960  [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd           C:\Windows\system32\DRIVERS\rzudd.sys
01:55:19.0777 0x1960  rzudd - ok
01:55:19.0816 0x1960  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
01:55:19.0823 0x1960  s3cap - ok
01:55:19.0837 0x1960  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] SamSs           C:\Windows\system32\lsass.exe
01:55:19.0844 0x1960  SamSs - ok
01:55:19.0881 0x1960  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:55:19.0890 0x1960  sbp2port - ok
01:55:19.0912 0x1960  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:55:19.0939 0x1960  SCardSvr - ok
01:55:19.0979 0x1960  [ 6CE6F98EA3D07A9C2CE3CD0A5A86352D, 64A07303E538A1EE439D4AAD0DEBBD6037219D37B884026701A06E59A729E9C9 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
01:55:19.0987 0x1960  SCDEmu - ok
01:55:20.0026 0x1960  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:55:20.0048 0x1960  scfilter - ok
01:55:20.0105 0x1960  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
01:55:20.0133 0x1960  Schedule - ok
01:55:20.0181 0x1960  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:55:20.0203 0x1960  SCPolicySvc - ok
01:55:20.0248 0x1960  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:55:20.0258 0x1960  SDRSVC - ok
01:55:20.0280 0x1960  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:55:20.0305 0x1960  secdrv - ok
01:55:20.0339 0x1960  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
01:55:20.0361 0x1960  seclogon - ok
01:55:20.0372 0x1960  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
01:55:20.0396 0x1960  SENS - ok
01:55:20.0408 0x1960  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:55:20.0416 0x1960  SensrSvc - ok
01:55:20.0478 0x1960  [ 84AC127242DD3CCDE02F9A4673214B1F, 87E229138AAF10951C153F0BEC9B46CB459FE80074E02DE1DA0BC0FA5A11F237 ] Sentinel64      C:\Windows\System32\Drivers\Sentinel64.sys
01:55:20.0486 0x1960  Sentinel64 - ok
01:55:20.0503 0x1960  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
01:55:20.0510 0x1960  Serenum - ok
01:55:20.0576 0x1960  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
01:55:20.0585 0x1960  Serial - ok
01:55:20.0713 0x1960  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
01:55:20.0722 0x1960  sermouse - ok
01:55:20.0765 0x1960  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
01:55:20.0789 0x1960  SessionEnv - ok
01:55:20.0833 0x1960  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:55:20.0842 0x1960  sffdisk - ok
01:55:20.0873 0x1960  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:55:20.0881 0x1960  sffp_mmc - ok
01:55:20.0905 0x1960  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:55:20.0914 0x1960  sffp_sd - ok
01:55:20.0926 0x1960  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
01:55:20.0933 0x1960  sfloppy - ok
01:55:20.0959 0x1960  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:55:20.0989 0x1960  SharedAccess - ok
01:55:21.0036 0x1960  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:55:21.0065 0x1960  ShellHWDetection - ok
01:55:21.0085 0x1960  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:55:21.0092 0x1960  SiSRaid2 - ok
01:55:21.0110 0x1960  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
01:55:21.0118 0x1960  SiSRaid4 - ok
01:55:21.0216 0x1960  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
01:55:21.0231 0x1960  SkypeUpdate - ok
01:55:21.0259 0x1960  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:55:21.0284 0x1960  Smb - ok
01:55:21.0311 0x1960  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:55:21.0319 0x1960  SNMPTRAP - ok
01:55:21.0329 0x1960  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:55:21.0337 0x1960  spldr - ok
01:55:21.0388 0x1960  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
01:55:21.0406 0x1960  Spooler - ok
01:55:21.0530 0x1960  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
01:55:21.0620 0x1960  sppsvc - ok
01:55:21.0637 0x1960  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:55:21.0662 0x1960  sppuinotify - ok
01:55:21.0710 0x1960  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:55:21.0725 0x1960  srv - ok
01:55:21.0774 0x1960  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:55:21.0788 0x1960  srv2 - ok
01:55:21.0797 0x1960  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:55:21.0807 0x1960  srvnet - ok
01:55:21.0821 0x1960  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:55:21.0848 0x1960  SSDPSRV - ok
01:55:21.0858 0x1960  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:55:21.0882 0x1960  SstpSvc - ok
01:55:21.0928 0x1960  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
01:55:21.0938 0x1960  ssudmdm - ok
