| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Nerviges Problem - Virus pder Trojaner?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
12.04.2016, 20:36
| #1 |
| |  Nerviges Problem - Virus pder Trojaner? Hallo, mein PC hat folgende Merkwürdigkeit aufzuweisen: 1. Virenscanner AVAST Free 2016 kann nicht auf den AVAST Server zugreifen (seit mehreren Tagen) weitere Fehlermeldung im Tray: Ein Echtzeitmodul ist deaktiviert, bekomme ich auch nicht aktiviert (Abwahl von Secure VPN hilft auch nicht weiter) Bisherige Versuche: - Die Windows Firewall blockiert NICHT das AVAST-Programm - AVAST deinstalliert , wieder neu installiert, dennoch gleiches Problem --> anderer Rechner im Haushalt mit gleicher AVAST Software verhält sich unauffällig 2. Aktuelleste Firefox-Version bekommt keine Verbindung zu einer Webseite - Windows Firewall blockiert NICHT die Firefox Software --> anderer Rechner im Haushalt mit gleicher Firefox Version verhält sich unauffällig 3. Idee: Trojaner an Bord Versuche: - ADWCleaner laufen lassen, er findet auch was, bekommt dieses aber nicht gelöscht - Malwarebytes lässt sich nicht zu Ende installieren, bricht immer ab (jetzt wurde ich erst recht hellhörig, denn auf dem anderen System geht das problemlos) - Bitdefender Online Scan bleibt bei 40 Prozent stehen, geht nicht weiter. - Trojan Remover findet nichts. Ich denke, ich habe es hier mit einem sehr nervigen und hartnäckigen Trojaner zu tun. Wie sollte ich bitte vorgehen? Danke vorab! foxmulder Ach ja, eins habe ich vergessen: Vollständige Überprüfung (Startzeit-Prüfung) von AVAST nach Neustart direkt nach Windows Meldung im DOS-Fenster. Die gefundene ADware, Trojaner und mögl. Viren wurden in den AVAST Container verschoben. Dennoch, danach immer noch das gleiche Problem... |
|
13.04.2016, 15:32
| #2 |
| /// TB-Ausbilder   | Nerviges Problem - Virus pder Trojaner? Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Alle Logdateien mit den Funden von AdwCleaner und Avast posten!!! Zur ersten Analyse bitte FRST und TDSS-Killer ausführen: Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
13.04.2016, 21:10
| #3 |
| | Nerviges Problem - Virus pder Trojaner? Vielen Dank Matthias für Deine angebotene Mithilfe!
__________________Ich bin bis Freitag Abend kurzfristig außer Haus, gehe dann am Wochenende Deine Punkte im Detail durch, melde mich dann wieder spätestens am Sonntag. Ich hoffe das ist ok. Viele Grüße Andreas |
|
14.04.2016, 15:20
| #4 |
| /// TB-Ausbilder | Nerviges Problem - Virus pder Trojaner? Servus, ok, danke für die Info. Dann bis Sonntag. |
|
15.04.2016, 20:30
| #5 |
| | Nerviges Problem - Virus pder Trojaner? Hallo Matthias, ließ mir doch keine Ruhe, und bin das jetzt heute abend schon angegangen Erstmal adwcleaner Logfile AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.212 - Bericht erstellt am 09/06/2014 um 19:40:03
# Aktualisiert 05/06/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : CLS - CLS-PC
# Gestartet von : C:\Users\CLS\Desktop\adwcleaner_3.212.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17041
-\\ Mozilla Firefox v29.0.1 (de)
[ Datei : C:\Users\CLS\AppData\Roaming\Mozilla\Firefox\Profiles\811imyog.default\prefs.js ]
-\\ Google Chrome v
*************************
AdwCleaner[R0].txt - [6259 octets] - [10/05/2014 15:38:42]
AdwCleaner[R10].txt - [10534 octets] - [26/05/2014 19:39:34]
AdwCleaner[R11].txt - [2071 octets] - [29/05/2014 22:02:46]
AdwCleaner[R12].txt - [2069 octets] - [30/05/2014 18:39:53]
AdwCleaner[R13].txt - [4631 octets] - [09/06/2014 17:21:13]
AdwCleaner[R14].txt - [2784 octets] - [09/06/2014 19:11:02]
AdwCleaner[R15].txt - [2845 octets] - [09/06/2014 19:11:49]
AdwCleaner[R16].txt - [3547 octets] - [09/06/2014 19:35:37]
AdwCleaner[R17].txt - [3608 octets] - [09/06/2014 19:36:13]
AdwCleaner[R18].txt - [2702 octets] - [09/06/2014 19:38:18]
AdwCleaner[R1].txt - [3215 octets] - [10/05/2014 20:23:36]
AdwCleaner[R2].txt - [1101 octets] - [11/05/2014 15:56:22]
AdwCleaner[R3].txt - [1158 octets] - [13/05/2014 21:13:52]
AdwCleaner[R4].txt - [5916 octets] - [18/05/2014 11:46:32]
AdwCleaner[R5].txt - [5976 octets] - [18/05/2014 11:47:18]
AdwCleaner[R6].txt - [4646 octets] - [18/05/2014 15:34:27]
AdwCleaner[R7].txt - [1897 octets] - [24/05/2014 23:17:22]
AdwCleaner[R8].txt - [1863 octets] - [25/05/2014 16:37:48]
AdwCleaner[R9].txt - [1765 octets] - [26/05/2014 19:31:17]
AdwCleaner[S0].txt - [4901 octets] - [10/05/2014 15:39:23]
AdwCleaner[S10].txt - [4529 octets] - [09/06/2014 17:21:42]
AdwCleaner[S11].txt - [2907 octets] - [09/06/2014 19:12:19]
AdwCleaner[S12].txt - [3670 octets] - [09/06/2014 19:36:34]
AdwCleaner[S13].txt - [2082 octets] - [09/06/2014 19:40:03]
AdwCleaner[S1].txt - [3028 octets] - [10/05/2014 20:24:07]
AdwCleaner[S2].txt - [1163 octets] - [11/05/2014 15:57:57]
AdwCleaner[S3].txt - [4785 octets] - [18/05/2014 11:47:40]
AdwCleaner[S4].txt - [3363 octets] - [18/05/2014 15:34:44]
AdwCleaner[S5].txt - [1855 octets] - [24/05/2014 23:17:43]
AdwCleaner[S6].txt - [1924 octets] - [25/05/2014 16:38:27]
AdwCleaner[S7].txt - [8364 octets] - [26/05/2014 19:39:50]
AdwCleaner[S8].txt - [2132 octets] - [29/05/2014 22:03:09]
AdwCleaner[S9].txt - [2130 octets] - [30/05/2014 18:40:42]
########## EOF - C:\AdwCleaner\AdwCleaner[S13].txt - [2683 octets] ##########
AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v5.111 - Logfile created 15/04/2016 at 18:25:51
# Updated 14/04/2016 by Xplode
# Database : 2016-04-07.1 [Local]
# Operating system : Windows 7 Professional Service Pack 1 (X64)
# Username : CLS - CLS-PC
# Running from : C:\Users\CLS\Desktop\adwcleaner_5.111.exe
# Option : Scan
# Support : hxxp://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
Folder Found : C:\ProgramData\Device
Folder Found : C:\ProgramData\Application Data\Device
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\OCS
Key Found : HKU\S-1-5-21-3296799779-413909061-1611958997-1000\Software\OCS
***** [ Web browsers ] *****
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [6201 bytes] - [20/02/2016 14:08:35]
C:\AdwCleaner\AdwCleaner[C24].txt - [2897 bytes] - [02/10/2015 18:19:04]
C:\AdwCleaner\AdwCleaner[C25].txt - [1273 bytes] - [29/11/2015 11:08:16]
C:\AdwCleaner\AdwCleaner[C2].txt - [5649 bytes] - [09/04/2016 19:16:02]
C:\AdwCleaner\AdwCleaner[C3].txt - [5722 bytes] - [10/04/2016 11:21:51]
C:\AdwCleaner\AdwCleaner[C4].txt - [5860 bytes] - [10/04/2016 14:25:30]
C:\AdwCleaner\AdwCleaner[R0].txt - [6259 bytes] - [10/05/2014 15:38:42]
C:\AdwCleaner\AdwCleaner[R10].txt - [10534 bytes] - [26/05/2014 19:39:34]
C:\AdwCleaner\AdwCleaner[R11].txt - [2071 bytes] - [29/05/2014 22:02:46]
C:\AdwCleaner\AdwCleaner[R12].txt - [2069 bytes] - [30/05/2014 18:39:53]
C:\AdwCleaner\AdwCleaner[R13].txt - [4631 bytes] - [09/06/2014 17:21:13]
C:\AdwCleaner\AdwCleaner[R14].txt - [2784 bytes] - [09/06/2014 19:11:02]
C:\AdwCleaner\AdwCleaner[R15].txt - [2845 bytes] - [09/06/2014 19:11:49]
C:\AdwCleaner\AdwCleaner[R16].txt - [3547 bytes] - [09/06/2014 19:35:37]
C:\AdwCleaner\AdwCleaner[R17].txt - [3608 bytes] - [09/06/2014 19:36:13]
C:\AdwCleaner\AdwCleaner[R18].txt - [2702 bytes] - [09/06/2014 19:38:18]
C:\AdwCleaner\AdwCleaner[R19].txt - [3272 bytes] - [09/06/2014 19:48:11]
C:\AdwCleaner\AdwCleaner[R1].txt - [3215 bytes] - [10/05/2014 20:23:36]
C:\AdwCleaner\AdwCleaner[R20].txt - [3394 bytes] - [09/06/2014 19:54:33]
C:\AdwCleaner\AdwCleaner[R21].txt - [4720 bytes] - [06/07/2014 11:24:36]
C:\AdwCleaner\AdwCleaner[R22].txt - [3964 bytes] - [06/07/2014 11:29:07]
C:\AdwCleaner\AdwCleaner[R23].txt - [4086 bytes] - [06/07/2014 11:42:40]
C:\AdwCleaner\AdwCleaner[R24].txt - [4877 bytes] - [11/07/2014 19:38:12]
C:\AdwCleaner\AdwCleaner[R25].txt - [12893 bytes] - [28/04/2015 21:32:17]
C:\AdwCleaner\AdwCleaner[R26].txt - [9375 bytes] - [28/04/2015 21:59:46]
C:\AdwCleaner\AdwCleaner[R27].txt - [9494 bytes] - [28/04/2015 22:02:51]
C:\AdwCleaner\AdwCleaner[R28].txt - [3983 bytes] - [03/05/2015 12:45:36]
C:\AdwCleaner\AdwCleaner[R29].txt - [6183 bytes] - [01/10/2015 16:10:31]
C:\AdwCleaner\AdwCleaner[R2].txt - [1101 bytes] - [11/05/2014 15:56:22]
C:\AdwCleaner\AdwCleaner[R30].txt - [4087 bytes] - [02/10/2015 17:58:35]
C:\AdwCleaner\AdwCleaner[R3].txt - [1158 bytes] - [13/05/2014 21:13:52]
C:\AdwCleaner\AdwCleaner[R4].txt - [5916 bytes] - [18/05/2014 11:46:32]
C:\AdwCleaner\AdwCleaner[R5].txt - [5976 bytes] - [18/05/2014 11:47:18]
C:\AdwCleaner\AdwCleaner[R6].txt - [4646 bytes] - [18/05/2014 15:34:27]
C:\AdwCleaner\AdwCleaner[R7].txt - [1897 bytes] - [24/05/2014 23:17:22]
C:\AdwCleaner\AdwCleaner[R8].txt - [1863 bytes] - [25/05/2014 16:37:48]
C:\AdwCleaner\AdwCleaner[R9].txt - [1765 bytes] - [26/05/2014 19:31:17]
C:\AdwCleaner\AdwCleaner[S0].txt - [4901 bytes] - [10/05/2014 15:39:23]
C:\AdwCleaner\AdwCleaner[S10].txt - [10192 bytes] - [09/06/2014 17:21:42]
C:\AdwCleaner\AdwCleaner[S11].txt - [8366 bytes] - [09/06/2014 19:12:19]
C:\AdwCleaner\AdwCleaner[S12].txt - [9404 bytes] - [09/06/2014 19:36:34]
C:\AdwCleaner\AdwCleaner[S13].txt - [6598 bytes] - [09/06/2014 19:40:03]
C:\AdwCleaner\AdwCleaner[S14].txt - [3334 bytes] - [09/06/2014 19:48:51]
C:\AdwCleaner\AdwCleaner[S15].txt - [4736 bytes] - [06/07/2014 11:25:09]
C:\AdwCleaner\AdwCleaner[S16].txt - [4026 bytes] - [06/07/2014 11:30:03]
C:\AdwCleaner\AdwCleaner[S17].txt - [4148 bytes] - [06/07/2014 11:43:08]
C:\AdwCleaner\AdwCleaner[S18].txt - [4939 bytes] - [11/07/2014 19:39:01]
C:\AdwCleaner\AdwCleaner[S19].txt - [2671 bytes] - [28/04/2015 21:33:24]
C:\AdwCleaner\AdwCleaner[S1].txt - [9034 bytes] - [10/05/2014 20:24:07]
C:\AdwCleaner\AdwCleaner[S20].txt - [458 bytes] - [28/04/2015 22:01:24]
C:\AdwCleaner\AdwCleaner[S21].txt - [9390 bytes] - [28/04/2015 22:03:55]
C:\AdwCleaner\AdwCleaner[S22].txt - [2879 bytes] - [01/10/2015 16:12:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [6378 bytes] - [11/05/2014 15:57:57]
C:\AdwCleaner\AdwCleaner[S32].txt - [2719 bytes] - [02/10/2015 18:17:39]
C:\AdwCleaner\AdwCleaner[S33].txt - [1134 bytes] - [29/11/2015 11:04:48]
C:\AdwCleaner\AdwCleaner[S3].txt - [9967 bytes] - [18/05/2014 11:47:40]
C:\AdwCleaner\AdwCleaner[S4].txt - [8820 bytes] - [18/05/2014 15:34:44]
C:\AdwCleaner\AdwCleaner[S5].txt - [7385 bytes] - [24/05/2014 23:17:43]
C:\AdwCleaner\AdwCleaner[S6].txt - [7527 bytes] - [25/05/2014 16:38:27]
C:\AdwCleaner\AdwCleaner[S7].txt - [13694 bytes] - [26/05/2014 19:39:50]
C:\AdwCleaner\AdwCleaner[S8].txt - [7736 bytes] - [29/05/2014 22:03:09]
C:\AdwCleaner\AdwCleaner[S9].txt - [7459 bytes] - [30/05/2014 18:40:42]
########## EOF - C:\AdwCleaner\AdwCleaner[S13].txt - [8143 bytes] ##########
Aktuelles AVAST Logfile von heute: Code:
ATTFilter 04/15/2016 18:30
Prüfung von C:
Prüfung von *STARTUP
Datei C:\Users\CLS\Desktop\ETS 2 Backup\JKK\mod\Scania_T_Mod_v1.8.1.1_by_RJL.scs Fehler 42110 {Die Datei ist eine Archivbombe.}
Datei C:\Games\World_of_Warships\Updates\wows_52.138027_52.138026_sdcontent_eu.patch|>res\spaces\35_NE_north_winter\CDLOD.cdata Fehler 42110 {Die Datei ist eine Archivbombe.}
Datei C:\Games\World_of_Warships\Updates\wows_52.138027_52.138026_sdcontent_eu.patch Fehler 42110 {Die Datei ist eine Archivbombe.}
Anzahl durchsuchter Ordner: 79627
Anzahl der geprüften Dateien: 3634002
Anzahl infizierter Dateien: 0
Code:
ATTFilter 18:17:06.0277 0x15d8 SetPrivileges failed!
