Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Chrome flackert, wieder

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 06.05.2016, 00:58   #1
TheNoobly
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



Hallo zusammen

Mir wurde von felix gesagt ich solls in dieser Abteilung versuchen.

Letztes mal hat mir Bruningice mit diesem Problem geholfen jedoch ist das Problem kurze Zeit später wieder gekommen.
Chrome flackert auf gewissen seiten einfach rum oder die Seite bleibt einfach Weiss. Manchmal beim scrollen werde ich automatisch ganz unten gesendet.

Gruss

TheNoobly

Alt 06.05.2016, 19:46   #2
M-K-D-B
/// TB-Ausbilder
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder






Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.


Bitte beachte folgende Hinweise:
  • Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
  • Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
  • Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo. Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
  • Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
  • Bitte beachten: Download bei filepony.de: So ladet Ihr unsere Tools richtig!
  • Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort als Administrator zu starten!



Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:
So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!




Zur ersten Analyse bitte FRST und TDSS-Killer ausführen:



Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)






Schritt 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.







Bitte poste mit deiner nächsten Antwort
  • die Logdatei von TDSS-Killer,
  • die beiden neuen Logdateien von FRST.
__________________


Alt 07.05.2016, 20:39   #3
TheNoobly
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



Hallo Matthias

FRST

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:07-05-2016
durchgeführt von Osman (Administrator) auf OSMAN-PC (07-05-2016 21:32:13)
Gestartet von C:\Users\Osman\Desktop
Geladene Profile: Osman (Verfügbare Profile: Osman)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe
() C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
() C:\Program Files (x86)\Razer\Abyssus\razertra.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Abyssus\razerofa.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Osman\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\rzcefrenderprocess.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397568 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2000-01-01] (Realtek Semiconductor)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [594240 2016-01-13] (Razer Inc.)
HKLM-x32\...\Run: [KrakenLauncher] => C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe [1599808 2015-08-14] (Razer Inc)
HKLM-x32\...\Run: [Abyssus] => C:\Program Files (x86)\Razer\Abyssus\razerhid.exe [295936 2013-01-21] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-12-22] (Oracle Corporation)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2016-04-05] (LogMeIn Inc.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3077712 2016-04-30] (Valve Corporation)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [HP Photosmart 5520 series (NET)] => C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [ApowersoftScreenRecorder] => C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe /autoStart
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\Run: [GoogleChromeAutoLaunch_3ACC888A5A6098640C4BFEF07E11DB82] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [881304 2016-04-28] (Google Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk [2016-05-07]
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 5520 series (Netzwerk).lnk -> C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{5d5e4d95-d401-46ee-ba8d-3e62fda563f5}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{d4856a0e-77d9-4b49-806a-69752f023856}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f303f0ee-c7b3-4827-9113-657ab98dd75a}: [DhcpNameServer] 192.168.42.129

Internet Explorer:
==================
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-2498436991-496876813-1431611548-1000 -> {31164661-CF05-4EDA-9E6D-7D839F670C21} URL = hxxps://ch.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\jp2ssv.dll [2016-01-23] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\Osman\AppData\Roaming\Mozilla\Firefox\Profiles\v50bv2sd.default
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Keine Datei]
FF Plugin-x32: @java.com/DTPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\dtplugin\npDeployJava1.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.71.2 -> C:\Program Files (x86)\Java\jre1.8.0_71\bin\plugin2\npjp2.dll [2016-01-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-07] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.ch/
CHR StartupUrls: Default -> "hxxps://www.google.ch/"
CHR Profile: C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-07]
CHR Extension: (Google Docs) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-07]
CHR Extension: (Google Drive) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-07]
CHR Extension: (YouTube) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-07]
CHR Extension: (Adblock Plus) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-04-07]
CHR Extension: (Steam inventory helper) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmeakgjggjdlcpncigglobpjbkabhmjl [2016-04-24]
CHR Extension: (Google Tabellen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-07]
CHR Extension: (Google Docs Offline) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-08]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-07]
CHR Extension: (Google Mail) - C:\Users\Osman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-07]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1362464 2016-03-22] ()
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [243984 2016-03-24] (EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342240 2015-06-03] (Futuremark)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-03-30] (NVIDIA Corporation)
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2016-04-05] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3512928 2015-07-22] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634048 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522496 2016-03-30] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-02] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-03-20] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-03-20] ()
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-11-05] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6942480 2016-03-02] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 Abyssus; C:\Windows\system32\drivers\Abyssus.sys [23040 2013-01-09] ( )
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-05-03] (Samsung Electronics Co., Ltd.)
S3 GVTDrv64; C:\WINDOWS\GVTDrv64.sys [30528 2015-10-31] ()
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [184608 2015-07-07] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [935168 2000-01-01] (Realtek                                            )
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [50392 2015-10-26] (Razer Inc)
R2 rzpmgrk; C:\WINDOWS\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [130880 2015-12-15] (Razer, Inc.)
S3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [40640 2016-02-15] (Windows (R) Win 7 DDK provider)
R3 ScpVBus; C:\Windows\System32\drivers\ScpVBus.sys [39168 2013-05-05] (Scarlet.Crush Productions)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33960 2000-01-01] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-05-03] (Samsung Electronics Co., Ltd.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 usbrndis6; C:\Windows\System32\drivers\usb80236.sys [22528 2015-11-25] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-07 21:32 - 2016-05-07 21:32 - 00019804 _____ C:\Users\Osman\Desktop\FRST.txt
2016-05-07 21:30 - 2016-05-07 21:31 - 02379264 _____ (Farbar) C:\Users\Osman\Desktop\FRST64.exe
2016-05-07 21:26 - 2016-05-07 21:27 - 04727984 _____ (Kaspersky Lab ZAO) C:\Users\Osman\Desktop\tdsskiller.exe
2016-05-07 21:05 - 2016-05-07 21:05 - 00016148 _____ C:\WINDOWS\system32\OSMAN-PC_Osman_HistoryPrediction.bin
2016-05-06 20:18 - 2016-05-06 20:18 - 03012080 _____ (Blizzard Entertainment) C:\Users\Osman\Downloads\Battle.net-Setup.exe
2016-05-05 15:53 - 2016-05-05 15:53 - 00000000 ____D C:\Users\Osman\Documents\HpReg_Backup
2016-05-03 21:07 - 2016-05-03 21:07 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-05-02 17:00 - 2016-05-02 17:02 - 03615296 _____ C:\Users\Osman\Downloads\adwcleaner_5.115.exe
2016-04-29 23:41 - 2016-04-29 23:41 - 06723784 _____ (DSDCS) C:\Users\Osman\Downloads\InputMapper 1.5.31.0.exe
2016-04-29 23:41 - 2016-04-29 23:41 - 00002092 _____ C:\Users\Public\Desktop\InputMapper.lnk
2016-04-29 23:41 - 2016-04-29 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InputMapper
2016-04-29 23:24 - 2016-04-29 23:25 - 00000000 ____D C:\Users\Osman\AppData\Roaming\DarkSoulsIII
2016-04-29 15:43 - 2016-04-29 15:43 - 00710695 _____ C:\Users\Osman\Downloads\Core_Temp_1.0_RC8.zip
2016-04-29 14:08 - 2016-04-29 14:08 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-04-29 12:48 - 2016-04-29 12:48 - 00000222 _____ C:\Users\Osman\Desktop\Saints Row IV.url
2016-04-28 21:02 - 2016-04-28 21:02 - 00000222 _____ C:\Users\Osman\Desktop\DARK SOULS III.url
2016-04-25 23:07 - 2016-04-25 23:07 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\HuniePot
2016-04-25 23:00 - 2016-04-25 23:00 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\BitTorrent
2016-04-25 20:48 - 2016-04-25 20:48 - 00000000 ____D C:\ProgramData\.mono
2016-04-25 20:47 - 2016-04-25 20:47 - 00000000 ____D C:\Users\Osman\AppData\Roaming\.mono
2016-04-25 20:46 - 2016-04-25 20:46 - 00001645 _____ C:\Users\Osman\Desktop\Pokémon Trading Card Game Online.lnk
2016-04-25 20:46 - 2016-04-25 20:46 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Pokémon Trading Card Game Online
2016-04-25 20:46 - 2016-04-25 20:46 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pokémon Trading Card Game Online
2016-04-25 20:46 - 2016-04-25 20:46 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\Unity
2016-04-25 20:46 - 2016-04-25 20:46 - 00000000 ____D C:\Users\Osman\AppData\LocalLow\The Pok__mon Company International
2016-04-18 11:37 - 2016-03-25 09:38 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-18 11:37 - 2016-03-16 06:56 - 03467784 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-04-18 11:37 - 2016-03-16 06:45 - 00140536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2016-04-18 11:37 - 2016-03-16 06:00 - 21859840 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-18 11:36 - 2016-03-29 08:40 - 03587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-18 11:36 - 2016-03-29 08:40 - 01381376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-18 11:36 - 2016-03-25 09:25 - 12505600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-18 11:36 - 2016-03-25 09:14 - 07525376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-18 11:36 - 2016-03-25 09:13 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-18 11:36 - 2016-03-25 08:55 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-18 11:36 - 2016-03-25 08:54 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-18 11:36 - 2016-03-16 06:56 - 01022664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-18 11:36 - 2016-03-16 06:56 - 00861512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-18 11:36 - 2016-03-16 06:55 - 02495768 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-18 11:36 - 2016-03-16 06:55 - 01951872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-18 11:36 - 2016-03-16 06:55 - 01299032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-18 11:36 - 2016-03-16 06:55 - 01127024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-18 11:36 - 2016-03-16 06:55 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-18 11:36 - 2016-03-16 06:54 - 00595016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-18 11:36 - 2016-03-16 06:47 - 22610328 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-04-18 11:36 - 2016-03-16 06:47 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-18 11:36 - 2016-03-16 06:47 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-04-18 11:36 - 2016-03-16 06:46 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-04-18 11:36 - 2016-03-16 06:41 - 00607416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-18 11:36 - 2016-03-16 06:41 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2016-04-18 11:36 - 2016-03-16 06:39 - 00983904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-18 11:36 - 2016-03-16 06:37 - 01010016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-18 11:36 - 2016-03-16 06:21 - 01767000 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-18 11:36 - 2016-03-16 06:21 - 01531888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-18 11:36 - 2016-03-16 06:11 - 21088728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-04-18 11:36 - 2016-03-16 06:11 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-18 11:36 - 2016-03-16 06:11 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-04-18 11:36 - 2016-03-16 06:08 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-04-18 11:36 - 2016-03-16 06:06 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2016-04-18 11:36 - 2016-03-16 06:05 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-18 11:36 - 2016-03-16 06:03 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-18 11:36 - 2016-03-16 06:03 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-18 11:36 - 2016-03-16 05:56 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2016-04-18 11:36 - 2016-03-16 05:56 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2016-04-18 11:36 - 2016-03-16 05:55 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-04-18 11:36 - 2016-03-16 05:55 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2016-04-18 11:36 - 2016-03-16 05:55 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2016-04-18 11:36 - 2016-03-16 05:55 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExtrasXmlParser.dll
2016-04-18 11:36 - 2016-03-16 05:51 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-04-18 11:36 - 2016-03-16 05:51 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-04-18 11:36 - 2016-03-16 05:49 - 01416192 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-18 11:36 - 2016-03-16 05:49 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-18 11:36 - 2016-03-16 05:47 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-04-18 11:36 - 2016-03-16 05:47 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-04-18 11:36 - 2016-03-16 05:47 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-04-18 11:36 - 2016-03-16 05:46 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2016-04-18 11:36 - 2016-03-16 05:44 - 01016832 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-18 11:36 - 2016-03-16 05:43 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-04-18 11:36 - 2016-03-16 05:43 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-18 11:36 - 2016-03-16 05:42 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-18 11:36 - 2016-03-16 05:42 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-18 11:36 - 2016-03-16 05:42 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-04-18 11:36 - 2016-03-16 05:41 - 00950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-04-18 11:36 - 2016-03-16 05:40 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-18 11:36 - 2016-03-16 05:39 - 03363328 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-18 11:36 - 2016-03-16 05:39 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-04-18 11:36 - 2016-03-16 05:39 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-18 11:36 - 2016-03-16 05:38 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-04-18 11:36 - 2016-03-16 05:37 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-04-18 11:36 - 2016-03-16 05:37 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-04-18 11:36 - 2016-03-16 05:37 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-04-18 11:36 - 2016-03-16 05:37 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-04-18 11:36 - 2016-03-16 05:37 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2016-04-18 11:36 - 2016-03-16 05:37 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cemapi.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VCardParser.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\POSyncServices.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenanceClient.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataPlatformHelperUtil.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTypeHelperUtil.dll
2016-04-18 11:36 - 2016-03-16 05:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataLanguageUtil.dll
2016-04-18 11:36 - 2016-03-16 05:35 - 01794560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-18 11:36 - 2016-03-16 05:35 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2016-04-18 11:36 - 2016-03-16 05:35 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2016-04-18 11:36 - 2016-03-16 05:35 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2016-04-18 11:36 - 2016-03-16 05:35 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2016-04-18 11:36 - 2016-03-16 05:34 - 01871872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-18 11:36 - 2016-03-16 05:33 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-18 11:36 - 2016-03-16 05:32 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-18 11:36 - 2016-03-16 05:31 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2016-04-18 11:36 - 2016-03-16 05:31 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2016-04-18 11:36 - 2016-03-16 05:31 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExtrasXmlParser.dll
2016-04-18 11:36 - 2016-03-16 05:28 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwbase.dll
2016-04-18 11:36 - 2016-03-16 05:27 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-18 11:36 - 2016-03-16 05:24 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-04-18 11:36 - 2016-03-16 05:24 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll
2016-04-18 11:36 - 2016-03-16 05:24 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-04-18 11:36 - 2016-03-16 05:21 - 18796544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-18 11:36 - 2016-03-16 05:20 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-18 11:36 - 2016-03-16 05:18 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-18 11:36 - 2016-03-16 05:18 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2016-04-18 11:36 - 2016-03-16 05:17 - 03680256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-18 11:36 - 2016-03-16 05:17 - 00842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-04-18 11:36 - 2016-03-16 05:17 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vaultcli.dll
2016-04-18 11:36 - 2016-03-16 05:17 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2016-04-18 11:36 - 2016-03-16 05:17 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxSip.dll
2016-04-18 11:36 - 2016-03-16 05:17 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-18 11:36 - 2016-03-16 05:16 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2016-04-18 11:36 - 2016-03-16 05:14 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2016-04-18 11:36 - 2016-03-16 05:14 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2016-04-18 11:36 - 2016-03-16 05:14 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cemapi.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VCardParser.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\POSyncServices.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataPlatformHelperUtil.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PimIndexMaintenanceClient.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTypeHelperUtil.dll
2016-04-18 11:36 - 2016-03-16 05:13 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataLanguageUtil.dll
2016-04-18 11:36 - 2016-03-16 05:12 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2016-04-18 11:36 - 2016-03-16 05:11 - 01594368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-18 11:36 - 2016-03-16 05:10 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-08 00:27 - 2016-04-08 00:28 - 194978869 _____ C:\Users\Osman\Downloads\cw_part03.mp4
2016-04-08 00:25 - 2016-04-08 00:27 - 196282714 _____ C:\Users\Osman\Downloads\cw_part02.mp4
2016-04-08 00:25 - 2016-04-08 00:27 - 194691965 _____ C:\Users\Osman\Downloads\cw_part01.mp4
2016-04-07 22:57 - 2016-04-07 22:57 - 00000000 ____D C:\Users\Osman\AppData\Local\Activision
2016-04-07 17:06 - 2016-05-03 14:11 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-07 17:06 - 2016-05-03 14:11 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-07 17:05 - 2016-05-07 21:10 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-07 17:05 - 2016-05-07 17:10 - 00001122 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-07 17:05 - 2016-04-07 17:05 - 00004184 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-04-07 17:05 - 2016-04-07 17:05 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-04-07 16:59 - 2016-04-07 16:59 - 00000000 ____D C:\Users\Osman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-07 21:32 - 2016-03-31 19:46 - 00000000 ____D C:\FRST
2016-05-07 21:29 - 2015-11-12 23:22 - 00000000 ____D C:\Program Files (x86)\HP
2016-05-07 21:28 - 2015-11-12 23:13 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-05-07 21:08 - 2015-11-09 17:23 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2B17EC41-99A7-4254-9F30-A129F78769CF}
2016-05-07 18:08 - 2015-11-08 20:56 - 00000000 ____D C:\Users\Osman\AppData\Local\ClassicShell
2016-05-07 18:07 - 2015-11-08 20:58 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TS3Client
2016-05-07 15:34 - 2015-11-08 21:01 - 00000000 ____D C:\Program Files (x86)\Steam
2016-05-07 13:48 - 2015-07-31 00:42 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-07 13:48 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-07 13:45 - 2016-01-26 21:21 - 00000000 ____D C:\Users\Osman\AppData\Local\LogMeIn Hamachi
2016-05-07 03:54 - 2015-10-31 02:56 - 00000000 ____D C:\Users\Osman
2016-05-07 02:16 - 2015-10-31 03:01 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-07 02:16 - 2015-09-10 07:10 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2016-05-07 02:16 - 2015-09-10 07:10 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2016-05-07 02:16 - 2015-07-31 00:40 - 00000000 ____D C:\WINDOWS\INF
2016-05-07 02:10 - 2015-10-31 02:55 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-07 02:10 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-05 15:52 - 2015-11-12 23:22 - 00000000 ____D C:\ProgramData\HP
2016-05-03 23:06 - 2015-11-16 18:50 - 00000000 ____D C:\Users\Osman\AppData\Local\CrashDumps
2016-05-03 21:07 - 2015-11-08 21:44 - 00221824 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2016-05-03 21:07 - 2015-11-08 21:43 - 00129152 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2016-05-03 13:14 - 2015-10-31 03:06 - 00000000 ____D C:\Users\Osman\AppData\Local\Packages
2016-05-02 22:26 - 2015-07-10 11:05 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2016-05-02 17:03 - 2016-03-06 19:22 - 00000000 ____D C:\AdwCleaner
2016-05-01 13:28 - 2016-03-16 19:20 - 00000000 ____D C:\Users\Osman\AppData\Local\osu!
2016-04-29 23:59 - 2015-11-16 18:55 - 00000102 _____ C:\Users\Osman\Desktop\ConnectDS4.bat
2016-04-29 14:08 - 2015-12-12 19:41 - 00000000 ____D C:\ProgramData\Origin
2016-04-26 17:11 - 2015-11-08 20:57 - 00000000 ____D C:\Users\Osman\AppData\Local\TeamSpeak 3 Client
2016-04-26 11:04 - 2015-11-09 16:51 - 00000000 ____D C:\Users\Osman\Desktop\Fixed
2016-04-26 03:22 - 2015-11-10 19:34 - 00000000 ____D C:\Users\Osman\AppData\Roaming\BitTorrent
2016-04-25 19:10 - 2016-03-31 20:55 - 00000000 ____D C:\Users\Osman\AppData\Roaming\TeamViewer
2016-04-24 21:11 - 2015-12-17 22:09 - 00000000 ____D C:\Users\Osman\Desktop\Kasti
2016-04-24 21:11 - 2015-11-16 16:08 - 00000000 ____D C:\Games
2016-04-24 18:12 - 2015-11-12 20:24 - 00313080 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-04-24 14:28 - 2015-09-10 07:44 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-04-24 14:27 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-04-22 09:57 - 2015-10-31 02:45 - 00453288 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-18 12:14 - 2015-11-08 21:11 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-18 12:12 - 2015-11-08 21:11 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-18 12:12 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-07 17:06 - 2015-10-31 04:16 - 00000000 ____D C:\Users\Osman\AppData\Local\Google
2016-04-07 17:06 - 2015-10-31 04:16 - 00000000 ____D C:\Program Files (x86)\Google
2016-04-07 17:05 - 2015-11-15 23:28 - 00000000 ____D C:\Users\Osman\AppData\Local\Deployment
2016-04-07 16:59 - 2016-04-04 17:25 - 00000000 ____D C:\Program Files (x86)\VS Revo Group