01:55:22.0020 0x1960  [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
01:55:22.0041 0x1960  Steam Client Service - ok
01:55:22.0106 0x1960  [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
01:55:22.0120 0x1960  Stereo Service - ok
01:55:22.0135 0x1960  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
01:55:22.0142 0x1960  stexstor - ok
01:55:22.0195 0x1960  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\drivers\serscan.sys
01:55:22.0201 0x1960  StillCam - ok
01:55:22.0264 0x1960  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
01:55:22.0286 0x1960  stisvc - ok
01:55:22.0329 0x1960  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
01:55:22.0337 0x1960  storflt - ok
01:55:22.0347 0x1960  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
01:55:22.0354 0x1960  storvsc - ok
01:55:22.0396 0x1960  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
01:55:22.0402 0x1960  swenum - ok
01:55:22.0428 0x1960  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
01:55:22.0461 0x1960  swprv - ok
01:55:22.0476 0x1960  Synth3dVsc - ok
01:55:22.0557 0x1960  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
01:55:22.0598 0x1960  SysMain - ok
01:55:22.0634 0x1960  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:55:22.0647 0x1960  TabletInputService - ok
01:55:22.0896 0x1960  [ 34D92E8CB04DCAEEAE054FEDE7526282, 73F38FAB499EBA5344251F9A4B1883D326AB7F55022B81C596EAA664906482F1 ] TabletServiceWacom C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
01:55:23.0023 0x1960  TabletServiceWacom - ok
01:55:23.0078 0x1960  [ B08740047145B9BCE15BF75CA0F9718A, 3E2A8A5A2A4DC4D0F05E22EA2C0EBD85AA5C7C6854E873D53538D1F54B8F7C63 ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
01:55:23.0093 0x1960  tap0901t - ok
01:55:23.0133 0x1960  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:55:23.0161 0x1960  TapiSrv - ok
01:55:23.0174 0x1960  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
01:55:23.0198 0x1960  TBS - ok
01:55:23.0271 0x1960  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:55:23.0317 0x1960  Tcpip - ok
01:55:23.0379 0x1960  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:55:23.0421 0x1960  TCPIP6 - ok
01:55:23.0457 0x1960  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:55:23.0465 0x1960  tcpipreg - ok
01:55:23.0481 0x1960  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:55:23.0488 0x1960  TDPIPE - ok
01:55:23.0516 0x1960  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:55:23.0523 0x1960  TDTCP - ok
01:55:23.0575 0x1960  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:55:23.0584 0x1960  tdx - ok
01:55:23.0783 0x1960  [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
01:55:23.0885 0x1960  TeamViewer9 - ok
01:55:23.0924 0x1960  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
01:55:23.0932 0x1960  TermDD - ok
01:55:23.0986 0x1960  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
01:55:24.0005 0x1960  TermService - ok
01:55:24.0020 0x1960  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
01:55:24.0031 0x1960  Themes - ok
01:55:24.0051 0x1960  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
01:55:24.0075 0x1960  THREADORDER - ok
01:55:24.0105 0x1960  [ 8DD33A57339ADAE34CDB12994ACBC50F, 58FD3AC48E3EE6BECCED4E0227C73D6783BF552A3A0B5FD43F091580108E1A0D ] Tpkd            C:\Windows\system32\drivers\Tpkd.sys
01:55:24.0114 0x1960  Tpkd - ok
01:55:24.0121 0x1960  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
01:55:24.0147 0x1960  TrkWks - ok
01:55:24.0202 0x1960  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:55:24.0227 0x1960  TrustedInstaller - ok
01:55:24.0267 0x1960  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:55:24.0274 0x1960  tssecsrv - ok
01:55:24.0315 0x1960  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:55:24.0322 0x1960  TsUsbFlt - ok
01:55:24.0328 0x1960  tsusbhub - ok
01:55:24.0374 0x1960  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:55:24.0398 0x1960  tunnel - ok
01:55:24.0491 0x1960  [ A96BE6F92EDE53BA5997B2AE7367EACD, D2CE331F0BBA15C19A66BEF91FBDA96536F656C89DC9FE1A2F88D0C368986BB2 ] TunngleService  C:\Program Files (x86)\Tunngle\TnglCtrl.exe
01:55:24.0509 0x1960  TunngleService - ok
01:55:24.0534 0x1960  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
01:55:24.0542 0x1960  uagp35 - ok
01:55:24.0591 0x1960  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:55:24.0619 0x1960  udfs - ok
01:55:24.0634 0x1960  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:55:24.0643 0x1960  UI0Detect - ok
01:55:24.0659 0x1960  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:55:24.0667 0x1960  uliagpkx - ok