18:17:06.0277 0x15d8 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
18:17:19.0009 0x15d8 ============================================================
18:17:19.0009 0x15d8 Current date / time: 2016/04/15 18:17:19.0009
18:17:19.0009 0x15d8 SystemInfo:
18:17:19.0009 0x15d8
18:17:19.0009 0x15d8 OS Version: 6.1.7601 ServicePack: 1.0
18:17:19.0009 0x15d8 Product type: Workstation
18:17:19.0009 0x15d8 ComputerName: CLS-PC
18:17:19.0009 0x15d8 UserName: CLS
18:17:19.0009 0x15d8 Windows directory: C:\Windows
18:17:19.0009 0x15d8 System windows directory: C:\Windows
18:17:19.0009 0x15d8 Running under WOW64
18:17:19.0009 0x15d8 Processor architecture: Intel x64
18:17:19.0009 0x15d8 Number of processors: 4
18:17:19.0009 0x15d8 Page size: 0x1000
18:17:19.0009 0x15d8 Boot type: Normal boot
18:17:19.0009 0x15d8 ============================================================
18:17:21.0677 0x15d8 KLMD registered as C:\Windows\system32\drivers\16337820.sys
18:17:21.0884 0x15d8 System UUID: {959A85AD-4F83-F2B5-C5BA-91F86F34A62D}
18:17:22.0196 0x15d8 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:17:22.0231 0x15d8 ============================================================
18:17:22.0231 0x15d8 \Device\Harddisk0\DR0:
18:17:22.0231 0x15d8 MBR partitions:
18:17:22.0231 0x15d8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1B2000
18:17:22.0231 0x15d8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B2800, BlocksNum 0x3A8435B0
18:17:22.0231 0x15d8 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3A9F6000, BlocksNum 0x39D10000
18:17:22.0231 0x15d8 ============================================================
18:17:22.0258 0x15d8 C: <-> \Device\Harddisk0\DR0\Partition2
18:17:22.0273 0x15d8 D: <-> \Device\Harddisk0\DR0\Partition3
18:17:22.0273 0x15d8 ============================================================
18:17:22.0273 0x15d8 Initialize success
18:17:22.0273 0x15d8 ============================================================
18:19:09.0968 0x1450 ============================================================
18:19:09.0968 0x1450 Scan started
18:19:09.0968 0x1450 Mode: Manual; SigCheck; TDLFS;
18:19:09.0968 0x1450 ============================================================
18:19:09.0968 0x1450 KSN ping started
18:19:09.0968 0x1450 KSN ping finished: false
18:19:11.0029 0x1450 ================ Scan system memory ========================
18:19:11.0029 0x1450 System memory - ok
18:19:11.0029 0x1450 ================ Scan services =============================
18:19:11.0123 0x1450 [ 0B94DF0DB9DCA3EDB2B57747D5433E7F, B8C4501476396B434D5EA35451556CB97ACF4C8CF666B9C753E2FEFA77DD7213 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:19:11.0169 0x1450 1394ohci - ok
18:19:11.0185 0x1450 [ 114ACFE781B214B95F53D52020466CFD, CB25CED9C0AA17CC14AABBE845BF497E33C0642699236A93BCA7B197CAA6D2D8 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:19:11.0201 0x1450 ACPI - ok
18:19:11.0216 0x1450 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:19:11.0232 0x1450 AcpiPmi - ok
18:19:11.0310 0x1450 [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:19:11.0310 0x1450 AdobeARMservice - ok
18:19:11.0372 0x1450 [ 28FFB14117CCEDD7D2F124596AA9B785, 8FC482C6444C904B5536979B3354597FD714634EC7372B464118C42AA9DCB58A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:19:11.0372 0x1450 AdobeFlashPlayerUpdateSvc - ok
18:19:11.0403 0x1450 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:19:11.0419 0x1450 adp94xx - ok
18:19:11.0435 0x1450 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:19:11.0450 0x1450 adpahci - ok
18:19:11.0466 0x1450 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:19:11.0481 0x1450 adpu320 - ok
18:19:11.0513 0x1450 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:19:11.0528 0x1450 AeLookupSvc - ok
18:19:11.0559 0x1450 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
18:19:11.0575 0x1450 AFD - ok
18:19:11.0606 0x1450 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
18:19:11.0606 0x1450 agp440 - ok
18:19:11.0622 0x1450 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:19:11.0637 0x1450 ALG - ok
18:19:11.0653 0x1450 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:19:11.0669 0x1450 aliide - ok
18:19:11.0669 0x1450 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:19:11.0684 0x1450 amdide - ok
18:19:11.0700 0x1450 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:19:11.0715 0x1450 AmdK8 - ok
18:19:11.0715 0x1450 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
18:19:11.0731 0x1450 AmdPPM - ok
18:19:11.0747 0x1450 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:19:11.0762 0x1450 amdsata - ok
18:19:11.0762 0x1450 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:19:11.0778 0x1450 amdsbs - ok
18:19:11.0793 0x1450 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:19:11.0809 0x1450 amdxata - ok
18:19:11.0840 0x1450 [ 0E09A65AEE931E2CA6710EFF45382CD3, 7199B52570F296315F42FCF2A55EB9E3F7EE4F47E14F5FD43DE86818D12311D5 ] AppID C:\Windows\system32\drivers\appid.sys
18:19:11.0856 0x1450 AppID - ok
18:19:11.0871 0x1450 [ 93BF2077420E50FBEED972982563007E, 472B4A30165377605867D0A49B851AD8C06E42C171306F6754DE3CCCBB5084FA ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:19:11.0887 0x1450 AppIDSvc - ok
18:19:11.0918 0x1450 [ 42923E057CB9D605DF13B4602A50173A, D2E6A2C03A5C1FA2CC1CCEB5DF04492F3FC35EEA39681A1CE51CC7E6C3BA59A6 ] Appinfo C:\Windows\System32\appinfo.dll
18:19:11.0918 0x1450 Appinfo - ok
18:19:11.0949 0x1450 [ 1C726705935E89FD59E652E4F09148D0, 5D72DB5C493ED48ACBD1A520283C7B16E656FB1E8B00885696C79A09FC37487D ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
18:19:11.0965 0x1450 AppleCharger - ok
18:19:11.0965 0x1450 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
18:19:11.0981 0x1450 AppleChargerSrv - ok
18:19:12.0012 0x1450 [ 7A6A43EFE857532B1B92F510179AE7BB, 8E88FC9EECF9164357BA352D3B883366087A7BDFD06C4FC8E2A5CD89A078F600 ] AppMgmt C:\Windows\System32\appmgmts.dll
18:19:12.0012 0x1450 AppMgmt - ok
18:19:12.0027 0x1450 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
18:19:12.0043 0x1450 arc - ok
18:19:12.0043 0x1450 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:19:12.0059 0x1450 arcsas - ok
18:19:12.0121 0x1450 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:19:12.0168 0x1450 aspnet_state - ok
18:19:12.0230 0x1450 [ E5328558BE05B811182D59F4089B714B, 4BE87689ED5BFA574BAD227E336E351C27A9BF592EE84DC9B95C8BA57D1D2353 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
18:19:12.0230 0x1450 aswHwid - ok
18:19:12.0277 0x1450 [ EEB944CD13080499C1EF5D767528CA5A, 7C10FE6021FF7A2F9DFEE03C194FEE6059887D3B0B5DA9776B0465215A322FDC ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
18:19:12.0293 0x1450 aswKbd - ok
18:19:12.0308 0x1450 [ A273F835D2AE124272C3BFE466AB2429, 2D2CE3C55D58609BF5BAA1CE7F4511CB71D6C9060CECAD447AB18867516F8356 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
18:19:12.0324 0x1450 aswMonFlt - ok
18:19:12.0339 0x1450 [ FF306A66730CA45FEF817941AC9F1084, D9D1BBF8EEA3B7C845447DE74BA27B6748DD670272C27520E58580FBE6F35105 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
18:19:12.0355 0x1450 aswRdr - ok
18:19:12.0371 0x1450 [ 0E83A1C5E193D91A0FE921A744EA2DFC, FD189EAB85485B80440DEEB7F31C880B03A802CCCCC7F9A4DAFC84F4EA1DA036 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
18:19:12.0386 0x1450 aswRvrt - ok
18:19:12.0417 0x1450 [ 7160A228193B2EC718D369C281294AAD, 5397BD2180F0BD1F6CF857C43B4E04BF478DE5846B9627B91231D1D52A43FA23 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
18:19:12.0449 0x1450 aswSnx - ok
18:19:12.0495 0x1450 [ 856ACBBDAEA6D9713C549E719BB6CFCB, 9B2F874AD10CBB9890B2C64ABD584D687D818F79591894C776325950A483426D ] aswSP C:\Windows\system32\drivers\aswSP.sys
18:19:12.0511 0x1450 aswSP - ok
18:19:12.0527 0x1450 [ 5C2B44C00B9550710B8418A5CF4AB18B, 1888A27F9F705855EF355246C7A4E0C0DB9AFEC9715EE6FB4FDE002C63EA5D3F ] aswStm C:\Windows\system32\drivers\aswStm.sys
18:19:12.0542 0x1450 aswStm - ok
18:19:12.0573 0x1450 [ E460CE13920CF1D88E4967543FB4592C, 284498B2A0C6032A686F41151CABCBB01903EDE4E6D808EB28E3DF284EDE114F ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
18:19:12.0605 0x1450 aswVmm - ok
18:19:12.0620 0x1450 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:19:12.0651 0x1450 AsyncMac - ok
18:19:12.0667 0x1450 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:19:12.0683 0x1450 atapi - ok
18:19:12.0714 0x1450 [ 64F07381335E37C142F6D176705FFCA6, 8F7F633B891FE653D3298578897711A04E7B2B08E51CEE131C50102EFD45AC0E ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
18:19:12.0729 0x1450 atksgt - ok
18:19:12.0761 0x1450 [ FD26867D65646A4DEFDA725096C688FA, 883ECC4B09946E5766FECC926CD9FC383758ED322675A7E2CE9806E4A9C3C9C5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:19:12.0792 0x1450 AudioEndpointBuilder - ok
18:19:12.0792 0x1450 [ FD26867D65646A4DEFDA725096C688FA, 883ECC4B09946E5766FECC926CD9FC383758ED322675A7E2CE9806E4A9C3C9C5 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:19:12.0807 0x1450 AudioSrv - ok
18:19:12.0948 0x1450 [ A6F08BF95CC9A5D581532E320EBC95B5, 5A07ABC8857446344E7BC8C7F2246512758A1E7176CFE1516BE68431C9D7DAD3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:19:12.0963 0x1450 avast! Antivirus - ok
18:19:12.0979 0x1450 [ CDA9ED9AEE49BB4076B0FAF5DBE3B666, 31FA98F0A6284EAD0110944694C70C978E3825884F6B429C353B966E20A43413 ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:19:12.0979 0x1450 AxInstSV - ok
18:19:13.0010 0x1450 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:19:13.0026 0x1450 b06bdrv - ok
18:19:13.0026 0x1450 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:19:13.0057 0x1450 b57nd60a - ok
18:19:13.0057 0x1450 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:19:13.0073 0x1450 BDESVC - ok
18:19:13.0088 0x1450 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:19:13.0119 0x1450 Beep - ok
18:19:13.0166 0x1450 [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] BFE C:\Windows\System32\bfe.dll
18:19:13.0182 0x1450 BFE - ok
18:19:13.0229 0x1450 [ DB3159AA87392A6098C4343D47C7C2D7, 6146FDAE88C6B0E992CDFBAD4D789F2B2073B407F8D6FD3A50867D917220FD2C ] BITS C:\Windows\System32\qmgr.dll
18:19:13.0244 0x1450 BITS - ok
18:19:13.0260 0x1450 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:19:13.0275 0x1450 blbdrive - ok
18:19:13.0291 0x1450 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:19:13.0307 0x1450 bowser - ok
18:19:13.0307 0x1450 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:19:13.0322 0x1450 BrFiltLo - ok
18:19:13.0322 0x1450 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:19:13.0338 0x1450 BrFiltUp - ok
18:19:13.0353 0x1450 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:19:13.0353 0x1450 Browser - ok
18:19:13.0369 0x1450 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:19:13.0385 0x1450 Brserid - ok
18:19:13.0400 0x1450 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:19:13.0416 0x1450 BrSerWdm - ok
18:19:13.0416 0x1450 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:19:13.0431 0x1450 BrUsbMdm - ok
18:19:13.0431 0x1450 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:19:13.0447 0x1450 BrUsbSer - ok
18:19:13.0478 0x1450 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
18:19:13.0494 0x1450 BthEnum - ok
18:19:13.0494 0x1450 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:19:13.0509 0x1450 BTHMODEM - ok
18:19:13.0541 0x1450 [ 55D70925E9B9376103AC593CDB6D0D53, B62582D68464D5874C1C765DF33AAF8E335A6AE5A85A9CDF16ADE515114DB0A4 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
18:19:13.0556 0x1450 BthPan - ok
18:19:13.0587 0x1450 [ E704C4597BBB3EB4E5D450F26B357CE2, A645A8B8CCA5E8993CFF699D599E189E79FCCD324E5A6FA04A6DE519818B70B6 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
18:19:13.0603 0x1450 BTHPORT - ok
18:19:13.0634 0x1450 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:19:13.0650 0x1450 bthserv - ok
18:19:13.0681 0x1450 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
18:19:13.0681 0x1450 BTHUSB - ok
18:19:13.0712 0x1450 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:19:13.0728 0x1450 cdfs - ok
18:19:13.0743 0x1450 [ E5F4FD3D59B9141560D4174AAE6E66E0, 41614846F083525E913C4C36FB3E4227138833978ECCD840737B766F0BA24D62 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:19:13.0759 0x1450 cdrom - ok
18:19:13.0759 0x1450 [ A74E2CE95E4D92B0E3283294693FE622, 86B8434FBEB66D72FA2DC3C80EFD3F5BE85DE21C4ABD3BD94580BF8D2867ECE3 ] CertPropSvc C:\Windows\System32\certprop.dll
18:19:13.0775 0x1450 CertPropSvc - ok
18:19:13.0775 0x1450 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
18:19:13.0790 0x1450 circlass - ok
18:19:13.0821 0x1450 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
18:19:13.0853 0x1450 CLFS - ok
18:19:13.0884 0x1450 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:19:13.0899 0x1450 clr_optimization_v2.0.50727_32 - ok
18:19:13.0899 0x1450 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:19:13.0915 0x1450 clr_optimization_v2.0.50727_64 - ok
18:19:13.0962 0x1450 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:19:14.0040 0x1450 clr_optimization_v4.0.30319_32 - ok
18:19:14.0055 0x1450 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:19:14.0102 0x1450 clr_optimization_v4.0.30319_64 - ok
18:19:14.0118 0x1450 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
18:19:14.0118 0x1450 CmBatt - ok
18:19:14.0149 0x1450 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:19:14.0149 0x1450 cmdide - ok
18:19:14.0196 0x1450 [ CA3FB5A6B626D8A00A89E049CF95954E, CD5E3E40972513195108BA46CEC1D0AEA6B09A67EEBDD17EB759BD1729B07C06 ] CNG C:\Windows\system32\Drivers\cng.sys
18:19:14.0227 0x1450 CNG - ok
18:19:14.0243 0x1450 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:19:14.0258 0x1450 Compbatt - ok
18:19:14.0258 0x1450 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:19:14.0274 0x1450 CompositeBus - ok
18:19:14.0274 0x1450 COMSysApp - ok
18:19:14.0321 0x1450 [ CDE9A6BEE8C7C7AE91BCA347B70BEFE4, 427A000B811332A80C4CA8968D610784F03D71B22FC419B4EAB57941D13ECA6D ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
18:19:14.0336 0x1450 cphs - ok
18:19:14.0367 0x1450 cpuz136 - ok
18:19:14.0383 0x1450 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:19:14.0383 0x1450 crcdisk - ok
18:19:14.0430 0x1450 [ 0925E2BEAC4493C887099F850D69BA3B, 19157A562C87DB7A2A6AD6FD72E75C1B73861246F259DAC232FDA791A665A7C5 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:19:14.0430 0x1450 CryptSvc - ok
18:19:14.0477 0x1450 [ 2F7A528CD9AE38A26B248A6A90A0B4AD, DBBB28DC035179ADB5738C74D2057B2B778E5CE1F522F5A24FCE1A97C36B221D ] CSC C:\Windows\system32\drivers\csc.sys
18:19:14.0492 0x1450 CSC - ok
18:19:14.0523 0x1450 [ 3BC332F380009E13D1405259A07F7A35, C85006E9D21C26692B96676C69894B70C668D482D852EC528D3051C4362893F7 ] CscService C:\Windows\System32\cscsvc.dll
18:19:14.0539 0x1450 CscService - ok
18:19:14.0570 0x1450 [ 83D5AD7CFDB1F9D42C3CD102B20FFA0A, 32C795CBC8A2BDD25153B1D4AC2733111BBF2DEF3C0639A067286229B46FEE75 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:19:14.0586 0x1450 DcomLaunch - ok
18:19:14.0726 0x1450 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:19:14.0757 0x1450 defragsvc - ok
18:19:14.0757 0x1450 [ 9FCDC4EEBCE39173122F9FEE53A054FC, A4159B9AD4755557FA89AE173BCF49E2FF0E39F6562FAFC2EA75CAB1B6C2A576 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:19:14.0773 0x1450 DfsC - ok
18:19:14.0804 0x1450 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
18:19:14.0804 0x1450 dg_ssudbus - ok
18:19:14.0851 0x1450 [ 20AC22EDEBFC8628642917C24E411281, F7F606F273E6890AB621FE86486865E45FE3E33B80D880D6C6580B5EC7BCD639 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:19:14.0867 0x1450 Dhcp - ok
18:19:14.0867 0x1450 [ 9ED290A1E8FDBCF269B26CDA541DDC84, 103332D59EFAAF60B014F4450C4B68051417B5CBBF4CA1769CCE694925CB0A83 ] discache C:\Windows\system32\drivers\discache.sys
18:19:14.0882 0x1450 discache - ok
18:19:14.0898 0x1450 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
18:19:14.0913 0x1450 Disk - ok
18:19:14.0929 0x1450 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
18:19:14.0945 0x1450 dmvsc - ok
18:19:14.0960 0x1450 [ 138A622CB3A5A892441D71874E26C41C, FF3E2C53BC1A64A25DF265E3F744F13C0D3F585C6EF3FA6730FF7052B7E7AF66 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:19:14.0960 0x1450 Dnscache - ok
18:19:14.0976 0x1450 [ A5E97B8E11AC35F2C5DAF85FF95B1E52, E054BB8F75465173E227C8AADA39DCE724F892755DFCFCC6E005BA999BAC6C35 ] dot3svc C:\Windows\System32\dot3svc.dll
18:19:14.0991 0x1450 dot3svc - ok
18:19:14.0991 0x1450 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:19:15.0023 0x1450 DPS - ok
18:19:15.0054 0x1450 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:19:15.0069 0x1450 drmkaud - ok
18:19:15.0116 0x1450 [ 726E40B11612664486BB6C6105283C95, 189DA1B03D01CB9E1022EE5A9C9D39DA3CE3F1767DFF1BABBF33F188EB2C3FCE ] dtproscsibus C:\Windows\system32\DRIVERS\dtproscsibus.sys
18:19:15.0132 0x1450 dtproscsibus - ok
18:19:15.0163 0x1450 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:19:15.0194 0x1450 DXGKrnl - ok
18:19:15.0210 0x1450 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:19:15.0241 0x1450 EapHost - ok
18:19:15.0303 0x1450 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:19:15.0350 0x1450 ebdrv - ok
18:19:15.0381 0x1450 [ 4FAAA369494A207617165DBFD10E34B5, 5BA2E8DD70E57EF743B7988DAEDD586985077A1B184404E73D119B9A833E7EA0 ] EFS C:\Windows\System32\lsass.exe
18:19:15.0397 0x1450 EFS - ok
18:19:15.0444 0x1450 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:19:15.0459 0x1450 ehRecvr - ok
18:19:15.0475 0x1450 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:19:15.0475 0x1450 ehSched - ok
18:19:15.0491 0x1450 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:19:15.0522 0x1450 elxstor - ok
18:19:15.0522 0x1450 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:19:15.0537 0x1450 ErrDev - ok
18:19:15.0584 0x1450 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:19:15.0600 0x1450 EventSystem - ok
18:19:15.0615 0x1450 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
18:19:15.0647 0x1450 exfat - ok
18:19:15.0662 0x1450 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:19:15.0678 0x1450 fastfat - ok
18:19:15.0709 0x1450 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:19:15.0725 0x1450 Fax - ok
18:19:15.0725 0x1450 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
18:19:15.0740 0x1450 fdc - ok
18:19:15.0756 0x1450 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:19:15.0771 0x1450 fdPHost - ok
18:19:15.0787 0x1450 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:19:15.0803 0x1450 FDResPub - ok
18:19:15.0818 0x1450 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:19:15.0818 0x1450 FileInfo - ok
18:19:15.0834 0x1450 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:19:15.0849 0x1450 Filetrace - ok
18:19:15.0865 0x1450 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:19:15.0881 0x1450 flpydisk - ok
18:19:15.0896 0x1450 [ BAD52A4449DB51D70826EBDE87D84E22, D9B805CD3B0995FBF8A10060B08D9CAEB1B87371B5B9C0FF07400AEB73B9F0EB ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:19:15.0927 0x1450 FltMgr - ok
18:19:15.0974 0x1450 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
18:19:16.0005 0x1450 FontCache - ok
18:19:16.0037 0x1450 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:19:16.0052 0x1450 FontCache3.0.0.0 - ok
18:19:16.0052 0x1450 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:19:16.0068 0x1450 FsDepends - ok
18:19:16.0083 0x1450 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:19:16.0083 0x1450 Fs_Rec - ok
18:19:16.0146 0x1450 [ 290EBA98AD0CE0D1B880B5D71194B069, 60CF4DBCFBF5EABE127663322E0CA2B324DB8A92039E7B7C044ACD64DBD324AB ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
18:19:16.0146 0x1450 Futuremark SystemInfo Service - ok
18:19:16.0161 0x1450 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:19:16.0177 0x1450 fvevol - ok
18:19:16.0193 0x1450 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:19:16.0193 0x1450 gagp30kx - ok
18:19:16.0193 0x1450 gdrv - ok
18:19:16.0317 0x1450 [ C5FA929A389F11330C780C1E97EF0740, A83EAD4A2F4DB236CC569CCAD619021C1E011CD70DEE249FE8594E8822640BBF ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
18:19:16.0349 0x1450 GfExperienceService - ok