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-04-04 23:11 - 2016-04-04 23:11 - 0000046 _____ () C:\Users\Osman\AppData\Roaming\Camdata.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 0000408 _____ () C:\Users\Osman\AppData\Roaming\CamLayout.ini
2016-04-04 23:11 - 2016-04-04 23:11 - 0000408 _____ () C:\Users\Osman\AppData\Roaming\CamShapes.ini
2016-04-04 23:10 - 2016-04-04 23:11 - 0004536 _____ () C:\Users\Osman\AppData\Roaming\CamStudio.cfg
2016-04-04 23:10 - 2016-04-04 23:10 - 0000096 _____ () C:\Users\Osman\AppData\Roaming\version2.xml
2015-11-19 15:44 - 2015-11-19 19:16 - 0353118 _____ () C:\Users\Osman\AppData\Local\SquareClock.Production_HBMV1Icon.ico
2015-11-12 23:15 - 2015-11-12 23:15 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-10-31 03:21 - 2015-10-31 03:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
C:\Users\Osman\AppData\Local\Temp\ACLMInstaller.exe
C:\Users\Osman\AppData\Local\Temp\ApowersoftAutoUpdater.exe
C:\Users\Osman\AppData\Local\Temp\bdcam64_0.dll
C:\Users\Osman\AppData\Local\Temp\bdfilters.dll
C:\Users\Osman\AppData\Local\Temp\libeay32.dll
C:\Users\Osman\AppData\Local\Temp\msvcr120.dll
C:\Users\Osman\AppData\Local\Temp\pin2taskbar.exe
C:\Users\Osman\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-04-18 12:08

==================== Ende von FRST.txt ============================
         
Addition

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:07-05-2016
durchgeführt von Osman (2016-05-07 21:32:38)
Gestartet von C:\Users\Osman\Desktop
Windows 10 Pro (X64) (2015-10-31 01:06:00)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2498436991-496876813-1431611548-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2498436991-496876813-1431611548-503 - Limited - Disabled)
Gast (S-1-5-21-2498436991-496876813-1431611548-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2498436991-496876813-1431611548-1002 - Limited - Enabled)
Osman (S-1-5-21-2498436991-496876813-1431611548-1000 - Administrator - Enabled) => C:\Users\Osman

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
3DMark (Version: 1.5.915.0 - Futuremark) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
BitTorrent (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\BitTorrent) (Version: 7.9.5.41866 - BitTorrent Inc.)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
DARK SOULS III (HKLM\...\Steam App 374320) (Version:  - FromSoftware, Inc.)
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
HP Photosmart 5520 series - Grundlegende Software für das Gerät (HKLM\...\{4F396B08-301D-4E53-A372-95A7E93ABD04}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
InputMapper (HKLM-x32\...\{1A44056A-C7D8-4561-BC43-A0AA7D7AAA64}) (Version: 1.5.31.0 - DSDCS)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.422 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.422 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Word 2010 (HKLM\...\Office14.WORD) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA Grafiktreiber 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.11.1.6605 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{d5bab322-3b11-4379-a6a1-2beb86643aa3}) (Version: latest - ppy Pty Ltd)
paint.net (HKLM\...\{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}) (Version: 4.0.6 - dotPDN LLC)
Pokemon Showdown (HKLM-x32\...\Pokemon Showdown) (Version:  - "Pokemon Showdown")
Pokémon Trading Card Game Online (HKLM-x32\...\{E56D3759-1795-4813-8FC7-CA82C2FECCD8}) (Version: 2.35.0 - The Pokémon Company International)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Razer Abyssus (HKLM-x32\...\{CBD6B23A-B54F-476A-9527-C262F469CACF}) (Version: 2.02 -  Razer USA Ltd.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.28549 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
Saints Row IV (HKLM\...\Steam App 206420) (Version:  - Deep Silver Volition)
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
The Culling (HKLM\...\Steam App 437220) (Version:  - Xaviant)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.5.1 (HKLM\...\VulkanRT1.0.5.1) (Version: 1.0.5.1 - LunarG, Inc.)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Worms Armageddon (HKLM-x32\...\Steam App 217200) (Version:  - Team17 Digital Ltd)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2498436991-496876813-1431611548-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Osman\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {07820D8F-71E4-40C8-9051-9CF558899E6B} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {08F82527-165D-440F-BEB9-47CA891F0940} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {1CD72DDF-8022-4042-9013-C2A7BEEC289A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {20084A7E-DF4C-4034-A971-F2BBE40AF33C} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {21257B26-32B7-421C-9D2F-FFC8C5E0C24A} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {24CF15C0-418B-46D6-81EF-BF871610229E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07] (Google Inc.)
Task: {458CB899-72AF-4983-A9F7-0CE7282757BC} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {4820EF9A-F5EC-4908-AEC5-80239B2DCC01} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {48651DA7-436C-4A29-933B-28CDF8E45127} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {48F3BD53-C7FE-44B4-B581-2E6576E7AB16} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {626D807B-53DA-4A4C-AF58-BB982EADC926} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-07] (Google Inc.)
Task: {6432796B-26D6-49E4-AC1D-7251287E2545} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7009927D-0981-434B-8FFE-AB4AF05F1411} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {790D23D2-95D8-4D02-8EF5-075C090631ED} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {7DBF8C9B-4F40-4202-BFB1-DE7C9B939E72} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {81C7E8F4-A620-4411-8BA4-C278A6D0F53F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {8734E420-1D14-4154-9BD0-4E8B60A0234D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {950E226B-34F9-49B5-AECE-54D90E44296B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {961CBF50-4722-4DD1-9790-3A73E4220A37} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {99030FF5-62D2-47F4-AB61-1D03BE590877} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {9A002FB6-2BB5-4657-B4D4-4C09B9884AE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {AD002DF4-8E63-436B-A468-DA0D99E52F19} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {BC5F0F9B-1185-4A13-BD00-337BE315F50E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {CC9F7F61-3F09-4540-89BA-080299385CE2} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {EAB09CDD-E555-4F36-BC52-05FDDD874C7D} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {F12C7D93-66A6-4D93-ABB0-89110F671512} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {FB171A85-9F6F-4A39-AEC4-4D931511FF0F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-10 07:12 - 2015-09-10 07:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-10 07:12 - 2015-09-10 07:12 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-12-12 21:15 - 2016-03-20 00:55 - 00075136 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2015-12-12 21:15 - 2016-03-20 00:55 - 00189248 _____ () C:\WINDOWS\SysWOW64\PnkBstrB.exe
2016-02-24 22:02 - 2016-03-30 04:36 - 00368000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-14 18:46 - 2016-03-30 04:37 - 00289664 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-02-24 22:02 - 2016-03-30 04:36 - 01148800 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 03613056 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2015-11-05 02:11 - 2015-11-05 02:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2016-02-24 22:02 - 2016-03-30 04:37 - 02667392 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 01990016 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-02-24 22:02 - 2016-03-30 04:37 - 01842048 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-01-06 15:06 - 2016-03-30 04:37 - 00208768 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2015-10-31 02:55 - 2016-03-22 04:37 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-18 11:36 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-11-12 21:06 - 2013-01-21 15:17 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
2015-11-12 21:06 - 2013-01-21 15:20 - 00295936 _____ () C:\Program Files (x86)\Razer\Abyssus\razertra.exe
2015-12-21 09:55 - 2015-12-21 09:55 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-11-12 21:06 - 2011-03-01 15:34 - 01759232 _____ () C:\Program Files (x86)\Razer\Abyssus\vdDaemon.exe
2016-04-18 11:36 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-11-08 21:10 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-09 19:07 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-09 19:07 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-11-08 21:11 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-03-30 15:27 - 2016-03-30 04:36 - 00921472 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-03-30 15:27 - 2016-03-30 04:36 - 00035712 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2015-10-31 03:18 - 2016-03-30 04:44 - 00020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-04-03 21:30 - 2016-05-07 13:45 - 00619840 _____ () C:\Users\Osman\AppData\Local\Temp\0KrakenDevProps.dll
2016-02-26 10:29 - 2016-02-26 10:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 50656768 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 01874944 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2016-01-05 18:34 - 2015-10-06 21:26 - 00075264 _____ () C:\Users\Osman\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2015-11-08 21:03 - 2016-04-29 22:10 - 00785920 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-11-08 21:03 - 2016-04-30 02:10 - 02549840 _____ () C:\Program Files (x86)\Steam\video.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-11-08 21:03 - 2016-02-09 01:14 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-11-08 21:03 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-11-08 21:03 - 2016-04-30 02:10 - 00829008 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 15:15 - 2016-02-18 00:25 - 00281088 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2015-11-08 21:03 - 2016-04-28 03:00 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-11-08 21:03 - 2015-09-25 01:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2016-05-03 14:11 - 2016-04-28 01:25 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libglesv2.dll
2016-05-03 14:11 - 2016-04-28 01:25 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.94\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Osman:Heroes & Generals [38]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2015-11-17 19:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2498436991-496876813-1431611548-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Osman\Desktop\Fixed\TSS\TeamShadowShout\Wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_3ACC888A5A6098640C4BFEF07E11DB82"
HKU\S-1-5-21-2498436991-496876813-1431611548-1000\...\StartupApproved\Run: => "Steam"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{3E2F69BC-328F-4EC4-99DB-E2C8AF135F45}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{B9103AEB-A569-4E8D-A623-6B217CD3BC52}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C497A68C-676A-4060-AB82-B3906F2FED42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B833F7FF-602D-454A-91B9-5893CB753D1A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{9BE53BB6-7E41-44A5-A29B-E80C718C9CDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{ED623B69-9F69-46B7-A5EF-07B51A5120B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{1D6D9420-1B79-49B8-A8F5-1966F6ACD074}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{679AA548-620D-448C-8056-6102261C749E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{64B77EDD-60D1-4E40-82D6-156D28686FD4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{0DBC88EC-D64C-42FB-BCE0-EB6232034A50}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EEA469CD-9795-496F-AA93-FB9C341AD624}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{98B5DDCF-71A1-4798-82C9-D7168E55AB72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{A486D504-CF79-4EC0-8DEA-F2194FB06F67}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{F5E8BCF2-452C-462C-BEE6-1FA8C0834A33}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{B4F2150C-E4F2-4A9C-8C5F-3C474BD56630}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{CC59B5E3-ECA1-4ED9-A369-E2F89FF61F5E}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{12A69A4C-299F-42D9-A810-73FC07AB93A0}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E15FF490-D0B2-4394-AF83-F7EB6CEE3F0A}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C9948869-D0AB-4669-A5FC-B09E2062984D}] => (Allow) C:\Users\Osman\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{6764E70F-718D-4633-A6CE-71821519DECE}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe
FirewallRules: [{6DEC7811-A4BB-4B8F-9B29-242742F63256}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{7F10254F-0108-42D1-92C4-ABC489A46209}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{805157EF-9F5C-4C43-837B-9FD8D1066647}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [UDP Query User{A17ECDE3-2688-48C8-82AC-C0E64881E5CE}C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe] => (Allow) C:\users\osman\downloads\ark survival evolved pc game beta ^^nosteam^^\ark survival evolved\shootergame\binaries\win64\shootergame.exe
FirewallRules: [{B46E8C0F-92B2-4DF2-AF11-5B89C2A01873}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{C6E4C398-35CE-41C7-81B4-F21B35CFE11B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{9B20A65D-AEC5-4D7E-BD22-B7417ED96C4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2934FB41-65C3-413A-BFBB-F1E98D6A278E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{32276A42-14CE-4D26-B651-6F1A91736686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{FDE1EF00-1EF7-46FA-AC2F-727B3FB2E0C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{730725C1-9001-455E-914B-565B6283B60E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{6FE1034F-54CC-4645-BD54-37E7D7354B95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{335CBAF1-B952-46F8-A7B0-4A1FE31229B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{DFE055ED-D38F-45C5-8C10-CDE671EB1A29}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{ACDD5590-8AED-4B90-A88C-0AA5D3A7AB21}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{2464BD2F-D4D8-4B93-B2DA-A4019CB23E71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A163488E-D3CC-4919-942B-D694FC5D08A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{D11620F9-6130-4FFE-B704-007B8F2C54E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FA4A9BFF-0102-496C-B20F-B7C68AED0295}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{1D91B6AD-913A-4082-9817-932A2DB9E1B6}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{7722D30C-1F26-4DB3-94AC-0B0E9C9FB307}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{4CB129D8-43F8-4D38-8D77-FBD954EA9762}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{0F740AE8-B8BF-48BB-8E22-D16AF7484630}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{4C1BB1D2-A7FC-48F9-98CA-BA46761BCA89}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{F1A49C1B-6ACF-45CC-8FD3-29C890B5E66D}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{16C2A55B-A0B9-4383-9417-1B405BF949F1}] => (Allow) C:\Users\Osman\AppData\Local\Temp\Setup.exe
FirewallRules: [{A9C3A14A-D28C-4831-A143-1732EDA97F06}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [{91B65285-C905-4AEE-BECC-E54C77B80581}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\My Name is Mayo\windows\My Name is Mayo.exe
FirewallRules: [TCP Query User{0B2DCC73-CBB8-4B75-B3CC-4CEAB6AB556B}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{59C5A8B8-49C4-419B-9D62-00884203C481}C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{F8739322-2DC5-4FF4-BA5C-24B79F753C77}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{5004D2EE-102D-4061-81BB-491615715FA0}] => (Block) C:\users\osman\desktop\mc\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{CE61B4F3-9D2C-483D-9CBC-355F84710462}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{534FF8CA-A26B-441E-9B02-20BA570D3E2D}C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{F4926233-A035-40B9-939F-D2CE57F32BC0}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{561CD292-83D6-4D02-ADFE-F1422A946D2E}] => (Block) C:\program files (x86)\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{E1A84DDC-2444-4CF9-9D93-BBDFFB1BEFC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{826EA902-E613-4C9D-87D8-EDB92449FBA5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{D6A5731E-4ABF-4EF4-8219-4E26C2E1A28B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{8DDFCCEF-BC46-4CD7-A5BE-FF266A0B46F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Binding Of Isaac\Isaac.exe
FirewallRules: [{67367524-88A8-4814-A8C0-1A0FA7FDC85D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{02E50950-19CF-47F3-8B2B-837228FA7F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Worms Armageddon\WA.exe
FirewallRules: [{32DA20A5-46B8-4B4E-9443-1959A2DF57B1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6F05DA70-7327-423F-9F41-DDF0C3CB4E4E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{22C62C88-20BC-4DF1-AD00-965962B11F29}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{3B1B8C3D-921A-49B1-AEFF-5751321C09F0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{48B05D55-9B77-4BE0-BEC0-56580C1D06CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [{29E6BBCB-2C9D-4931-B013-B7B82456FA42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheCulling\TheCulling_Launcher.exe
FirewallRules: [TCP Query User{911A3305-0B4D-4A24-9AB8-8F0B356CA4ED}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{2817D04B-1938-4ABA-8464-42C57A0AAAD8}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{F6259F9C-62A5-4198-822C-F108D263E2A6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{722819F5-6B43-48E0-859D-D181379211DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1B212C75-BD24-4546-8A1F-CC15778A10AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{86193390-C4A9-4E19-B91D-21100C53F386}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{38AD967D-5C2D-4E2F-9DF3-DA90384F6587}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{32E18AEE-F647-45AF-9161-998511A49FA5}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [TCP Query User{E8752E36-71A6-4BE7-8EA7-86E39F3207AD}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Block) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [UDP Query User{6312F69D-5B14-4D92-A08F-57F8360351F2}C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe] => (Block) C:\program files (x86)\steam\steamapps\common\theculling\victory\binaries\win64\victory.exe
FirewallRules: [{4E4B9592-9999-4AF2-9489-C3390853F819}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{49B692E1-377F-4A62-A1C3-34F002525FBD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{99A9990A-0F02-4946-8425-D7B959FE1F05}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{9D2F0322-5C1A-4EDF-8EFD-731EBD8FAA58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe
FirewallRules: [{6726369E-ED54-42CC-8A7A-CCB6A987079F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{EC142C63-EBD5-4282-B8CE-01953FBF28D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{AF9EC156-DCC3-47E8-9DF2-D3461F252C77}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{020C5550-F5C3-4142-B3B2-1EB727CA7645}] => (Allow) C:\Users\Osman\AppData\Local\Temp\7zS6C36\HPDiagnosticCoreUI.exe
FirewallRules: [{AED5C18B-F1EE-4F66-BDB7-EE0AB957736E}] => (Allow) C:\Users\Osman\AppData\Local\Temp\7zS6C36\HPDiagnosticCoreUI.exe

