Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: C: mit Viren

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 16.06.2016, 20:07   #1
Dzemal
 
C: mit Viren - Standard

C: mit Viren



Hallo Leute,

ich wollte heute ein bisschen Platz auf C: frei machen, als ich C: dann geöffnet habe sind verschiedene rar Dateien mit ähnlichem Namen hintereinander verschwunden und der Speicher wurde immer voller.(Ich hatte die Eigenschaften offen, wegen der Systembereinigung und konnte, das dann da sehen)

Jetzt sind 35gb einfach so weg und die Dateien sind nirgendswo. Ich brauche dringend Hilfe. Am liebsten wäre es mir wenn ich nur C: irgendwie zurücksetzen könnte. Aber hauptsache die 35gb kommen wieder und es klärt sich was, die rar Dateien nun waren.

Vielen Dank im Vorraus

Dzemal

PS: Bin zum 1. Mal hier bitte berichtigt mich, falls etwas falsch/gegen die Regeln war an meinem Beitrag.
Angehängte Grafiken
Dateityp: jpg Screenshot_1.jpg (43,8 KB, 197x aufgerufen)
Dateityp: jpg Screenshot_2.jpg (47,1 KB, 151x aufgerufen)
Dateityp: jpg Screenshot_3.jpg (64,6 KB, 154x aufgerufen)

Alt 17.06.2016, 00:10   #2
burningice
/// Malwareteam
 
C: mit Viren - Standard

C: mit Viren




Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
  • Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
  • Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist
  • Wenn ich dir nicht binnen 36h antworte, sende mir bitte eine persönliche Nachricht!
Los geht's

Schritt: 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Schritt: 2
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________

__________________

Alt 17.06.2016, 12:06   #3
Dzemal
 
C: mit Viren - Standard

C: mit Viren



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:16-06-2016 01
durchgeführt von Dzemal (Administrator) auf HOME-PC (17-06-2016 11:59:48)
Gestartet von C:\Users\Dzemal\Desktop
Geladene Profile: Dzemal (Verfügbare Profile: Dzemal & Dzemal_2)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Users\Dzemal\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\Dzemal\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\Dzemal\AppData\Local\Akamai\netsession_win.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Spotify Ltd) C:\Users\Dzemal\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Spotify Ltd) C:\Users\Dzemal\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files (x86)\Skiller Pro\Monitor.EXE
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.3.0.0\Lightshot.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163520 2015-04-09] (IvoSoft)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)
HKLM\...\Run: [gpuminer] => C:\Users\Dzemal\AppData\Roaming\cpuminer\sgminer\sgminer.cmd
HKLM-x32\...\Run: [Skiller Pro] => C:\Program Files (x86)\Skiller Pro\Monitor.exe [475136 2014-02-26] ()
HKLM-x32\...\Run: [NCUpdateHelper] => C:\Program Files (x86)\NCWest\NCLauncher\NCUpdateHelper.exe
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe -autorun
HKLM-x32\...\Run: [ospd_us_013010060] => [X]
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7405752 2016-06-14] (AVAST Software)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Steam] => "C:\Program Files (x86)\Steam\steam.exe" -silent
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Dzemal\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Spotify] => C:\Users\Dzemal\AppData\Roaming\Spotify\Spotify.exe [6859888 2016-06-03] (Spotify Ltd)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Spotify Web Helper] => C:\Users\Dzemal\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1554032 2016-06-03] (Spotify Ltd)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Speed AutoClicker] => "C:\Users\Dzemal\Downloads\SpeedAutoClicker\SpeedAutoClicker.exe" -startup
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [CyberGhost] => "C:\Program Files\CyberGhost 5\CyberGhost.exe" /autostart /min
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Chromium] => "c:\users\dzemal\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [Battle.net] => D:\Battle.net\Battle.net\Battle.net Launcher.exe [3006952 2016-04-29] (Blizzard Entertainment)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8698584 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [589312 2014-11-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Dzemal\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Dzemal\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Dzemal\AppData\Local\MEGAsync\ShellExtX64.dll Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-06-14] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Dzemal\AppData\Local\MEGAsync\ShellExtX32.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Dzemal\AppData\Local\MEGAsync\ShellExtX32.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Dzemal\AppData\Local\MEGAsync\ShellExtX32.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2015-04-11]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{014DC630-F16F-417D-8183-7520452DD604}: [NameServer] 77.234.40.79
Tcpip\..\Interfaces\{60AB1AC6-CE6D-4EF5-B87A-7C6E9742A9A4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6F777A60-4E36-448F-B2C3-E34C24FDEB36}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1703033675-3188108245-1231952138-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-05] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-06-14] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-05] (Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-04-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-05] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-06-14] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-05] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)