18:19:16.0380 0x1450 [ B205AA45B2D23EA65EB42542D571EA4E, 6682FD3DF975AF093FAD59AA15C5159C1FFC7571D8AF742ECFC3227CB1B24591 ] gpsvc C:\Windows\System32\gpsvc.dll
18:19:16.0395 0x1450 gpsvc - ok
18:19:16.0442 0x1450 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:19:16.0458 0x1450 gupdate - ok
18:19:16.0458 0x1450 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:19:16.0458 0x1450 gupdatem - ok
18:19:16.0458 0x1450 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:19:16.0473 0x1450 hcw85cir - ok
18:19:16.0505 0x1450 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:19:16.0536 0x1450 HdAudAddService - ok
18:19:16.0551 0x1450 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:19:16.0567 0x1450 HDAudBus - ok
18:19:16.0567 0x1450 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:19:16.0583 0x1450 HidBatt - ok
18:19:16.0598 0x1450 [ FDF5EAD19FD8B2D0C50A9CCDD7836F9E, B865703E3D9BFC75DF363BF943213C47A63445415E211000717009D2BD0C062B ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:19:16.0614 0x1450 HidBth - ok
18:19:16.0614 0x1450 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
18:19:16.0629 0x1450 HidIr - ok
18:19:16.0645 0x1450 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
18:19:16.0661 0x1450 hidserv - ok
18:19:16.0692 0x1450 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:19:16.0692 0x1450 HidUsb - ok
18:19:16.0723 0x1450 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:19:16.0754 0x1450 hkmsvc - ok
18:19:16.0770 0x1450 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:19:16.0770 0x1450 HomeGroupListener - ok
18:19:16.0801 0x1450 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:19:16.0817 0x1450 HomeGroupProvider - ok
18:19:16.0832 0x1450 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:19:16.0832 0x1450 HpSAMD - ok
18:19:16.0879 0x1450 [ 26647A4F267D13D67ED6B99EAE2A7F78, A39B622517B317174DDD9D500C9AED1F3193D78E4DD3A81ABE5DBA57630A57E0 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:19:16.0910 0x1450 HTTP - ok
18:19:16.0910 0x1450 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:19:16.0926 0x1450 hwpolicy - ok
18:19:16.0941 0x1450 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:19:16.0957 0x1450 i8042prt - ok
18:19:16.0988 0x1450 [ FA4C48E36F0B24E7E33D3E7E1844B9C9, F61F448B8E305DEFDDA5D4A6FC4E57C798C11ED4DA0ACB885847DC8A9A7B4E98 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
18:19:17.0019 0x1450 iaStorA - ok
18:19:17.0066 0x1450 [ D5854F77CEEAFC5A8405F8ECCBEC09DF, 06D94EAF55787F807FB40E95011E90B0A719AC1A1529C2C110C1EABC5BE02C5B ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
18:19:17.0066 0x1450 IAStorDataMgrSvc - ok
18:19:17.0082 0x1450 [ 05E24E2CA39C0D2FAADE8FC603345A7D, 01C519CABD3B1F003AAD1B6F1CE79C1A49408DFC2CE5A8008A7BD0A1266D783C ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
18:19:17.0097 0x1450 iaStorF - ok
18:19:17.0113 0x1450 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:19:17.0129 0x1450 iaStorV - ok
18:19:17.0191 0x1450 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:19:17.0207 0x1450 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
18:19:17.0253 0x1450 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:19:17.0253 0x1450 Force sending object to P2P due to detect: IDriverT
18:19:17.0253 0x1450 Object send P2P result: false
18:19:17.0331 0x1450 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:19:17.0347 0x1450 idsvc - ok
18:19:17.0347 0x1450 IEEtwCollectorService - ok
18:19:17.0425 0x1450 [ 0AECABC08F9AB4E504935B7662123B6E, 79D1C801A8FB0920469D6088158C518481485A065E8AF2E580FE4FCC1DE8F39B ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:19:17.0503 0x1450 igfx - ok
18:19:17.0519 0x1450 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:19:17.0519 0x1450 iirsp - ok
18:19:17.0550 0x1450 [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] IKEEXT C:\Windows\System32\ikeext.dll
18:19:17.0581 0x1450 IKEEXT - ok
18:19:17.0659 0x1450 [ 6CB00AE4D2CEF52995D420656E02C30A, EDE13D7A650022CB75318159C57161F5FF9A128DB80D055555E6CB4F5F469EA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:19:17.0721 0x1450 IntcAzAudAddService - ok
18:19:17.0768 0x1450 [ EC80E6B9E27DC3E22ED5B2E0E75A39C0, 8EEC89F88AE79DA256BB651983397773F6B25139006C8A7C8F77960F47774CF5 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
18:19:17.0768 0x1450 IntcDAud - ok
18:19:17.0799 0x1450 [ DDA8E5AD97231AB50B81FED04C28F64C, 5C9E8F7CC45A9AE7FF12A02641562E271D84894DFA7C50218AC2AAA298251B60 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:19:17.0815 0x1450 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
18:19:17.0815 0x1450 Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - warning
18:19:17.0831 0x1450 [ 86FE509640D77FB0998FC8B1FF5523C6, 13E895DEB9B84379251699D7E52C5E3FD888994425DE01B6C4634F9E959D5584 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
18:19:17.0846 0x1450 Intel(R) Capability Licensing Service TCP IP Interface - ok
18:19:17.0877 0x1450 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:19:17.0893 0x1450 intelide - ok
18:19:17.0893 0x1450 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:19:17.0909 0x1450 intelppm - ok
18:19:17.0940 0x1450 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:19:17.0955 0x1450 IPBusEnum - ok
18:19:17.0971 0x1450 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:19:18.0002 0x1450 IpFilterDriver - ok
18:19:18.0018 0x1450 [ 44A0A05577B41E2157161071AB109C8A, 84A190CEAC4993141C19E323563C3A6DBF6F9B643A7C02E96DF298F0AFB9F6B9 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:19:18.0033 0x1450 iphlpsvc - ok
18:19:18.0033 0x1450 [ 3CB3DBEECB9672698B5C1A6EAB2940B0, AC252B7344A3A3F2799D4FF5612FAF9DC8830F30C97B69950CF9245EA5415D08 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:19:18.0049 0x1450 IPMIDRV - ok
18:19:18.0049 0x1450 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:19:18.0080 0x1450 IPNAT - ok
18:19:18.0096 0x1450 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:19:18.0111 0x1450 IRENUM - ok
18:19:18.0127 0x1450 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:19:18.0143 0x1450 isapnp - ok
18:19:18.0158 0x1450 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:19:18.0189 0x1450 iScsiPrt - ok
18:19:18.0189 0x1450 [ 897B93573F07C9CB1140516DAC44BC7E, C80665FEA4913DDC72F2140EC92CD4FA5D693BD8D0E4029A99DB96D63172E3D1 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
18:19:18.0205 0x1450 iusb3hcs - ok
18:19:18.0221 0x1450 [ 2D15CEDF619796002E8640F73A4BF920, FCC0137CB5AE32266A550EE46106B80F431F0B55342599951B9D032F8EA10649 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
18:19:18.0252 0x1450 iusb3hub - ok
18:19:18.0283 0x1450 [ EA841584EF59528D11F20355770E427E, 515737761BB2A0A233F4AD141E28D93E3B9789320A15B7D5FB3DB5AC3CD8E249 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
18:19:18.0314 0x1450 iusb3xhc - ok
18:19:18.0392 0x1450 [ BF5D3A2624177C413680DEF19A465AF8, B9909D3E6CB6F9971293116387865AD15CB9D47513C7FAA9C36BE4D2847A41EB ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
18:19:18.0408 0x1450 jhi_service - ok
18:19:18.0408 0x1450 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:19:18.0423 0x1450 kbdclass - ok
18:19:18.0423 0x1450 [ 3985332405FA64D8E679A1DB24901596, CA4C274704B9F4AE560CC32AD7C22D39ADAD13C61709E21F70C9B1AACE34B7A2 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:19:18.0439 0x1450 kbdhid - ok
18:19:18.0455 0x1450 [ 4FAAA369494A207617165DBFD10E34B5, 5BA2E8DD70E57EF743B7988DAEDD586985077A1B184404E73D119B9A833E7EA0 ] KeyIso C:\Windows\system32\lsass.exe
18:19:18.0455 0x1450 KeyIso - ok
18:19:18.0501 0x1450 [ D3C02FAFA9BABF75EBED0D9EC3E7D6D8, 51F4D2B53E1C79779D051557CA8F05BA28582C664CCA7E0962204BE3CE437EA8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:19:18.0517 0x1450 KSecDD - ok
18:19:18.0533 0x1450 [ E4CB2E2E3A4DE63A763A2A798B9DF400, AB7DCB359764949DD0001AB98419BF4EAA81CC092D68791DC1204DB7137A8B23 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:19:18.0548 0x1450 KSecPkg - ok
18:19:18.0548 0x1450 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:19:18.0564 0x1450 ksthunk - ok
18:19:18.0642 0x1450 [ D1C2E109284976A3DFE768E8E1268101, FDBFC98EBF33237BC0FFD6CC125F8BD937C271BC50529214C44E2B1AC04AF0D9 ] ksupmgr C:\Windows\SysWOW64\ksupmgr.exe
18:19:18.0657 0x1450 ksupmgr - ok
18:19:18.0689 0x1450 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:19:18.0720 0x1450 KtmRm - ok
18:19:18.0751 0x1450 [ BB1F14C43241F880D23B1A8BB0B76DD0, F99DD7310F3FAE7799CB8A1CD217F0174F0BB2E29FEC6122436EF5E6A40CE852 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:19:18.0767 0x1450 LanmanServer - ok
18:19:18.0767 0x1450 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:19:18.0798 0x1450 LanmanWorkstation - ok
18:19:18.0813 0x1450 [ 83BA097ACAAD0B00505634A62D90F93A, 6F1FE2F413A4A939D2D921F537EBB9330E2A65A7C38BD380CF9405792FD03052 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
18:19:18.0829 0x1450 lirsgt - ok
18:19:18.0829 0x1450 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:19:18.0860 0x1450 lltdio - ok
18:19:18.0891 0x1450 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:19:18.0923 0x1450 lltdsvc - ok
18:19:18.0938 0x1450 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:19:18.0954 0x1450 lmhosts - ok
18:19:18.0985 0x1450 [ 02A9CBACE666877BBBA4FD66B22F6D4A, 0E783BA7A8F00CEC8F03CFEE03999CA5DB9E4DB7CCE62D9171CFCF36AFBE4BB1 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:19:19.0001 0x1450 LMS - ok
18:19:19.0016 0x1450 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:19:19.0032 0x1450 LSI_FC - ok
18:19:19.0047 0x1450 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:19:19.0063 0x1450 LSI_SAS - ok
18:19:19.0079 0x1450 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:19:19.0094 0x1450 LSI_SAS2 - ok
18:19:19.0094 0x1450 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:19:19.0110 0x1450 LSI_SCSI - ok
18:19:19.0125 0x1450 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
18:19:19.0157 0x1450 luafv - ok
18:19:19.0172 0x1450 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:19:19.0188 0x1450 Mcx2Svc - ok
18:19:19.0188 0x1450 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
18:19:19.0203 0x1450 megasas - ok
18:19:19.0219 0x1450 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:19:19.0235 0x1450 MegaSR - ok
18:19:19.0266 0x1450 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:19:19.0281 0x1450 MEIx64 - ok
18:19:19.0281 0x1450 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:19:19.0313 0x1450 MMCSS - ok
18:19:19.0313 0x1450 [ BFFB0C93D9FB43CA42EF11C9240BFF7F, E1E98C55DF9A56316050A21AC5A7D764338DA55F6124B52A52E71B5B0089C3FA ] Modem C:\Windows\system32\drivers\modem.sys
18:19:19.0328 0x1450 Modem - ok
18:19:19.0344 0x1450 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:19:19.0359 0x1450 monitor - ok
18:19:19.0391 0x1450 [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
18:19:19.0406 0x1450 MotioninJoyXFilter - detected UnsignedFile.Multi.Generic ( 1 )
18:19:19.0406 0x1450 MotioninJoyXFilter ( UnsignedFile.Multi.Generic ) - warning
18:19:19.0406 0x1450 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:19:19.0422 0x1450 mouclass - ok
18:19:19.0422 0x1450 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:19:19.0437 0x1450 mouhid - ok
18:19:19.0469 0x1450 [ D698D48D3B0AD99008E04108599E4136, 36DB255E043604AFECE38BABD221A30FC330772F5D66FA762812087EEE9291FD ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:19:19.0484 0x1450 mountmgr - ok
18:19:19.0531 0x1450 [ A43F5F2D3D71A902502D61E71A18C265, 9685DABFF80EFFFD28B9B12696BF4821F30989C8441EA0AA3FF0F03ED799AD9D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:19:19.0547 0x1450 MozillaMaintenance - ok
18:19:19.0562 0x1450 [ 53F46BB6A5B9355E2E45408B1A9E2164, 882FF95EA238094A84AC3AF19569FC244B9E0F9852FAB2DF424020962106475A ] mpio C:\Windows\system32\drivers\mpio.sys
18:19:19.0578 0x1450 mpio - ok
18:19:19.0609 0x1450 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:19:19.0625 0x1450 mpsdrv - ok
18:19:19.0640 0x1450 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:19:19.0671 0x1450 MpsSvc - ok
18:19:19.0703 0x1450 [ C5E75FD295F3707A1DD8DA355FAF098E, 4AFC0B983359DE4EA899FC5A25CB7E6D923DE68F6D5513D93E1ABF35095EA0AD ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:19:19.0718 0x1450 MRxDAV - ok
18:19:19.0765 0x1450 [ 0950A57E920F5C8C56A4BCD25A1C9388, 306B97F3D41480A82CAF574814ECB04E41B7342E3C4924966A04E0AE34422792 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:19:19.0781 0x1450 mrxsmb - ok
18:19:19.0796 0x1450 [ DE53C6BE0EDF7DE40D365A745EC44F6B, C7F8FDB4AA223A7B002750F4683DE47559010F9BB6F8B53348F11E3995AC8F23 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:19:19.0812 0x1450 mrxsmb10 - ok
18:19:19.0843 0x1450 [ 36E0D6F8741BC73C3BE0E4C367D1465F, EB23CD90C3E48028C057D6078B02E5E9B5038E0D1CF4E6338B54292E63A34BAF ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:19:19.0859 0x1450 mrxsmb20 - ok
18:19:19.0874 0x1450 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:19:19.0890 0x1450 msahci - ok
18:19:19.0905 0x1450 [ 5F1EE156E37819F681FDBEAEB7887C81, 26B096109F2EA198B0BAB2D73076BFC45B468E5F09467CC8C0C02125CE2B18B6 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:19:19.0921 0x1450 msdsm - ok
18:19:19.0921 0x1450 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:19:19.0937 0x1450 MSDTC - ok
18:19:19.0952 0x1450 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:19:19.0983 0x1450 Msfs - ok
18:19:19.0983 0x1450 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:19:20.0015 0x1450 mshidkmdf - ok
18:19:20.0015 0x1450 MSICDSetup - ok
18:19:20.0015 0x1450 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:19:20.0030 0x1450 msisadrv - ok
18:19:20.0046 0x1450 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:19:20.0077 0x1450 MSiSCSI - ok
18:19:20.0077 0x1450 msiserver - ok
18:19:20.0077 0x1450 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:19:20.0108 0x1450 MSKSSRV - ok
18:19:20.0108 0x1450 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:19:20.0124 0x1450 MSPCLOCK - ok
18:19:20.0124 0x1450 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:19:20.0155 0x1450 MSPQM - ok
18:19:20.0171 0x1450 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:19:20.0186 0x1450 MsRPC - ok
18:19:20.0202 0x1450 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:19:20.0217 0x1450 mssmbios - ok
18:19:20.0217 0x1450 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:19:20.0233 0x1450 MSTEE - ok
18:19:20.0249 0x1450 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:19:20.0249 0x1450 MTConfig - ok
18:19:20.0264 0x1450 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:19:20.0280 0x1450 Mup - ok
18:19:20.0311 0x1450 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:19:20.0327 0x1450 napagent - ok
18:19:20.0342 0x1450 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:19:20.0358 0x1450 NativeWifiP - ok
18:19:20.0420 0x1450 [ 0D01287D85B3715FA8270E8EC919B7F7, E9833237934C6B86622D91A15636DDE2C26A92D1854C244A99FBCF5AAAA5E435 ] NBService C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
18:19:20.0436 0x1450 NBService - detected UnsignedFile.Multi.Generic ( 1 )
18:19:20.0436 0x1450 NBService ( UnsignedFile.Multi.Generic ) - warning
18:19:20.0436 0x1450 Force sending object to P2P due to detect: NBService
18:19:20.0436 0x1450 Object send P2P result: false
18:19:20.0483 0x1450 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:19:20.0514 0x1450 NDIS - ok
18:19:20.0514 0x1450 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:19:20.0545 0x1450 NdisCap - ok
18:19:20.0576 0x1450 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:19:20.0576 0x1450 NdisTapi - ok
18:19:20.0592 0x1450 [ 4948435B96A6FA63914DA3B4090E6700, CC78A0DA290E2E6D6D2CF6AE569CD5F0D038FDB10C94B2E4297B3EEB4CB64A82 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:19:20.0592 0x1450 Ndisuio - ok
18:19:20.0607 0x1450 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:19:20.0639 0x1450 NdisWan - ok
18:19:20.0639 0x1450 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:19:20.0654 0x1450 NDProxy - ok
18:19:20.0670 0x1450 [ BB14215BBAF8EBB5E5FFAA3B6B04D177, 7A53CBF15409FAF34F3959263E7C3E69770CF06B4FEB7A08E3009C18A098DBA3 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:19:20.0685 0x1450 NetBIOS - ok
18:19:20.0685 0x1450 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:19:20.0717 0x1450 NetBT - ok
18:19:20.0732 0x1450 [ 4FAAA369494A207617165DBFD10E34B5, 5BA2E8DD70E57EF743B7988DAEDD586985077A1B184404E73D119B9A833E7EA0 ] Netlogon C:\Windows\system32\lsass.exe
18:19:20.0748 0x1450 Netlogon - ok
18:19:20.0779 0x1450 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:19:20.0795 0x1450 Netman - ok
18:19:20.0841 0x1450 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:19:20.0888 0x1450 NetMsmqActivator - ok
18:19:20.0888 0x1450 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:19:20.0888 0x1450 NetPipeActivator - ok
18:19:20.0904 0x1450 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:19:20.0935 0x1450 netprofm - ok
18:19:20.0935 0x1450 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:19:20.0951 0x1450 NetTcpActivator - ok
18:19:20.0951 0x1450 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:19:20.0966 0x1450 NetTcpPortSharing - ok
18:19:20.0966 0x1450 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:19:20.0982 0x1450 nfrd960 - ok
18:19:21.0013 0x1450 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
18:19:21.0029 0x1450 NlaSvc - ok
18:19:21.0075 0x1450 [ C4EBBBD7165BE535F0BFD06B80601D91, BA8C8A42081E3F87690CC8312B106A9297F3D25F29E3C3F84F460B98FC18C201 ] NMIndexingService C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
18:19:21.0091 0x1450 NMIndexingService - detected UnsignedFile.Multi.Generic ( 1 )
18:19:21.0091 0x1450 NMIndexingService ( UnsignedFile.Multi.Generic ) - warning
18:19:21.0091 0x1450 Force sending object to P2P due to detect: NMIndexingService
18:19:21.0091 0x1450 Object send P2P result: false
18:19:21.0091 0x1450 nocashio - ok
18:19:21.0107 0x1450 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:19:21.0138 0x1450 Npfs - ok
18:19:21.0138 0x1450 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
18:19:21.0153 0x1450 nsi - ok
18:19:21.0153 0x1450 [ F7DAC05B4067C8D9DD1FF2FCF7E33291, DBF28724C79EE77CD6C1D7BFC2D502FCA284E40CFCA6EA1337129E0DAAFC808D ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:19:21.0169 0x1450 nsiproxy - ok
18:19:21.0216 0x1450 [ 48B6047F82D5A8D0AEC71593F4ACD79B, A96F91C1DFD1CBB17C05B5DAAC4956169380E988FB4223E4588FEF34C2BC5249 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:19:21.0278 0x1450 Ntfs - ok
18:19:21.0278 0x1450 NTIOLib_1_0_C - ok
18:19:21.0278 0x1450 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:19:21.0325 0x1450 Null - ok
18:19:21.0356 0x1450 [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:19:21.0372 0x1450 NVHDA - ok
18:19:21.0606 0x1450 [ 668E7BC286D8436FBCF08BF999FEF840, BD3DF96598F111B58CEDA9A35CD0504B6C197DD7BB5FBD318BC3273D954F643E ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:19:21.0777 0x1450 nvlddmkm - ok
18:19:21.0887 0x1450 [ 3D596244C1B93A506292DA07CC2B123F, 1604F8B4B89D599C1944E6FF9A0D35DDB1E34BAEC0315E23070180959644DCF2 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
18:19:21.0918 0x1450 NvNetworkService - ok
18:19:21.0933 0x1450 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:19:21.0949 0x1450 nvraid - ok
18:19:21.0949 0x1450 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:19:21.0965 0x1450 nvstor - ok
18:19:22.0183 0x1450 [ 4B8F9A38BBE8ACCA6D48E253FFE2393A, 11D9ED3E3C5C3D544E83284E24A93632B9B5FF277639DF18046C0564FB838155 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
18:19:22.0277 0x1450 NvStreamNetworkSvc - ok
18:19:22.0355 0x1450 [ 2035827FCA3BDF5F37A3B64C8D284176, B3CCCF3AEBBF1D5BC756EEA433CD06A7650294CA4FF09FBCD985085B4692B846 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
18:19:22.0386 0x1450 NvStreamSvc - ok
18:19:22.0464 0x1450 [ 3FA65FFED10B9191C6381A6D86D4C367, FB18958E169FD9CEAA204403A232E39C86E979798F664179DA823E8C4B4B8F50 ] nvsvc C:\Windows\system32\nvvsvc.exe
18:19:22.0479 0x1450 nvsvc - ok
18:19:22.0511 0x1450 [ 64E8275CEAD43D3CA8E3A311B2F4B64A, 99E683890B9AF3243100B387317760B5F91745EF9F7FF2ABA2DC7B6551A6EAB6 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