01:55:24.0706 0x1960  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:55:24.0714 0x1960  umbus - ok
01:55:24.0730 0x1960  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
01:55:24.0737 0x1960  UmPass - ok
01:55:24.0774 0x1960  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
01:55:24.0785 0x1960  UmRdpService - ok
01:55:24.0875 0x1960  [ AEBE8F338432F9DE5AE0CAE4D4BAED76, A11DE1BAEF6E0D30B8801C0AEC589F0DA6FEC5E010BD6A18584D96E0AF9243B8 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
01:55:24.0889 0x1960  UMVPFSrv - ok
01:55:24.0914 0x1960  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
01:55:24.0944 0x1960  upnphost - ok
01:55:25.0012 0x1960  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
01:55:25.0020 0x1960  USBAAPL64 - ok
01:55:25.0087 0x1960  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
01:55:25.0095 0x1960  usbaudio - ok
01:55:25.0148 0x1960  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:55:25.0156 0x1960  usbccgp - ok
01:55:25.0232 0x1960  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:55:25.0240 0x1960  usbcir - ok
01:55:25.0273 0x1960  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
01:55:25.0280 0x1960  usbehci - ok
01:55:25.0306 0x1960  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:55:25.0318 0x1960  usbhub - ok
01:55:25.0327 0x1960  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
01:55:25.0334 0x1960  usbohci - ok
01:55:25.0349 0x1960  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
01:55:25.0357 0x1960  usbprint - ok
01:55:25.0394 0x1960  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:55:25.0401 0x1960  USBSTOR - ok
01:55:25.0417 0x1960  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
01:55:25.0424 0x1960  usbuhci - ok
01:55:25.0484 0x1960  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
01:55:25.0494 0x1960  usbvideo - ok
01:55:25.0511 0x1960  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
01:55:25.0535 0x1960  UxSms - ok
01:55:25.0566 0x1960  [ 18436F7006443FB76145B3D35162A810, 1670A711D808AEA66A63443CE752EB771D4BF34CA838B0040849A436FFF77E69 ] VaneFltr        C:\Windows\system32\drivers\Lachesis.sys
01:55:25.0572 0x1960  VaneFltr - ok
01:55:25.0586 0x1960  [ FDD980360C9D72DA77F4C59376AE95C9, A5C1BCFBCCD031A24BD87D6A193F595B45EA5AC9FEBC198F552EED60AB75238E ] VaultSvc        C:\Windows\system32\lsass.exe
01:55:25.0594 0x1960  VaultSvc - ok
01:55:25.0630 0x1960  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:55:25.0638 0x1960  vdrvroot - ok
01:55:25.0688 0x1960  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
01:55:25.0721 0x1960  vds - ok
01:55:25.0783 0x1960  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:55:25.0793 0x1960  vga - ok
01:55:25.0859 0x1960  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:55:25.0882 0x1960  VgaSave - ok
01:55:25.0886 0x1960  VGPU - ok
01:55:25.0926 0x1960  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:55:25.0937 0x1960  vhdmp - ok
01:55:25.0974 0x1960  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:55:25.0982 0x1960  viaide - ok
01:55:26.0018 0x1960  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
01:55:26.0028 0x1960  vmbus - ok
01:55:26.0046 0x1960  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
01:55:26.0054 0x1960  VMBusHID - ok
01:55:26.0118 0x1960  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:55:26.0126 0x1960  volmgr - ok
01:55:26.0173 0x1960  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:55:26.0186 0x1960  volmgrx - ok
01:55:26.0202 0x1960  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:55:26.0215 0x1960  volsnap - ok
01:55:26.0248 0x1960  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
01:55:26.0258 0x1960  vsmraid - ok
01:55:26.0329 0x1960  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
01:55:26.0381 0x1960  VSS - ok
01:55:26.0397 0x1960  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
01:55:26.0406 0x1960  vwifibus - ok
01:55:26.0428 0x1960  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
01:55:26.0439 0x1960  vwififlt - ok
01:55:26.0463 0x1960  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
01:55:26.0494 0x1960  W32Time - ok
01:55:26.0538 0x1960  [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor   C:\Windows\system32\DRIVERS\wacmoumonitor.sys
01:55:26.0544 0x1960  wacmoumonitor - ok
01:55:26.0586 0x1960  [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
01:55:26.0591 0x1960  wacommousefilter - ok
01:55:26.0602 0x1960  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
01:55:26.0609 0x1960  WacomPen - ok
01:55:26.0641 0x1960  [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid       C:\Windows\system32\DRIVERS\wacomvhid.sys
01:55:26.0647 0x1960  wacomvhid - ok