FireFox:
========
FF ProfilePath: C:\Users\Dzemal\AppData\Roaming\Mozilla\Firefox\Profiles\k7svxhgg.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-05-12] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-05] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-05-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2015-02-05] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-05] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-06-03] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin HKU\S-1-5-21-1703033675-3188108245-1231952138-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Dzemal\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS)
FF Extension: Avira Browser Safety - C:\Users\Dzemal\AppData\Roaming\Mozilla\Firefox\Profiles\k7svxhgg.default\Extensions\abs@avira.com [2016-04-13]
FF Extension: Ad Blocker Ultimate - C:\Users\Dzemal\AppData\Roaming\Mozilla\Firefox\Profiles\k7svxhgg.default\Extensions\adblockultimate@adblockultimate.net.xpi [2016-04-13]
FF Extension: Bluhell Firewall - C:\Users\Dzemal\AppData\Roaming\Mozilla\Firefox\Profiles\k7svxhgg.default\Extensions\{6BB5760D-F97E-421B-AF5B-8457A90C3CED}.xpi [2016-04-13]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-06-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
CHR HomePage: Default -> hxxps://www.google.de/
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Profile: C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-08-15]
CHR Extension: (Google Docs) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-15]
CHR Extension: (Google Drive) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (MEGA) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2016-06-17]
CHR Extension: (YouTube) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-06-03]
CHR Extension: (Google-Suche) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Google Tabellen) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-08-15]
CHR Extension: (Google Docs Offline) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-18]
CHR Extension: (AdBlock) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-06-03]
CHR Extension: (Avast Online Security) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-14]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Google Mail) - C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-15]
CHR HKLM\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-06-14]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems, Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-06-14] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [370656 2016-06-14] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [345864 2015-03-19] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S3 Futuremark SystemInfo Service; "C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-14] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-06-14] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-06-14] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [536312 2016-06-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-14] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-06-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-06-14] (AVAST Software)
S3 aswTap; C:\Windows\system32\DRIVERS\aswTap.sys [44640 2016-06-14] (The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-06-14] (AVAST Software)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [46016 2016-06-03] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42064 2016-03-28] (Anchorfree Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Apple, Inc.) [Datei ist nicht signiert]
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-17 11:59 - 2016-06-17 11:59 - 00023764 _____ C:\Users\Dzemal\Desktop\FRST.txt
2016-06-17 11:59 - 2016-06-17 11:59 - 00000000 ___DC C:\FRST
2016-06-17 11:58 - 2016-06-17 11:58 - 02386944 _____ (Farbar) C:\Users\Dzemal\Desktop\FRST64.exe
2016-06-16 20:10 - 2016-06-16 20:10 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2016-06-16 20:10 - 2016-06-03 05:19 - 00113208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-06-16 20:10 - 2016-05-04 04:23 - 00129824 _____ C:\Windows\SysWOW64\vulkan-1.dll
2016-06-16 20:10 - 2016-05-04 04:22 - 00130848 _____ C:\Windows\system32\vulkan-1.dll
2016-06-16 20:10 - 2016-05-04 04:22 - 00045344 _____ C:\Windows\system32\vulkaninfo.exe
2016-06-16 20:10 - 2016-05-04 04:22 - 00040224 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2016-06-16 20:09 - 2016-06-16 20:10 - 00000000 ____D C:\Windows\LastGood
2016-06-16 20:09 - 2016-06-03 09:38 - 39979576 _____ C:\Windows\system32\nvcompiler.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 35115456 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 31603768 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 25377848 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 21802280 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 21346712 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 18143912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 17738592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 16756888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 13460536 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-06-16 20:09 - 2016-06-03 09:38 - 10643240 _____ C:\Windows\system32\nvptxJitCompiler.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 08733608 _____ C:\Windows\SysWOW64\nvptxJitCompiler.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 03512888 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 03065280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 01922616 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436839.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 01581624 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436839.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00985144 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00908736 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00878816 _____ C:\Windows\system32\nvmcumd.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00769984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00707520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00669952 _____ C:\Windows\system32\nvfatbinaryLoader.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00565392 _____ C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00502080 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00476664 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00425016 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00422752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00394912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00178136 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00155768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00153416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00141256 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-06-16 20:09 - 2016-06-03 09:38 - 00131768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00126008 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00046024 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-06-16 20:09 - 2016-06-03 09:38 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2016-06-16 20:09 - 2016-06-03 09:38 - 00000594 _____ C:\Windows\SysWOW64\nv-vk32.json
2016-06-16 20:09 - 2016-06-03 09:38 - 00000594 _____ C:\Windows\system32\nv-vk64.json
2016-06-16 18:27 - 2016-06-16 18:27 - 209715200 ____H C:\~005a
2016-06-16 18:27 - 2016-06-16 18:27 - 209715200 ____H C:\~0059
2016-06-16 18:26 - 2016-06-16 18:27 - 209715200 ____H C:\~0058
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0057
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0056
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0055
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0054
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0053
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0052
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0051
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0050
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~004f
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~004e
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~004d
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~004c
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~004b
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~004a
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0049
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0048
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0047
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0046
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0045
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0044
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0043
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0042
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0041
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~0040
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~003f
2016-06-16 18:26 - 2016-06-16 18:26 - 209715200 ____H C:\~003e
2016-06-16 18:25 - 2016-06-16 18:26 - 209715200 ____H C:\~003d
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~003c
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~003b
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~003a
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0039
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0038
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0037
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0036
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0035
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0034
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0033
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0032
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0031
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0030
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~002f
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~002e
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~002d
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~002c
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~002b
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~002a
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0029
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0028
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0027
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0026
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0025
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0024
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0023
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0022
2016-06-16 18:25 - 2016-06-16 18:25 - 209715200 ____H C:\~0021
2016-06-16 18:24 - 2016-06-16 18:25 - 209715200 ____H C:\~0020
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ___HC C:\~0005
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ___HC C:\~0004
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ___HC C:\~0003
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~001f
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~001e
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~001d
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~001c
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~001b
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~001a
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0019
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0018
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0017
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0016
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0015
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0014
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0013
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0012
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0011
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0010
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~000f
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~000e
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~000d
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~000c
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~000b
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~000a
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0009
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0008
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0007
2016-06-16 18:24 - 2016-06-16 18:24 - 209715200 ____H C:\~0006
2016-06-16 18:23 - 2016-06-16 18:24 - 209715200 ___HC C:\~0002
2016-06-16 18:23 - 2016-06-16 18:23 - 209715200 ___HC C:\~0001
2016-06-16 18:23 - 2016-06-16 18:23 - 209715200 ___HC C:\~0000
2016-06-16 15:52 - 2016-06-16 18:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Solus Project [GOG.com]
2016-06-15 15:33 - 2016-06-15 15:33 - 00000000 ____D C:\Users\Dzemal\AppData\Local\nuclearthrone
2016-06-15 15:32 - 2016-06-15 15:32 - 00000000 ____D C:\Users\Dzemal\AppData\Local\Ori and the Blind Forest DE
2016-06-15 15:24 - 2016-06-15 15:24 - 00000000 ____D C:\Users\Dzemal\Documents\CPY_SAVES
2016-06-14 17:00 - 2016-06-14 17:00 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-06-14 17:00 - 2016-06-14 17:00 - 00003910 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1465916424
2016-06-14 16:58 - 2016-06-16 18:09 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-06-14 16:58 - 2016-06-14 16:58 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00536312 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00465792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-06-14 16:58 - 2016-06-14 16:58 - 00287528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00166432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-06-14 16:58 - 2016-06-14 16:58 - 00044640 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-06-14 16:58 - 2016-06-14 16:58 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\AVAST Software
2016-06-14 16:58 - 2016-06-14 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-06-14 16:56 - 2016-06-14 17:01 - 00000000 ____D C:\Program Files\AVAST Software
2016-06-14 16:56 - 2016-06-14 17:00 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-14 16:45 - 2016-06-14 16:45 - 00000000 ____D C:\Users\Dzemal\Documents\MEGAsync
2016-06-14 16:38 - 2016-06-14 16:40 - 00000000 ____D C:\ProgramData\MEGAsync
2016-06-10 20:08 - 2016-06-10 20:08 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Adobe
2016-06-10 16:41 - 2016-06-11 20:31 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Victor Vran
2016-06-09 19:47 - 2016-06-09 19:47 - 00000000 ____D C:\Users\Dzemal\AppData\LocalLow\Pixelsaurus Games
2016-06-09 16:34 - 2016-06-09 16:34 - 00000000 ___RD C:\Users\Dzemal\Creative Cloud Files
2016-06-09 16:32 - 2016-06-09 16:37 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-06-01 14:55 - 2016-06-01 14:55 - 00000000 ____D C:\Users\Dzemal\AppData\Local\Nexus
2016-05-23 18:28 - 2016-05-23 18:28 - 00000000 ___HD C:\$WINDOWS.~BT
2016-05-18 16:13 - 2016-05-18 16:13 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My.com