18:19:22.0526 0x1450 nvvad_WaveExtensible - ok
18:19:22.0542 0x1450 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:19:22.0557 0x1450 nv_agp - ok
18:19:22.0573 0x1450 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:19:22.0589 0x1450 ohci1394 - ok
18:19:22.0620 0x1450 [ 8830D42427D05B15B032108EBBDBD289, 977AEE57EF7639A1B1C8D8858AF369927EB16181100FCC4517F4B58148138C22 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:19:22.0635 0x1450 p2pimsvc - ok
18:19:22.0667 0x1450 [ 5B7BADED6943AA6F4B6C1ABA5FCCB25F, 07D17B7778A88A3007E98C47773D1D8649C3AF5284BCC870829DDF2725CF2FC1 ] p2psvc C:\Windows\system32\p2psvc.dll
18:19:22.0682 0x1450 p2psvc - ok
18:19:22.0682 0x1450 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:19:22.0698 0x1450 Parport - ok
18:19:22.0713 0x1450 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:19:22.0713 0x1450 partmgr - ok
18:19:22.0745 0x1450 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:19:22.0760 0x1450 PcaSvc - ok
18:19:22.0776 0x1450 [ 9CE2B541DEBE8DCA0ECD251584540703, 04395C3C57C1200C29266077816922CF342A06ECCCB4EDEC0AFA6923C5800B5B ] pci C:\Windows\system32\drivers\pci.sys
18:19:22.0791 0x1450 pci - ok
18:19:22.0807 0x1450 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:19:22.0807 0x1450 pciide - ok
18:19:22.0823 0x1450 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:19:22.0838 0x1450 pcmcia - ok
18:19:22.0854 0x1450 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:19:22.0869 0x1450 pcw - ok
18:19:22.0885 0x1450 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:19:22.0901 0x1450 PEAUTH - ok
18:19:22.0947 0x1450 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:19:22.0979 0x1450 PeerDistSvc - ok
18:19:23.0025 0x1450 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:19:23.0041 0x1450 PerfHost - ok
18:19:23.0072 0x1450 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
18:19:23.0103 0x1450 pla - ok
18:19:23.0135 0x1450 [ 34B06971CA5A740B32A63646C60BA3FC, 6B08A6D183216AF6AD4A61CEBCCD6CC9F99E0184632DAB965FCBB805D3AE0EA5 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:19:23.0150 0x1450 PlugPlay - ok
18:19:23.0150 0x1450 PnkBstrA - ok
18:19:23.0150 0x1450 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:19:23.0166 0x1450 PNRPAutoReg - ok
18:19:23.0166 0x1450 [ 8830D42427D05B15B032108EBBDBD289, 977AEE57EF7639A1B1C8D8858AF369927EB16181100FCC4517F4B58148138C22 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:19:23.0181 0x1450 PNRPsvc - ok
18:19:23.0228 0x1450 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:19:23.0244 0x1450 PolicyAgent - ok
18:19:23.0259 0x1450 [ A6D45EB5FC8DBA8EBF3ABE2481C942B9, 2F1B03A390B78BC3F7AE0EEAC112ABC4C07D508EA86342CC082113ECB0B98E49 ] Power C:\Windows\system32\umpo.dll
18:19:23.0275 0x1450 Power - ok
18:19:23.0291 0x1450 [ D8874711B6C3DD308F84E42BA6EFF179, A7E14D9A80D0F2A38568E99E34FFBE2430743523D6739C0251EE5E4E8BBB68CC ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:19:23.0306 0x1450 PptpMiniport - ok
18:19:23.0337 0x1450 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
18:19:23.0337 0x1450 Processor - ok
18:19:23.0369 0x1450 [ D0891D2F5D63DAB719F005919762912C, F187C38764D01AE3FD7CF711DF8B5FE8EB455186F104D5A76FB9DD7443066352 ] ProfSvc C:\Windows\system32\profsvc.dll
18:19:23.0384 0x1450 ProfSvc - ok
18:19:23.0400 0x1450 [ 4FAAA369494A207617165DBFD10E34B5, 5BA2E8DD70E57EF743B7988DAEDD586985077A1B184404E73D119B9A833E7EA0 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:19:23.0400 0x1450 ProtectedStorage - ok
18:19:23.0415 0x1450 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:19:23.0447 0x1450 Psched - ok
18:19:23.0478 0x1450 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:19:23.0509 0x1450 ql2300 - ok
18:19:23.0525 0x1450 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:19:23.0540 0x1450 ql40xx - ok
18:19:23.0556 0x1450 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:19:23.0571 0x1450 QWAVE - ok
18:19:23.0587 0x1450 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:19:23.0603 0x1450 QWAVEdrv - ok
18:19:23.0603 0x1450 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:19:23.0634 0x1450 RasAcd - ok
18:19:23.0665 0x1450 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:19:23.0681 0x1450 RasAgileVpn - ok
18:19:23.0696 0x1450 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:19:23.0712 0x1450 RasAuto - ok
18:19:23.0727 0x1450 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:19:23.0759 0x1450 Rasl2tp - ok
18:19:23.0774 0x1450 [ 8AB012D47B12630A72F56E26A1B5E63C, 404FCBA4561AAA50EB7F467B8303317153DC47B4FFB17F457E3FA20A4E74ED9D ] RasMan C:\Windows\System32\rasmans.dll
18:19:23.0790 0x1450 RasMan - ok
18:19:23.0790 0x1450 [ 77682DE44B334E6AAFCD0ED61FB7404F, C95DF9113D8B777BC9CFE319A710C9293210377F531F0C38FA38C588B8A3F5B4 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:19:23.0805 0x1450 RasPppoe - ok
18:19:23.0805 0x1450 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:19:23.0837 0x1450 RasSstp - ok
18:19:23.0852 0x1450 [ DB854D79B792CBDD51F3072B44D724F0, 0FF84D8ECE098C28596B77F71582BC362FB23C671922544F847B659D52B9F8A9 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:19:23.0868 0x1450 rdbss - ok
18:19:23.0883 0x1450 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:19:23.0899 0x1450 rdpbus - ok
18:19:23.0899 0x1450 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:19:23.0930 0x1450 RDPCDD - ok
18:19:23.0946 0x1450 [ 28F75BF20548B375B1804867864A8564, 5065F72DCA179F8625CC65B71D92E6EDEEE95C259365DDAB2DCE39196B493E16 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:19:23.0977 0x1450 RDPDR - ok
18:19:23.0977 0x1450 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:19:23.0993 0x1450 RDPENCDD - ok
18:19:24.0008 0x1450 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:19:24.0024 0x1450 RDPREFMP - ok
18:19:24.0102 0x1450 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:19:24.0102 0x1450 RdpVideoMiniport - ok
18:19:24.0133 0x1450 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:19:24.0149 0x1450 RDPWD - ok
18:19:24.0180 0x1450 [ A115F49BEA840A5F049BC6310F35F776, 3A4D681959A493ECC24C4B0925F5F4FD336F93C317198C210907E466D3F704CA ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:19:24.0195 0x1450 rdyboost - ok
18:19:24.0211 0x1450 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:19:24.0227 0x1450 RemoteAccess - ok
18:19:24.0242 0x1450 [ 44A031C50D6E8077A034D59E094AB1E2, 7C03954A82C15B14D9160C2E8675A82A47E1C34E0D731CE5A4DED795CF873EED ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:19:24.0242 0x1450 RemoteRegistry - ok
18:19:24.0273 0x1450 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
18:19:24.0289 0x1450 RFCOMM - ok
18:19:24.0367 0x1450 [ BD517C7FB119997EFFBE39D5E4B37B05, 4B03555714824FE6C247FA9DF910671D7F1BA18C13DD82E5E7147F7AAB2BF6B1 ] RichVideo C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
18:19:24.0367 0x1450 RichVideo - detected UnsignedFile.Multi.Generic ( 1 )
18:19:24.0367 0x1450 RichVideo ( UnsignedFile.Multi.Generic ) - warning
18:19:24.0383 0x1450 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:19:24.0398 0x1450 RpcEptMapper - ok
18:19:24.0414 0x1450 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:19:24.0429 0x1450 RpcLocator - ok
18:19:24.0461 0x1450 [ 83D5AD7CFDB1F9D42C3CD102B20FFA0A, 32C795CBC8A2BDD25153B1D4AC2733111BBF2DEF3C0639A067286229B46FEE75 ] RpcSs C:\Windows\system32\rpcss.dll
18:19:24.0476 0x1450 RpcSs - ok
18:19:24.0507 0x1450 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:19:24.0523 0x1450 rspndr - ok
18:19:24.0570 0x1450 [ B358C047E081AC70035017BD1D7ED818, D52455156F2913C5A88B18EC76C4C10B3589FE95F9735DD687A0307FA00FF500 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:19:24.0601 0x1450 RTL8167 - ok
18:19:24.0617 0x1450 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:19:24.0632 0x1450 s3cap - ok
18:19:24.0648 0x1450 [ 4FAAA369494A207617165DBFD10E34B5, 5BA2E8DD70E57EF743B7988DAEDD586985077A1B184404E73D119B9A833E7EA0 ] SamSs C:\Windows\system32\lsass.exe
18:19:24.0648 0x1450 SamSs - ok
18:19:24.0679 0x1450 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:19:24.0695 0x1450 sbp2port - ok
18:19:24.0710 0x1450 [ 41BE455013214E04C062F182BCDCA995, B57CC6618CDF5BF985365E7186EB531B358C7871A7CF1AEA1E04922BF2C26BEB ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:19:24.0726 0x1450 SCardSvr - ok
18:19:24.0726 0x1450 [ 83D6E0A2534A64605373591FB05805FE, 20D14F888D446C60DAF8FEE182DF95E48AD0A39034F303A4DE1F395B0792CF05 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:19:24.0741 0x1450 scfilter - ok
18:19:24.0788 0x1450 [ E1F233CE5DA10AC41C0545F5DAD25998, 658BCA85D4B3B4628B8B4CB12F9D1C8C10ECB8751E3568B4843998B3EC0047A2 ] Schedule C:\Windows\system32\schedsvc.dll
18:19:24.0819 0x1450 Schedule - ok
18:19:24.0835 0x1450 [ A74E2CE95E4D92B0E3283294693FE622, 86B8434FBEB66D72FA2DC3C80EFD3F5BE85DE21C4ABD3BD94580BF8D2867ECE3 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:19:24.0851 0x1450 SCPolicySvc - ok
18:19:24.0866 0x1450 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:19:24.0882 0x1450 SDRSVC - ok
18:19:24.0882 0x1450 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:19:24.0913 0x1450 secdrv - ok
18:19:24.0944 0x1450 [ 003AC904558D652DD47795D82F866DE0, B47308DFB488DEFAA46A67282B18C5CE1FF9859327E1F1AB666B9BD290F393DB ] seclogon C:\Windows\system32\seclogon.dll
18:19:24.0960 0x1450 seclogon - ok
18:19:24.0975 0x1450 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
18:19:25.0007 0x1450 SENS - ok
18:19:25.0007 0x1450 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:19:25.0022 0x1450 SensrSvc - ok
18:19:25.0022 0x1450 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:19:25.0038 0x1450 Serenum - ok
18:19:25.0053 0x1450 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:19:25.0069 0x1450 Serial - ok
18:19:25.0069 0x1450 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:19:25.0085 0x1450 sermouse - ok
18:19:25.0100 0x1450 [ 4D7226D0B485C8AE5BCD8E0DCC1066AB, E9C584D31D912FFE49FD06B287D931FEF5BF1AEF860156E2388C0092E71C91ED ] SessionEnv C:\Windows\system32\sessenv.dll
18:19:25.0100 0x1450 SessionEnv - ok
18:19:25.0116 0x1450 [ C3D57658C34C68DB5D8970A1CF96284E, 4227C4AFDA94FB87FDB6642FB345209809EB86EC8F02DB79502AE54EF4A98A4B ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:19:25.0131 0x1450 sffdisk - ok
18:19:25.0131 0x1450 [ 21EACBEFFFB0FB4999D3D10245CF10A5, 46EFD8D61FE7CB6C9BAA84B869558749CC394D15B425E1657CABA6EAE718D6CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:19:25.0147 0x1450 sffp_mmc - ok
18:19:25.0163 0x1450 [ AF660EA3039E8FE3C2051D7224C82F34, F559BF0492DBFFE877D04DF565265195794BEB92CCAC22E4665CD7BE42F8FA2B ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:19:25.0178 0x1450 sffp_sd - ok
18:19:25.0178 0x1450 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:19:25.0194 0x1450 sfloppy - ok
18:19:25.0225 0x1450 [ 8944F9C62D18FD16B1114C48C1E3DB26, 7AAC831672DBD63A4B4C5E7AC89A3CCA08FED87E0ED5AFCBBB1345F28A8E4C76 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:19:25.0241 0x1450 SharedAccess - ok
18:19:25.0256 0x1450 [ EA9092F3DB26EDC7199AB64C9EF0D2D7, 2FD5AFD91CF50FEEE0E5C59590C471BE61470E1C0BF4DC3745B75739BB0769F3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:19:25.0272 0x1450 ShellHWDetection - ok
18:19:25.0272 0x1450 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:19:25.0287 0x1450 SiSRaid2 - ok
18:19:25.0287 0x1450 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:19:25.0303 0x1450 SiSRaid4 - ok
18:19:25.0319 0x1450 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:19:25.0334 0x1450 Smb - ok
18:19:25.0350 0x1450 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:19:25.0365 0x1450 SNMPTRAP - ok
18:19:25.0365 0x1450 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:19:25.0381 0x1450 spldr - ok
18:19:25.0397 0x1450 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
18:19:25.0412 0x1450 Spooler - ok
18:19:25.0490 0x1450 [ 53952A2A89985D1A3486F9FC661BA538, 181F0195F3DD6E0ECB0976A3BA8C2BDD9D8542D4BFFB856995E990E73D6CFCA6 ] sppsvc C:\Windows\system32\sppsvc.exe
18:19:25.0553 0x1450 sppsvc - ok
18:19:25.0568 0x1450 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:19:25.0599 0x1450 sppuinotify - ok
18:19:25.0615 0x1450 [ 218F6F1BD7ED3F2167759E6A9C9DDD53, 2633C300402DF27F734E91AC6C442E3B9C53C2D641555FAF3F1824413D377D26 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:19:25.0631 0x1450 srv - ok
18:19:25.0646 0x1450 [ 961689D48702EB998A08E6CAB105AEC7, E47626F7C0AE63B8B72C797E4F5DCD135C3988E8814374EF9D401DA15A0CC873 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:19:25.0677 0x1450 srv2 - ok
18:19:25.0677 0x1450 [ 896BEAAF23419696E73469DC207B4D26, 96A1457EF40665A01203DEC0B94AF52D1D22614B29AB7C7B195C89D74AEA87E1 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:19:25.0709 0x1450 srvnet - ok
18:19:25.0709 0x1450 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:19:25.0740 0x1450 SSDPSRV - ok
18:19:25.0755 0x1450 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:19:25.0771 0x1450 SstpSvc - ok
18:19:25.0802 0x1450 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
18:19:25.0802 0x1450 ssudmdm - ok
18:19:25.0849 0x1450 [ A831D5A4D2F5138E332AC1B98315EBB1, 2FF5C256A83ACFB5CEC17B9FA7875048F770B793C37657D6D4E37C70B2F857A8 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:19:25.0865 0x1450 Steam Client Service - ok
18:19:25.0927 0x1450 [ DBFF852134402B17BECC2356B126ECFE, B58B02E98B4B1AF245488EF4E839A763506A6EF5AD97442605B0AA38CA6A9987 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:19:25.0943 0x1450 Stereo Service - ok
18:19:25.0943 0x1450 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:19:25.0958 0x1450 stexstor - ok
18:19:25.0989 0x1450 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:19:26.0005 0x1450 stisvc - ok
18:19:26.0036 0x1450 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:19:26.0052 0x1450 storflt - ok
18:19:26.0067 0x1450 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
18:19:26.0083 0x1450 StorSvc - ok
18:19:26.0083 0x1450 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:19:26.0099 0x1450 storvsc - ok
18:19:26.0114 0x1450 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:19:26.0130 0x1450 swenum - ok
18:19:26.0145 0x1450 [ 5D967724564F7ACCEBAC3720CFE89C32, 3420E958DA13235968138E593BC190469F456059518B7524BDE9F6F1271679F2 ] swprv C:\Windows\System32\swprv.dll
18:19:26.0161 0x1450 swprv - ok
18:19:26.0208 0x1450 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
18:19:26.0255 0x1450 SysMain - ok
18:19:26.0255 0x1450 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:19:26.0270 0x1450 TabletInputService - ok
18:19:26.0286 0x1450 [ D583628BEAD52E4E78E5A8FA338D0E02, 15D69565A824ACDB5F25903351CB9427605CB41E2BD8828D190E09D20007241C ] TapiSrv C:\Windows\System32\tapisrv.dll
18:19:26.0301 0x1450 TapiSrv - ok
18:19:26.0317 0x1450 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:19:26.0333 0x1450 TBS - ok
18:19:26.0395 0x1450 [ 4F80944B03112F486212DC20BE166079, B4C1AF42E450A280C8018EF123555F4E3FD943BDC14E4ECD0AB72BB40C22AF94 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:19:26.0442 0x1450 Tcpip - ok
18:19:26.0473 0x1450 [ 4F80944B03112F486212DC20BE166079, B4C1AF42E450A280C8018EF123555F4E3FD943BDC14E4ECD0AB72BB40C22AF94 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:19:26.0520 0x1450 TCPIP6 - ok
18:19:26.0535 0x1450 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:19:26.0551 0x1450 tcpipreg - ok
18:19:26.0551 0x1450 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:19:26.0567 0x1450 TDPIPE - ok
18:19:26.0582 0x1450 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:19:26.0598 0x1450 TDTCP - ok
18:19:26.0613 0x1450 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:19:26.0629 0x1450 tdx - ok
18:19:26.0660 0x1450 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:19:26.0660 0x1450 TermDD - ok
18:19:26.0707 0x1450 [ 6A5B600AD0041E9AF564DE73B716F3D2, D6426A63D8EED6E1630E639F489B096E3A1BE5178561F20B3CB8B1289FF9227A ] TermService C:\Windows\System32\termsrv.dll
18:19:26.0723 0x1450 TermService - ok
18:19:26.0738 0x1450 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:19:26.0754 0x1450 Themes - ok
18:19:26.0769 0x1450 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:19:26.0801 0x1450 THREADORDER - ok
18:19:26.0816 0x1450 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:19:26.0832 0x1450 TrkWks - ok
18:19:26.0879 0x1450 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:19:26.0894 0x1450 TrustedInstaller - ok
18:19:26.0910 0x1450 [ 2CE1083C5A2D9BA5FFAD087F997EE25C, 1293A1B4D98A800A16BCD3ED52EA8AB429259FC16F9B6D3A0CAAEE7C7BE57DF7 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:19:26.0925 0x1450 tssecsrv - ok
18:19:26.0941 0x1450 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:19:26.0957 0x1450 TsUsbFlt - ok
18:19:26.0972 0x1450 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
18:19:26.0988 0x1450 TsUsbGD - ok
18:19:27.0003 0x1450 [ A9EFA7F181D82632CDEDEEBC99FA0A41, 2F775A9382CD899B4360B9E61563F47F3DAA14FEDB204865705747437B211D6C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:19:27.0019 0x1450 tunnel - ok
18:19:27.0019 0x1450 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:19:27.0035 0x1450 uagp35 - ok
18:19:27.0050 0x1450 [ 992DCA93480DBF9EF103A7350C5B360E, A97739B3299EBA2043E1593C211F3AEFFA2258D8D8F0643FF3E7A6893DFC86AA ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:19:27.0081 0x1450 udfs - ok
18:19:27.0081 0x1450 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:19:27.0097 0x1450 UI0Detect - ok
18:19:27.0097 0x1450 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:19:27.0113 0x1450 uliagpkx - ok
18:19:27.0128 0x1450 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:19:27.0144 0x1450 umbus - ok
18:19:27.0159 0x1450 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
18:19:27.0159 0x1450 UmPass - ok
18:19:27.0191 0x1450 [ EC4F5DDAC4E0A662D3B38C6E25738FFB, 2BB1AE3545A6E5DCE95008DE85FE054AAA62A6FF04484F7EF613D191F129A4CB ] UmRdpService C:\Windows\System32\umrdp.dll
18:19:27.0206 0x1450 UmRdpService - ok
18:19:27.0222 0x1450 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:19:27.0253 0x1450 upnphost - ok
18:19:27.0269 0x1450 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:19:27.0284 0x1450 usbccgp - ok
18:19:27.0300 0x1450 [ BA1E9E3550F6D578FF68DA2873077C96, 40C533C1C59ADD2057F9B95D631A2540A0B246C532AE69B64C629DEEB770A238 ] UsbCharger C:\Windows\system32\DRIVERS\UsbCharger.sys
18:19:27.0315 0x1450 UsbCharger - ok
18:19:27.0331 0x1450 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:19:27.0347 0x1450 usbcir - ok
18:19:27.0362 0x1450 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:19:27.0378 0x1450 usbehci - ok
18:19:27.0393 0x1450 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:19:27.0425 0x1450 usbhub - ok
18:19:27.0487 0x1450 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:19:27.0487 0x1450 usbohci - ok
18:19:27.0534 0x1450 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:19:27.0549 0x1450 usbprint - ok
18:19:27.0659 0x1450 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:19:27.0674 0x1450 usbscan - ok
18:19:27.0705 0x1450 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:19:27.0721 0x1450 USBSTOR - ok
18:19:27.0737 0x1450 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:19:27.0752 0x1450 usbuhci - ok
18:19:27.0768 0x1450 [ 81D8645AC588E7A6D9755D8FD84E6FDD, 0D6904CF522CD822AE106259D46BC161F56E3992FEA6F1DF70EDC5BFA2247F5E ] UxSms C:\Windows\System32\uxsms.dll
18:19:27.0783 0x1450 UxSms - ok
18:19:27.0799 0x1450 [ 4FAAA369494A207617165DBFD10E34B5, 5BA2E8DD70E57EF743B7988DAEDD586985077A1B184404E73D119B9A833E7EA0 ] VaultSvc C:\Windows\system32\lsass.exe
18:19:27.0799 0x1450 VaultSvc - ok
18:19:27.0815 0x1450 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:19:27.0815 0x1450 vdrvroot - ok
18:19:27.0861 0x1450 [ 44082C4A89ABDAC0C4B08AA8834270B4, C312E144AC4E5475506EBC62CC5D0529B256771C1FA2D709228D3F6BFEB55DED ] vds C:\Windows\System32\vds.exe
18:19:27.0877 0x1450 vds - ok
18:19:27.0908 0x1450 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:19:27.0924 0x1450 vga - ok
18:19:27.0924 0x1450 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:19:27.0955 0x1450 VgaSave - ok