01:55:26.0668 0x1960  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:55:26.0691 0x1960  WANARP - ok
01:55:26.0703 0x1960  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:55:26.0726 0x1960  Wanarpv6 - ok
01:55:26.0796 0x1960  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
01:55:26.0831 0x1960  wbengine - ok
01:55:26.0856 0x1960  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:55:26.0871 0x1960  WbioSrvc - ok
01:55:26.0925 0x1960  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
01:55:26.0939 0x1960  WcesComm - ok
01:55:27.0002 0x1960  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:55:27.0020 0x1960  wcncsvc - ok
01:55:27.0034 0x1960  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:55:27.0042 0x1960  WcsPlugInService - ok
01:55:27.0056 0x1960  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
01:55:27.0064 0x1960  Wd - ok
01:55:27.0121 0x1960  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:55:27.0144 0x1960  Wdf01000 - ok
01:55:27.0155 0x1960  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:55:27.0168 0x1960  WdiServiceHost - ok
01:55:27.0172 0x1960  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:55:27.0184 0x1960  WdiSystemHost - ok
01:55:27.0223 0x1960  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
01:55:27.0235 0x1960  WebClient - ok
01:55:27.0248 0x1960  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:55:27.0276 0x1960  Wecsvc - ok
01:55:27.0290 0x1960  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:55:27.0315 0x1960  wercplsupport - ok
01:55:27.0334 0x1960  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:55:27.0358 0x1960  WerSvc - ok
01:55:27.0364 0x1960  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:55:27.0386 0x1960  WfpLwf - ok
01:55:27.0396 0x1960  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:55:27.0403 0x1960  WIMMount - ok
01:55:27.0423 0x1960  WinDefend - ok
01:55:27.0436 0x1960  WinHttpAutoProxySvc - ok
01:55:27.0473 0x1960  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:55:27.0500 0x1960  Winmgmt - ok
01:55:27.0588 0x1960  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
01:55:27.0634 0x1960  WinRM - ok
01:55:27.0686 0x1960  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
01:55:27.0695 0x1960  WinUsb - ok
01:55:27.0732 0x1960  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:55:27.0759 0x1960  Wlansvc - ok
01:55:27.0787 0x1960  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:55:27.0794 0x1960  wlcrasvc - ok
01:55:27.0913 0x1960  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:55:27.0962 0x1960  wlidsvc - ok
01:55:28.0001 0x1960  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
01:55:28.0008 0x1960  WmiAcpi - ok
01:55:28.0029 0x1960  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:55:28.0041 0x1960  wmiApSrv - ok
01:55:28.0048 0x1960  WMPNetworkSvc - ok
01:55:28.0059 0x1960  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:55:28.0068 0x1960  WPCSvc - ok
01:55:28.0111 0x1960  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:55:28.0123 0x1960  WPDBusEnum - ok
01:55:28.0133 0x1960  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:55:28.0158 0x1960  ws2ifsl - ok
01:55:28.0170 0x1960  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
01:55:28.0182 0x1960  wscsvc - ok
01:55:28.0222 0x1960  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
01:55:28.0231 0x1960  WSDPrintDevice - ok
01:55:28.0234 0x1960  WSearch - ok
01:55:28.0336 0x1960  [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv        C:\Windows\system32\wuaueng.dll
01:55:28.0393 0x1960  wuauserv - ok
01:55:28.0433 0x1960  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:55:28.0442 0x1960  WudfPf - ok
01:55:28.0459 0x1960  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:55:28.0469 0x1960  WUDFRd - ok
01:55:28.0508 0x1960  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:55:28.0517 0x1960  wudfsvc - ok
01:55:28.0557 0x1960  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:55:28.0569 0x1960  WwanSvc - ok
01:55:28.0615 0x1960  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
01:55:28.0622 0x1960  xusb21 - ok
01:55:28.0657 0x1960  ================ Scan global ===============================
01:55:28.0696 0x1960  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
01:55:28.0739 0x1960  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
01:55:28.0755 0x1960  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll
01:55:28.0776 0x1960  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
01:55:28.0813 0x1960  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
01:55:28.0819 0x1960  [ Global ] - ok