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-17 11:58 - 2015-04-14 12:59 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Skype
2016-06-17 11:57 - 2015-05-13 20:37 - 00000000 ____D C:\Users\Dzemal\AppData\Local\Battle.net
2016-06-17 11:57 - 2015-04-13 16:45 - 00000000 ____D C:\Users\Dzemal\AppData\Local\Spotify
2016-06-17 11:57 - 2015-04-13 16:44 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Spotify
2016-06-17 11:56 - 2015-08-15 13:53 - 00001130 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-17 11:56 - 2015-08-14 17:05 - 00000354 _____ C:\Windows\Tasks\JKRXFGIV1.job
2016-06-16 20:12 - 2015-04-24 15:28 - 00000000 ____D C:\Users\Dzemal\AppData\Local\ClassicShell
2016-06-16 20:12 - 2014-11-21 05:35 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-16 20:12 - 2014-11-21 04:45 - 00764340 _____ C:\Windows\system32\perfh007.dat
2016-06-16 20:12 - 2014-11-21 04:45 - 00159160 _____ C:\Windows\system32\perfc007.dat
2016-06-16 20:12 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-06-16 20:10 - 2015-04-11 14:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-06-16 20:10 - 2015-04-11 13:28 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-06-16 20:10 - 2015-04-11 13:28 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-16 20:09 - 2015-04-11 13:28 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-06-16 20:02 - 2015-11-08 12:47 - 01277440 ___SH C:\Users\Dzemal\Desktop\Thumbs.db
2016-06-16 19:52 - 2015-04-11 12:46 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1703033675-3188108245-1231952138-1001
2016-06-16 19:02 - 2015-08-15 11:10 - 00000000 ____D C:\ProgramData\3WinManPro3
2016-06-16 19:02 - 2015-08-14 20:18 - 00000000 ____D C:\ProgramData\tWinManProt
2016-06-16 19:02 - 2015-08-14 20:18 - 00000000 ____D C:\ProgramData\FaoMau
2016-06-16 19:02 - 2015-08-14 17:08 - 00000000 ____D C:\ProgramData\XWinManProX
2016-06-16 19:02 - 2015-08-14 17:05 - 00000000 ____D C:\ProgramData\JulShf
2016-06-16 19:00 - 2016-02-08 17:35 - 00000000 ____D C:\Users\Dzemal\AppData\Local\CrashDumps
2016-06-16 18:38 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-06-16 18:27 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-16 18:26 - 2015-08-15 13:53 - 00001134 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-16 18:22 - 2016-05-12 16:32 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-16 15:54 - 2015-04-11 14:02 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-16 14:12 - 2015-08-15 16:53 - 00000000 ____D C:\Users\Dzemal\Documents\My Games
2016-06-16 13:45 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-06-16 13:44 - 2015-04-13 15:18 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F0372D2C-2D96-41A4-B3F1-2312542F31A8}
2016-06-15 17:28 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-15 15:17 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-06-15 13:49 - 2016-03-25 17:55 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\TS3Client
2016-06-14 17:04 - 2016-03-30 15:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6
2016-06-14 17:04 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-06-14 17:02 - 2015-08-14 17:19 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\widhxxV
2016-06-14 17:02 - 2015-08-14 17:05 - 00000000 ____D C:\ProgramData\Service1198
2016-06-14 16:23 - 2015-09-06 11:17 - 00005822 _____ C:\Users\Dzemal\AppData\Roaming\ZeroBraneStudio.ini
2016-06-10 19:48 - 2016-03-04 17:40 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\.minecraft
2016-06-09 17:23 - 2015-04-11 12:41 - 00000000 ____D C:\Users\Dzemal
2016-06-09 16:37 - 2015-04-11 14:14 - 00000000 ____D C:\temp
2016-06-09 16:35 - 2015-04-14 14:58 - 00000000 ____D C:\Users\Dzemal\AppData\Local\Adobe
2016-06-09 16:34 - 2015-04-11 14:25 - 00000000 ____D C:\ProgramData\Adobe
2016-06-09 16:27 - 2015-08-15 13:53 - 00002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-09 16:14 - 2015-10-17 12:20 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Notepad++
2016-06-03 09:38 - 2015-08-13 15:24 - 17290416 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-06-03 09:38 - 2015-08-02 06:43 - 19180152 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-06-03 09:38 - 2015-08-02 06:43 - 14346320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-06-03 09:38 - 2015-05-18 14:20 - 03383472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-06-03 09:38 - 2015-02-20 01:18 - 03825896 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-06-03 09:38 - 2015-02-20 01:18 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2016-06-03 09:38 - 2015-02-20 01:18 - 00039124 _____ C:\Windows\system32\nvinfo.pb
2016-06-03 05:26 - 2016-02-07 16:33 - 00534072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-06-03 05:26 - 2016-02-07 16:33 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-06-03 05:26 - 2015-04-11 13:28 - 06362560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-06-03 05:26 - 2015-04-11 13:28 - 02453952 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-06-03 05:26 - 2015-04-11 13:28 - 01764408 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-06-03 05:26 - 2015-04-11 13:28 - 01351104 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-06-03 05:26 - 2015-04-11 13:28 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-06-03 05:26 - 2015-04-11 13:28 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-06-02 14:19 - 2015-04-11 13:28 - 06452948 _____ C:\Windows\system32\nvcoproc.bin
2016-06-01 15:57 - 2015-06-21 11:45 - 00000000 ____D C:\Users\Dzemal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-05-31 13:21 - 2015-08-15 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-05-31 13:18 - 2015-04-14 12:59 - 00000000 ____D C:\ProgramData\Skype
2016-05-27 12:20 - 2015-04-11 14:36 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-27 12:20 - 2015-04-11 14:36 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-25 21:51 - 2015-04-14 14:58 - 00000000 ____D C:\Users\Dzemal\AppData\LocalLow\Adobe
2016-05-20 22:06 - 2015-04-11 13:34 - 00000000 ____D C:\Windows\Panther