18:19:27.0971 0x1450 [ 2E9907E787CDAFA2AAA7F928853B7142, 29F30D60BBE5909D4DB569D52ADC7677CA94831B6E5CB25927386CC24CCCE898 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:19:27.0986 0x1450 vhdmp - ok
18:19:28.0002 0x1450 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:19:28.0002 0x1450 viaide - ok
18:19:28.0033 0x1450 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:19:28.0049 0x1450 vmbus - ok
18:19:28.0049 0x1450 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:19:28.0064 0x1450 VMBusHID - ok
18:19:28.0080 0x1450 [ B7962BD45492837173E0EF274E691C1F, 6845F94E6345888714206072229035C0E93BA6E8B4EACFA8C479474B5FF1AA88 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:19:28.0080 0x1450 volmgr - ok
18:19:28.0095 0x1450 [ 0904EF550B3D3FEB326638A4BAD9937E, 462FA11F260C420756DBD989CB505EEB9A286B9EEB826EB2935C119C839EDC8E ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:19:28.0111 0x1450 volmgrx - ok
18:19:28.0127 0x1450 [ A56F2326CE33646CDA95E7A9E7163FFA, EA5E2090E19CF6B943D5AE669E5AC5E3E091BEDE49ADC62FC93BDA3EA16B598E ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:19:28.0142 0x1450 volsnap - ok
18:19:28.0158 0x1450 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:19:28.0173 0x1450 vsmraid - ok
18:19:28.0205 0x1450 [ 9A11A37C0519E42587CED5E5941FA17D, 3A6518C9DF6B0A6EDB37FD148A68523A2EE4561B4F49B55707026343B301F2F7 ] VSS C:\Windows\system32\vssvc.exe
18:19:28.0236 0x1450 VSS - ok
18:19:28.0251 0x1450 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:19:28.0267 0x1450 vwifibus - ok
18:19:28.0267 0x1450 [ C7B83BD98BA3560374569C0C13EA3685, 68C05B99D6035568E2470FE7E73167AF584CC721F76E02CA1470CA5E1E341607 ] W32Time C:\Windows\system32\w32time.dll
18:19:28.0283 0x1450 W32Time - ok
18:19:28.0298 0x1450 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:19:28.0298 0x1450 WacomPen - ok
18:19:28.0314 0x1450 [ 226028D956C43CE4D8DDFFA89873E890, F1208BAF5041595981CC6E2EB36D7E9487A4BFA4B895337C21135CED6B375936 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:19:28.0329 0x1450 WANARP - ok
18:19:28.0329 0x1450 [ 226028D956C43CE4D8DDFFA89873E890, F1208BAF5041595981CC6E2EB36D7E9487A4BFA4B895337C21135CED6B375936 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:19:28.0345 0x1450 Wanarpv6 - ok
18:19:28.0376 0x1450 [ F91B8969183F3461BD3D3438052AEAD0, 8AC901D5CF209479DBE1DD0D7BB084848796E0659C134998F82CDFC6EC7059E7 ] wbengine C:\Windows\system32\wbengine.exe
18:19:28.0407 0x1450 wbengine - ok
18:19:28.0423 0x1450 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:19:28.0439 0x1450 WbioSrvc - ok
18:19:28.0454 0x1450 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:19:28.0470 0x1450 wcncsvc - ok
18:19:28.0501 0x1450 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:19:28.0517 0x1450 WcsPlugInService - ok
18:19:28.0517 0x1450 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
18:19:28.0532 0x1450 Wd - ok
18:19:28.0579 0x1450 [ 37CE6867FC4A6827009A713A9737262C, D8890524F4EF358E35C4A992BEAF7C8FB5ED647FE4D899D3CF608C2201E218A5 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:19:28.0595 0x1450 Wdf01000 - ok
18:19:28.0626 0x1450 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:19:28.0641 0x1450 WdiServiceHost - ok
18:19:28.0641 0x1450 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:19:28.0657 0x1450 WdiSystemHost - ok
18:19:28.0688 0x1450 [ 5AB5BD14DED63173E464AA8E1A602590, B349E4FF9285A193CB245A4F37A56A4F6BC77CE884B46B57E24AD76FCF8543D6 ] WebClient C:\Windows\System32\webclnt.dll
18:19:28.0704 0x1450 WebClient - ok
18:19:28.0719 0x1450 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:19:28.0751 0x1450 Wecsvc - ok
18:19:28.0751 0x1450 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:19:28.0782 0x1450 wercplsupport - ok
18:19:28.0782 0x1450 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:19:28.0813 0x1450 WerSvc - ok
18:19:28.0813 0x1450 [ 009604986BAE004733728282BD98BB03, CE82EA41E6CC1EF2D11BFB2761105C422EA9A146FF52034C4A2221A4B5FD3940 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:19:28.0829 0x1450 WfpLwf - ok
18:19:28.0829 0x1450 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:19:28.0844 0x1450 WIMMount - ok
18:19:28.0860 0x1450 WinDefend - ok
18:19:28.0860 0x1450 WinHttpAutoProxySvc - ok
18:19:28.0891 0x1450 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:19:28.0922 0x1450 Winmgmt - ok
18:19:28.0969 0x1450 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
18:19:29.0016 0x1450 WinRM - ok
18:19:29.0031 0x1450 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
18:19:29.0047 0x1450 WinUsb - ok
18:19:29.0078 0x1450 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:19:29.0094 0x1450 Wlansvc - ok
18:19:29.0109 0x1450 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:19:29.0125 0x1450 WmiAcpi - ok
18:19:29.0125 0x1450 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:19:29.0141 0x1450 wmiApSrv - ok
18:19:29.0141 0x1450 WMPNetworkSvc - ok
18:19:29.0156 0x1450 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:19:29.0172 0x1450 WPCSvc - ok
18:19:29.0187 0x1450 [ 40E549091F6BA713114B85159BFC6993, E37255A374A0CF31087A1E0535ED6BC32B8848B084A1626A0AC4F2BAA376FB36 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:19:29.0203 0x1450 WPDBusEnum - ok
18:19:29.0203 0x1450 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:19:29.0234 0x1450 ws2ifsl - ok
18:19:29.0234 0x1450 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
18:19:29.0250 0x1450 wscsvc - ok
18:19:29.0250 0x1450 WSearch - ok
18:19:29.0328 0x1450 [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
18:19:29.0375 0x1450 wuauserv - ok
18:19:29.0390 0x1450 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:19:29.0406 0x1450 WudfPf - ok
18:19:29.0421 0x1450 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:19:29.0437 0x1450 WUDFRd - ok
18:19:29.0453 0x1450 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:19:29.0453 0x1450 wudfsvc - ok
18:19:29.0468 0x1450 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:19:29.0484 0x1450 WwanSvc - ok
18:19:29.0484 0x1450 xhunter1 - ok
18:19:29.0515 0x1450 [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
18:19:29.0515 0x1450 xusb21 - ok
18:19:29.0531 0x1450 ================ Scan global ===============================
18:19:29.0593 0x1450 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
18:19:29.0640 0x1450 [ ACCB745C5952B041B548DDD879902369, 504C4710230ECF2C940F9888A5F7C49D5CC1CA2323719D32DC24638551A1CB9A ] C:\Windows\system32\winsrv.dll
18:19:29.0640 0x1450 [ ACCB745C5952B041B548DDD879902369, 504C4710230ECF2C940F9888A5F7C49D5CC1CA2323719D32DC24638551A1CB9A ] C:\Windows\system32\winsrv.dll
18:19:29.0687 0x1450 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
18:19:29.0718 0x1450 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
18:19:29.0718 0x1450 [ Global ] - ok
18:19:29.0718 0x1450 ================ Scan MBR ==================================
18:19:29.0733 0x1450 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:19:30.0030 0x1450 \Device\Harddisk0\DR0 - ok
18:19:30.0030 0x1450 ================ Scan VBR ==================================
18:19:30.0030 0x1450 [ C1D134716A6A220AF7DC2F8788E55E93 ] \Device\Harddisk0\DR0\Partition1
18:19:30.0077 0x1450 \Device\Harddisk0\DR0\Partition1 - ok
18:19:30.0077 0x1450 [ 052931B0E58E44EE36F18BB532B235EF ] \Device\Harddisk0\DR0\Partition2
18:19:30.0108 0x1450 \Device\Harddisk0\DR0\Partition2 - ok
18:19:30.0108 0x1450 [ 32867976D2F3677846D9C52613A35C5E ] \Device\Harddisk0\DR0\Partition3
18:19:30.0108 0x1450 \Device\Harddisk0\DR0\Partition3 - ok
18:19:30.0108 0x1450 ================ Scan generic autorun ======================
18:19:30.0389 0x1450 [ 635BFF7C55A68CFEEFFB155979E68EE0, 018AAC3F2F8B31078DCD35E4C543172737213DE63F0EC0A9B2A7F45E44B6842F ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
18:19:30.0576 0x1450 RTHDVCPL - ok
18:19:30.0638 0x1450 [ 7E8329DDFC7A98218AC7E53C01C362BC, CDAE663F43165BDC4635762A0DB66A5CEFE835FF773DDBFABF27681387C04F9B ] C:\Windows\system32\igfxtray.exe
18:19:30.0638 0x1450 IgfxTray - ok
18:19:30.0669 0x1450 [ F950286B3DF08D7064155FA655D4722D, 80A8C6A376C61658AAD52502B939E12E2B375FD52850582F059F826C58A8D1E9 ] C:\Windows\system32\hkcmd.exe
18:19:30.0685 0x1450 HotKeysCmds - ok
18:19:30.0716 0x1450 [ 07EB0589E055CF9D2911F6E04B62AB47, C0C28C83CB4BE8F6D41438EB92DB21EE3930555B4BDA1450EC576AEAF1CB7C08 ] C:\Windows\system32\igfxpers.exe
18:19:30.0732 0x1450 Persistence - ok
18:19:30.0825 0x1450 [ BC293F3C9621D40E1924A5715417F77C, 3EB1B0040566CE0DBA3FC65C5005B0F1E79BE9AB39CAD1398A45AAC3AB7AD733 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
18:19:30.0872 0x1450 NvBackend - ok
18:19:30.0903 0x1450 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
18:19:30.0919 0x1450 ShadowPlay - ok
18:19:30.0966 0x1450 [ 70BDEE03032BF7CE279838866B25E697, 007C3AC1B4380BC56EC6E14EFC022C03F165D08447AD763854351C530E19D976 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
18:19:30.0966 0x1450 IMSS - ok
18:19:31.0013 0x1450 [ 0436F64FD296BE331B3BB0CE446548BF, 53A8F8E58F451A7B030AE61E30DBB9BDFD5342046674177941A838B66D80FD70 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
18:19:31.0013 0x1450 USB3MON - ok
18:19:31.0184 0x1450 [ 992AC5787396377251D27599A8625464, AFD44FAC75D7617B9EBEACC2B020C9158F56A4072C2C3F0D09CDD1C47B8DA002 ] C:\Windows\SysWOW64\cc32\webtmr.exe
18:19:31.0278 0x1450 ChicoSys - ok
18:19:31.0356 0x1450 [ C9B67BCB8E384064A8C2263740B0C437, F2609406A84F3A8E256DD250F84A774EF43F92C9F8B373E297A99ACF95B3CCE4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
18:19:31.0371 0x1450 SunJavaUpdateSched - ok
18:19:31.0637 0x1450 [ C59EB8BD177BAFB8F97D6E7647EC4DE6, 9D91A75984585FC83DED4A024D3E831E9B5F52A2551BF5134A99C2CF20299B61 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
18:19:31.0746 0x1450 AvastUI.exe - ok
18:19:31.0871 0x1450 [ 54DF749F4F7F6A2BD7CD624523229BE3, 88BBD73B136AEE81AFE2052F2855959BCFC09E53434B17EBC62DC2BB2529D08D ] C:\Program Files (x86)\Trojan Remover\Trjscan.exe
18:19:31.0917 0x1450 TrojanScanner - ok
18:19:31.0964 0x1450 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:19:32.0011 0x1450 Sidebar - ok
18:19:32.0042 0x1450 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:19:32.0058 0x1450 mctadmin - ok
18:19:32.0073 0x1450 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:19:32.0105 0x1450 Sidebar - ok
18:19:32.0105 0x1450 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:19:32.0120 0x1450 mctadmin - ok
18:19:32.0183 0x1450 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
18:19:32.0214 0x1450 Sidebar - ok
18:19:32.0354 0x1450 [ D521CE4130B2C4E689A4CD5C23CE69BE, AC1B14DEAD8E2A614693E784335D4C367740B1836A7255A197DA276CC51A3F7F ] C:\Windows\tray\wintmr.exe
18:19:32.0448 0x1450 CCWinTray - ok
18:19:32.0588 0x1450 [ 2CD5F1053AB2BC2ED35EF1B253B9E44A, 28A0A3785797D9DDD0A0D0D07B291E24E68B3523F55DE223C60EF59F5FD3361C ] C:\Program Files (x86)\Steam\steam.exe
18:19:32.0635 0x1450 Steam - ok
18:19:33.0259 0x1450 [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] C:\Program Files\CCleaner\CCleaner64.exe
18:19:33.0384 0x1450 CCleaner Monitoring - ok
18:19:33.0431 0x1450 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.2.2732.0 ), 0x41000 ( enabled : updated )
18:19:33.0446 0x1450 Win FW state via NFP2: enabled ( trusted )
18:19:33.0446 0x1450 ============================================================
18:19:33.0446 0x1450 Scan finished
18:19:33.0446 0x1450 ============================================================
18:19:33.0446 0x06f0 Detected object count: 6
18:19:33.0446 0x06f0 Actual detected object count: 6
18:19:54.0350 0x06f0 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:19:54.0350 0x06f0 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:19:54.0350 0x06f0 Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - skipped by user
18:19:54.0350 0x06f0 Intel(R) Capability Licensing Service Interface ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:19:54.0350 0x06f0 MotioninJoyXFilter ( UnsignedFile.Multi.Generic ) - skipped by user
18:19:54.0350 0x06f0 MotioninJoyXFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:19:54.0350 0x06f0 NBService ( UnsignedFile.Multi.Generic ) - skipped by user
18:19:54.0350 0x06f0 NBService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:19:54.0350 0x06f0 NMIndexingService ( UnsignedFile.Multi.Generic ) - skipped by user
18:19:54.0350 0x06f0 NMIndexingService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:19:54.0350 0x06f0 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
18:19:54.0350 0x06f0 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:20:01.0552 0x0ba4 Deinitialize success
Vielen Dank vorab  Geändert von foxmulder (15.04.2016 um 20:36 Uhr) |
|
15.04.2016, 20:38
| #6 |
| | Nerviges Problem - Virus pder Trojaner? Jetzt noch das FRST Logfile von heute: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016
durchgeführt von CLS (Administrator) auf CLS-PC (15-04-2016 18:14:13)
Gestartet von C:\Users\CLS\Desktop
Geladene Profile: CLS (Verfügbare Profile: CLS)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
konnte nicht auf den Prozess zugreifen -> csrss.exe
konnte nicht auf den Prozess zugreifen -> csrss.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Salfeld Computer) C:\Windows\tray\wintmr.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Salfeld Computer) C:\Windows\SysWOW64\cchservice.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
konnte nicht auf den Prozess zugreifen -> WUDFHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
konnte nicht auf den Prozess zugreifen -> WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Salfeld Computer) C:\Windows\SysWOW64\cc32\webtmr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13423688 2013-02-26] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-03-12] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291128 2013-03-06] (Intel Corporation)
HKLM-x32\...\Run: [ChicoSys] => C:\Windows\SysWOW64\cc32\webtmr.exe [6692360 2015-10-07] (Salfeld Computer)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7390096 2016-04-10] (AVAST Software)
HKLM-x32\...\Run: [TrojanScanner] => C:\Program Files (x86)\Trojan Remover\Trjscan.exe [3716624 2015-08-31] (Simply Super Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\Software\Policies\Microsoft\Windows NT\SystemRestore: [DisableSR/DisableConfig] <===== ACHTUNG
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Run: [CCWinTray] => C:\Windows\tray\wintmr.exe [7117184 2009-07-14] (Salfeld Computer)
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd)
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Policies\system: [DisableRegistryTools] 1
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\Policies\Explorer: [NoFind] 0
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\MountPoints2: {c84ca8c7-6654-11e3-83df-806e6f6e6963} - D:\Run.exe
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\BEAUTSPC.SCR [47224 2012-08-07] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-10] (AVAST Software)
GroupPolicy: Beschränkung - Chrome <======= ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{084C50C1-FC30-4FCB-9985-AA649451EEB7}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{F65C9001-B41F-4120-A1C1-A9AAD0156713}: [DhcpNameServer] 192.168.0.209
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.de
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-29] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-10] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-29] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-03-29] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-10] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-29] (Oracle Corporation)
FireFox:
========
FF ProfilePath: C:\Users\CLS\AppData\Roaming\Mozilla\Firefox\Profiles\ih4a2qrz.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-09] ()
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-29] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-29] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-29] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-08] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-02-26] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3296799779-413909061-1611958997-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-04-01] ()
FF SearchPlugin: C:\Users\CLS\AppData\Roaming\Mozilla\Firefox\Profiles\ih4a2qrz.default\searchplugins\youtube-videosuche.xml [2015-03-03]
FF SearchPlugin: C:\Users\CLS\AppData\Roaming\Mozilla\Firefox\Profiles\ih4a2qrz.default\searchplugins\youtube.xml [2014-06-09]
FF Extension: WOT - C:\Users\CLS\AppData\Roaming\Mozilla\Firefox\Profiles\ih4a2qrz.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-12-18]
FF Extension: Adblock Plus - C:\Users\CLS\AppData\Roaming\Mozilla\Firefox\Profiles\ih4a2qrz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-02-27]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR Profile: C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-11-29]
CHR Extension: (BetterTTV) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2015-11-29]
CHR Extension: (Google Docs) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-11-29]
CHR Extension: (Google Drive) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-29]
CHR Extension: (YouTube) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-29]
CHR Extension: (Adblock Plus) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-17]
CHR Extension: (Google-Suche) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-29]
CHR Extension: (Google Tabellen) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-11-29]
CHR Extension: (Google Docs Offline) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Avast Online Security) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-10]
CHR Extension: (Simple Bookmarks) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nafmgkhgdblkabfjfegmafagpccaobfg [2015-11-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-09]
CHR Extension: (Enhanced Steam) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2016-04-09]
CHR Extension: (Bitdefender QuickScan) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnkcidphdcakpkheohlhocaicfamjie [2016-04-10]
CHR Extension: (Google Mail) - C:\Users\CLS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-10]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-04-10] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-01-31] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation)
S2 ksupmgr; C:\Windows\SysWOW64\ksupmgr.exe [1190224 2015-06-01] (Salfeld Computer)
S4 NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-05] (Nero AG) [Datei ist nicht signiert]
S4 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [262144 2006-12-23] (Nero AG) [Datei ist nicht signiert]
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2015-07-26] ()
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe [167936 2005-08-07] () [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-08-17] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21584 2013-02-19] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-04-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-04-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-04-15] (AVAST Software)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-05-18] ()
S3 dtproscsibus; C:\Windows\System32\DRIVERS\dtproscsibus.sys [30264 2016-04-09] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-01-31] (Intel Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-05-18] ()
S3 nocashio; C:\Windows\SysWOW64\drivers\nocashio.sys [4096 2016-03-20] () [Datei ist nicht signiert]
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [14368 1999-09-22] () [Datei ist nicht signiert]
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [21072 2013-03-27] ()
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-15 18:14 - 2016-04-15 18:14 - 00020000 _____ C:\Users\CLS\Desktop\FRST.txt
2016-04-15 18:14 - 2016-04-15 18:14 - 00000000 ____D C:\FRST
2016-04-15 18:13 - 2016-04-15 18:13 - 02375168 _____ (Farbar) C:\Users\CLS\Downloads\FRST64.exe
2016-04-15 18:13 - 2016-04-15 18:13 - 02375168 _____ (Farbar) C:\Users\CLS\Desktop\FRST64.exe
2016-04-15 18:09 - 2016-04-15 18:13 - 00001236 _____ C:\Windows\SysWOW64\cchservice.err