==================== Wiederherstellungspunkte =========================

07-05-2016 21:28:19 Removed HP Support Solutions Framework

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (05/07/2016 09:28:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (05/03/2016 11:06:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: InputMapper.exe, Version: 1.5.31.0, Zeitstempel: 0x5563438c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10240.16766, Zeitstempel: 0x56e8cf1c
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000b40f8
ID des fehlerhaften Prozesses: 0x193c
Startzeit der fehlerhaften Anwendung: 0xInputMapper.exe0
Pfad der fehlerhaften Anwendung: InputMapper.exe1
Pfad des fehlerhaften Moduls: InputMapper.exe2
Berichtskennung: InputMapper.exe3
Vollständiger Name des fehlerhaften Pakets: InputMapper.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: InputMapper.exe5

Error: (05/03/2016 11:06:29 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: InputMapper.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Exception
Stapel:
   bei InputMapper.EntryPoint.Main(System.String[])

Error: (05/03/2016 09:14:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm explorer.exe, Version 10.0.10240.16603 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 2ff4

Startzeit: 01d1a55feeb4dc4f

Beendigungszeit: 0

Anwendungspfad: C:\Windows\explorer.exe

Berichts-ID: 3892f7fa-1163-11e6-8da5-1c6f65d3966b

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (05/03/2016 04:45:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: InputMapper.exe, Version: 1.5.31.0, Zeitstempel: 0x5563438c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10240.16766, Zeitstempel: 0x56e8cf1c
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000b40f8
ID des fehlerhaften Prozesses: 0x16bc
Startzeit der fehlerhaften Anwendung: 0xInputMapper.exe0
Pfad der fehlerhaften Anwendung: InputMapper.exe1
Pfad des fehlerhaften Moduls: InputMapper.exe2
Berichtskennung: InputMapper.exe3
Vollständiger Name des fehlerhaften Pakets: InputMapper.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: InputMapper.exe5

Error: (05/03/2016 04:45:16 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: InputMapper.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Exception
Stapel:
   bei InputMapper.EntryPoint.Main(System.String[])

Error: (04/30/2016 03:01:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: InputMapper.exe, Version: 1.5.31.0, Zeitstempel: 0x5563438c
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.10240.16766, Zeitstempel: 0x56e8cf1c
Ausnahmecode: 0xe0434352
Fehleroffset: 0x000b40f8
ID des fehlerhaften Prozesses: 0xe00
Startzeit der fehlerhaften Anwendung: 0xInputMapper.exe0
Pfad der fehlerhaften Anwendung: InputMapper.exe1
Pfad des fehlerhaften Moduls: InputMapper.exe2
Berichtskennung: InputMapper.exe3
Vollständiger Name des fehlerhaften Pakets: InputMapper.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: InputMapper.exe5

Error: (04/30/2016 03:01:35 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: InputMapper.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Exception
Stapel:
   bei InputMapper.EntryPoint.Main(System.String[])

Error: (04/18/2016 12:09:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (04/08/2016 01:51:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Osman-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


Systemfehler:
=============
Error: (05/07/2016 03:54:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/07/2016 02:26:37 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (05/07/2016 02:10:37 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎06.‎05.‎2016 um 21:00:49 unerwartet heruntergefahren.

Error: (05/06/2016 07:01:51 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.

Error: (05/06/2016 02:07:09 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (05/05/2016 10:51:06 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (05/05/2016 10:39:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (05/05/2016 10:39:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (05/05/2016 10:35:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎05.‎05.‎2016 um 21:52:27 unerwartet heruntergefahren.

Error: (05/05/2016 03:53:18 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 10. Der Windows-SChannel-Fehlerstatus lautet: 10.


CodeIntegrity:
===================================
  Date: 2016-04-18 12:09:08.267
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-04-06 19:51:59.744
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-03-31 17:22:31.002
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-03-25 19:28:02.978
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 11767.23 MB
Verfügbarer physikalischer RAM: 9084.06 MB
Summe virtueller Speicher: 23543.23 MB
Verfügbarer virtueller Speicher: 20476.62 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:232.35 GB) (Free:86.95 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: F8A88DB0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== Ende von Addition.txt ============================
         
__________________

Alt 07.05.2016, 20:40   #4
TheNoobly
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