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-09-06 11:17 - 2016-06-14 16:23 - 0005822 _____ () C:\Users\Dzemal\AppData\Roaming\ZeroBraneStudio.ini
2015-08-14 17:19 - 2015-08-14 17:19 - 0000080 _____ () C:\Users\Dzemal\AppData\Local\recently-fix.db
2016-02-12 20:05 - 2016-02-12 20:05 - 0007605 _____ () C:\Users\Dzemal\AppData\Local\Resmon.ResmonCfg
2015-09-05 13:18 - 2015-09-05 13:18 - 0000003 _____ () C:\Users\Dzemal\AppData\Local\updater.log
2015-09-05 13:18 - 2015-10-02 17:48 - 0000424 _____ () C:\Users\Dzemal\AppData\Local\UserProducts.xml
1999-07-07 02:00 - 1999-07-07 02:00 - 0000006 __RSH () C:\ProgramData\DE280AC2-0786-4476-96E5-D6E6370396FE
2015-04-11 14:04 - 2015-04-11 14:04 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-12-01 17:35 - 2015-12-04 15:43 - 0001856 _____ () C:\ProgramData\HirezPipeError.txt
2016-04-09 14:31 - 2016-04-09 14:31 - 0000113 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.64.bc

Einige Dateien in TEMP:
====================
C:\Users\Dzemal\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Dzemal\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Dzemal\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-15 14:12

==================== Ende von FRST.txt ============================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-06-2016 01
durchgeführt von Dzemal (2016-06-17 12:00:06)
Gestartet von C:\Users\Dzemal\Desktop
Windows 8.1 (Update) (X64) (2015-04-11 10:41:27)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1703033675-3188108245-1231952138-500 - Administrator - Disabled)
Dzemal (S-1-5-21-1703033675-3188108245-1231952138-1001 - Administrator - Enabled) => C:\Users\Dzemal
Dzemal_2 (S-1-5-21-1703033675-3188108245-1231952138-1002 - Limited - Enabled) => C:\Users\Dzemal_2
Gast (S-1-5-21-1703033675-3188108245-1231952138-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1703033675-3188108245-1231952138-1004 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 15.14 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\{3CE0C7DC-ED5B-450E-9C5F-49702C263544}) (Version: 12.1.7.157 - Adobe Systems, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.8 - Sereby Corporation)
Avast Premier (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Brawlhalla (HKLM\...\Steam App 291550) (Version:  - Blue Mammoth Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform)
Classic Shell (HKLM\...\{7C129CF8-199F-4269-AAEE-60B5D8D716E2}) (Version: 4.2.1 - IvoSoft)
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.212.0 - International GeoGebra Institute)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{EA298EC1-2B8F-4DA9-8C5B-BC1FCBBAD72F}) (Version: 1.77.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.77.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.84 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Hero Siege (HKLM-x32\...\Steam App 269210) (Version:  - Elias Viglione)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4170 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lightshot-5.3.0.0 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.3.0.0 - Skillbrains)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)
Magicite (HKLM-x32\...\Steam App 268750) (Version:  - SmashGames)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.39 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Grafiktreiber 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.39 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 368.39 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 368.39 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Orcs Must Die! 2 (HKLM\...\Steam App 201790) (Version:  - Robot Entertainment)
Ori and the Blind Forest Definitive Edition (HKLM-x32\...\Ori and the Blind Forest Definitive Edition_is1) (Version:  - )
ORION: Prelude (HKLM\...\Steam App 104900) (Version:  - Spiral Game Studios)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version:  - OVERKILL Software)
Realm of the Mad God (HKLM-x32\...\Steam App 200210) (Version:  - Wild Shadow Studios)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)
SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Skiller Pro Driver (HKLM-x32\...\{54C8FBB3-B992-43CB-8F0A-E26228013F88}) (Version: 1.0 - )
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Skyrim Creation Kit (HKLM-x32\...\Steam App 202480) (Version:  - bgs.bethsoft.com)
Spotify (HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Solus Project (HKLM-x32\...\1455617752_is1) (Version: 2.8.0.11 - GOG.com)
UE4 Prerequisites (x64) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (x32 Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\UnityWebPlayer) (Version: 5.0.3f2 - Unity Technologies ApS)
Victor Vran (HKLM\...\Steam App 345180) (Version:  - Haemimont Games)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1703033675-3188108245-1231952138-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0326D6C8-F423-4A9A-8577-8C4DAD433CBF} - System32\Tasks\{AAA62C37-2FD9-4D82-946C-345C6F7E8FB6} => pcalua.exe -a "C:\Program Files (x86)\Clownfish\uninstall.exe" -d "C:\Program Files (x86)\Clownfish"
Task: {0AB2F3D0-C461-477B-B328-EF7B885D6DFF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-06-14] (AVAST Software)
Task: {0AECCE4B-8501-4E03-881F-EC0DE66601C4} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd)
Task: {1C8875D5-D8BE-413D-8328-446B22CCA4B8} - System32\Tasks\{B6A6005D-C4F8-4974-B31F-40A942C1E8E5} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=deDE --uid=battle.net --displayname="Battle.net"
Task: {3C11DB92-6694-425A-9C13-21B3D6CB5C69} - System32\Tasks\{AD285DD1-ADC5-4116-BBF2-497C480C5ED1} => pcalua.exe -a C:\Users\Dzemal\AppData\Local\Chromium\Application\45.0.2433.0\Installer\updater\updater.exe -c -uninstall="Internet Quick Access"
Task: {3E4F2F25-533D-4445-89DC-3D7AF9EBC04D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated)
Task: {5A4968FA-24B8-43FD-8D4B-E5D933B9F854} - System32\Tasks\py60o7URwngVgGF => C:\Users\Dzemal\AppData\Roaming\ok9oyvk\qbfIEDQ.exe
Task: {602556E9-D7AD-40D7-A963-99D7FF672504} - System32\Tasks\{815F4DA9-5CD3-4F81-9EF7-0FC64568760F} => pcalua.exe -a C:\Users\Dzemal\AppData\Roaming\istartsurf\UninstallManager.exe -c  -ptid=pcs
Task: {6DD1D03C-B6C7-47DF-8E7E-1AC12F7524A5} - System32\Tasks\JKRXFGIV1 => C:\ProgramData\EpsanDrive\EpsanDrive.exe <==== ACHTUNG
Task: {8796A087-1559-4A31-B5F0-02692F5C55AA} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-03] (AVAST Software)
Task: {89878E40-D897-42B0-97DB-2E422899A708} - System32\Tasks\4z6Wlsn72fcA88y => C:\Users\Dzemal\AppData\Roaming\HoDYX2e\Uo4rpbY.exe
Task: {8CA846FB-2C8A-4CFD-9087-6328BC30133A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-15] (Google Inc.)
Task: {CC614DDE-912B-4034-86D7-C4CB6160E1AB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-15] (Google Inc.)
Task: {E35A0B03-347D-44DE-A2D3-B4B68C908EEE} - System32\Tasks\{2EBE8971-E309-44D0-99D6-1BCA56724761} => pcalua.exe -a "D:\Games\Dark Souls II Scholar of the First Sin\Game\DarkSoulsII.exe" -d "D:\Games\Dark Souls II Scholar of the First Sin\Game"
Task: {E6628B8C-CAE2-4093-9D45-23B0F50710EE} - System32\Tasks\Leistungsindikator-DLL-Host 1.1.14 => C:\Windows\syswow64\config\systemprofile\AppData\Local\LeistungsindikatorDLLHost1114\leistungsindikator-dll-host.exe
Task: {F96F1115-C09D-4C29-83A9-EA26026C59A0} - System32\Tasks\SafeZone scheduled Autoupdate 1465916424 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\JKRXFGIV1.job => C:\ProgramData\EpsanDrive\EpsanDrive.exe <==== ACHTUNG