2016-04-10 21:02 - 2016-04-12 20:00 - 00000000 ____D C:\Users\CLS\AppData\Roaming\QuickScan
2016-04-10 21:02 - 2016-04-10 21:02 - 00039480 _____ C:\Users\CLS\Downloads\qsinstaller.exe
2016-04-10 18:17 - 2016-04-10 18:17 - 00000000 ____D C:\Users\CLS\Documents\Simply Super Software
2016-04-10 18:17 - 2016-04-10 18:17 - 00000000 ____D C:\Users\CLS\AppData\Roaming\Simply Super Software
2016-04-10 18:17 - 2016-04-10 18:17 - 00000000 ____D C:\ProgramData\Simply Super Software
2016-04-10 18:17 - 2016-04-10 18:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
2016-04-10 18:17 - 2016-04-10 18:17 - 00000000 ____D C:\Program Files (x86)\Trojan Remover
2016-04-10 18:16 - 2016-04-10 18:16 - 01475080 _____ C:\Users\CLS\Downloads\Trojan Remover - CHIP-Installer.exe
2016-04-10 18:12 - 2016-04-10 18:12 - 00321848 _____ (Malwarebytes Corporation) C:\Users\CLS\Downloads\mbam-clean-2.1.1.1001.exe
2016-04-10 18:12 - 2016-04-10 18:12 - 00321848 _____ (Malwarebytes Corporation) C:\Users\CLS\Downloads\mbam-clean-2.1.1.1001 (1).exe
2016-04-10 14:39 - 2016-04-10 14:39 - 01475080 _____ C:\Users\CLS\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2016-04-10 14:38 - 2016-04-10 14:38 - 22851472 _____ (Malwarebytes ) C:\Users\CLS\Downloads\mbam-setup-2.2.1.1043 (1).exe
2016-04-10 14:37 - 2016-04-10 14:38 - 22851472 _____ (Malwarebytes ) C:\Users\CLS\Downloads\mbam-setup-2.2.1.1043.exe
2016-04-10 14:25 - 2016-04-15 18:08 - 00000000 ___HD C:\ProgramData\Device
2016-04-10 14:22 - 2016-04-10 14:22 - 03119168 _____ C:\Users\CLS\Desktop\adwcleaner_5.109.exe
2016-04-10 12:59 - 2016-04-10 12:59 - 00003052 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1460285946
2016-04-10 12:59 - 2016-04-10 12:59 - 00001890 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-04-10 12:59 - 2016-04-10 12:59 - 00001005 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-04-10 12:59 - 2016-04-10 12:59 - 00001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-10 12:59 - 2016-04-10 12:59 - 00000000 ____D C:\Users\CLS\AppData\Roaming\AVAST Software
2016-04-10 12:59 - 2016-04-10 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-04-10 12:58 - 2016-04-15 18:09 - 00287528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00465792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-04-10 12:58 - 2016-04-10 12:58 - 00287528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.146073654411401
2016-04-10 12:58 - 2016-04-10 12:58 - 00166432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-04-10 12:58 - 2016-04-10 12:58 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-04-10 12:58 - 2016-04-10 12:58 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-04-10 12:58 - 2016-04-10 12:58 - 00000000 ____D C:\Program Files\AVAST Software
2016-04-10 12:57 - 2016-04-10 12:57 - 212729024 _____ (AVAST Software) C:\Users\CLS\Downloads\avast_free_antivirus_setup_11.2.2732.exe
2016-04-10 12:55 - 2016-04-10 12:55 - 05206984 _____ (AVAST Software) C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe
2016-04-10 12:55 - 2016-04-10 12:55 - 05206984 _____ (AVAST Software) C:\Users\CLS\Downloads\avast_free_antivirus_setup_online.exe
2016-04-10 12:20 - 2016-04-10 12:20 - 04734128 _____ (Avira Operations GmbH & Co. KG) C:\Users\CLS\Downloads\avira_de_av_570a28e463c71__ws.exe
2016-04-10 12:20 - 2016-04-10 12:20 - 04734128 _____ (Avira Operations GmbH & Co. KG) C:\Users\CLS\Downloads\avira_de_av_570a28e463c71__ws (1).exe
2016-04-10 12:19 - 2016-04-10 12:19 - 00002294 _____ C:\Users\CLS\Documents\cc_20160410_121936.reg
2016-04-10 12:08 - 2016-04-10 12:08 - 01475080 _____ C:\Users\CLS\Downloads\PeerBlock - CHIP-Installer.exe
2016-04-10 12:07 - 2016-04-10 12:07 - 02374320 _____ (PeerBlock, LLC ) C:\Users\CLS\Downloads\PeerBlock-Setup_v1.2_r693.exe
2016-04-10 11:51 - 2016-04-10 11:51 - 00108644 _____ C:\Users\CLS\Documents\cc_20160410_115116.reg
2016-04-10 11:48 - 2016-04-10 11:48 - 05600464 _____ (Piriform Ltd) C:\Users\CLS\Downloads\ccsetup515_slim.exe
2016-04-10 11:48 - 2016-04-10 11:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-04-10 11:47 - 2016-04-10 11:47 - 00571472 _____ C:\Users\CLS\Downloads\ccsetup516_slim_CB-DL-Manager (1).exe
2016-04-10 11:45 - 2016-04-10 11:45 - 00571480 _____ C:\Users\CLS\Downloads\ccsetup516_slim_CB-DL-Manager.exe
2016-04-10 10:43 - 2016-04-10 10:43 - 00000000 ____D C:\Users\CLS\AppData\Local\Bluestacks
2016-04-10 10:16 - 2016-04-10 10:26 - 00000000 ____D C:\Users\CLS\Downloads\NSMBW_Mod_ISO_Builder_v1.00
2016-04-10 10:13 - 2016-04-10 10:23 - 564952329 _____ C:\Users\CLS\Downloads\New Super Mario Bros (U)(HaZMaT).rar
2016-04-10 01:44 - 2016-04-10 01:54 - 490988041 _____ C:\Users\CLS\Downloads\Newer_Mario_Wii.zip
2016-04-09 14:59 - 2016-04-10 12:18 - 00000000 ____D C:\Program Files\PeerBlock
2016-04-09 14:31 - 2016-04-09 14:31 - 00000000 ____D C:\Users\Public\Documents\DAEMON Tools Images
2016-04-09 14:30 - 2016-04-09 14:30 - 00030264 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtproscsibus.sys
2016-04-09 14:30 - 2016-04-09 14:30 - 00000000 ____D C:\Users\CLS\AppData\Roaming\DAEMON Tools Pro
2016-04-09 14:29 - 2016-04-09 14:29 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
2016-04-09 14:20 - 2016-04-09 14:20 - 05934784 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-03-29 17:28 - 2015-10-07 08:31 - 04067328 _____ (Salfeld Computer) C:\Windows\SysWOW64\ccsync.exe
2016-03-29 17:28 - 2015-06-01 13:39 - 03651960 _____ (Salfeld Computer) C:\Windows\SysWOW64\cchservice.exe
2016-03-29 17:28 - 2015-06-01 11:45 - 01190224 _____ (Salfeld Computer) C:\Windows\SysWOW64\ksupmgr.exe
2016-03-29 16:44 - 2016-03-29 16:43 - 00110144 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-64.dll
2016-03-29 16:42 - 2016-03-29 16:42 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-03-26 21:05 - 2016-03-26 21:05 - 00000000 ____D C:\Windows\pss
2016-03-26 00:53 - 2016-03-26 00:53 - 00001743 _____ C:\Users\CLS\Desktop\Ets 2.lnk
2016-03-26 00:46 - 2016-04-10 01:16 - 00000000 ____D C:\Users\CLS\Desktop\ETS 2-MODS
2016-03-25 21:45 - 2016-03-08 08:15 - 00110016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-03-25 21:45 - 2016-02-14 03:47 - 00125720 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-03-25 21:45 - 2016-02-14 03:46 - 00126232 _____ C:\Windows\system32\vulkan-1.dll
2016-03-25 21:45 - 2016-02-14 03:45 - 00045848 _____ C:\Windows\system32\vulkaninfo.exe
2016-03-25 21:45 - 2016-02-14 03:45 - 00042264 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-03-25 21:44 - 2016-03-25 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2016-03-25 21:44 - 2016-03-25 21:44 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-03-25 21:42 - 2016-03-08 12:07 - 42968120 _____ C:\Windows\system32\nvcompiler.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 37609528 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 22932928 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 21313024 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 20854680 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 18879544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 17725040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 17318184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 16439328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 12564024 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-03-25 21:42 - 2016-03-08 12:07 - 10546944 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 08658120 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 03233336 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 02808768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436451.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436451.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00886840 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00749504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00693816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00678520 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00571912 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00473056 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00423360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00423080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00391632 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00175552 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-03-25 21:42 - 2016-03-08 12:07 - 00000139 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-03-25 21:42 - 2016-03-08 12:07 - 00000139 _____ C:\Windows\system32\nv-vk64.json
2016-03-24 18:21 - 2016-03-24 21:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-03-21 15:48 - 2016-03-21 15:48 - 00000837 _____ C:\Users\CLS\Desktop\CPU-Z.lnk
2016-03-21 15:48 - 2016-03-21 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-03-21 15:48 - 2016-03-21 15:48 - 00000000 ____D C:\Program Files\CPUID
2016-03-21 12:25 - 2016-03-21 12:25 - 00000000 ____D C:\Users\CLS\Documents\PCSX2
2016-03-21 11:40 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-21 11:40 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-21 11:40 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-21 11:40 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-21 11:40 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-21 11:40 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-21 11:40 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-21 11:40 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-21 11:40 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-21 11:40 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-21 11:40 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-21 11:40 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-21 11:40 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-21 11:40 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-21 11:40 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-21 11:40 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-21 11:40 - 2016-02-10 21:01 - 05551552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-21 11:40 - 2016-02-10 21:01 - 00706496 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-03-21 11:40 - 2016-02-10 21:01 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-21 11:40 - 2016-02-10 21:01 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-21 11:40 - 2016-02-10 20:59 - 01733080 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-21 11:40 - 2016-02-10 20:59 - 00631384 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-03-21 11:40 - 2016-02-10 20:56 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-21 11:40 - 2016-02-10 20:56 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-21 11:40 - 2016-02-10 20:56 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-21 11:40 - 2016-02-10 20:56 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-21 11:40 - 2016-02-10 20:56 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-21 11:40 - 2016-02-10 20:56 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-21 11:40 - 2016-02-10 20:55 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-21 11:40 - 2016-02-10 20:55 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-21 11:40 - 2016-02-10 20:55 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-03-21 11:40 - 2016-02-10 20:55 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-21 11:40 - 2016-02-10 20:55 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-21 11:40 - 2016-02-10 20:54 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-21 11:40 - 2016-02-10 20:54 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-21 11:40 - 2016-02-10 20:54 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-03-21 11:40 - 2016-02-10 20:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-21 11:40 - 2016-02-10 20:53 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-21 11:40 - 2016-02-10 20:52 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-21 11:40 - 2016-02-10 20:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-21 11:40 - 2016-02-10 20:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-21 11:40 - 2016-02-10 20:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-21 11:40 - 2016-02-10 20:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-21 11:40 - 2016-02-10 20:51 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-21 11:40 - 2016-02-10 20:51 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-21 11:40 - 2016-02-10 20:51 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-21 11:40 - 2016-02-10 20:49 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-21 11:40 - 2016-02-10 20:49 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-21 11:40 - 2016-02-10 20:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:36 - 03999168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-21 11:40 - 2016-02-10 20:36 - 03943360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-21 11:40 - 2016-02-10 20:32 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-21 11:40 - 2016-02-10 20:30 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-21 11:40 - 2016-02-10 20:30 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-21 11:40 - 2016-02-10 20:30 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-21 11:40 - 2016-02-10 20:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-21 11:40 - 2016-02-10 20:30 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-21 11:40 - 2016-02-10 20:29 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-21 11:40 - 2016-02-10 20:29 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-21 11:40 - 2016-02-10 20:29 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-21 11:40 - 2016-02-10 20:28 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-21 11:40 - 2016-02-10 20:28 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-03-21 11:40 - 2016-02-10 20:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-21 11:40 - 2016-02-10 20:26 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-21 11:40 - 2016-02-10 20:26 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-21 11:40 - 2016-02-10 20:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-21 11:40 - 2016-02-10 20:26 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-21 11:40 - 2016-02-10 20:25 - 00553984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 20:24 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 19:55 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-03-21 11:40 - 2016-02-10 19:55 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-03-21 11:40 - 2016-02-10 19:55 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-03-21 11:40 - 2016-02-10 19:53 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-21 11:40 - 2016-02-10 19:47 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-21 11:40 - 2016-02-10 19:45 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-21 11:40 - 2016-02-10 19:40 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-21 11:40 - 2016-02-10 19:39 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-21 11:40 - 2016-02-10 19:39 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-21 11:40 - 2016-02-10 19:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-21 11:40 - 2016-02-10 19:38 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-21 11:40 - 2016-02-10 19:37 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-21 11:40 - 2016-02-10 19:30 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-21 11:40 - 2016-02-10 19:30 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-21 11:40 - 2016-02-10 19:30 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-21 11:40 - 2016-02-10 19:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-21 11:40 - 2016-02-10 19:28 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-21 11:40 - 2016-02-10 19:28 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 19:28 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 19:28 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-21 11:40 - 2016-02-10 19:28 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-21 11:40 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-03-21 11:40 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-03-21 11:40 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-03-21 11:40 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-03-21 11:40 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-03-21 11:40 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-03-21 11:40 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-03-21 11:40 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-03-21 11:40 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-03-21 11:40 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-03-21 11:40 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-03-21 11:40 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-03-21 11:40 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-03-21 11:40 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-03-21 11:40 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-03-21 11:40 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-03-21 11:40 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-03-21 11:40 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-03-21 11:40 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-03-21 11:40 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-03-21 11:40 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-03-21 11:40 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-03-21 11:40 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-03-21 11:40 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-03-21 11:40 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-03-21 11:40 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-03-21 11:40 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-03-21 11:40 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-03-21 11:40 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-03-21 11:40 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-03-21 11:40 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-03-21 11:40 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-03-21 11:40 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-03-21 11:40 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-03-21 11:40 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-03-21 11:40 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-03-21 11:40 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-03-21 11:40 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-03-21 11:40 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-03-21 11:40 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-03-21 11:40 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-03-21 11:40 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-03-21 11:40 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-03-21 11:40 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-03-21 11:40 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-03-21 11:40 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-03-21 11:40 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-03-21 11:40 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-03-21 11:40 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-03-21 11:40 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-03-21 11:40 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-03-21 11:40 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-03-21 11:40 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-03-21 11:40 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-03-21 11:40 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-03-21 11:40 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-03-21 11:40 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-03-21 11:40 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-03-21 11:40 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-03-21 11:40 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-03-21 11:40 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-03-21 11:40 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-03-21 11:40 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-03-21 11:40 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-03-21 11:40 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-03-21 11:40 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-03-21 11:40 - 2016-02-06 01:06 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-21 11:40 - 2016-02-06 01:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-21 11:40 - 2016-02-06 01:02 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-21 11:40 - 2016-02-06 01:01 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-21 11:40 - 2016-02-06 00:39 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-21 11:40 - 2016-02-06 00:37 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-21 11:40 - 2016-02-06 00:37 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-21 11:40 - 2016-02-06 00:00 - 03214848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-21 11:40 - 2016-02-05 23:57 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-21 11:40 - 2016-02-05 23:41 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-21 11:40 - 2016-02-05 23:41 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-21 11:40 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-21 11:40 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-03-21 11:40 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-21 11:40 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-21 11:40 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-21 11:40 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-21 11:40 - 2016-01-07 21:12 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-03-21 11:40 - 2016-01-07 21:05 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-03-21 11:40 - 2016-01-07 20:59 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2016-03-21 11:40 - 2016-01-07 20:50 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2016-03-21 11:40 - 2016-01-07 19:49 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-03-21 11:40 - 2016-01-06 21:02 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-03-21 11:40 - 2016-01-06 21:02 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-03-21 11:40 - 2016-01-06 20:41 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-03-21 11:40 - 2015-12-20 20:50 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-03-21 11:40 - 2015-12-20 20:50 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2016-03-21 11:40 - 2015-12-20 16:08 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-03-21 11:40 - 2015-11-14 01:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2016-03-21 11:40 - 2015-11-14 01:09 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2016-03-21 11:40 - 2015-11-14 01:08 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2016-03-21 11:40 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll
2016-03-21 11:40 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll
2016-03-21 11:40 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fixmapi.exe
2016-03-21 11:40 - 2015-11-11 20:53 - 01735680 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-03-21 11:40 - 2015-11-11 20:53 - 00525312 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-03-21 11:40 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-03-21 11:40 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-03-21 11:40 - 2015-11-10 20:59 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-03-21 11:40 - 2015-11-10 20:55 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-03-21 11:40 - 2015-11-10 20:55 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-03-21 11:40 - 2015-11-10 20:39 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2016-03-21 11:40 - 2015-11-10 20:35 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-03-21 11:40 - 2015-11-05 21:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-03-21 11:40 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2016-03-21 11:40 - 2015-11-05 11:53 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-03-21 11:40 - 2015-11-03 21:07 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2016-03-21 11:40 - 2015-11-03 20:54 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2016-03-21 11:39 - 2016-02-09 21:06 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-21 11:39 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-21 11:39 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-21 11:39 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-21 11:39 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-21 11:39 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-21 11:39 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-21 11:39 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-21 11:39 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-21 11:39 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-21 11:39 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-21 11:39 - 2016-02-03 20:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-21 11:39 - 2016-01-22 08:18 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-03-21 11:39 - 2016-01-22 08:18 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-03-21 11:39 - 2016-01-22 08:17 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-03-21 11:39 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-03-21 11:39 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-03-21 11:39 - 2016-01-22 08:02 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-03-21 11:39 - 2016-01-22 08:02 - 00114176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-03-21 11:39 - 2016-01-17 02:31 - 02084864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-03-21 11:39 - 2016-01-17 02:15 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-03-21 11:39 - 2015-12-11 20:57 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-21 11:39 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2016-03-21 11:39 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-03-21 11:39 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-03-21 11:39 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-03-21 11:39 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-03-21 11:39 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll
2016-03-21 11:39 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-03-21 11:39 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-03-21 11:39 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-03-21 11:39 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-03-21 11:39 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-03-21 11:39 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 01575424 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 01573888 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 01393152 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 01307136 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 01153024 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 01026048 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00624640 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00224768 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-03-21 11:39 - 2015-12-08 21:07 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-03-21 11:39 - 2015-12-08 21:07 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-03-21 11:39 - 2015-12-08 21:06 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-03-21 11:39 - 2015-12-08 20:59 - 01955328 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-03-21 11:39 - 2015-12-08 20:59 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-03-21 11:39 - 2015-12-08 20:59 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-03-21 11:39 - 2015-12-08 20:58 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-03-21 11:39 - 2015-12-08 20:58 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-03-21 11:39 - 2015-12-08 20:58 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-03-21 11:39 - 2015-12-08 20:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-03-21 11:39 - 2015-12-08 20:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-03-21 11:39 - 2015-12-08 20:54 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-03-21 11:39 - 2015-12-08 20:32 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-03-21 11:39 - 2015-12-08 20:32 - 01568768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-03-21 11:39 - 2015-12-08 20:32 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-03-21 11:39 - 2015-12-08 20:32 - 00358400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-03-21 11:39 - 2015-12-08 20:32 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-03-21 11:39 - 2015-12-08 20:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2016-03-21 11:39 - 2015-12-08 20:31 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-03-21 11:39 - 2015-12-08 20:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2016-03-21 11:39 - 2015-12-08 20:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-03-21 11:39 - 2015-12-08 20:11 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-03-21 11:39 - 2015-11-16 22:17 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-03-21 11:35 - 2015-12-08 20:58 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-03-21 11:35 - 2015-12-08 20:31 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-03-21 11:35 - 2015-11-03 21:04 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2016-03-21 11:35 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00984448 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-eventing-provider-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-21 11:29 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-21 10:57 - 2016-03-21 14:36 - 00000000 ____D C:\Program Files (x86)\PCSX2 1.4.0
2016-03-21 10:42 - 2016-03-21 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2
2016-03-20 21:37 - 2016-03-20 21:37 - 00004096 _____ C:\Windows\SysWOW64\Drivers\nocashio.sys
2016-03-16 17:39 - 2016-03-16 18:37 - 00031333 _____ C:\Users\CLS\Desktop\Gl Morgen 17.03.2016.odt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-04-15 18:11 - 2014-08-25 13:04 - 00000588 _____ C:\Windows\SysWOW64\excltmp~.dat
2016-04-15 18:10 - 2015-12-28 00:13 - 00000000 ____D C:\Users\CLS\AppData\Local\CrashDumps
2016-04-15 18:08 - 2014-08-25 13:04 - 00000269 _____ C:\NET.INI
2016-04-15 18:04 - 2013-12-16 17:12 - 00000000 ____D C:\ProgramData\NVIDIA
2016-04-15 18:04 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-12 20:20 - 2015-11-25 18:46 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-12 19:38 - 2011-04-12 09:43 - 00700454 _____ C:\Windows\system32\perfh007.dat
2016-04-12 19:38 - 2011-04-12 09:43 - 00150092 _____ C:\Windows\system32\perfc007.dat
2016-04-12 19:38 - 2009-07-14 07:13 - 01624034 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-12 19:38 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-04-12 19:35 - 2009-07-14 06:45 - 00032448 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-04-12 19:35 - 2009-07-14 06:45 - 00032448 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-04-11 21:17 - 2016-02-20 15:32 - 00000000 ____D C:\Users\CLS\.litwrl
2016-04-11 21:12 - 2015-11-07 16:30 - 00000000 ____D C:\Program Files\Dolphin
2016-04-11 20:58 - 2016-03-12 19:30 - 00000000 ____D C:\Users\CLS\Documents\Assassin's Creed IV Black Flag
2016-04-11 20:58 - 2015-10-04 15:27 - 00000000 ____D C:\Users\CLS\Documents\Assassin's Creed Unity
2016-04-11 20:57 - 2015-05-13 16:22 - 00000000 ____D C:\Users\CLS\Documents\Nexus Mod Manager
2016-04-10 21:20 - 2015-07-12 13:57 - 00000000 ____D C:\Users\CLS\AppData\Roaming\TS3Client
2016-04-10 21:20 - 2015-05-02 15:26 - 00000000 ____D C:\Program Files (x86)\Steam
2016-04-10 21:20 - 2014-07-27 15:50 - 00000000 ____D C:\Windows\Minidump
2016-04-10 20:10 - 2014-05-10 15:31 - 00000000 ____D C:\temp
2016-04-10 14:25 - 2014-05-10 15:38 - 00000000 ____D C:\AdwCleaner
2016-04-10 12:58 - 2014-05-08 20:13 - 00000000 ____D C:\ProgramData\AVAST Software
2016-04-10 12:34 - 2015-10-28 23:19 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-10 11:48 - 2013-12-16 19:24 - 00000790 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-10 11:30 - 2014-05-30 21:55 - 00000000 ____D C:\Users\CLS\Desktop\Sonstiges
2016-04-10 10:55 - 2014-12-24 12:11 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-04-10 10:54 - 2015-10-31 13:11 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-04-10 10:44 - 2015-12-18 22:17 - 00000000 ____D C:\ProgramData\BlueStacksGameManager
2016-04-10 10:43 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2016-04-09 21:15 - 2015-11-06 21:39 - 00000000 ____D C:\Users\CLS\Desktop\Emulator
2016-04-09 16:17 - 2014-12-14 14:10 - 00000000 ____D C:\Windows\SysWOW64\vbox
2016-04-09 16:17 - 2014-12-14 14:10 - 00000000 ____D C:\Windows\system32\vbox
2016-04-09 14:20 - 2015-11-25 18:46 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-09 14:20 - 2013-12-16 18:02 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-09 14:20 - 2013-12-16 18:02 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-09 14:07 - 2013-12-16 17:57 - 00000000 ____D C:\Users\CLS\AppData\Roaming\vlc
2016-04-05 21:10 - 2014-07-21 14:23 - 00000000 ____D C:\Users\CLS\Documents\Euro Truck Simulator 2
2016-04-03 15:44 - 2014-07-21 14:22 - 00000000 ____D C:\Program Files (x86)\Euro Truck Simulator 2
2016-03-31 20:54 - 2014-07-23 21:19 - 00000000 ____D C:\Users\CLS\Desktop\ETS 2 Backup
2016-03-31 12:56 - 2016-02-27 22:49 - 00000000 ____D C:\Users\CLS\Documents\My Cheat Tables
2016-03-30 23:38 - 2015-11-29 10:56 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-30 23:38 - 2015-11-29 10:56 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-29 17:28 - 2014-08-25 13:04 - 00000000 ____D C:\Windows\SysWOW64\wdrv
2016-03-29 17:28 - 2014-08-25 13:04 - 00000000 ____D C:\Windows\SysWOW64\cc32
2016-03-29 17:28 - 2014-08-25 13:04 - 00000000 ____D C:\Users\CLS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kindersicherung
2016-03-29 16:45 - 2014-05-10 14:18 - 00000000 ____D C:\ProgramData\Oracle
2016-03-29 16:44 - 2014-07-23 21:04 - 00000000 ____D C:\Program Files\Java
2016-03-29 16:44 - 2014-06-02 15:27 - 00000000 ____D C:\Program Files (x86)\Java
2016-03-29 16:44 - 2014-05-10 14:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-03-29 16:43 - 2015-10-02 18:13 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-03-29 16:43 - 2015-10-02 18:02 - 00000000 ____D C:\Users\CLS\.oracle_jre_usage
2016-03-26 00:15 - 2009-07-14 07:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-25 21:45 - 2014-07-23 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-03-25 21:45 - 2013-12-16 17:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-03-25 21:31 - 2014-05-23 19:43 - 00000000 ____D C:\Users\CLS\AppData\Local\ElevatedDiagnostics
2016-03-25 00:30 - 2013-12-16 17:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-03-21 12:15 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-03-21 12:03 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-21 11:58 - 2009-07-14 06:45 - 00447808 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-21 11:55 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2016-03-21 11:45 - 2013-12-16 17:28 - 00000000 ____D C:\Windows\system32\MRT
2016-03-21 11:41 - 2013-12-16 17:28 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-03-20 23:25 - 2014-05-30 20:41 - 00000000 ____D C:\ProgramData\BlueStacksSetup
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-05-11 15:56 - 2014-05-11 15:56 - 0000026 _____ () C:\Users\CLS\AppData\Local\isoworkshop.ini
2016-03-05 15:30 - 2016-03-05 15:30 - 0029027 _____ () C:\Users\CLS\AppData\Local\recently-used.xbel
2014-07-23 20:09 - 2015-08-03 17:59 - 0007602 _____ () C:\Users\CLS\AppData\Local\Resmon.ResmonCfg
Einige Dateien in TEMP:
====================
C:\Users\CLS\AppData\Local\Temp\HD-ShortcutHandler.dll
C:\Users\CLS\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-04-09 16:53
==================== Ende von FRST.txt ============================
Vielen Dank vorab für Deine Mühen |
|
15.04.2016, 20:42
| #7 |
| /// TB-Ausbilder | Nerviges Problem - Virus pder Trojaner? Servus, es fehlt noch die Addition.txt von FRST. |
|
15.04.2016, 22:14
| #8 |
| | Nerviges Problem - Virus pder Trojaner?Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:13-04-2016
durchgeführt von CLS (2016-04-15 18:14:50)
Gestartet von C:\Users\CLS\Desktop
Windows 7 Professional Service Pack 1 (X64) (2013-12-16 14:24:06)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3296799779-413909061-1611958997-500 - Administrator - Disabled)
CLS (S-1-5-21-3296799779-413909061-1611958997-1000 - Administrator - Enabled) => C:\Users\CLS
Gast (S-1-5-21-3296799779-413909061-1611958997-501 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 19.0.0.241 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.124.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
Animated Wallpaper - Beautiful Space 3D (HKLM\...\Beautiful Space 3D_is1) (Version: 1.13 - PUSH Entertainment)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2261 - AVAST Software)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version: - Rocksteady Studios)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios)
Bully: Scholarship Edition (HKLM-x32\...\Steam App 12200) (Version: - Rockstar New England)
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.75 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
Dolphin (HKLM-x32\...\Dolphin) (Version: 4.0.2 - Dolphin Development Team)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Electronic Arts Game Updater (HKLM-x32\...\Electronic Arts Game Updater) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
FUEL (HKLM-x32\...\Steam App 12800) (Version: - Asobo Studio SARL)
Future Pinball (HKLM-x32\...\Future Pinball_is1) (Version: Version 1.9.1.20101231 - Chris Leathley)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.15.0 - Futuremark Corporation)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version: - Coffee Stain Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Hard Time (HKLM-x32\...\Hard Time) (Version: - MDickie)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.0.1083 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.100 - Intel Corporation)
Java 8 Update 77 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Kindersicherung 2015 (HKLM-x32\...\Kindersicherung_is1) (Version: - Salfeld Computer GmbH)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{4D243BA7-9AC4-46D1-90E5-EEB88974F501}) (Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{05B49229-22A2-4F88-842A-BBC2EBE1CCF6}) (Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 45.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.1 (x86 de)) (Version: 45.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1.5918 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 de)) (Version: 38.5.0 - Mozilla)
Need for Speed™ Most Wanted (HKLM-x32\...\{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}) (Version: - )
Need For Speed™ World (HKLM-x32\...\{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1) (Version: 1.0.0.1599 - Electronic Arts)
Nero 7 Essentials (HKLM-x32\...\{AAB93551-3FFE-42B2-8315-96252BBC1031}) (Version: 7.02.4861 - Nero AG)
Neverwinter (HKLM-x32\...\Steam App 109600) (Version: - Cryptic Studios)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.54.10 - Black Tree Gaming)
nGlide 1.03 (HKLM-x32\...\nGlide) (Version: 1.03 - Zeus Software)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.6 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.51 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.10.2.40 - NVIDIA Corporation)
NVIDIA Grafiktreiber 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.51 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
ON_OFF Charge 2 B13.0403.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.0403.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
ON_OFF Charge B13.0403.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.0.1 (HKLM-x32\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
Pinball FX2 (HKLM-x32\...\Steam App 226980) (Version: - Zen Studios)
PowerDVD (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.2414.0 - CyberLink Corporation)
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Rayman 2 - The Great Escape (HKLM-x32\...\1207658940_is1) (Version: 2.1.0.39 - GOG.com)
Rayman 3 (HKLM-x32\...\{15F52B39-04CB-4EDB-9A8C-496C4A5588E2}) (Version: 1.00.000 - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6849 - Realtek Semiconductor Corp.)