TDSSKILLER
Code:
ATTFilter
21:34:50.0862 0x0fcc  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
21:35:00.0498 0x0fcc  ============================================================
21:35:00.0498 0x0fcc  Current date / time: 2016/05/07 21:35:00.0498
21:35:00.0498 0x0fcc  SystemInfo:
21:35:00.0498 0x0fcc  
21:35:00.0498 0x0fcc  OS Version: 10.0.10240 ServicePack: 0.0
21:35:00.0498 0x0fcc  Product type: Workstation
21:35:00.0498 0x0fcc  ComputerName: OSMAN-PC
21:35:00.0499 0x0fcc  UserName: Osman
21:35:00.0499 0x0fcc  Windows directory: C:\WINDOWS
21:35:00.0499 0x0fcc  System windows directory: C:\WINDOWS
21:35:00.0499 0x0fcc  Running under WOW64
21:35:00.0499 0x0fcc  Processor architecture: Intel x64
21:35:00.0499 0x0fcc  Number of processors: 8
21:35:00.0499 0x0fcc  Page size: 0x1000
21:35:00.0499 0x0fcc  Boot type: Normal boot
21:35:00.0499 0x0fcc  ============================================================
21:35:00.0553 0x0fcc  KLMD registered as C:\WINDOWS\system32\drivers\72422440.sys
21:35:01.0032 0x0fcc  System UUID: {6FAB8EFA-8769-1DC3-7215-C886939B8ECC}
21:35:01.0368 0x0fcc  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x1C042, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
21:35:01.0371 0x0fcc  ============================================================
21:35:01.0371 0x0fcc  \Device\Harddisk0\DR0:
21:35:01.0371 0x0fcc  MBR partitions:
21:35:01.0371 0x0fcc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:35:01.0371 0x0fcc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D0B1800
21:35:01.0371 0x0fcc  ============================================================
21:35:01.0373 0x0fcc  C: <-> \Device\Harddisk0\DR0\Partition2
21:35:01.0373 0x0fcc  ============================================================
21:35:01.0373 0x0fcc  Initialize success
21:35:01.0373 0x0fcc  ============================================================
21:35:38.0603 0x23d4  ============================================================
21:35:38.0603 0x23d4  Scan started
21:35:38.0603 0x23d4  Mode: Manual; SigCheck; TDLFS; 
21:35:38.0603 0x23d4  ============================================================
21:35:38.0603 0x23d4  KSN ping started
21:35:40.0897 0x23d4  KSN ping finished: true
21:35:41.0394 0x23d4  ================ Scan system memory ========================
21:35:41.0394 0x23d4  System memory - ok
21:35:41.0395 0x23d4  ================ Scan services =============================
21:35:41.0431 0x23d4  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
21:35:41.0464 0x23d4  1394ohci - ok
21:35:41.0473 0x23d4  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
21:35:41.0483 0x23d4  3ware - ok
21:35:41.0487 0x23d4  [ 894B3BB875D57F691A3E234D76746074, EEA8E1A5DC9C24FFF302FBF35AF68850952F58ECF6FE50720469B7608FA74817 ] Abyssus         C:\WINDOWS\system32\drivers\Abyssus.sys
21:35:41.0496 0x23d4  Abyssus - ok
21:35:41.0509 0x23d4  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
21:35:41.0527 0x23d4  ACPI - ok
21:35:41.0533 0x23d4  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
21:35:41.0543 0x23d4  acpiex - ok
21:35:41.0545 0x23d4  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
21:35:41.0554 0x23d4  acpipagr - ok
21:35:41.0557 0x23d4  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
21:35:41.0566 0x23d4  AcpiPmi - ok
21:35:41.0569 0x23d4  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
21:35:41.0577 0x23d4  acpitime - ok
21:35:41.0583 0x23d4  [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:35:41.0589 0x23d4  AdobeARMservice - ok
21:35:41.0618 0x23d4  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:35:41.0660 0x23d4  ADP80XX - ok
21:35:41.0675 0x23d4  [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
21:35:41.0694 0x23d4  AFD - ok
21:35:41.0698 0x23d4  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
21:35:41.0706 0x23d4  agp440 - ok
21:35:41.0713 0x23d4  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:35:41.0727 0x23d4  ahcache - ok
21:35:41.0730 0x23d4  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
21:35:41.0739 0x23d4  AJRouter - ok
21:35:41.0743 0x23d4  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
21:35:41.0754 0x23d4  ALG - ok
21:35:41.0759 0x23d4  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
21:35:41.0770 0x23d4  AmdK8 - ok
21:35:41.0775 0x23d4  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
21:35:41.0786 0x23d4  AmdPPM - ok
21:35:41.0790 0x23d4  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
21:35:41.0799 0x23d4  amdsata - ok
21:35:41.0806 0x23d4  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
21:35:41.0818 0x23d4  amdsbs - ok
21:35:41.0821 0x23d4  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
21:35:41.0828 0x23d4  amdxata - ok
21:35:41.0833 0x23d4  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
21:35:41.0842 0x23d4  AppID - ok
21:35:41.0846 0x23d4  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
21:35:41.0859 0x23d4  AppIDSvc - ok
21:35:41.0863 0x23d4  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
21:35:41.0876 0x23d4  Appinfo - ok
21:35:41.0884 0x23d4  [ 68AF553066C4DAE7D8698322526BDA86, 806A5228D204B18B3B9F88AB87B5918046BE96D1B3AEFEC9331CA7A483547486 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:35:41.0897 0x23d4  AppMgmt - ok
21:35:41.0911 0x23d4  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
21:35:41.0935 0x23d4  AppReadiness - ok
21:35:41.0978 0x23d4  [ DD613F1BD0559E50B8022C429D638DE8, 38939994ACDD6B3E58378194189848B33DF02AF1DB3566236B195979698B77F1 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
21:35:42.0044 0x23d4  AppXSvc - ok
21:35:42.0051 0x23d4  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
21:35:42.0060 0x23d4  arcsas - ok
21:35:42.0063 0x23d4  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
21:35:42.0074 0x23d4  AsyncMac - ok
21:35:42.0078 0x23d4  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
21:35:42.0085 0x23d4  atapi - ok
21:35:42.0094 0x23d4  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:35:42.0109 0x23d4  AudioEndpointBuilder - ok
21:35:42.0131 0x23d4  [ 6300722E8527EC54D426FD00EE5196B2, 71376BE797E8F3E2E671167DA400239D5289DE7EE56CF29564C98715B9DB1D09 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
21:35:42.0168 0x23d4  Audiosrv - ok
21:35:42.0173 0x23d4  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
21:35:42.0187 0x23d4  AxInstSV - ok
21:35:42.0200 0x23d4  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
21:35:42.0217 0x23d4  b06bdrv - ok
21:35:42.0221 0x23d4  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:35:42.0230 0x23d4  BasicDisplay - ok
21:35:42.0234 0x23d4  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
21:35:42.0242 0x23d4  BasicRender - ok
21:35:42.0246 0x23d4  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
21:35:42.0253 0x23d4  bcmfn2 - ok
21:35:42.0262 0x23d4  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
21:35:42.0279 0x23d4  BDESVC - ok
21:35:42.0282 0x23d4  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:35:42.0291 0x23d4  Beep - ok
21:35:42.0317 0x23d4  [ 34E728ACD12ACC3C8502F437DF4D6601, 025B8A3C463ADEA72FB0A3F70B148547E45091F54A2040E3B07E82EC37430D7E ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
21:35:42.0345 0x23d4  BEService - ok
21:35:42.0365 0x23d4  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
21:35:42.0393 0x23d4  BFE - ok
21:35:42.0417 0x23d4  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
21:35:42.0456 0x23d4  BITS - ok
21:35:42.0462 0x23d4  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
21:35:42.0472 0x23d4  bowser - ok
21:35:42.0485 0x23d4  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:35:42.0507 0x23d4  BrokerInfrastructure - ok
21:35:42.0513 0x23d4  [ B88731761FF66380303BEE550C5ED5B9, 8DB89CEDA511E199527CC7682262D80C7EEE77F92C76A6F9291BC24D1DC31318 ] Browser         C:\WINDOWS\System32\browser.dll
21:35:42.0525 0x23d4  Browser - ok
21:35:42.0529 0x23d4  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:35:42.0537 0x23d4  BthAvrcpTg - ok
21:35:42.0542 0x23d4  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
21:35:42.0551 0x23d4  BthHFEnum - ok
21:35:42.0554 0x23d4  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
21:35:42.0563 0x23d4  bthhfhid - ok
21:35:42.0572 0x23d4  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
21:35:42.0588 0x23d4  BthHFSrv - ok
21:35:42.0592 0x23d4  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
21:35:42.0602 0x23d4  BTHMODEM - ok
21:35:42.0607 0x23d4  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
21:35:42.0617 0x23d4  bthserv - ok
21:35:42.0620 0x23d4  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
21:35:42.0629 0x23d4  buttonconverter - ok
21:35:42.0634 0x23d4  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
21:35:42.0645 0x23d4  CapImg - ok
21:35:42.0649 0x23d4  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:35:42.0660 0x23d4  cdfs - ok
21:35:42.0666 0x23d4  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
21:35:42.0679 0x23d4  CDPSvc - ok
21:35:42.0686 0x23d4  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
21:35:42.0698 0x23d4  cdrom - ok
21:35:42.0705 0x23d4  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
21:35:42.0721 0x23d4  CertPropSvc - ok
21:35:42.0725 0x23d4  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
21:35:42.0735 0x23d4  circlass - ok
21:35:42.0745 0x23d4  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
21:35:42.0759 0x23d4  CLFS - ok
21:35:42.0774 0x23d4  [ 282BF6B5AB1F4A24AFAAB8FED0FD7731, 413B903B7799DB746D20E8CC643C80E83362EB27F8A7A45ACCAA84E6FD64252F ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
21:35:42.0796 0x23d4  ClipSVC - ok
21:35:42.0803 0x23d4  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
21:35:42.0812 0x23d4  CmBatt - ok
21:35:42.0826 0x23d4  [ 9281116A817FE051AAA8BA2711FC2507, 18F51171C87D628C3CA1A4A236744CB465E9F6062882C064B5BCF249E0EB259E ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
21:35:42.0847 0x23d4  CNG - ok
21:35:42.0851 0x23d4  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
21:35:42.0858 0x23d4  cnghwassist - ok
21:35:42.0868 0x23d4  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
21:35:42.0877 0x23d4  CompositeBus - ok
21:35:42.0880 0x23d4  COMSysApp - ok
21:35:42.0884 0x23d4  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
21:35:42.0892 0x23d4  condrv - ok
21:35:42.0910 0x23d4  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
21:35:42.0935 0x23d4  CoreMessagingRegistrar - ok
21:35:42.0942 0x23d4  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
21:35:42.0952 0x23d4  CryptSvc - ok
21:35:42.0965 0x23d4  [ 838755238B2BAE5A4802B038443B8A22, 1A89E413C6E5C3E8C2B64F8A1D41271D3FA39BC67291331FEC8DCFD4F8CCE994 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
21:35:42.0987 0x23d4  CSC - ok
21:35:43.0003 0x23d4  [ 7D64B14DAFEBBC19A87EC9D5B862F6AA, BE7510E618566FEA013E2E77CE4C7C160BADE105C493424595A15D0A7F1615CF ] CscService      C:\WINDOWS\System32\cscsvc.dll
21:35:43.0030 0x23d4  CscService - ok
21:35:43.0035 0x23d4  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
21:35:43.0043 0x23d4  dam - ok
21:35:43.0062 0x23d4  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:35:43.0094 0x23d4  DcomLaunch - ok
21:35:43.0101 0x23d4  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
21:35:43.0118 0x23d4  DcpSvc - ok
21:35:43.0130 0x23d4  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
21:35:43.0154 0x23d4  defragsvc - ok
21:35:43.0165 0x23d4  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:35:43.0187 0x23d4  DeviceAssociationService - ok
21:35:43.0192 0x23d4  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
21:35:43.0208 0x23d4  DeviceInstall - ok
21:35:43.0212 0x23d4  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
21:35:43.0221 0x23d4  DevQueryBroker - ok
21:35:43.0226 0x23d4  [ 55D5C5B0B9F9B65BD452136A384E6EAC, A50530EDF3B7BAF39686E97379E9148D8678FE105207A0B5BD437C32E18E030A ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
21:35:43.0238 0x23d4  Dfsc - ok
21:35:43.0243 0x23d4  [ D722BC26F7431A4DA9A183E56CA9FEE3, 86AB717431CB3DDAF6213A1CFE8DF3684080BAAD569731A90AA1AA198E97506D ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:35:43.0251 0x23d4  dg_ssudbus - ok
21:35:43.0261 0x23d4  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
21:35:43.0279 0x23d4  Dhcp - ok
21:35:43.0283 0x23d4  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
21:35:43.0293 0x23d4  diagnosticshub.standardcollector.service - ok
21:35:43.0325 0x23d4  [ 28257B48DCBE3A193FFC41CF59CE293F, 89EA2E2F4A3D0238750C97FEBEF27B5DCD896127A20C5FE859B1705BDCC1F6A6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
21:35:43.0368 0x23d4  DiagTrack - ok
21:35:43.0374 0x23d4  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
21:35:43.0383 0x23d4  disk - ok
21:35:43.0391 0x23d4  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
21:35:43.0407 0x23d4  DmEnrollmentSvc - ok
21:35:43.0411 0x23d4  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
21:35:43.0420 0x23d4  dmvsc - ok
21:35:43.0424 0x23d4  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
21:35:43.0435 0x23d4  dmwappushservice - ok
21:35:43.0444 0x23d4  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:35:43.0459 0x23d4  Dnscache - ok
21:35:43.0468 0x23d4  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:35:43.0485 0x23d4  dot3svc - ok
21:35:43.0491 0x23d4  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
21:35:43.0503 0x23d4  DPS - ok
21:35:43.0507 0x23d4  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:35:43.0514 0x23d4  drmkaud - ok
21:35:43.0522 0x23d4  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
21:35:43.0536 0x23d4  DsmSvc - ok
21:35:43.0542 0x23d4  [ 5E649D3A3A6F72B1EF062E023308D08E, FF6EFA58AD293707CC0394B747EA059F24D35A85987BBC68BABBD84DF1B3FD3A ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
21:35:43.0553 0x23d4  DsSvc - ok
21:35:43.0591 0x23d4  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:35:43.0639 0x23d4  DXGKrnl - ok
21:35:43.0645 0x23d4  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
21:35:43.0657 0x23d4  Eaphost - ok
21:35:43.0660 0x23d4  EasyAntiCheat - ok
21:35:43.0724 0x23d4  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
21:35:43.0801 0x23d4  ebdrv - ok
21:35:43.0808 0x23d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
21:35:43.0817 0x23d4  EFS - ok
21:35:43.0821 0x23d4  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
21:35:43.0830 0x23d4  EhStorClass - ok
21:35:43.0836 0x23d4  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:35:43.0845 0x23d4  EhStorTcgDrv - ok
21:35:43.0850 0x23d4  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
21:35:43.0861 0x23d4  embeddedmode - ok
21:35:43.0870 0x23d4  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
21:35:43.0885 0x23d4  EntAppSvc - ok
21:35:43.0889 0x23d4  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
21:35:43.0896 0x23d4  ErrDev - ok
21:35:43.0900 0x23d4  [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv           C:\WINDOWS\etdrv.sys
21:35:43.0904 0x23d4  etdrv - ok
21:35:43.0916 0x23d4  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
21:35:43.0937 0x23d4  EventSystem - ok
21:35:43.0947 0x23d4  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
21:35:43.0962 0x23d4  exfat - ok
21:35:43.0972 0x23d4  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
21:35:43.0985 0x23d4  fastfat - ok
21:35:44.0000 0x23d4  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
21:35:44.0024 0x23d4  Fax - ok
21:35:44.0028 0x23d4  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
21:35:44.0036 0x23d4  fdc - ok
21:35:44.0039 0x23d4  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
21:35:44.0051 0x23d4  fdPHost - ok
21:35:44.0055 0x23d4  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
21:35:44.0067 0x23d4  FDResPub - ok
21:35:44.0072 0x23d4  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
21:35:44.0087 0x23d4  fhsvc - ok
21:35:44.0091 0x23d4  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
21:35:44.0101 0x23d4  FileCrypt - ok
21:35:44.0105 0x23d4  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
21:35:44.0114 0x23d4  FileInfo - ok
21:35:44.0117 0x23d4  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
21:35:44.0129 0x23d4  Filetrace - ok
21:35:44.0132 0x23d4  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
21:35:44.0140 0x23d4  flpydisk - ok
21:35:44.0151 0x23d4  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:35:44.0165 0x23d4  FltMgr - ok
21:35:44.0197 0x23d4  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
21:35:44.0249 0x23d4  FontCache - ok
21:35:44.0255 0x23d4  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:35:44.0262 0x23d4  FontCache3.0.0.0 - ok
21:35:44.0266 0x23d4  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
21:35:44.0273 0x23d4  FsDepends - ok
21:35:44.0276 0x23d4  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:35:44.0284 0x23d4  Fs_Rec - ok
21:35:44.0293 0x23d4  [ 6807483EF10156362A67CEF0AF2FFDC7, C72E4D62D24324D35E188C038B14D992F0F1213ABBAC34A26584099242D2B7D2 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
21:35:44.0303 0x23d4  Futuremark SystemInfo Service - ok
21:35:44.0317 0x23d4  [ F7101D3B4E00800E6CEE69F9795B7B62, FB6F7119D3977D4E8C4D2C5BA87CBE9F56F54AF5622DC0D07E042449C17C959F ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:35:44.0337 0x23d4  fvevol - ok
21:35:44.0342 0x23d4  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
21:35:44.0350 0x23d4  gagp30kx - ok
21:35:44.0352 0x23d4  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\WINDOWS\gdrv.sys
21:35:44.0356 0x23d4  gdrv - ok
21:35:44.0358 0x23d4  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
21:35:44.0366 0x23d4  gencounter - ok
21:35:44.0369 0x23d4  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
21:35:44.0377 0x23d4  genericusbfn - ok
21:35:44.0402 0x23d4  [ 3419935BF3EAF99788052A2E8E45BAAE, 61C1657290B98CB45ED0614E743D1AFA9C63E1116513F7564C32DE60A1939265 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
21:35:44.0426 0x23d4  GfExperienceService - ok
21:35:44.0434 0x23d4  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:35:44.0444 0x23d4  GPIOClx0101 - ok
21:35:44.0470 0x23d4  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
21:35:44.0515 0x23d4  gpsvc - ok
21:35:44.0519 0x23d4  [ 7BF844D362EB746BC7A6DC3F57FA3E32, C07007CF6A0A2BA953FC40A5031931131CC953A8CF3B5AFA86C8811F9C4D43C4 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
21:35:44.0527 0x23d4  GpuEnergyDrv - ok
21:35:44.0533 0x23d4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:35:44.0540 0x23d4  gupdate - ok
21:35:44.0545 0x23d4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:35:44.0552 0x23d4  gupdatem - ok
21:35:44.0555 0x23d4  [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64        C:\WINDOWS\GVTDrv64.sys
21:35:44.0560 0x23d4  GVTDrv64 - ok
21:35:44.0564 0x23d4  [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
21:35:44.0572 0x23d4  Hamachi - ok
21:35:44.0621 0x23d4  [ BDC536D4D5280451E12842DEAF7717E5, 7103AC074E2DD1B90FD88DF24E6503E7A6643768A5E43933AA995BE58EE5541E ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
21:35:44.0666 0x23d4  Hamachi2Svc - ok
21:35:44.0677 0x23d4  [ FE85E924C86D6D313D61C28A451EA4DE, 22422CECDAB8EBAED6120E6CFDD57BAFC61EA12B1E3563E8605B9700DFE71EBC ] HdAudAddService C:\WINDOWS\system32\DRIVERS\HdAudio.sys
21:35:44.0695 0x23d4  HdAudAddService - ok
21:35:44.0699 0x23d4  [ 27E248CD861AFED4DF0C48F4C853E7F0, 37BEA5E9D8ACAA871A441766B5FDD32A1091C0CB8B34DFA15596AD827C5EF1A4 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
21:35:44.0720 0x23d4  HDAudBus - ok
21:35:44.0726 0x23d4  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
21:35:44.0736 0x23d4  HidBatt - ok
21:35:44.0741 0x23d4  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
21:35:44.0751 0x23d4  HidBth - ok
21:35:44.0754 0x23d4  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
21:35:44.0763 0x23d4  hidi2c - ok
21:35:44.0767 0x23d4  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
21:35:44.0774 0x23d4  hidinterrupt - ok
21:35:44.0777 0x23d4  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
21:35:44.0786 0x23d4  HidIr - ok
21:35:44.0790 0x23d4  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
21:35:44.0799 0x23d4  hidserv - ok
21:35:44.0802 0x23d4  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
21:35:44.0810 0x23d4  HidUsb - ok
21:35:44.0818 0x23d4  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:35:44.0833 0x23d4  HomeGroupListener - ok
21:35:44.0844 0x23d4  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:35:44.0865 0x23d4  HomeGroupProvider - ok
21:35:44.0869 0x23d4  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
21:35:44.0877 0x23d4  HpSAMD - ok
21:35:44.0898 0x23d4  [ 870DB31C41E4D04BCDDFC297F64D63D7, 1ACA966DB568E13F17E38D1F904B3FE9ED36EAAA85E0243C8B817083D7D85903 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
21:35:44.0925 0x23d4  HTTP - ok
21:35:44.0929 0x23d4  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
21:35:44.0936 0x23d4  hwpolicy - ok
21:35:44.0939 0x23d4  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
21:35:44.0947 0x23d4  hyperkbd - ok
21:35:44.0950 0x23d4  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:35:44.0958 0x23d4  HyperVideo - ok
21:35:44.0963 0x23d4  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
21:35:44.0973 0x23d4  i8042prt - ok
21:35:44.0976 0x23d4  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:35:44.0983 0x23d4  iaLPSSi_GPIO - ok
21:35:44.0988 0x23d4  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:35:44.0994 0x23d4  iaLPSSi_I2C - ok
21:35:45.0004 0x2aa8  Object required for P2P: [ 6300722E8527EC54D426FD00EE5196B2 ] Audiosrv
21:35:45.0009 0x23d4  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
21:35:45.0029 0x23d4  iaStorAV - ok
21:35:45.0040 0x23d4  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
21:35:45.0055 0x23d4  iaStorV - ok
21:35:45.0065 0x23d4  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
21:35:45.0081 0x23d4  ibbus - ok
21:35:45.0087 0x23d4  [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
21:35:45.0094 0x23d4  ICCS - detected UnsignedFile.Multi.Generic ( 1 )
21:35:47.0397 0x23d4  Detect skipped due to KSN trusted
21:35:47.0397 0x23d4  ICCS - ok