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-03-03 16:45 - 2016-05-02 07:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-02-07 16:23 - 2016-05-02 07:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-06 19:41 - 2016-05-02 07:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-03-03 16:45 - 2016-05-02 07:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-05-06 19:41 - 2016-05-02 07:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-02-07 16:23 - 2016-05-02 07:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-05-06 19:41 - 2016-05-02 07:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-06 19:41 - 2016-05-02 07:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2015-04-11 13:28 - 2016-06-03 05:26 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-04-15 22:13 - 2015-04-15 22:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-03-12 20:23 - 2015-03-12 20:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-03-12 20:23 - 2015-03-12 20:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-04-11 14:15 - 2016-05-02 08:00 - 00167480 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\gamecaster64.dll
2015-04-11 14:15 - 2016-05-02 08:01 - 00862776 _____ () C:\Program Files\NVIDIA Corporation\ShadowPlay\twitchsdk64.dll
2016-05-06 19:41 - 2016-05-02 07:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-06 19:41 - 2016-05-02 07:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-04-15 17:22 - 2014-02-26 14:45 - 00475136 _____ () C:\Program Files (x86)\Skiller Pro\Monitor.EXE
2016-04-15 20:07 - 2016-04-15 20:07 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2016-06-14 16:58 - 2016-06-14 16:58 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-06-14 16:58 - 2016-06-14 16:58 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-06-16 13:41 - 2016-06-16 13:41 - 02934272 _____ () C:\Program Files\AVAST Software\Avast\defs\16061600\algo.dll
2016-06-16 18:27 - 2016-06-16 18:27 - 02934272 _____ () C:\Program Files\AVAST Software\Avast\defs\16061601\algo.dll
2016-06-14 16:58 - 2016-06-14 16:58 - 00309912 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll
2016-06-14 16:58 - 2016-06-14 16:58 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-06-17 11:57 - 2016-06-17 11:57 - 02934784 _____ () C:\Program Files\AVAST Software\Avast\defs\16061700\algo.dll
2015-04-11 14:19 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-06-09 19:22 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2016-06-09 19:22 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\Dzemal\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2015-04-15 17:22 - 2014-02-21 16:07 - 00057344 _____ () C:\Program Files (x86)\Skiller Pro\lan.dll
2015-04-15 17:22 - 2012-08-14 22:41 - 00061440 _____ () C:\Program Files (x86)\Skiller Pro\hiddriver.dll
2016-06-14 16:58 - 2016-06-14 16:58 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Uiviuuj => ""="service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\aeriagames.com -> hxxp://aeriagames.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2016-04-02 21:19 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dzemal\Desktop\big_a96cdd3f6642e52826126d7711e66bd2a97e0f2d.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run: => "gpuminer"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKLM\...\StartupApproved\Run32: => "NCUpdateHelper"
HKU\S-1-5-21-1703033675-3188108245-1231952138-1001\...\StartupApproved\Run: => "Speed AutoClicker"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B2DE4E5B-6794-4990-A3C3-67E0D2B4B47E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{F0814298-AC48-43ED-988A-72D3EAD2BB42}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{55C1D556-C2A1-44A0-82BF-DF033A45747C}C:\users\dzemal\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\users\dzemal\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7DB51D07-CF9B-49BF-B73C-49100FF44190}C:\users\dzemal\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\users\dzemal\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B12C5C97-9894-4DE0-93C3-983B71FFD7A0}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{12B126CB-3AEC-4B2D-9BDA-4270558E1195}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{2D4A6DFA-D56F-4A16-9C81-CD28E92FB2F0}C:\users\dzemal\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dzemal\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{0B088C44-4C90-4D30-97FB-2F42197AEA84}C:\users\dzemal\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dzemal\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{A456FA97-80D5-4DF8-9D42-AC14EB91B07A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9A64A3A8-5C53-4DF1-B3CC-4A61E21EB96E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E3EB6D17-1F27-4EAA-9C3C-570DDAD8F5E0}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{0A8C0CF0-75F5-4ECB-B9C4-4291C6769B64}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [TCP Query User{56063AD8-3BF9-4278-9524-DB7379D34BF0}C:\users\dzemal\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\dzemal\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{96838A4A-E32C-4CA6-9FD1-B455A56DD744}C:\users\dzemal\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\dzemal\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4455BBA4-7C72-48C2-A810-9D93D1D51046}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{08ED1E4C-25BE-4C69-A653-F83FA226809C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{81D3A0DD-C456-4D42-88DC-14BF5689A1D5}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{3AD19D75-7A45-47D9-8565-C9B1BAE0FDB6}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{2D293105-455E-46F5-BA99-47FC8DE7FF94}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{72DD0D71-1194-40A2-A5CA-355217331F54}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{40C9603A-797D-4C3F-A8E8-DF23B2E9A3A6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2C4EDCA0-C40E-49D4-8656-03C1FABAE5D7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E4046E87-A895-4D5A-AB1E-B943164E0F90}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{84F936FB-1677-4A42-80E8-E5D680223DB3}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{FB5E7A6D-D86F-41E2-BDB1-1C7C36E1CD04}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3D3090B7-9849-42B0-A9D0-98EAFC47749F}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe
FirewallRules: [{CDC6C5F0-E584-4187-BABA-87911CB69AE7}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{A47A1EFF-8917-4D1C-AD00-71B7D67E8E80}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [TCP Query User{1CC91AA1-D2F3-4F63-83E3-365BB0A8F056}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{98950957-F77E-4714-B438-FA62C9F9260B}C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base35634\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{A73BA185-7A5B-41DA-BEC8-12F5334B43ED}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{1B7C443E-4F6D-405E-A323-247ECD4AF198}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe
FirewallRules: [{7C9F6D74-B31B-41D9-AC27-9530DBAF4C75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{D9EFD4F2-D3BE-4308-B83C-34222FFCAB40}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [TCP Query User{354A3D37-9FEE-456D-A282-F8370AC57DB9}C:\users\dzemal\downloads\skyrider\skyrider gamejolt ver_3.exe] => (Allow) C:\users\dzemal\downloads\skyrider\skyrider gamejolt ver_3.exe
FirewallRules: [UDP Query User{12824DB7-760F-4B82-A47C-9855FAA87305}C:\users\dzemal\downloads\skyrider\skyrider gamejolt ver_3.exe] => (Allow) C:\users\dzemal\downloads\skyrider\skyrider gamejolt ver_3.exe
FirewallRules: [TCP Query User{277DB285-0326-4EC7-86C8-0DB01C585E54}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Allow) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [UDP Query User{FEAD0E6B-1EEF-4869-82BA-0B721A8C3A99}C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe] => (Allow) C:\program files (x86)\ncwest\nclauncher\ncupdatehelper.exe
FirewallRules: [{342CB5C1-D308-4BA5-AC97-652C88034B48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{C48878A3-FE2E-4443-B86A-1BF1FB4FB3B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{754F405A-7E5B-4E44-8116-F7F0CE73F6D4}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{726AFD4E-60CF-445A-99B4-231AC00534D5}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [TCP Query User{C29476E3-95BB-4106-95E1-5365C5176C27}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{9720A108-2BA1-4F68-A971-C77EF8F2C19E}C:\program files\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{28FFF025-459A-47AD-BA7B-DC4B35CA9C6E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FF055D4F-9A7B-4B65-84C2-9B2BAAF07A87}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{D91A1634-9DDD-47B1-999D-99ACB72A6466}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{68BF3157-F9C1-4792-AE74-1084C59C5E85}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2210F541-22B6-487E-A76D-A41475AAD1FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{E05CC50E-79B2-41B6-99E8-1F8435971215}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{1FBE4240-FBF9-4853-B13C-5DA26D875902}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{1C9E83F0-82FE-48B1-A698-E368A55822BA}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{87B7DEFC-8578-417E-B197-7F631FBE2D7C}C:\program files\java\jre1.8.0_51\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{07F4228E-2A8B-428A-9F76-CFFBBD38FE33}] => (Allow) C:\ProgramData\JulShf\seaparo.exe
FirewallRules: [{243D8E7B-8B59-4495-9888-8D13EFB2282C}] => (Allow) C:\ProgramData\JulShf\seaparo.exe
FirewallRules: [{35224B13-DB3E-4CF3-956A-66F4BB910D65}] => (Allow) C:\ProgramData\JulShf\seaparo.exe
FirewallRules: [{021380AA-837C-485B-807A-39A6416E0D90}] => (Allow) C:\ProgramData\JulShf\seaparo.exe
FirewallRules: [{E314C0CF-32E9-4C0F-AD82-22A30273C64E}] => (Allow) C:\ProgramData\FaoMau\jymafed.exe
FirewallRules: [{AD11A9AA-3274-4ECC-B0DC-D1E5D71DF91F}] => (Allow) C:\ProgramData\FaoMau\jymafed.exe
FirewallRules: [{622CA1C0-867E-40B9-B171-18CF2AB8703C}] => (Allow) C:\ProgramData\FaoMau\jymafed.exe
FirewallRules: [{796021E8-8AE2-4535-B1C3-3DAFF901D828}] => (Allow) C:\ProgramData\FaoMau\jymafed.exe
FirewallRules: [{4016BAAA-DF5D-42A0-A1E3-A778B0B78036}] => (Allow) C:\Users\Dzemal\AppData\Local\BoBrowser\Application\bobrowser.exe
FirewallRules: [TCP Query User{F6046371-06EE-4644-9E91-B9AF0321BE80}C:\users\dzemal\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\dzemal\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{90DBD445-54BF-4918-9A3C-117A6C56B242}C:\users\dzemal\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\dzemal\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{8035E3DF-BB77-42BD-A9C1-AABE53797FB0}C:\program files (x86)\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{476F3E64-81C7-4424-9884-8280511A7151}C:\program files (x86)\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37351\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{693121C9-A950-4231-82D7-B6A3C92BD261}C:\users\dzemal\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\dzemal\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{506600E8-1B0F-4138-93C4-338E968FFD39}C:\users\dzemal\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\dzemal\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{75422D26-1674-4567-990B-061AA1E9F159}E:\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe] => (Allow) E:\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe
FirewallRules: [UDP Query User{FEA016D9-E057-4C93-9559-8392D454D0CE}E:\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe] => (Allow) E:\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe
FirewallRules: [TCP Query User{EC2F5020-DFF5-4DD1-AAB8-A290CFF5E111}C:\users\dzemal\desktop\zero brain studio\zbstudio.exe] => (Allow) C:\users\dzemal\desktop\zero brain studio\zbstudio.exe
FirewallRules: [UDP Query User{87C7BF95-A448-4C47-8AFC-E98BB7266449}C:\users\dzemal\desktop\zero brain studio\zbstudio.exe] => (Allow) C:\users\dzemal\desktop\zero brain studio\zbstudio.exe
FirewallRules: [TCP Query User{EBC9D0AA-EA26-4EBD-B0F3-96EEF88DDE4B}C:\program files (x86)\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{F219B5AF-A4A0-4D08-870B-C1A6D5EE3387}C:\program files (x86)\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base37569\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9E629FFF-A3FF-4A29-801B-8FECC53BB071}C:\users\dzemal\desktop\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe] => (Allow) C:\users\dzemal\desktop\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe
FirewallRules: [UDP Query User{00C522EB-0B71-4BFD-91EB-21BDCF8C0B25}C:\users\dzemal\desktop\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe] => (Allow) C:\users\dzemal\desktop\löve [0.9.2]\[ide] zerobranestudio\zbstudio.exe