01:55:28.0819 0x1960  ================ Scan MBR ==================================
01:55:28.0827 0x1960  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
01:55:28.0998 0x1960  \Device\Harddisk1\DR1 - ok
01:55:29.0045 0x1960  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
01:55:29.0113 0x1960  \Device\Harddisk0\DR0 - ok
01:55:29.0114 0x1960  ================ Scan VBR ==================================
01:55:29.0115 0x1960  [ CDB057F2BB39ED9D067F761AEC114D0F ] \Device\Harddisk1\DR1\Partition1
01:55:29.0116 0x1960  \Device\Harddisk1\DR1\Partition1 - ok
01:55:29.0118 0x1960  [ 1932210E82096A1056F7A312EBF08D66 ] \Device\Harddisk1\DR1\Partition2
01:55:29.0120 0x1960  \Device\Harddisk1\DR1\Partition2 - ok
01:55:29.0121 0x1960  [ A087C0120C9361BE942045AE6FAFCA2A ] \Device\Harddisk0\DR0\Partition1
01:55:29.0177 0x1960  \Device\Harddisk0\DR0\Partition1 - ok
01:55:29.0177 0x1960  ================ Scan generic autorun ======================
01:55:29.0541 0x1960  [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
01:55:29.0892 0x1960  RtHDVCpl - ok
01:55:30.0642 0x1960  [ 5EA707336336DDFADE5FD3726CEA1523, 6136D88012140B3A43C7DC6CD0CBDB867BC6BA62D718269B73ED9F1B340F6768 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
01:55:30.0731 0x1960  NvBackend - ok
01:55:30.0928 0x1960  [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
01:55:31.0108 0x1960  iTunesHelper - ok
01:55:31.0317 0x1960  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
01:55:31.0354 0x1960  Windows Mobile-based device management - ok
01:55:31.0537 0x1960  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
01:55:31.0564 0x1960  HP Software Update - ok
01:55:31.0723 0x1960  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:55:31.0802 0x1960  Sidebar - ok
01:55:31.0849 0x1960  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:55:31.0871 0x1960  mctadmin - ok
01:55:31.0914 0x1960  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:55:31.0942 0x1960  Sidebar - ok
01:55:31.0968 0x1960  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:55:31.0979 0x1960  mctadmin - ok
01:55:32.0100 0x1960  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
01:55:32.0177 0x1960  HP Officejet Pro 8600 (NET) - ok
01:55:32.0560 0x1960  [ C10E5EF1B85DE5B79AC2815C9A677D1F, 33162556A7F41CF107480A788104DD28A0C73C4AFFB224124A6C474D9B47A4DD ] C:\Users\Jeremy J. Erb\AppData\Roaming\uTorrent\uTorrent.exe
01:55:33.0611 0x1960  uTorrent - ok
01:55:33.0946 0x1960  [ 7A2870C2A8283B3630BF7670D0362B94, A36AA6F2A78DF3E66ACA484E9E33D0CB01207FF52A0A8C006424493A5C489C48 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
01:55:33.0971 0x1960  GoogleChromeAutoLaunch_90C1996279C19B2AA865F0F198BD9F08 - ok
01:55:34.0362 0x1960  [ E17E53F297560C31631C4AC549385AE3, 7A5A6895D7DEF32B4CC7EF037E15CF5C4B01E28A3903F30686910C4AA89835A5 ] C:\Users\Nerdy By Nerds\AppData\Roaming\uTorrent\uTorrent.exe
01:55:34.0419 0x1960  uTorrent - ok
01:55:34.0516 0x1960  [ 8D80BFF016E907AAE76E5667E0A8F1E0, 63728CD5E6EEBCC90B5FF854B6ACB565B194E46B71CAF89FB992E65433DD20E0 ] C:\Program Files (x86)\Voobly\voobly.exe
01:55:34.0522 0x1960  Voobly - detected UnsignedFile.Multi.Generic ( 1 )
01:55:34.0665 0x1960  Voobly ( UnsignedFile.Multi.Generic ) - warning
01:55:34.0920 0x1960  [ D192592FD0A99D9F360906D3F6DFBFF1, E0ED95A8AB4D26A40BF95B8DB2D968AD1FDB36B8C4DF2990185E0458B3948CA3 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
01:55:34.0989 0x1960  WSHelperSetup.exe - ok
01:55:35.0151 0x1960  [ E1473471169EC64C57B49F9C984DFB1A, 3E05B4AD77F5CE13B01B7E1FD460F9779FF9E7C9E6DEBD5225EC840D96D12AA1 ] C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe
01:55:35.0306 0x1960  Logitech Vid - ok
01:55:35.0315 0x1960  Waiting for KSN requests completion. In queue: 151
01:55:36.0333 0x1960  Win FW state via NFP2: enabled ( trusted )
01:55:36.0609 0x1960  ============================================================
01:55:36.0609 0x1960  Scan finished
01:55:36.0609 0x1960  ============================================================
01:55:36.0617 0x34fc  Detected object count: 2
01:55:36.0617 0x34fc  Actual detected object count: 2
01:56:00.0259 0x34fc  BEService ( UnsignedFile.Multi.Generic ) - skipped by user
01:56:00.0259 0x34fc  BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
01:56:00.0260 0x34fc  Voobly ( UnsignedFile.Multi.Generic ) - skipped by user
01:56:00.0260 0x34fc  Voobly ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
Die .scr Datei habe ich wie angegeben, nicht ausgeführt. Ich hab mach nur gefragt, ob die Datei womöglich ohne mein Wissen automatisch ausgeführt wurde (--> Hintertüre). Ich kenn mich mit der Materie überhaupt nicht aus, also Entschuldige für die dumme Frage.