21:35:47.0403 0x2aa8  Object send P2P result: true
21:35:47.0404 0x2aa8  Object required for P2P: [ 34E728ACD12ACC3C8502F437DF4D6601 ] BEService
21:35:47.0409 0x23d4  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
21:35:47.0433 0x23d4  icssvc - ok
21:35:47.0439 0x23d4  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:35:47.0444 0x23d4  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
21:35:49.0751 0x23d4  Detect skipped due to KSN trusted
21:35:49.0751 0x23d4  IDriverT - ok
21:35:49.0758 0x23d4  IEEtwCollectorService - ok
21:35:49.0796 0x23d4  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
21:35:49.0805 0x2aa8  Object send P2P result: true
21:35:49.0831 0x23d4  IKEEXT - ok
21:35:49.0922 0x23d4  [ 0D378E0EC4009E954FB1A358514CE99E, 05B36FCFFBCB01DBD01096B3E72F2AEBCEF91C99EF2AA4DB17EBECC33A1CA0B7 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:35:50.0005 0x23d4  IntcAzAudAddService - ok
21:35:50.0026 0x23d4  [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:35:50.0048 0x23d4  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:35:51.0778 0x020c  Object required for P2P: [ 3419935BF3EAF99788052A2E8E45BAAE ] GfExperienceService
21:35:52.0362 0x23d4  Detect skipped due to KSN trusted
21:35:52.0362 0x23d4  Intel(R) Capability Licensing Service Interface - ok
21:35:52.0395 0x23d4  [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:35:52.0421 0x23d4  Intel(R) Capability Licensing Service TCP IP Interface - ok
21:35:52.0425 0x23d4  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
21:35:52.0432 0x23d4  intelide - ok
21:35:52.0435 0x23d4  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
21:35:52.0442 0x23d4  intelpep - ok
21:35:52.0447 0x23d4  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
21:35:52.0458 0x23d4  intelppm - ok
21:35:52.0461 0x23d4  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
21:35:52.0469 0x23d4  IoQos - ok
21:35:52.0473 0x23d4  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:35:52.0485 0x23d4  IpFilterDriver - ok
21:35:52.0505 0x23d4  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
21:35:52.0541 0x23d4  iphlpsvc - ok
21:35:52.0546 0x23d4  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:35:52.0555 0x23d4  IPMIDRV - ok
21:35:52.0562 0x23d4  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
21:35:52.0573 0x23d4  IPNAT - ok
21:35:52.0577 0x23d4  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
21:35:52.0587 0x23d4  IRENUM - ok
21:35:52.0590 0x23d4  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
21:35:52.0597 0x23d4  isapnp - ok
21:35:52.0606 0x23d4  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
21:35:52.0619 0x23d4  iScsiPrt - ok
21:35:52.0623 0x23d4  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
21:35:52.0631 0x23d4  kbdclass - ok
21:35:52.0634 0x23d4  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
21:35:52.0643 0x23d4  kbdhid - ok
21:35:52.0646 0x23d4  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
21:35:52.0653 0x23d4  kdnic - ok
21:35:52.0657 0x23d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
21:35:52.0666 0x23d4  KeyIso - ok
21:35:52.0671 0x23d4  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
21:35:52.0680 0x23d4  KSecDD - ok
21:35:52.0686 0x23d4  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:35:52.0696 0x23d4  KSecPkg - ok
21:35:52.0700 0x23d4  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
21:35:52.0709 0x23d4  ksthunk - ok
21:35:52.0719 0x23d4  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
21:35:52.0737 0x23d4  KtmRm - ok
21:35:52.0745 0x23d4  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
21:35:52.0761 0x23d4  LanmanServer - ok
21:35:52.0769 0x23d4  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:35:52.0786 0x23d4  LanmanWorkstation - ok
21:35:52.0790 0x23d4  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
21:35:52.0798 0x23d4  lfsvc - ok
21:35:52.0801 0x23d4  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
21:35:52.0810 0x23d4  LicenseManager - ok
21:35:52.0813 0x23d4  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
21:35:52.0824 0x23d4  lltdio - ok
21:35:52.0832 0x23d4  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
21:35:52.0848 0x23d4  lltdsvc - ok
21:35:52.0851 0x23d4  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
21:35:52.0860 0x23d4  lmhosts - ok
21:35:52.0870 0x23d4  [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
21:35:52.0881 0x23d4  LMIGuardianSvc - ok
21:35:52.0886 0x23d4  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
21:35:52.0895 0x23d4  LSI_SAS - ok
21:35:52.0900 0x23d4  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
21:35:52.0908 0x23d4  LSI_SAS2i - ok
21:35:52.0913 0x23d4  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
21:35:52.0921 0x23d4  LSI_SAS3i - ok
21:35:52.0926 0x23d4  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
21:35:52.0934 0x23d4  LSI_SSS - ok
21:35:52.0950 0x23d4  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
21:35:52.0977 0x23d4  LSM - ok
21:35:52.0983 0x23d4  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
21:35:52.0997 0x23d4  luafv - ok
21:35:53.0001 0x23d4  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
21:35:53.0012 0x23d4  MapsBroker - ok
21:35:53.0018 0x23d4  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
21:35:53.0035 0x23d4  megasas - ok
21:35:53.0051 0x23d4  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
21:35:53.0069 0x23d4  megasr - ok
21:35:53.0075 0x23d4  [ 48F64A35BA9F2E4AC0587DDA555FF951, 77FE2BE86ADCE103F4220A641139C42B1407CF8EFFEB66F841ABF9CFC3621558 ] MEIx64          C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
21:35:53.0084 0x23d4  MEIx64 - ok
21:35:53.0099 0x23d4  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
21:35:53.0120 0x23d4  mlx4_bus - ok
21:35:53.0124 0x23d4  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
21:35:53.0133 0x23d4  MMCSS - ok
21:35:53.0136 0x23d4  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
21:35:53.0147 0x23d4  Modem - ok
21:35:53.0150 0x23d4  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
21:35:53.0158 0x23d4  monitor - ok
21:35:53.0161 0x23d4  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
21:35:53.0169 0x23d4  mouclass - ok
21:35:53.0173 0x23d4  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
21:35:53.0181 0x23d4  mouhid - ok
21:35:53.0185 0x23d4  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
21:35:53.0194 0x23d4  mountmgr - ok
21:35:53.0198 0x23d4  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
21:35:53.0207 0x23d4  mpsdrv - ok
21:35:53.0225 0x23d4  [ 749EE0008489244EB05C3283A105EFF8, D692708C975DD8BA13597AD0056C3F10760257F4EB144EB0B5C8D9CFF1754F62 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
21:35:53.0255 0x23d4  MpsSvc - ok
21:35:53.0262 0x23d4  [ 8E3F4C3A8EA2E787E6089618675501D0, 8A9FE21C5CBB1D770B58BFA241AA5A4428079EF901C28433FE94DB93DC14B6FB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
21:35:53.0273 0x23d4  MRxDAV - ok
21:35:53.0284 0x23d4  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:35:53.0302 0x23d4  mrxsmb - ok
21:35:53.0310 0x23d4  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:35:53.0325 0x23d4  mrxsmb10 - ok
21:35:53.0332 0x23d4  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:35:53.0345 0x23d4  mrxsmb20 - ok
21:35:53.0349 0x23d4  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
21:35:53.0361 0x23d4  MsBridge - ok
21:35:53.0367 0x23d4  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
21:35:53.0379 0x23d4  MSDTC - ok
21:35:53.0384 0x23d4  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:35:53.0393 0x23d4  Msfs - ok
21:35:53.0397 0x23d4  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:35:53.0404 0x23d4  msgpiowin32 - ok
21:35:53.0407 0x23d4  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:35:53.0414 0x23d4  mshidkmdf - ok
21:35:53.0416 0x23d4  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
21:35:53.0424 0x23d4  mshidumdf - ok
21:35:53.0427 0x23d4  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
21:35:53.0433 0x23d4  msisadrv - ok
21:35:53.0439 0x23d4  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
21:35:53.0451 0x23d4  MSiSCSI - ok
21:35:53.0453 0x23d4  msiserver - ok
21:35:53.0456 0x23d4  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:35:53.0464 0x23d4  MSKSSRV - ok
21:35:53.0468 0x23d4  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
21:35:53.0479 0x23d4  MsLldp - ok
21:35:53.0482 0x23d4  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:35:53.0490 0x23d4  MSPCLOCK - ok
21:35:53.0493 0x23d4  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:35:53.0501 0x23d4  MSPQM - ok
21:35:53.0510 0x23d4  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
21:35:53.0527 0x23d4  MsRPC - ok
21:35:53.0531 0x23d4  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
21:35:53.0538 0x23d4  mssmbios - ok
21:35:53.0541 0x23d4  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
21:35:53.0549 0x23d4  MSTEE - ok
21:35:53.0552 0x23d4  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
21:35:53.0560 0x23d4  MTConfig - ok
21:35:53.0565 0x23d4  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
21:35:53.0574 0x23d4  Mup - ok
21:35:53.0578 0x23d4  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
21:35:53.0585 0x23d4  mvumis - ok
21:35:53.0599 0x23d4  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:35:53.0621 0x23d4  NativeWifiP - ok
21:35:53.0627 0x23d4  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
21:35:53.0639 0x23d4  NcaSvc - ok
21:35:53.0647 0x23d4  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
21:35:53.0664 0x23d4  NcbService - ok
21:35:53.0668 0x23d4  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
21:35:53.0686 0x23d4  NcdAutoSetup - ok
21:35:53.0691 0x23d4  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
21:35:53.0699 0x23d4  ndfltr - ok
21:35:53.0723 0x23d4  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
21:35:53.0752 0x23d4  NDIS - ok
21:35:53.0758 0x23d4  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
21:35:53.0766 0x23d4  NdisCap - ok
21:35:53.0771 0x23d4  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
21:35:53.0784 0x23d4  NdisImPlatform - ok
21:35:53.0787 0x23d4  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:35:53.0797 0x23d4  NdisTapi - ok
21:35:53.0801 0x23d4  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
21:35:53.0809 0x23d4  Ndisuio - ok
21:35:53.0812 0x23d4  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:35:53.0822 0x23d4  NdisVirtualBus - ok
21:35:53.0829 0x23d4  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
21:35:53.0843 0x23d4  NdisWan - ok
21:35:53.0849 0x23d4  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:35:53.0863 0x23d4  ndiswanlegacy - ok
21:35:53.0867 0x23d4  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
21:35:53.0878 0x23d4  ndproxy - ok
21:35:53.0882 0x23d4  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
21:35:53.0893 0x23d4  Ndu - ok
21:35:53.0897 0x23d4  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
21:35:53.0904 0x23d4  NetBIOS - ok
21:35:53.0914 0x23d4  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:35:53.0929 0x23d4  NetBT - ok
21:35:53.0933 0x23d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:35:53.0941 0x23d4  Netlogon - ok
21:35:53.0949 0x23d4  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
21:35:53.0966 0x23d4  Netman - ok
21:35:53.0978 0x23d4  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
21:35:54.0003 0x23d4  netprofm - ok
21:35:54.0010 0x23d4  [ B50C003F86EFEDAB844AC808C6A6CB6C, DE27531037129830FD537114B0299B80A0C87C3515411EC95001BC6334ADA5C7 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
21:35:54.0023 0x23d4  NetSetupSvc - ok
21:35:54.0032 0x23d4  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:35:54.0040 0x23d4  NetTcpPortSharing - ok
21:35:54.0045 0x23d4  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
21:35:54.0055 0x23d4  netvsc - ok
21:35:54.0068 0x23d4  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
21:35:54.0094 0x23d4  NgcCtnrSvc - ok
21:35:54.0098 0x23d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
21:35:54.0106 0x23d4  NgcSvc - ok
21:35:54.0116 0x23d4  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
21:35:54.0134 0x23d4  NlaSvc - ok
21:35:54.0138 0x23d4  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:35:54.0148 0x23d4  Npfs - ok
21:35:54.0150 0x23d4  npggsvc - ok
21:35:54.0153 0x23d4  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
21:35:54.0161 0x23d4  npsvctrig - ok
21:35:54.0164 0x23d4  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
21:35:54.0173 0x23d4  nsi - ok
21:35:54.0173 0x020c  Object send P2P result: true
21:35:54.0179 0x23d4  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
21:35:54.0188 0x23d4  nsiproxy - ok
21:35:54.0231 0x23d4  [ BA8DC96D1DD7785EB0589CB1777208B7, 09B486A20D9F22FE50CB4FBC0C801609F522FA99F5FBC43107336B7D98457D91 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
21:35:54.0287 0x23d4  NTFS - ok
21:35:54.0291 0x23d4  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:35:54.0299 0x23d4  Null - ok
21:35:54.0306 0x23d4  [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
21:35:54.0313 0x23d4  NVHDA - ok
21:35:54.0560 0x23d4  [ 931D4A31CCF9C9C2D3C0DB1A64A06590, 54B0EE326451BE1892E4DEF17AFBF21F20DE7E00CDBBB3F5F81C3D5B02CC15E8 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
21:35:54.0774 0x23d4  nvlddmkm - ok
21:35:54.0820 0x23d4  [ CA01B565B1EAFAC99D368A25013B4A59, 9138A4A3F9FB0C64BA929FE41FF15858AAF29B025CDE7552BD669C19DA3395C2 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
21:35:54.0855 0x23d4  NvNetworkService - ok
21:35:54.0863 0x23d4  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
21:35:54.0872 0x23d4  nvraid - ok
21:35:54.0878 0x23d4  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
21:35:54.0888 0x23d4  nvstor - ok
21:35:54.0892 0x23d4  [ 5EB1CDFC4EBA108EF472DD91ADF86E7A, 3FAFA28F07E97783E646FA5ABC215C6D5BCF33758ECF7C6D897AA3E48188ED0D ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
21:35:54.0897 0x23d4  NvStreamKms - ok
21:35:54.0963 0x23d4  [ B99F8FE600410AE2CCDE0C4D9ADAB77E, C0E940EFF9989DCCD7A37210FD41D550B36BE6C677FA8ACF2FE7A048058C1903 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
21:35:55.0026 0x23d4  NvStreamNetworkSvc - ok
21:35:55.0076 0x23d4  [ 257677E2E10893D919A128ACFF6BB2F5, C753DED00C497CFA70C26EAF48AD39EA9915C0955AC92D0617C6B341F4C55D82 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
21:35:55.0122 0x23d4  NvStreamSvc - ok
21:35:55.0151 0x23d4  [ AEDA2633444029C9A3E879BD685F8B9C, CA11A737C91CF117AAAB8BBBDD1F59E4EAD5CEE5AECEA8E2DDC07FDC713BB425 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
21:35:55.0177 0x23d4  nvsvc - ok
21:35:55.0181 0x23d4  [ 0BAF8B3DF77EFF04CC0BEA5F2C3657F9, 8E7A542E20416835F31B8648B5724446A78609C0ACC26FCC20E885CF83BE9CB2 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
21:35:55.0187 0x23d4  nvvad_WaveExtensible - ok
21:35:55.0191 0x23d4  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
21:35:55.0201 0x23d4  nv_agp - ok
21:35:55.0209 0x23d4  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
21:35:55.0228 0x23d4  OneSyncSvc - ok
21:35:55.0270 0x23d4  [ A309633A4BA2DE3FC30468C3103E0BA5, 530C707A4FCD36A45E9D370D20105356C8019DE41EF1C1F1A728A523D5FBEE25 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
21:35:55.0309 0x23d4  Origin Client Service - ok
21:35:55.0318 0x23d4  [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:35:55.0325 0x23d4  ose64 - ok
21:35:55.0415 0x23d4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:35:55.0502 0x23d4  osppsvc - ok
21:35:55.0515 0x23d4  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
21:35:55.0532 0x23d4  p2pimsvc - ok
21:35:55.0544 0x23d4  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
21:35:55.0563 0x23d4  p2psvc - ok
21:35:55.0568 0x23d4  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
21:35:55.0577 0x23d4  Parport - ok
21:35:55.0582 0x23d4  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
21:35:55.0591 0x23d4  partmgr - ok
21:35:55.0604 0x23d4  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
21:35:55.0621 0x23d4  PcaSvc - ok
21:35:55.0630 0x23d4  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
21:35:55.0643 0x23d4  pci - ok
21:35:55.0646 0x23d4  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
21:35:55.0652 0x23d4  pciide - ok
21:35:55.0657 0x23d4  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
21:35:55.0666 0x23d4  pcmcia - ok
21:35:55.0669 0x23d4  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
21:35:55.0677 0x23d4  pcw - ok
21:35:55.0681 0x23d4  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
21:35:55.0691 0x23d4  pdc - ok
21:35:55.0707 0x23d4  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
21:35:55.0736 0x23d4  PEAUTH - ok
21:35:55.0779 0x23d4  [ 303D2C90139ABFC1D12E279F0F101710, CE02E335A72011004395DC635EB819B3ED8D00041B9C59024DE246366AF00559 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
21:35:55.0837 0x23d4  PeerDistSvc - ok
21:35:55.0843 0x23d4  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
21:35:55.0851 0x23d4  percsas2i - ok
21:35:55.0854 0x23d4  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
21:35:55.0862 0x23d4  percsas3i - ok
21:35:55.0878 0x23d4  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
21:35:55.0886 0x23d4  PerfHost - ok
21:35:55.0898 0x23d4  [ B0BACDC36CF5D615E8DB4FF8DC269F1E, 10AC96254BD103B55656D1BAF9841615C60A6175B339F8A079F8C2743D09A03A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
21:35:55.0913 0x23d4  PimIndexMaintenanceSvc - ok
21:35:55.0944 0x23d4  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
21:35:55.0993 0x23d4  pla - ok
21:35:55.0999 0x23d4  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
21:35:56.0014 0x23d4  PlugPlay - ok
21:35:56.0017 0x23d4  PnkBstrA - ok
21:35:56.0019 0x23d4  PnkBstrB - ok
21:35:56.0022 0x23d4  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
21:35:56.0031 0x23d4  PNRPAutoReg - ok
21:35:56.0040 0x23d4  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
21:35:56.0057 0x23d4  PNRPsvc - ok
21:35:56.0067 0x23d4  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
21:35:56.0087 0x23d4  PolicyAgent - ok
21:35:56.0093 0x23d4  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
21:35:56.0103 0x23d4  Power - ok
21:35:56.0108 0x23d4  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
21:35:56.0120 0x23d4  PptpMiniport - ok
21:35:56.0183 0x23d4  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
21:35:56.0276 0x23d4  PrintNotify - ok
21:35:56.0284 0x23d4  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
21:35:56.0294 0x23d4  Processor - ok
21:35:56.0304 0x23d4  [ 44406AB6CDCA5BD1195273F07F656D9A, 7DB13FC6512C732DC39DEE52EF6A5257268309F818609E999DEC360BA4277AD4 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
21:35:56.0320 0x23d4  ProfSvc - ok
21:35:56.0327 0x23d4  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
21:35:56.0336 0x23d4  Psched - ok
21:35:56.0345 0x23d4  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
21:35:56.0360 0x23d4  QWAVE - ok
21:35:56.0364 0x23d4  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
21:35:56.0372 0x23d4  QWAVEdrv - ok
21:35:56.0375 0x23d4  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:35:56.0385 0x23d4  RasAcd - ok
21:35:56.0389 0x23d4  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
21:35:56.0401 0x23d4  RasAgileVpn - ok
21:35:56.0406 0x23d4  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:35:56.0418 0x23d4  RasAuto - ok
21:35:56.0423 0x23d4  [ 2521520142F7853E39028AE6BD66E072, 7A7E18E886781B4984826C1FC4BEDABEC62D906063EE2781FD799B0097616B9F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
21:35:56.0433 0x23d4  Rasl2tp - ok
21:35:56.0448 0x23d4  [ 9AD8FCCC95B68BC3129AA2318CE55717, 57227EBF2C1D42063B95AC92F380BAA95E0C6F2E6556F887AACBF63A0482FD24 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:35:56.0476 0x23d4  RasMan - ok
21:35:56.0480 0x23d4  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
21:35:56.0492 0x23d4  RasPppoe - ok
21:35:56.0496 0x23d4  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
21:35:56.0507 0x23d4  RasSstp - ok
21:35:56.0514 0x23d4  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
21:35:56.0521 0x23d4  Razer Game Scanner Service - ok
21:35:56.0532 0x23d4  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:35:56.0550 0x23d4  rdbss - ok
21:35:56.0554 0x23d4  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
21:35:56.0562 0x23d4  rdpbus - ok
21:35:56.0568 0x23d4  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
21:35:56.0579 0x23d4  RDPDR - ok
21:35:56.0585 0x23d4  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:35:56.0592 0x23d4  RdpVideoMiniport - ok
21:35:56.0600 0x23d4  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
21:35:56.0611 0x23d4  rdyboost - ok
21:35:56.0631 0x23d4  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
21:35:56.0660 0x23d4  ReFSv1 - ok
21:35:56.0674 0x23d4  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:35:56.0697 0x23d4  RemoteAccess - ok
21:35:56.0703 0x23d4  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:35:56.0718 0x23d4  RemoteRegistry - ok
21:35:56.0739 0x23d4  [ 1FCB20B3A80FE573971343A5B64051A3, 3FDE55AE86DB8EAC9CFE66DF3F26C84CF927C8D1D32D4A35F9F9746BC72EF32C ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
21:35:56.0774 0x23d4  RetailDemo - ok
21:35:56.0779 0x23d4  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
21:35:56.0789 0x23d4  RpcEptMapper - ok
21:35:56.0792 0x23d4  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:35:56.0801 0x23d4  RpcLocator - ok
21:35:56.0819 0x23d4  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:35:56.0867 0x23d4  RpcSs - ok
21:35:56.0872 0x23d4  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
21:35:56.0884 0x23d4  rspndr - ok
21:35:56.0904 0x23d4  [ AD4E81B1041A75216167DA27B0F91717, D629E62F8B03F05F5E445A08EF9BCA43018B986C82C1504917681CA8409DFCE0 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
21:35:56.0923 0x23d4  rt640x64 - ok
21:35:56.0928 0x23d4  [ 95CF0D1D004531C580F0C0A5BF33A904, EBD575C400A823A8E171B9E58DBA1F7A3CFB942D9D9A69CDD4308121ACF411F2 ] rzendpt         C:\WINDOWS\System32\drivers\rzendpt.sys