FirewallRules: [TCP Query User{E27A70DB-3735-4F5D-851E-6E55E4403877}C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CBA75C10-D241-4C6E-8795-97933662C27A}C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base38500\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{2C0B1A97-D7D0-470D-871F-CDDB0F71E6F8}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [UDP Query User{FB16D6B9-0CD7-4BF6-8C68-B1FF8972EFDF}C:\program files\java\jre1.8.0_65\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_65\bin\javaw.exe
FirewallRules: [TCP Query User{589F7597-F3D6-41CA-8F29-42EDFE491CA8}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{6A945CCC-9535-408E-B903-7CE5F9D2955B}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{8135F272-896D-4437-AA06-76393EF17EBE}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{E279DCB5-59BA-46FB-B143-F512826E8484}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{4422C782-BAE0-4EEB-B12F-D7533EC7F7B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [{571C1F3A-66FD-4FE3-AC16-4AA9A61A9DD6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\nosgoth\Binaries\Win32\Nosgoth.exe
FirewallRules: [TCP Query User{40580FB0-4936-4662-94EB-A8B9D1F55F85}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [UDP Query User{88EBA40F-8DE5-4BA9-B046-00C35F5ABB23}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe
FirewallRules: [{1D418C25-8592-43AE-A1A0-CE24B6E42F23}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\CreationKit.exe
FirewallRules: [{6BD388FA-DA65-4D07-B6A7-EEB9AD4A52CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\CreationKit.exe
FirewallRules: [{F1863F40-1C94-4B8E-A048-2BA5DB52B373}] => (Allow) D:\SteamLibrary\steamapps\common\Magicite\Magicite.exe
FirewallRules: [{093CECF0-B283-4F0D-AD96-D14B3569F138}] => (Allow) D:\SteamLibrary\steamapps\common\Magicite\Magicite.exe
FirewallRules: [{BD9F394A-9FF3-41F0-9286-3334690316FC}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{6F663AA7-EC2C-4DC5-A6E6-0A86EFCB87CA}] => (Allow) D:\SteamLibrary\steamapps\common\Terraria\Terraria.exe
FirewallRules: [{7942D3B0-79C4-478D-9BC1-153239F78800}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{BED2428D-7448-48BC-BF45-9C2E585F1F2A}] => (Allow) D:\SteamLibrary\steamapps\common\PAYDAY The Heist\payday_win32_release.exe
FirewallRules: [{A9E0D161-BABD-4880-98C6-6AED5A916316}] => (Allow) D:\SteamLibrary\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{8733FD90-B4B8-4B5F-9673-0CF766AEF6E6}] => (Allow) D:\SteamLibrary\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe
FirewallRules: [{FD523E00-EFBB-4A0B-A95C-1126D06C91F7}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{DCBB2FA1-A1FB-4D27-8767-B119B521239E}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [TCP Query User{4E1F16F6-D4ED-4258-8E57-C608A2F77E11}D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{68406927-E052-43AB-B5FF-A9AAB114B384}D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{BC3A0AB8-259D-4CC3-AADD-2E26D2B48BFB}] => (Allow) D:\SteamLibrary\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{9E3D7941-B0E9-4C00-8243-EED5A849E208}] => (Allow) D:\SteamLibrary\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{470CB556-3230-41B8-8FC2-4C76F3FAEBD8}] => (Allow) D:\SteamLibrary\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [{FB0C6AD4-F494-4251-A7A6-5A88D820559D}] => (Allow) D:\SteamLibrary\steamapps\common\Orcs Must Die 2\build\release\OrcsMustDie2.exe
FirewallRules: [TCP Query User{CA7DAE9B-C28A-41C0-A9B3-6859EECEB99F}D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [UDP Query User{A263C5D2-0C58-4F8C-AB9E-E65426EA44BF}D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [TCP Query User{5FB5775B-A625-442B-843E-B41D75DF648F}D:\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{9BE48C10-60BF-42E9-80D2-6A59771C6296}D:\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) D:\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{F2D72DF5-D3FE-4488-957E-A610C46E7E59}D:\games\[www.mpc-g.com]roguelands v0.6.6\roguelands.exe] => (Allow) D:\games\[www.mpc-g.com]roguelands v0.6.6\roguelands.exe
FirewallRules: [UDP Query User{17C715F0-2A6D-472E-8534-ABBD4B0DFAB5}D:\games\[www.mpc-g.com]roguelands v0.6.6\roguelands.exe] => (Allow) D:\games\[www.mpc-g.com]roguelands v0.6.6\roguelands.exe
FirewallRules: [TCP Query User{780B920D-CEA5-40F9-B70C-EA30B5DE434B}D:\games\roguelands v0.6.6\roguelands.exe] => (Allow) D:\games\roguelands v0.6.6\roguelands.exe
FirewallRules: [UDP Query User{028743D0-1DDD-45B4-945A-9BF8FCA96E76}D:\games\roguelands v0.6.6\roguelands.exe] => (Allow) D:\games\roguelands v0.6.6\roguelands.exe
FirewallRules: [{EBCE6C17-806A-46DF-8EED-5A8558E8BC3A}] => (Allow) D:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{1EB60721-3F5C-4578-8FED-4B204A28211A}] => (Allow) D:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{B8B400BD-2773-45C6-8716-39EE0FAF9A28}] => (Allow) C:\Program Files (x86)\WinZip Driver Updater\winzipdu.exe
FirewallRules: [{F84D9B44-44FD-4A4C-A382-920001251A05}] => (Allow) C:\Users\Dzemal\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [TCP Query User{E456F1B0-2563-4FB3-B1D1-9619E28C92BE}D:\games\enter.the.gungeon\etg.exe] => (Block) D:\games\enter.the.gungeon\etg.exe
FirewallRules: [UDP Query User{0156C912-53BB-4639-9CCE-4CFF64266520}D:\games\enter.the.gungeon\etg.exe] => (Block) D:\games\enter.the.gungeon\etg.exe
FirewallRules: [TCP Query User{6B31A65E-F866-42A5-8A64-B9D0DC0C4F6C}D:\games\stranded deep\stranded_deep_x64.exe] => (Allow) D:\games\stranded deep\stranded_deep_x64.exe
FirewallRules: [UDP Query User{CD19777E-90D4-4CE3-9EDD-1D607D394F01}D:\games\stranded deep\stranded_deep_x64.exe] => (Allow) D:\games\stranded deep\stranded_deep_x64.exe
FirewallRules: [TCP Query User{892A1342-718D-468C-AA7D-C044D5ED8053}D:\games\enter.the.gungeon\etg.exe] => (Allow) D:\games\enter.the.gungeon\etg.exe
FirewallRules: [UDP Query User{C6581CF8-F460-4DB0-9960-9A28CDFDB0F7}D:\games\enter.the.gungeon\etg.exe] => (Allow) D:\games\enter.the.gungeon\etg.exe
FirewallRules: [TCP Query User{8471D65E-4D72-4323-8154-7B798B2F2DEB}D:\games\huniecam.studio\huniecamstudio.exe] => (Allow) D:\games\huniecam.studio\huniecamstudio.exe
FirewallRules: [UDP Query User{B673CC85-94FC-4DF7-B3DE-95123734032A}D:\games\huniecam.studio\huniecamstudio.exe] => (Allow) D:\games\huniecam.studio\huniecamstudio.exe