Im FRST-Logfile wird viermal etwas mit dem Wort "ATTENTION" gekennzeichnet, ist das bedenklich? Was soll ich als nächstes tun?

Mit ATTENTION gekenntzeichnete Einträge:
Code:
ATTFilter
==================== Registry (Whitelisted) ===========================
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION


Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION



Chrome:
=======
CHR Extension: (Avira Sparberater) - C:\Users\Nerdy By Nerds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cojnmaaohncijldefpkpkkakjonfmgeb [2015-04-29] [UpdateUrl: hxxp://ciuvo.com/ciuvo/update?tag=avira&campaign=] <==== ATTENTION
         

Alt 25.11.2015, 09:13   #12
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Eine Hintertür ist nicht dafür da, um irgendwelche Dateien, die der Anwender versehentlich runtergeladen hat, automatisch auszuführen. Hättest du eine Hintertür (backdoor) im System wär es dann ja schon kompromittiert. (durch die Cracks/Keygens (für Adobe) hast du jedenfalls fahrlässig eine Infektion in Kauf genommen)

Bitte mit MBAR fortfahren:

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 27.11.2015, 13:03   #13
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Beim start der Software Malwarebytes Anti-Rootkit Beta kommt diese Meldung:
Zitat:
Registry value "AppInit_Dlls" has been found, wich may be caused by rootkit activity.

Note: Press "No" button if you're not sure. If the tool crashes or terminates unexpectedly during a system scan, restart the tool and press "Yes" should this message appear again.

Do you want to remove this value and restart the tool?
--> Ich hab mal die Anweisung befolgt und "No" gedrückt, es kam zu keinem Absturz.

Log-File 1. Scan:
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2015.11.26.04
  rootkit: v2015.11.23.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Nerdy By Nerds :: MATRIX [administrator]

26.11.2015 18:48:41
mbar-log-2015-11-26 (18-48-41).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 461240
Time elapsed: 48 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\Nerdy By Nerds\Desktop\Games\Die Sims\The.Sims.3.Generic.NoDVD.Patcher.exe (HackTool.Agent) -> Delete on reboot. [e8b47012d2b96acc5805c3434db3b24e]

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
--> Nach dem ersten Scan war ein clean-up nötig, wonach ich den Scan wie in der Anleitung angegeben nochmals laufen lies.