21:35:56.0932 0x23d4  rzendpt - ok
21:35:56.0936 0x23d4  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\WINDOWS\system32\drivers\rzpmgrk.sys
21:35:56.0940 0x23d4  rzpmgrk - ok
21:35:56.0945 0x23d4  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\WINDOWS\system32\drivers\rzpnk.sys
21:35:56.0950 0x23d4  rzpnk - ok
21:35:56.0953 0x23d4  [ 630BD8493D336E3FF45F1148A26A9819, 8E7FA60F0AB1964E0F5DA4E615672022CDA40056830CEB3251E02091EF6B636B ] RZSURROUNDVADService C:\WINDOWS\system32\drivers\RzSurroundVAD.sys
21:35:56.0958 0x23d4  RZSURROUNDVADService - ok
21:35:56.0964 0x23d4  [ 481DC8E8E7F770E04CDB847D18237090, 31D6D735FF97B888F346075212AAE18C1DAA77F880D7E1688093BEE15E29BD1B ] rzudd           C:\WINDOWS\System32\drivers\rzudd.sys
21:35:56.0972 0x23d4  rzudd - ok
21:35:56.0974 0x23d4  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
21:35:56.0982 0x23d4  s3cap - ok
21:35:56.0986 0x23d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:35:56.0994 0x23d4  SamSs - ok
21:35:56.0999 0x23d4  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
21:35:57.0008 0x23d4  sbp2port - ok
21:35:57.0015 0x23d4  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
21:35:57.0032 0x23d4  SCardSvr - ok
21:35:57.0038 0x23d4  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
21:35:57.0054 0x23d4  ScDeviceEnum - ok
21:35:57.0058 0x23d4  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:35:57.0069 0x23d4  scfilter - ok
21:35:57.0090 0x23d4  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:35:57.0127 0x23d4  Schedule - ok
21:35:57.0135 0x23d4  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
21:35:57.0151 0x23d4  SCPolicySvc - ok
21:35:57.0154 0x23d4  [ AD7189E85A0801DE0507C610963A3CD0, 0AA9F3C9D252624CC62EC95FD910C6911E136DD3E66159CEB9857BC7AB70FAA2 ] ScpVBus         C:\WINDOWS\System32\drivers\ScpVBus.sys
21:35:57.0159 0x23d4  ScpVBus - ok
21:35:57.0167 0x23d4  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
21:35:57.0179 0x23d4  sdbus - ok
21:35:57.0185 0x23d4  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
21:35:57.0197 0x23d4  SDRSVC - ok
21:35:57.0202 0x23d4  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
21:35:57.0210 0x23d4  sdstor - ok
21:35:57.0213 0x23d4  [ F2F1E2B5E253A91BD0A623A674A48CD2, EB5982DF138731BFA0411BC21279F35240DDCA2B3101213D99D2A0605ED1BDD0 ] seclogon        C:\WINDOWS\system32\seclogon.dll
21:35:57.0222 0x23d4  seclogon - ok
21:35:57.0226 0x23d4  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
21:35:57.0240 0x23d4  SENS - ok
21:35:57.0261 0x23d4  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
21:35:57.0296 0x23d4  SensorDataService - ok
21:35:57.0304 0x23d4  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
21:35:57.0318 0x23d4  SensorService - ok
21:35:57.0325 0x23d4  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
21:35:57.0337 0x23d4  SensrSvc - ok
21:35:57.0341 0x23d4  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
21:35:57.0350 0x23d4  SerCx - ok
21:35:57.0355 0x23d4  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
21:35:57.0365 0x23d4  SerCx2 - ok
21:35:57.0368 0x23d4  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
21:35:57.0376 0x23d4  Serenum - ok
21:35:57.0380 0x23d4  [ 997B78F8E312450C6CF31FA58EDDC84F, BB03E85EB844C0F12CB15F8ACE70E6A0B17B49034484E0AF94335C481F6CE8A0 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
21:35:57.0390 0x23d4  Serial - ok
21:35:57.0393 0x23d4  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
21:35:57.0401 0x23d4  sermouse - ok
21:35:57.0413 0x23d4  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
21:35:57.0431 0x23d4  SessionEnv - ok
21:35:57.0436 0x23d4  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
21:35:57.0444 0x23d4  sfloppy - ok
21:35:57.0455 0x23d4  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:35:57.0477 0x23d4  SharedAccess - ok
21:35:57.0492 0x23d4  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:35:57.0523 0x23d4  ShellHWDetection - ok
21:35:57.0527 0x23d4  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:35:57.0534 0x23d4  SiSRaid2 - ok
21:35:57.0539 0x23d4  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
21:35:57.0547 0x23d4  SiSRaid4 - ok
21:35:57.0550 0x23d4  [ AF9CA3A881483E6999CB2764BDAD3414, 95D6F7DA34DAD2CC1E4BC0B0867FA7E90293FB082EE0372DF5FE663E2AFD7AA4 ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
21:35:57.0555 0x23d4  SmbDrvI - ok
21:35:57.0558 0x23d4  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
21:35:57.0570 0x23d4  smphost - ok
21:35:57.0583 0x23d4  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
21:35:57.0620 0x23d4  SmsRouter - ok
21:35:57.0630 0x23d4  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
21:35:57.0641 0x23d4  SNMPTRAP - ok
21:35:57.0653 0x23d4  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
21:35:57.0681 0x23d4  spaceport - ok
21:35:57.0689 0x23d4  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
21:35:57.0698 0x23d4  SpbCx - ok
21:35:57.0716 0x23d4  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
21:35:57.0748 0x23d4  Spooler - ok
21:35:57.0886 0x23d4  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
21:35:58.0025 0x23d4  sppsvc - ok
21:35:58.0041 0x23d4  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:35:58.0059 0x23d4  srv - ok
21:35:58.0074 0x23d4  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
21:35:58.0098 0x23d4  srv2 - ok
21:35:58.0107 0x23d4  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:35:58.0121 0x23d4  srvnet - ok
21:35:58.0128 0x23d4  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:35:58.0144 0x23d4  SSDPSRV - ok
21:35:58.0152 0x23d4  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
21:35:58.0167 0x23d4  SstpSvc - ok
21:35:58.0174 0x23d4  [ 36C3697CA09B23C77BDF95A6B0B57310, DAEF9CFBDE444A80FB41DA0BC5C3C4E1E4B535497A5EDA43EC8768A6EC42E4EA ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:35:58.0182 0x23d4  ssudmdm - ok
21:35:58.0234 0x23d4  [ 78760751FBCB900F6F68CA1700DAE2DC, 356914797056B11745E18ECD033B8DC801C3C3DD6C5127FCD430A02C4FDD34A9 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
21:35:58.0312 0x23d4  StateRepository - ok
21:35:58.0332 0x23d4  [ BE826A247D22F2FDF24B92AD40049F89, 06996ECCE5A694DEFDC99DB56F45DD0ABD9A2150581F1FD132FBBD863C474DE3 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:35:58.0350 0x23d4  Steam Client Service - ok
21:35:58.0362 0x23d4  [ 843F5E097F35534FBD18A84156E30687, BA446B8A3A2675D862BA841020BD651FDE8BBBF05BB6C0F8F483CCE0D5BF7C14 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:35:58.0373 0x23d4  Stereo Service - ok
21:35:58.0376 0x23d4  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
21:35:58.0383 0x23d4  stexstor - ok
21:35:58.0386 0x23d4  [ 7C4D2F167FA6153B4FE7145FE6D3DF15, F39ED9CDF323DDC57D0F64F9CC121E911EA53819A3A941A2F6EA557C35FCB372 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
21:35:58.0394 0x23d4  StillCam - ok
21:35:58.0408 0x23d4  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
21:35:58.0434 0x23d4  stisvc - ok
21:35:58.0440 0x23d4  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
21:35:58.0449 0x23d4  storahci - ok
21:35:58.0453 0x23d4  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
21:35:58.0460 0x23d4  storflt - ok
21:35:58.0464 0x23d4  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
21:35:58.0472 0x23d4  stornvme - ok
21:35:58.0477 0x23d4  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
21:35:58.0486 0x23d4  storqosflt - ok
21:35:58.0496 0x23d4  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
21:35:58.0514 0x23d4  StorSvc - ok
21:35:58.0518 0x23d4  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
21:35:58.0525 0x23d4  storufs - ok
21:35:58.0528 0x23d4  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
21:35:58.0536 0x23d4  storvsc - ok
21:35:58.0539 0x23d4  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
21:35:58.0551 0x23d4  svsvc - ok
21:35:58.0562 0x23d4  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
21:35:58.0569 0x23d4  swenum - ok
21:35:58.0581 0x23d4  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
21:35:58.0605 0x23d4  swprv - ok
21:35:58.0609 0x23d4  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
21:35:58.0618 0x23d4  Synth3dVsc - ok
21:35:58.0641 0x23d4  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
21:35:58.0679 0x23d4  SysMain - ok
21:35:58.0689 0x23d4  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:35:58.0708 0x23d4  SystemEventsBroker - ok
21:35:58.0717 0x23d4  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:35:58.0742 0x23d4  TabletInputService - ok
21:35:58.0750 0x23d4  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:35:58.0767 0x23d4  TapiSrv - ok
21:35:58.0813 0x23d4  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
21:35:58.0868 0x23d4  Tcpip - ok
21:35:58.0915 0x23d4  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
21:35:58.0969 0x23d4  Tcpip6 - ok
21:35:58.0975 0x23d4  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
21:35:58.0986 0x23d4  tcpipreg - ok
21:35:58.0992 0x23d4  [ D42AC03ACF9CA67693D1D9BB4D2A0BC8, D39D5180F3CDB23B4551A8C98F3C92A960B4CC9FA48E0FE11A6D89B0C247783F ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
21:35:59.0001 0x23d4  tdx - ok
21:35:59.0144 0x23d4  [ E9D702580349582413503A28F8329B32, 405CEA2DB2B9EE9EF87E454375BEA6A3F6FB30B95BBD9F397129C73D4CCCC282 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
21:35:59.0262 0x23d4  TeamViewer - ok
21:35:59.0271 0x23d4  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
21:35:59.0279 0x23d4  terminpt - ok
21:35:59.0300 0x23d4  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
21:35:59.0336 0x23d4  TermService - ok
21:35:59.0341 0x23d4  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
21:35:59.0357 0x23d4  Themes - ok
21:35:59.0370 0x23d4  [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
21:35:59.0392 0x23d4  tiledatamodelsvc - ok
21:35:59.0398 0x23d4  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
21:35:59.0411 0x23d4  TimeBroker - ok
21:35:59.0418 0x23d4  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
21:35:59.0429 0x23d4  TPM - ok
21:35:59.0434 0x23d4  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
21:35:59.0445 0x23d4  TrkWks - ok
21:35:59.0450 0x23d4  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:35:59.0460 0x23d4  TrustedInstaller - ok
21:35:59.0465 0x23d4  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
21:35:59.0474 0x23d4  TsUsbFlt - ok
21:35:59.0477 0x23d4  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:35:59.0485 0x23d4  TsUsbGD - ok
21:35:59.0490 0x23d4  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
21:35:59.0502 0x23d4  tunnel - ok
21:35:59.0506 0x23d4  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
21:35:59.0513 0x23d4  uagp35 - ok
21:35:59.0517 0x23d4  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
21:35:59.0526 0x23d4  UASPStor - ok
21:35:59.0529 0x23d4  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
21:35:59.0538 0x23d4  UcmCx0101 - ok
21:35:59.0542 0x23d4  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
21:35:59.0551 0x23d4  UcmUcsi - ok
21:35:59.0558 0x23d4  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
21:35:59.0568 0x23d4  Ucx01000 - ok
21:35:59.0572 0x23d4  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
21:35:59.0580 0x23d4  UdeCx - ok
21:35:59.0589 0x23d4  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
21:35:59.0609 0x23d4  udfs - ok
21:35:59.0612 0x23d4  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
21:35:59.0619 0x23d4  UEFI - ok
21:35:59.0627 0x23d4  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
21:35:59.0638 0x23d4  Ufx01000 - ok
21:35:59.0642 0x23d4  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
21:35:59.0651 0x23d4  UfxChipidea - ok
21:35:59.0656 0x23d4  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
21:35:59.0665 0x23d4  ufxsynopsys - ok
21:35:59.0670 0x23d4  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
21:35:59.0683 0x23d4  UI0Detect - ok
21:35:59.0686 0x23d4  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
21:35:59.0694 0x23d4  uliagpkx - ok
21:35:59.0698 0x23d4  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
21:35:59.0707 0x23d4  umbus - ok
21:35:59.0710 0x23d4  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
21:35:59.0718 0x23d4  UmPass - ok
21:35:59.0726 0x23d4  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
21:35:59.0741 0x23d4  UmRdpService - ok
21:35:59.0766 0x23d4  [ B21DEA1F5F1636B82B0DAED7D04222F6, A8A6F7FAA7432682CCE1EB99FED951B4F83C4D0997E5870E9775AB4B6A2B558E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
21:35:59.0806 0x23d4  UnistoreSvc - ok
21:35:59.0819 0x23d4  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:35:59.0841 0x23d4  upnphost - ok
21:35:59.0845 0x23d4  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
21:35:59.0852 0x23d4  UrsChipidea - ok
21:35:59.0856 0x23d4  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
21:35:59.0863 0x23d4  UrsCx01000 - ok
21:35:59.0866 0x23d4  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
21:35:59.0874 0x23d4  UrsSynopsys - ok
21:35:59.0879 0x23d4  [ 1DC6166DB6C4FEFE87D9B9105044E5BE, D19B867C0E900B596B4180390A6E4F2ECCBDF8FBD49561C23DBA7D460B8F44A9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
21:35:59.0890 0x23d4  usbaudio - ok
21:35:59.0895 0x23d4  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
21:35:59.0905 0x23d4  usbccgp - ok
21:35:59.0909 0x23d4  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
21:35:59.0920 0x23d4  usbcir - ok
21:35:59.0925 0x23d4  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
21:35:59.0933 0x23d4  usbehci - ok
21:35:59.0945 0x23d4  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
21:35:59.0961 0x23d4  usbhub - ok
21:35:59.0974 0x23d4  [ 1BDA1FD02783566F0B20EB0E2517F85C, 4C86DC962BBE4CA5AE466A37CF647D84CE2A34DA7F861751587841FC10CFA09D ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
21:35:59.0990 0x23d4  USBHUB3 - ok
21:35:59.0994 0x23d4  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
21:36:00.0003 0x23d4  usbohci - ok
21:36:00.0006 0x23d4  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
21:36:00.0015 0x23d4  usbprint - ok
21:36:00.0018 0x23d4  [ C089A7CA55BE99228AB5E80D01583B6D, 5BD8C3BFB0A922686736866D359EC3900407069D9FB4A7032666A2FB0231B831 ] usbrndis6       C:\WINDOWS\System32\drivers\usb80236.sys
21:36:00.0026 0x23d4  usbrndis6 - ok
21:36:00.0029 0x23d4  [ 6D12FF8801832846542FD2B078B6E05F, 531AE5210012806A34698256EEF19A31329751198EA44FBB142244607D0CDE57 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
21:36:00.0039 0x23d4  usbser - ok
21:36:00.0044 0x23d4  [ 3EB26D5963844FFAE63A93024D502BAE, 383872A864DCE13BF08A841000640FA61DFCA21E431D3AE044DD05DADFF911E6 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:36:00.0053 0x23d4  USBSTOR - ok
21:36:00.0056 0x23d4  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
21:36:00.0065 0x23d4  usbuhci - ok
21:36:00.0075 0x23d4  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:36:00.0089 0x23d4  USBXHCI - ok
21:36:00.0092 0x23d4  [ 21F376A4E05EAAA1690C0897352C2B3B, 5E345AAF884C6BC57357B5ED86C8334EFE7E68EE7292702DD0045C99FC09A186 ] usb_rndisx      C:\WINDOWS\System32\drivers\usb8023x.sys
21:36:00.0100 0x23d4  usb_rndisx - ok
21:36:00.0128 0x23d4  [ AEB8DAB1630E05FBA1ADBB47701AE336, 67AAA8A3EAE46D43A7344749198C8991B4D71687EF9B8044806D0413580DE1DD ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
21:36:00.0174 0x23d4  UserDataSvc - ok
21:36:00.0192 0x23d4  [ A2FD4588F579F8671E4AB1064633CB46, A2BBF6AF7D84F5AE01BFFF69F6CCBACFC0651A2DE2BBD226C6D90208298333D5 ] UserManager     C:\WINDOWS\System32\usermgr.dll
21:36:00.0219 0x23d4  UserManager - ok
21:36:00.0229 0x23d4  [ 773C84D3C0477C477E19C854F6B55C61, 4D5CB0098F56A2A42DA83E1569451ACC704CEBE6110D47AC65B8D95E39B7F76A ] UsoSvc          C:\WINDOWS\system32\usocore.dll
21:36:00.0247 0x23d4  UsoSvc - ok
21:36:00.0250 0x23d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
21:36:00.0259 0x23d4  VaultSvc - ok
21:36:00.0262 0x23d4  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
21:36:00.0269 0x23d4  vdrvroot - ok
21:36:00.0285 0x23d4  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
21:36:00.0331 0x23d4  vds - ok
21:36:00.0337 0x23d4  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
21:36:00.0348 0x23d4  VerifierExt - ok
21:36:00.0367 0x23d4  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
21:36:00.0400 0x23d4  vhdmp - ok
21:36:00.0404 0x23d4  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
21:36:00.0413 0x23d4  vhf - ok
21:36:00.0416 0x23d4  [ 3B59BB6D10CF969DBE4DB93D9EAD7FB4, 8BD4648AAD460F276C79AF81D1479E781E62D292F3318D39B53703403E57E52F ] VKbms           C:\WINDOWS\System32\drivers\VKbms.sys
21:36:00.0422 0x23d4  VKbms - ok
21:36:00.0427 0x23d4  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
21:36:00.0436 0x23d4  vmbus - ok
21:36:00.0439 0x23d4  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
21:36:00.0447 0x23d4  VMBusHID - ok
21:36:00.0449 0x23d4  vmci - ok
21:36:00.0461 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:36:00.0481 0x23d4  vmicguestinterface - ok
21:36:00.0493 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
21:36:00.0513 0x23d4  vmicheartbeat - ok
21:36:00.0525 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:36:00.0545 0x23d4  vmickvpexchange - ok
21:36:00.0556 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
21:36:00.0577 0x23d4  vmicrdv - ok
21:36:00.0588 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
21:36:00.0609 0x23d4  vmicshutdown - ok
21:36:00.0620 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
21:36:00.0654 0x23d4  vmictimesync - ok
21:36:00.0667 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
21:36:00.0688 0x23d4  vmicvmsession - ok
21:36:00.0700 0x23d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
21:36:00.0721 0x23d4  vmicvss - ok
21:36:00.0723 0x23d4  VMnetAdapter - ok
21:36:00.0728 0x23d4  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
21:36:00.0736 0x23d4  volmgr - ok
21:36:00.0745 0x23d4  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
21:36:00.0759 0x23d4  volmgrx - ok
21:36:00.0769 0x23d4  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
21:36:00.0783 0x23d4  volsnap - ok
21:36:00.0787 0x23d4  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
21:36:00.0795 0x23d4  vpci - ok
21:36:00.0801 0x23d4  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
21:36:00.0811 0x23d4  vsmraid - ok
21:36:00.0839 0x23d4  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
21:36:00.0887 0x23d4  VSS - ok
21:36:00.0897 0x23d4  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
21:36:00.0909 0x23d4  VSTXRAID - ok
21:36:00.0913 0x23d4  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
21:36:00.0921 0x23d4  vwifibus - ok
21:36:00.0925 0x23d4  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
21:36:00.0936 0x23d4  vwififlt - ok
21:36:00.0949 0x23d4  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
21:36:00.0974 0x23d4  W32Time - ok
21:36:00.0978 0x23d4  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
21:36:00.0986 0x23d4  WacomPen - ok
21:36:00.0998 0x23d4  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
21:36:01.0019 0x23d4  WalletService - ok
21:36:01.0024 0x23d4  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:36:01.0035 0x23d4  wanarp - ok
21:36:01.0039 0x23d4  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:36:01.0050 0x23d4  wanarpv6 - ok
21:36:01.0084 0x23d4  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
21:36:01.0147 0x23d4  wbengine - ok
21:36:01.0162 0x23d4  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
21:36:01.0187 0x23d4  WbioSrvc - ok
21:36:01.0201 0x23d4  [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
21:36:01.0226 0x23d4  Wcmsvc - ok
21:36:01.0238 0x23d4  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
21:36:01.0259 0x23d4  wcncsvc - ok
21:36:01.0263 0x23d4  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:36:01.0272 0x23d4  WcsPlugInService - ok
21:36:01.0276 0x23d4  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
21:36:01.0284 0x23d4  WdBoot - ok
21:36:01.0303 0x23d4  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
21:36:01.0325 0x23d4  Wdf01000 - ok
21:36:01.0334 0x23d4  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
21:36:01.0346 0x23d4  WdFilter - ok
21:36:01.0351 0x23d4  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
21:36:01.0366 0x23d4  WdiServiceHost - ok
21:36:01.0369 0x23d4  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
21:36:01.0384 0x23d4  WdiSystemHost - ok
21:36:01.0398 0x23d4  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
21:36:01.0423 0x23d4  wdiwifi - ok
21:36:01.0429 0x23d4  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:36:01.0438 0x23d4  WdNisDrv - ok
21:36:01.0440 0x23d4  WdNisSvc - ok
21:36:01.0448 0x23d4  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:36:01.0466 0x23d4  WebClient - ok
21:36:01.0473 0x23d4  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
21:36:01.0489 0x23d4  Wecsvc - ok
21:36:01.0492 0x23d4  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
21:36:01.0505 0x23d4  WEPHOSTSVC - ok
21:36:01.0509 0x23d4  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
21:36:01.0528 0x23d4  wercplsupport - ok
21:36:01.0533 0x23d4  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
21:36:01.0550 0x23d4  WerSvc - ok
21:36:01.0552 0x23d4  wfpcapture - ok
21:36:01.0557 0x23d4  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
21:36:01.0567 0x23d4  WFPLWFS - ok
21:36:01.0571 0x23d4  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
21:36:01.0582 0x23d4  WiaRpc - ok
21:36:01.0586 0x23d4  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
21:36:01.0593 0x23d4  WIMMount - ok
21:36:01.0595 0x23d4  WinDefend - ok
21:36:01.0603 0x23d4  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
21:36:01.0612 0x23d4  WindowsTrustedRT - ok
21:36:01.0615 0x23d4  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
21:36:01.0622 0x23d4  WindowsTrustedRTProxy - ok
21:36:01.0640 0x23d4  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:36:01.0672 0x23d4  WinHttpAutoProxySvc - ok
21:36:01.0675 0x23d4  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad
         