Risen (HKLM-x32\...\{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}) (Version: 1.00.0000 - Deep Silver)
Risen 3 - Titan Lords (HKLM-x32\...\{383CAA4A-9B72-4DE9-9B0F-780C49682780}) (Version: 1.00 - Deep Silver)
Ritter Rost - Die Eiserne Burg (HKLM-x32\...\Rost1) (Version: - )
SafeZone Stable 1.48.2066.98 (x32 Version: 1.48.2066.98 - Avast Software) Hidden
SHIELD Streaming (Version: 5.1.0270 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
SpaceEngine Version 0.9.7.2 (HKLM-x32\...\{E65FD500-9218-44EC-9586-D39FAB4DFDAF}_is1) (Version: 0.9.7.2 - SpaceEngine)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
Trojan Remover 6.9.3 (HKLM-x32\...\Trojan Remover_is1) (Version: 6.9.3 - Simply Super Software)
Visual Pinball VPInstaller 1.0.3 (HKLM-x32\...\Visual Pinball) (Version: VPInstaller 1.0.3 - VPForums.org)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {132BC5F2-BC83-47F5-B11B-6CA8273D036A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {19D6F00E-A91F-4B9F-AB1C-E1CD444761E9} - System32\Tasks\SafeZone scheduled Autoupdate 1460285946 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-03-30] (Avast Software)
Task: {2F50AB48-B2AB-426B-BD6C-2CB24FA0E0D0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-04-10] (AVAST Software)
Task: {30C29ACF-D2DB-4518-B6D4-00C0E67E4D0D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-29] (Google Inc.)
Task: {5F0F640E-37FE-40E3-A6BE-D6CBD32F1740} - System32\Tasks\{4C74178A-3333-4FB5-AA90-896AAF0A1F69} => pcalua.exe -a E:\DirectX\dxsetup.exe -d E:\DirectX
Task: {68760100-ACE1-4F0A-918A-404D23B6CE5D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09] (Adobe Systems Incorporated)
Task: {B151D655-E2DC-440C-AC5D-E59081792290} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-04] (AVAST Software)
Task: {BBBFB393-BE9B-43E2-B7D6-132B8D2DABC9} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-5 -> Keine Datei <==== ACHTUNG
Task: {D6798404-E561-4470-ACE7-EF0877289F40} - \a7982934-0630-49b5-bdb1-d23d83f53ffd-1 -> Keine Datei <==== ACHTUNG
Task: {F1235183-AD73-43C2-A4AE-A42E5EED9550} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-11-29] (Google Inc.)
Task: {F3A44F70-31C8-4E76-955E-0573D9878F5D} - \621fa3bd-d121-43bf-b9d9-362ccc506d29-5 -> Keine Datei <==== ACHTUNG
Task: {FCC17280-72D5-4E49-8FC0-150B999AEB02} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-04-15 22:13 - 2015-04-15 22:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2013-12-16 16:32 - 2013-03-19 15:25 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-02-12 23:13 - 2016-02-12 23:13 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2014-07-23 22:05 - 2016-02-17 09:01 - 00717184 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2014-07-23 22:05 - 2016-02-17 09:02 - 00862592 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2016-03-30 23:38 - 2016-03-27 06:55 - 02140824 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libglesv2.dll
2016-03-30 23:38 - 2016-03-27 06:55 - 00097944 _____ () C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.110\libegl.dll
2016-04-10 12:58 - 2016-04-10 12:58 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-04-10 12:58 - 2016-04-10 12:58 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-04-10 12:58 - 2016-04-10 12:58 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ksupmgr => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-3296799779-413909061-1611958997-1000\...\sony.com -> sony.com
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3296799779-413909061-1611958997-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\CLS\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: NBService => 3
MSCONFIG\Services: NMIndexingService => 3
MSCONFIG\Services: RichVideo => 2
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: amd_dc_opt => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe"
MSCONFIG\startupreg: Nvtmru => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: RemoteControl => "C:\Program Files (x86)\CyberLink\PowerDVD\PDVDServ.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{75840D44-6186-417D-BFB5-9A392550C249}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B2F60AD2-400F-410C-A2EC-12D113408861}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [TCP Query User{FE02132E-F53E-4E3B-B0C8-B4852447931A}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [UDP Query User{D7828AC0-FBBD-46CD-9608-51A4B01A0F9A}C:\programdata\electronic arts\need for speed world\data\nfsw.exe] => (Allow) C:\programdata\electronic arts\need for speed world\data\nfsw.exe
FirewallRules: [{3F3C9F7A-E84A-4943-8301-12F03187A41C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5C7434E1-9370-485A-8638-38A39ADC3304}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B3F3599E-9267-4D52-8CA0-06102B1DB10E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{67B9910C-1C52-4156-94C3-B0024EB21698}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{02194EEC-B681-4012-BE1E-9D92636326D9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4C70E359-D6E9-4F39-8A5C-104CFD2594B3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5CCDC3E6-1334-45E9-A27D-34CEF7B2DE8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{40924CE7-9B70-4358-8DCA-857BD94C66ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{862B3B05-902D-49E2-AF7C-123C15BF69B9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bully Scholarship Edition\Bully.exe
FirewallRules: [{9888FA0E-F3F9-4FA0-B586-CB8034B8C076}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Bully Scholarship Edition\Bully.exe
FirewallRules: [{57F9C32A-7314-47A8-A63A-CA5D79987FA2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9AA69331-5643-499A-95E4-41AF9A0F5834}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6429A5FB-19C8-409E-8BF6-86FF2A7C84E0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{21951844-FE92-4671-93EC-BE4F8F007B17}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{4182CD04-4FC3-4FE5-88A9-54ADAFBBA1D8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A0EB7D23-551C-4ABA-A9FA-52FD1878F67D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A9B7A85D-DF80-4FF5-816D-411DDF199ECC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{327CE1FD-8777-430E-A2AB-78F367239530}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8D074369-10C9-487A-8B87-648DBCA9F80C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0F7ADF9F-7266-400E-927C-2871622BD3D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{1C200C7C-23A3-4632-A664-D312DB7FEFCB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Thief\Binaries\Win64\Shipping-ThiefGame.exe
FirewallRules: [{E1FAF2A8-A375-4443-9AFB-96DC554BB838}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pinball FX2\Pinball FX2.exe
FirewallRules: [{C2043842-7AFC-4904-B94C-22EAE136D730}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pinball FX2\Pinball FX2.exe
FirewallRules: [TCP Query User{BF547923-5517-4009-98AD-AC145C352CC9}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{DA81248A-320F-49EF-A8E7-E0412D8E6076}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{4E681694-FBE9-41B4-951F-BDC23658DED9}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe
FirewallRules: [{05C0553C-7030-4887-B3F8-17D5E8173271}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed Unity\ACU.exe
FirewallRules: [{A9FD6DD0-FF08-46B4-BD7F-1E5B7301A716}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FUEL\GameSetup.exe
FirewallRules: [{31C2B6E7-DB63-4CD3-9535-BD3DA6FFDE8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FUEL\GameSetup.exe
FirewallRules: [{46D201C3-7C5D-417A-BB2C-F2F82577585A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{17E0CA29-4751-42ED-9EE2-789897AD65BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B8BE5E08-E803-4305-9475-A3C550844924}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [{BECC8FCF-A821-487B-938A-DBE9AABB5045}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cryptic Studios\Neverwinter.exe
FirewallRules: [TCP Query User{CFDC6903-C660-419E-92CA-A367C7FD76C0}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [UDP Query User{FD34115F-EF28-4B39-AB6E-5E89404A5BF9}C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\cryptic studios\neverwinter\live\gameclient.exe
FirewallRules: [{8BB158B9-EAEA-4EFE-9AA9-612DB63AB091}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{F1AB6BE2-36CD-4ED7-8FAD-9839941CF1C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{38F8A79F-4B02-4608-920E-DDCA7437460E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{58A5DAEB-14F8-4BAD-89B9-0E2BF86C3F2B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe
FirewallRules: [{6B161ED9-20CF-499A-9B67-EED76736E436}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{138D8B1F-F61B-43D5-ABA5-B69F53A6BAEE}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{EA7F3EF8-1F4B-4EDF-A905-27B8DBFDA4F5}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{F9275B3C-E081-467F-AAF1-4A94DAF39E4B}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{586AB0A4-0C56-46C2-A2D7-42EDC1BAFF51}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{B4099A33-D19F-4165-ADB7-CC4F166F36E8}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{1BBDCA76-94E0-4972-B465-28A287B799FD}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{83335A0E-F8B8-47AE-801B-963819CF55D0}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{78E48D32-0EE7-4374-8CC1-3A768DD17A5C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5A7C3F14-ED5A-401B-B1F5-2CDB9226A25D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{391AE739-C4BD-485F-847B-AF7F775A353A}] => (Allow) D:\Games\Assassin´s Creed IV\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{7C4537F3-5D82-4069-ABFA-B48B53B9EDB3}] => (Allow) D:\Games\Assassin´s Creed IV\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{A6C02DA5-1399-4A8B-98A6-827587379A98}] => (Allow) D:\Games\Assassin´s Creed IV\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{E3DC1046-ECC3-4321-9684-E04D048473C8}] => (Allow) D:\Games\Assassin´s Creed IV\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{C38BE41E-DE5A-498F-944C-5296AEB33AC9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{4E39C26B-D265-42F1-8F35-F71E8A2AD31D}C:\program files (x86)\euro truck simulator 2\online_updater.updated] => (Allow) C:\program files (x86)\euro truck simulator 2\online_updater.updated
FirewallRules: [UDP Query User{4DE768FE-907F-4056-8C95-71D3837DE2B1}C:\program files (x86)\euro truck simulator 2\online_updater.updated] => (Allow) C:\program files (x86)\euro truck simulator 2\online_updater.updated
FirewallRules: [{4950C884-272C-4474-A9B8-65B4B232274E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
FirewallRules: [{C0DDE04B-CB17-49BC-9995-7585AB4DD6DA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
FirewallRules: [{B8532EAC-D677-47FD-A655-9845ED7727A7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
FirewallRules: [{D90B8818-D23E-4E0A-BEC4-54EFDF9D291D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstview.exe
FirewallRules: [{2EDD6D9F-AECA-4AE5-8AF5-F699AF63E0DA}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe
FirewallRules: [{05972D7F-2649-4CC8-92E0-1BB947C0852E}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe
FirewallRules: [{BDE4EBED-3D8E-4919-BBFC-54F4973F72C3}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe
FirewallRules: [{B440E90B-6651-4EBB-8E57-44C127B29088}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/15/2016 06:14:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x1028
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:14:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x718
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:14:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0xbc
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:14:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x15b8
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:13:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x13c0
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:13:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x1028
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:13:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0xe48
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:12:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x10b4
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:12:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000234a6
ID des fehlerhaften Prozesses: 0x1738
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Error: (04/15/2016 06:12:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Name des fehlerhaften Moduls: ccsync.exe, Version: 6.680.0.0, Zeitstempel: 0x5614bc94
Ausnahmecode: 0xc0000005
Fehleroffset: 0x003458e6
ID des fehlerhaften Prozesses: 0x1364
Startzeit der fehlerhaften Anwendung: 0xccsync.exe0
Pfad der fehlerhaften Anwendung: ccsync.exe1
Pfad des fehlerhaften Moduls: ccsync.exe2
Berichtskennung: ccsync.exe3
Systemfehler:
=============
Error: (04/15/2016 06:07:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (04/15/2016 06:05:43 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger
Error: (04/15/2016 06:05:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst NVIDIA Streamer Service erreicht.
Error: (04/12/2016 07:45:12 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
Error: (04/12/2016 07:45:11 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
Error: (04/12/2016 07:45:11 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
Error: (04/12/2016 07:45:10 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
Error: (04/12/2016 07:45:10 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
Error: (04/12/2016 07:44:30 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
Error: (04/12/2016 07:44:30 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR6 gefunden.
CodeIntegrity:
===================================
Date: 2015-05-05 16:59:48.379
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-05 16:59:48.378
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-05 16:59:48.377
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-05 16:59:48.369
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-03 16:10:30.548
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-03 16:10:30.547
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-03 16:10:30.539
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-03 12:32:30.292
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-05-01 09:46:23.150
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-04-28 21:25:44.394
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\SysWOW64\wdrvtd64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 29%
Installierter physikalischer RAM: 8067.85 MB
Verfügbarer physikalischer RAM: 5669.09 MB
Summe virtueller Speicher: 16133.88 MB
Verfügbarer virtueller Speicher: 13361.78 MB
==================== Laufwerke ================================
Drive c: (System7 ) (Fixed) (Total:468.13 GB) (Free:30.77 GB) NTFS
Drive d: (Daten HDD ) (Fixed) (Total:462.53 GB) (Free:239.57 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: AE44B324)
Partition 1: (Active) - (Size=868 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=468.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=462.5 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
|
|
16.04.2016, 15:55
| #9 |
| /// TB-Ausbilder | Nerviges Problem - Virus pder Trojaner? Servus, Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop
|
|
16.04.2016, 16:12
| #10 |
| | Nerviges Problem - Virus pder Trojaner? Hallo Matthias, das TDSSKiller Logfile hatte ich im ersten Post mitaufgeführt, kommt direkt nach dem AVAST Logfile. Schau bitte nochmal nach. Viele Grüße Andreas Geändert von foxmulder (16.04.2016 um 16:34 Uhr) |
|
16.04.2016, 16:34
| #11 |
| /// TB-Ausbilder | Nerviges Problem - Virus pder Trojaner? Servus, danke, hab ich übersehen, mein Fehler.  Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers |
|
16.04.2016, 17:26
| #12 |
| | Nerviges Problem - Virus pder Trojaner? Malwarebytes schrieb am Ende des Scan "No Malware found" Somit ist der Neustart nicht durchgeführt worden, weil es ja nichts zu bereinigen gab. Hast Du einen Verdacht, dass ich tatsächlich einen Virus, Malware etc. habe? Siehe logfile: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.04.16.03
rootkit: v2016.04.09.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18282
CLS :: CLS-PC [administrator]
16.04.2016 17:59:39
mbar-log-2016-04-16 (17-59-39).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 387344
Time elapsed: 18 minute(s), 51 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
16.04.2016, 20:07
| #13 | |
| /// TB-Ausbilder | Nerviges Problem - Virus pder Trojaner?Zitat:
Schritt 1 Downloade Dir bitte AdwCleaner auf deinen Desktop.
Schritt 2 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 3 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 4
Bitte poste mit deiner nächsten Antwort
|
|
17.04.2016, 11:38
| #14 |
| | Nerviges Problem - Virus pder Trojaner? Hallo Matthias, malwarebytes bekomme ich nicht installiert bzw. aktualisiert, da die Internetverbindung geblockt wird. Die war auch schon mit dem mbar-Programm der Fall. Da konnte ich das aber über einen anderen PC installieren, updaten und dann den gesamten Ordner via wetransfer auf den "Problem-PC" bringen. Dies funktioniert leider jetzt nicht mehr. Ich habe mich nun entschlossen, den PC neu aufzusetzen. Die Upgrade-Option geht leider auch nicht, da es eine Meldung gibt, ich würde ein 32 BS auf ein 64 Bit BS updaten, was ja nicht geht. Leider ist diese Windows Installations-Meldung falsch, es ist ein 64 Bit BS. Also, hier hilft nur noch die Neuinstalltion von Win 7. Ich vermute, dass Windows-Dateien beschädigt sind, denn, sobald ein Programm versucht Internet-verbndung aufzunehmen, wird das unterbunden (Ausnahme Browser). Schade, das wir nicht herausfinden konnten, ob das ein Trojaner, Malware o.ä. war. Problem ist jetzt nur, die Spielstände der Spiele wurden auf eine externe Festplatte gesichert. Bevor diese zurückgespielt werden, muss natürlich geprüft werden, ob die Dateien Viren befallen sind. Ich wäre dankbar für einen Tipp, mit welchem Tool man die externe Festplatte auf Befall prüft. Matthias, Dir vielen Dank bisher für Deine schnelle Hilfe  |
|
17.04.2016, 13:03
| #15 |
| /// TB-Ausbilder | Nerviges Problem - Virus pder Trojaner? Servus, ESET wäre gut: ESET Online Scanner
Naja, dann ist wohl eine Neuinstallation doch besser. |
|
| Themen zu Nerviges Problem - Virus pder Trojaner? |
| avast, bitdefender, blockiert, defender, fehlermeldung, firewall, folge, free, malwarebytes, modul, neu, online, problem, remover, scan, secure, server, software, system, trojaner, trojaner?, verbindung, virus, windows, windows firewall |
Linear-Darstellung