Log-File 2. Scan:
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2015.11.26.04
  rootkit: v2015.11.23.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18015
Nerdy By Nerds :: MATRIX [administrator]

26.11.2015 20:15:10
mbar-log-2015-11-26 (20-15-10).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 461498
Time elapsed: 57 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Alt 27.11.2015, 13:24   #14
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Zitat:
Files Detected: 1
C:\Users\Nerdy By Nerds\Desktop\Games\Die Sims\The.Sims.3.Generic.NoDVD.Patcher.exe (HackTool.Agent)
Wir waren uns doch einige, dass du alles gecrackte Zeug weghaust!
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 27.11.2015, 13:36   #15
MrButsch
 
.scr Datei ausversehen heruntergeladen. - Standard

.scr Datei ausversehen heruntergeladen.



Ja hab was übersehen sorry, die Datei ist jetzt ja weg.

Antwort

Themen zu .scr Datei ausversehen heruntergeladen.
.scr datei, .scr trojaner, befallen, compu, computer, daraus, datei, dnsapi.dll, ergebnisse, euren, falsch, gefährlich, hallo zusammen, launch, namen, nicht, poste, posten, scans, virus, zusammen, ältere



Ähnliche Themen: .scr Datei ausversehen heruntergeladen.


  1. .scr Datei heruntergeladen
    Plagegeister aller Art und deren Bekämpfung - 25.09.2015 (6)
  2. Windows 7: DHL-Email - Zip Datei heruntergeladen und geöffnet
    Log-Analyse und Auswertung - 11.06.2015 (26)
  3. DHL Trojaner - zib heruntergeladen und geöffnet - Datei ist verschwunden
    Log-Analyse und Auswertung - 30.04.2015 (13)
  4. Windows 7: Fake DHL Mail. Datei heruntergeladen und entpackt.
    Plagegeister aller Art und deren Bekämpfung - 24.03.2015 (15)
  5. Windows 8.1 - Paketankündigung_zu_Ihrer_Sendung_083747799393 - Zip Datei heruntergeladen
    Log-Analyse und Auswertung - 14.03.2015 (18)
  6. scr. Datei heruntergeladen, Link war als png. Datei angegeben
    Plagegeister aller Art und deren Bekämpfung - 05.01.2015 (3)
  7. Fake E-Mail mit anhang erhalten. Dummerweise (.zip) datei heruntergeladen aber nicht geöffnet.
    Plagegeister aller Art und deren Bekämpfung - 08.08.2014 (16)
  8. Anhang in einer Email geöffnet, Zip-Datei ausversehen ausgeführt, jetzt deutliche Leistungseinbußen, Trojaner
    Plagegeister aller Art und deren Bekämpfung - 24.07.2014 (13)
  9. Trojaner in Email als zip heruntergeladen, enthaltene Datei aber nicht ausgeführt - Infektion?
    Plagegeister aller Art und deren Bekämpfung - 05.07.2014 (3)
  10. Trojaner in Email als zip heruntergeladen, enthaltene Datei aber nicht ausgeführt - Infektion?
    Plagegeister aller Art und deren Bekämpfung - 06.06.2014 (4)
  11. exe Datei heruntergeladen, nicht aufgestarten, nicht löschbar
    Plagegeister aller Art und deren Bekämpfung - 04.12.2013 (1)
  12. Mahnung mit Zip- Datei heruntergeladen und geöffnet
    Log-Analyse und Auswertung - 30.08.2013 (13)
  13. Mahnung mit Zip- Datei heruntergeladen und geöffnet
    Mülltonne - 25.08.2013 (2)
  14. Mahnung Zip Datei heruntergeladen und geöffnet
    Plagegeister aller Art und deren Bekämpfung - 24.08.2013 (7)
  15. Mahnung Zip Datei heruntergeladen und geöffnet - möglicher Befall
    Plagegeister aller Art und deren Bekämpfung - 23.08.2013 (11)
  16. Ausversehen unbekannte Malware geöffnet
    Plagegeister aller Art und deren Bekämpfung - 20.03.2013 (20)
  17. Trojaner Virenmeldung WIN32/Bublik.B, ich habe ausversehen die Mail mit einer ZIP-Datei geöffnet.
    Log-Analyse und Auswertung - 25.02.2013 (5)

Zum Thema .scr Datei ausversehen heruntergeladen. - Hallo Zusammen, Ich hab ausversehen eine Datei heruntergeladen, welche auf den Namen "img-1624.png.scr" hört. Ich die Datei nicht geöffnet, sondern gleich gelöscht. Ich weiss nur nicht wie gefährlich so eine - .scr Datei ausversehen heruntergeladen....
Archiv
Du betrachtest: .scr Datei ausversehen heruntergeladen. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.