Alt 07.05.2016, 20:41   #5
TheNoobly
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



TDSSKILLER teil 2
Code:
ATTFilter
C:\WINDOWS\System32\drivers\winmad.sys
21:36:01.0683 0x23d4  WinMad - ok
21:36:01.0693 0x23d4  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:36:01.0707 0x23d4  Winmgmt - ok
21:36:01.0755 0x23d4  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
21:36:01.0832 0x23d4  WinRM - ok
21:36:01.0840 0x23d4  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
21:36:01.0850 0x23d4  WINUSB - ok
21:36:01.0854 0x23d4  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
21:36:01.0861 0x23d4  WinVerbs - ok
21:36:01.0904 0x23d4  [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
21:36:01.0971 0x23d4  WlanSvc - ok
21:36:02.0012 0x23d4  [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
21:36:02.0074 0x23d4  wlidsvc - ok
21:36:02.0078 0x23d4  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
21:36:02.0086 0x23d4  WmiAcpi - ok
21:36:02.0095 0x23d4  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:36:02.0107 0x23d4  wmiApSrv - ok
21:36:02.0110 0x23d4  WMPNetworkSvc - ok
21:36:02.0117 0x23d4  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
21:36:02.0128 0x23d4  Wof - ok
21:36:02.0185 0x23d4  [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
21:36:02.0241 0x23d4  workfolderssvc - ok
21:36:02.0246 0x23d4  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:36:02.0254 0x23d4  wpcfltr - ok
21:36:02.0260 0x23d4  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
21:36:02.0271 0x23d4  WPDBusEnum - ok
21:36:02.0274 0x23d4  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:36:02.0281 0x23d4  WpdUpFltr - ok
21:36:02.0285 0x23d4  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
21:36:02.0294 0x23d4  WpnService - ok
21:36:02.0298 0x23d4  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:36:02.0307 0x23d4  ws2ifsl - ok
21:36:02.0314 0x23d4  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
21:36:02.0329 0x23d4  wscsvc - ok
21:36:02.0331 0x23d4  WSearch - ok
21:36:02.0414 0x23d4  [ 1E3F1D2EDDBC4A84326D52253FAF061E, 8C0D0C5F97100B5A4C22E1A43FDF5EEE581B48E7DCE1567BBE2269091A04BD82 ] WSService       C:\WINDOWS\System32\WSService.dll
21:36:02.0492 0x23d4  WSService - ok
21:36:02.0538 0x23d4  [ 4787FD0852F34388200A44CBCFA0CE1E, 0664DDC80C859D109B54AB856D1B323A4AE0C9652CCD43582663B1285D434B1F ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
21:36:02.0604 0x23d4  wuauserv - ok
21:36:02.0611 0x23d4  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
21:36:02.0622 0x23d4  WudfPf - ok
21:36:02.0629 0x23d4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
21:36:02.0646 0x23d4  WUDFRd - ok
21:36:02.0655 0x23d4  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
21:36:02.0674 0x23d4  wudfsvc - ok
21:36:02.0681 0x23d4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:36:02.0695 0x23d4  WUDFWpdFs - ok
21:36:02.0701 0x23d4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:36:02.0714 0x23d4  WUDFWpdMtp - ok
21:36:02.0740 0x23d4  [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
21:36:02.0781 0x23d4  WwanSvc - ok
21:36:02.0801 0x23d4  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
21:36:02.0833 0x23d4  XblAuthManager - ok
21:36:02.0857 0x23d4  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
21:36:02.0896 0x23d4  XblGameSave - ok
21:36:02.0904 0x23d4  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
21:36:02.0917 0x23d4  xboxgip - ok
21:36:02.0938 0x23d4  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
21:36:02.0990 0x23d4  XboxNetApiSvc - ok
21:36:02.0994 0x23d4  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
21:36:03.0002 0x23d4  xinputhid - ok
21:36:03.0007 0x23d4  [ 1E80EDF59994925D6AF76D87564588E1, 40D02073F3A17B6C10F496341598D39F55CE70AD626BADE1BBD2021AB1A018F9 ] xusb22          C:\WINDOWS\System32\drivers\xusb22.sys
21:36:03.0017 0x23d4  xusb22 - ok
21:36:03.0018 0x23d4  ================ Scan global ===============================
21:36:03.0022 0x23d4  [ 14627B8C27BBD16474846D289AFBD216, ADE75FF9F300B87804C3882C7E3EAA74ED58574EA8A390FF4AA4736B4E091547 ] C:\WINDOWS\system32\basesrv.dll
21:36:03.0030 0x23d4  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
21:36:03.0037 0x23d4  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
21:36:03.0050 0x23d4  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
21:36:03.0057 0x23d4  [ Global ] - ok
21:36:03.0057 0x23d4  ================ Scan MBR ==================================
21:36:03.0059 0x23d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:36:03.0114 0x23d4  \Device\Harddisk0\DR0 - ok
21:36:03.0114 0x23d4  ================ Scan VBR ==================================
21:36:03.0115 0x23d4  [ 98221C6C83F683A35F4A3E9994DFBDDD ] \Device\Harddisk0\DR0\Partition1
21:36:03.0116 0x23d4  \Device\Harddisk0\DR0\Partition1 - ok
21:36:03.0118 0x23d4  [ 41829AE10CD65F881617E11C1582ED95 ] \Device\Harddisk0\DR0\Partition2
21:36:03.0119 0x23d4  \Device\Harddisk0\DR0\Partition2 - ok
21:36:03.0119 0x23d4  ================ Scan generic autorun ======================
21:36:03.0164 0x23d4  [ 013B4F6773E40EE2377C5DEDCBEB20CA, 12CE6EAED08DCB29C8D9813391F412BE396AF540408CB813943FDD1D0C98763B ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
21:36:03.0218 0x23d4  NvBackend - ok
21:36:03.0223 0x23d4  [ 5DED2A3F11AE916C8F2724947E736261, 35402466FE6D02CC85A27171F55D9F7FD0AAF018D3CC410E46F0B43DCE7EA080 ] C:\WINDOWS\system32\rundll32.exe
21:36:03.0240 0x23d4  ShadowPlay - ok
21:36:03.0247 0x23d4  [ 5917DC01B9AC1FD64136D4691FFC7987, 8AAB5E31A4F4056843EC0896BF3F0A91604FF39F4AD439F64D2E882E72511A98 ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
21:36:03.0255 0x23d4  Classic Start Menu - ok
21:36:03.0273 0x23d4  [ ED43758BF94B8A5221D69F1B7F63F13D, F6E7418823E45085F4D4F50DD25A55ED517C0A335C6C2F69A1139B30677D3DA9 ] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
21:36:03.0298 0x2a98  Object required for P2P: [ CA01B565B1EAFAC99D368A25013B4A59 ] NvNetworkService
21:36:03.0301 0x23d4  XboxStat - ok
21:36:03.0307 0x23d4  [ 1FAD6ACA65366E1AFF10EC6B02F47A84, 2DA16D06F553FC081E374F1699EC240D7FFFDD39D42774F044AE3DE09F2C8619 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
21:36:03.0313 0x23d4  BCSSync - ok
21:36:03.0622 0x23d4  [ CE56F859CEF04D23458FC9C175D5F18B, 85358687BD0E35142FE9C414E98A26740BA3F5028CF82C06B5CA2A4DB9CB22F4 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
21:36:03.0960 0x23d4  RTHDVCPL - ok
21:36:03.0986 0x23d4  [ A08711A28E5B097BD6C18061A27F96DD, FF3729D62C68E2A3AC8CF6C0F97B4BC9CE390D3C8F4A0682A150DF3C3DE75B13 ] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
21:36:04.0002 0x23d4  Razer Synapse - ok
21:36:04.0051 0x23d4  [ EA5E7C7CFB0F42B897236B6044FD79ED, 9BCF7D763344DB4C24EE64EEA720799BD7E0FEB35D2705DD19D89EF28CBB3231 ] C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenHelper.exe
21:36:04.0086 0x23d4  KrakenLauncher - ok
21:36:04.0095 0x23d4  [ 5A0BDEC302911CD7A5AF867905E04615, B03DAEA2A52F47F933C003E4D354A46C6428B835861B7AD1848F40F50439C2B1 ] C:\Program Files (x86)\Razer\Abyssus\razerhid.exe
21:36:04.0106 0x23d4  Abyssus - detected UnsignedFile.Multi.Generic ( 1 )
21:36:05.0694 0x2a98  Object send P2P result: true
21:36:05.0695 0x2a98  Object required for P2P: [ 5EB1CDFC4EBA108EF472DD91ADF86E7A ] NvStreamKms
21:36:06.0425 0x23d4  Detect skipped due to KSN trusted
21:36:06.0425 0x23d4  Abyssus - ok
21:36:06.0450 0x23d4  [ 248FB4D46C7F4A39D601EA870EE55AC4, C9A3DA95F76AC9A6A032EE6DC18F9CA940B3A4A906B9DF983E5A8A6F1B8130A6 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:36:06.0469 0x23d4  SunJavaUpdateSched - ok
21:36:06.0589 0x23d4  [ 6E62D050FB78F1A46C388A526F8C6B58, E1A29FB35C7E2F52FC78AEB41E90207B24BAFFE763FC6B1D35DF027DE29AD6FF ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
21:36:06.0704 0x23d4  LogMeIn Hamachi Ui - ok
21:36:06.0863 0x23d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
21:36:07.0045 0x23d4  OneDriveSetup - ok
21:36:07.0192 0x23d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
21:36:07.0326 0x23d4  OneDriveSetup - ok
21:36:07.0348 0x23d4  [ 9F2ECA252720B25E8FEC1CAB2984B98D, 476EE2929901CD43F15869B763376393AA0942A3B934532055E037C6DCE3CD2D ] C:\Users\Osman\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:36:07.0366 0x23d4  OneDrive - ok
21:36:07.0438 0x23d4  [ 341ADA552AAC541FD34C262296C256EE, 32672460EDDD46550955508343904705D8F26E10F713E3CACDC84689567A9ECF ] C:\Program Files (x86)\Steam\steam.exe
21:36:07.0491 0x23d4  Steam - ok
21:36:07.0543 0x23d4  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
21:36:07.0600 0x23d4  HP Photosmart 5520 series (NET) - ok
21:36:07.0602 0x23d4  ApowersoftScreenRecorder - ok
21:36:07.0621 0x23d4  [ 17B0ED32D0FD1DAF7839DFD06E80F956, CE449545D8E33893089E1360752F0EADC03ACCCEFB5ABB0497F68BE441F166B9 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
21:36:07.0643 0x23d4  GoogleChromeAutoLaunch_3ACC888A5A6098640C4BFEF07E11DB82 - ok
21:36:07.0644 0x23d4  Waiting for KSN requests completion. In queue: 279
21:36:08.0093 0x2a98  Object send P2P result: true
21:36:08.0093 0x2a98  Object required for P2P: [ B99F8FE600410AE2CCDE0C4D9ADAB77E ] NvStreamNetworkSvc
21:36:08.0645 0x23d4  Waiting for KSN requests completion. In queue: 278
21:36:09.0646 0x23d4  Waiting for KSN requests completion. In queue: 278
21:36:10.0050 0x19f8  Object required for P2P: [ 0968D575D9108497A6DC37749D4A6C4F ] wlidsvc
21:36:10.0505 0x2a98  Object send P2P result: true
21:36:10.0507 0x2a98  Object required for P2P: [ AEDA2633444029C9A3E879BD685F8B9C ] nvsvc
21:36:10.0646 0x23d4  Waiting for KSN requests completion. In queue: 241
21:36:11.0647 0x23d4  Waiting for KSN requests completion. In queue: 241
21:36:12.0456 0x19f8  Object send P2P result: true
21:36:12.0462 0x19f8  Object required for P2P: [ 013B4F6773E40EE2377C5DEDCBEB20CA ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
21:36:12.0647 0x23d4  Waiting for KSN requests completion. In queue: 216
21:36:12.0911 0x2a98  Object send P2P result: true
21:36:12.0919 0x2a98  Object required for P2P: [ 5332223C0D4CEC95787607906B53E861 ] Razer Game Scanner Service
21:36:13.0648 0x23d4  Waiting for KSN requests completion. In queue: 174
21:36:14.0649 0x23d4  Waiting for KSN requests completion. In queue: 174
21:36:14.0867 0x19f8  Object send P2P result: true
21:36:14.0868 0x19f8  Object required for P2P: [ 341ADA552AAC541FD34C262296C256EE ] C:\Program Files (x86)\Steam\steam.exe
21:36:15.0314 0x2a98  Object send P2P result: true
21:36:15.0326 0x2a98  Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip
21:36:15.0649 0x23d4  Waiting for KSN requests completion. In queue: 81
21:36:16.0650 0x23d4  Waiting for KSN requests completion. In queue: 81
21:36:17.0281 0x19f8  Object send P2P result: true
21:36:17.0651 0x23d4  Waiting for KSN requests completion. In queue: 78
21:36:17.0738 0x2a98  Object send P2P result: true
21:36:17.0738 0x2a98  Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip6
21:36:18.0651 0x23d4  Waiting for KSN requests completion. In queue: 77
21:36:19.0651 0x23d4  Waiting for KSN requests completion. In queue: 77
21:36:20.0147 0x2a98  Object send P2P result: true
21:36:20.0667 0x23d4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x61100 ( enabled : updated )
21:36:20.0678 0x23d4  Win FW state via NFP2: enabled ( trusted )
21:36:23.0025 0x23d4  ============================================================
21:36:23.0025 0x23d4  Scan finished
21:36:23.0025 0x23d4  ============================================================
21:36:23.0037 0x19a8  Detected object count: 0
21:36:23.0037 0x19a8  Actual detected object count: 0
         


Alt 08.05.2016, 11:12   #6
M-K-D-B
/// TB-Ausbilder
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



Servus,



Logdateien sehen gut aus, ich sehe keine Malware.


Deinstalliere Google Chrome über die Systemsteuerung und wähle die Option "Alle Browserdaten löschen" mit aus.
Starte den Rechner neu auf und installiere Chrome neu.


Dann nochmal Rückmeldung.

Alt 08.05.2016, 21:20   #7
TheNoobly
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



wurde bereits gemacht bevor ich hier schrieb. Leider passiert dies nun auch manchmal auf Steam wenn ich scrollen muss.

Alt 09.05.2016, 16:16   #8
M-K-D-B
/// TB-Ausbilder
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



Zitat:
Zitat von TheNoobly Beitrag anzeigen
wurde bereits gemacht bevor ich hier schrieb. Leider passiert dies nun auch manchmal auf Steam wenn ich scrollen muss.
Wie gesagt, Malware ist es nicht, also bist du in diesem Teil des Forums falsch.




Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.
Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.





Cleanup:
Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.
Hinweis:
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.





Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:
Browser
Java
Flash-Player
PDF-Reader

Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.




Sofern du noch unentschieden bist, verwende ein einziges der folgenden Antivirusprogramme mit Echtzeitscanner und stets aktueller Signaturendatenbank:

   
 

Microsoft Security Essentials (MSE) ist ab Windows 8 fest eingebaut, wenn du also Windows 8, 8.1 oder 10 und dich für MSE entschieden hast, brauchst du nicht extra MSE zu installieren. Bei Windows 7 muss es aber manuell installiert oder über die Windows Updates als optionales Update bezogen werden. Selbstverständlich ist ein legales/aktiviertes Windows Voraussetzung dafür.




Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen.




Optional:
Adblock Plus Kann Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren.
NoScript Verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.
Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.

Lade Software von einem sauberen Portal wie .
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner .




Abschließend noch ein paar grundsätzliche Bemerkungen:
  • Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
  • Lade keine Software von Chip, Softonic oder SourceForge. Die dort angebotene Software wird häufig mit einem sog. "Installer" verteilt, mit dem man sich nur unerwünschte Software oder Adware installiert.
  • Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Selbst Microsoft unterstützt sog. Registry-Cleaner nicht. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.




Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.

Alt 10.05.2016, 19:41   #9
M-K-D-B
/// TB-Ausbilder
 
Chrome flackert, wieder - Standard

Chrome flackert, wieder



Ich bin froh, dass wir helfen konnten

In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest:
Lob, Kritik und Wünsche
Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank!

Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen.

Antwort

Themen zu Chrome flackert, wieder
abteilung, automatisch, chrome, einfach, flackert, geholfen, gewisse, gewissen, kurze, problem, rum, scrollen, seite, seiten, versuche



Ähnliche Themen: Chrome flackert, wieder


  1. Chrome flackert, wieder
    Netzwerk und Hardware - 14.05.2016 (5)
  2. Chrome flackert, CMD Pop Up
    Netzwerk und Hardware - 08.04.2016 (16)
  3. a.karmakitty.info öffnet sich in google chrome immer wieder
    Log-Analyse und Auswertung - 01.01.2016 (9)
  4. PC sehr langsam, Explorer sowie Chrome hängen immer wieder, WIN7
    Log-Analyse und Auswertung - 15.10.2015 (12)
  5. Pup.optional.vosteran.a über Google Chrome, kommt immer wieder !
    Plagegeister aller Art und deren Bekämpfung - 01.04.2015 (13)
  6. Chrome öffnet immer wieder Werbung
    Log-Analyse und Auswertung - 30.08.2014 (8)
  7. Win 7 Pro / Chrome / YoTBoooKMaRRk 1.1 kommt immer wieder
    Log-Analyse und Auswertung - 07.08.2014 (9)
  8. Chrome scheint totale Probleme zu haben - wieder virus?
    Alles rund um Windows - 02.07.2014 (25)
  9. Chrome Extension Grepo lässt sich nicht verjagen/kommt immer wieder
    Plagegeister aller Art und deren Bekämpfung - 09.06.2014 (50)
  10. Chrome Browser Deaktiviert Sich immer Wieder
    Plagegeister aller Art und deren Bekämpfung - 23.04.2014 (11)
  11. Windows 7 Google Chrome Adware (fun2save) installiert sich immer wieder selbst
    Log-Analyse und Auswertung - 08.01.2014 (9)
  12. schon wieder öffnen sich eigenständig Werbefenster im Chrome -.-
    Plagegeister aller Art und deren Bekämpfung - 05.10.2013 (16)
  13. Sicherheitscenter wird immer wieder deaktiviert, chrome meldet Profil Fehler
    Log-Analyse und Auswertung - 10.06.2013 (3)
  14. Bildschirm flackert
    Netzwerk und Hardware - 02.06.2013 (2)
  15. W32/Infector.Gen8 Virus - Google Chrome startet und beendet sich gleich wieder
    Plagegeister aller Art und deren Bekämpfung - 15.07.2012 (9)
  16. Bildschirm flackert
    Netzwerk und Hardware - 14.11.2007 (8)

Zum Thema Chrome flackert, wieder - Hallo zusammen Mir wurde von felix gesagt ich solls in dieser Abteilung versuchen. Letztes mal hat mir Bruningice mit diesem Problem geholfen jedoch ist das Problem kurze Zeit später wieder - Chrome flackert, wieder...
Archiv
Du betrachtest: Chrome flackert, wieder auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.