FirewallRules: [{96CE78DE-FC64-4C84-9237-7B2157AD97C1}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D682AFF8-6CC6-492B-85D7-1BC33BEF4BDB}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D5EF39A7-0BD7-49BC-A9E1-CABCBA3964F7}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{120F2591-9AD3-493D-8E03-FD345FCB5AF5}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D30AFD5F-FE3A-447E-A8BA-980B9C6A1123}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{E014BA28-6F50-4BA8-882B-53689E12BB31}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{B1FDA4BF-D52F-429D-90AD-5508D5E270AB}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{5F607261-9872-47F5-BF31-D199DCEC872F}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{3070AA69-9EB8-488A-A18C-94C264C45713}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{3451AAEB-6D47-4CFE-A0A6-F922EB8D9078}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{235E1F4F-4876-41B7-BBA7-701DAEE4A4A2}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{0519D1CD-E48E-446A-B9A7-ECB9F9F14E8E}] => (Allow) D:\SteamLibrary\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{595F791C-94A2-4BEA-84CE-232631A720CF}D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{289329B5-D554-4C86-ADE2-263DB9ECC242}D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [{27109254-04CA-4ADB-8DC7-15EC605CF312}] => (Allow) D:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{6ADE967C-9652-4816-89CE-42396BF0973F}] => (Allow) D:\SteamLibrary\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [TCP Query User{356FCF03-90C2-49D7-8522-904BD74DEC24}D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm.exe] => (Block) D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm.exe
FirewallRules: [UDP Query User{93D05B1F-AC4A-4024-B0C0-76D1B4E012A0}D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm.exe] => (Block) D:\battle.net games\heroes of the storm\versions\base42506\heroesofthestorm.exe
FirewallRules: [{21691C50-F2B8-4E21-A9A4-CC60F93064CB}] => (Allow) D:\SteamLibrary\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{22C4B958-3439-4EB1-8F48-ED3A2E09C189}] => (Allow) D:\SteamLibrary\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [TCP Query User{6558A692-07C8-4973-BC43-7FD429246163}D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [UDP Query User{7894684E-C65D-46C5-975C-19D1331B7CB1}D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe] => (Allow) D:\steamlibrary\steamapps\common\orcs must die 2\build\game\orcsmustdie2.exe
FirewallRules: [TCP Query User{AC9BA818-56E4-4209-9517-77F640C94A35}E:\löve [0.10.1]\[ide] zerobranestudio\zbstudio.exe] => (Block) E:\löve [0.10.1]\[ide] zerobranestudio\zbstudio.exe
FirewallRules: [UDP Query User{A00BCBEF-19F2-45A6-9E38-8B89067444D3}E:\löve [0.10.1]\[ide] zerobranestudio\zbstudio.exe] => (Block) E:\löve [0.10.1]\[ide] zerobranestudio\zbstudio.exe
FirewallRules: [TCP Query User{1B1964C8-858F-4B0E-93B7-053CA15BD573}C:\users\dzemal\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\dzemal\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{869B73BF-0E5D-44C6-9213-6FDD8FA5E55D}C:\users\dzemal\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\dzemal\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{490B06FE-47F8-4446-A55E-270A00AA7A64}D:\battle.net games\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Block) D:\battle.net games\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E3BF6A41-67EB-4D46-89CD-4DD5F6ADB414}D:\battle.net games\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Block) D:\battle.net games\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{86916F85-0AE2-43A4-BF89-E4C173682D78}D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{953CEFAA-5AAA-4698-88F2-D1885CDC8288}D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{9E66126E-2977-49BE-93B5-11D744DA5193}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{A19225AF-488F-4BB2-AECC-BA9D4607465B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{2526257C-1CC6-4690-837B-B8DEA1010622}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{24038F74-EAA1-452A-B6B6-F36FC25E7F9A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{E2F85985-BF0B-4BC1-AF93-240C9D83FD1E}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{2B993230-ADE9-4881-B43A-FB2582E5D3CC}] => (Allow) D:\SteamLibrary\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [TCP Query User{0E9F9F0D-D54C-47BD-9487-3AF73134460B}D:\battle.net games\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) D:\battle.net games\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B0777757-D29E-4E42-AB9A-B878AA1D4959}D:\battle.net games\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe] => (Allow) D:\battle.net games\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [{0B7BC5C1-9CFD-4705-972C-DC1C16FD0A86}] => (Block) D:\battle.net games\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [{AC7C962E-60C4-4A3C-BA30-30376DA9D886}] => (Block) D:\battle.net games\heroes of the storm\versions\base43259\heroesofthestorm_x64.exe
FirewallRules: [{F834CC33-4BCD-4BAF-8815-7F5B9B80E1CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{64BC6A07-3012-4BB2-AC84-A0B0BE049D53}] => (Allow) D:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{5F09EC07-3600-488D-9AC2-66108C882578}] => (Allow) D:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{2C7F61AA-11EE-47F7-9FF7-8CF4D5C0FD4A}] => (Allow) D:\SteamLibrary\steamapps\common\Victor Vran\VictorVranSteam.exe
FirewallRules: [{86A6524D-6A44-45B7-B8B6-1DA303493CC8}] => (Allow) D:\SteamLibrary\steamapps\common\Victor Vran\VictorVranSteam.exe

==================== Wiederherstellungspunkte =========================

13-06-2016 18:21:22 Geplanter Prüfpunkt
16-06-2016 15:52:53 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Intel(R) HD Graphics 4600
Description: Intel(R) HD Graphics 4600
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/16/2016 08:10:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_PcaSvc, Version: 6.3.9600.17415, Zeitstempel: 0x54504177
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4ebb
Ausnahmecode: 0xc0000008
Fehleroffset: 0x00000000000925fa
ID des fehlerhaften Prozesses: 0x49c
Startzeit der fehlerhaften Anwendung: 0xsvchost.exe_PcaSvc0
Pfad der fehlerhaften Anwendung: svchost.exe_PcaSvc1
Pfad des fehlerhaften Moduls: svchost.exe_PcaSvc2
Berichtskennung: svchost.exe_PcaSvc3
Vollständiger Name des fehlerhaften Pakets: svchost.exe_PcaSvc4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: svchost.exe_PcaSvc5

Error: (06/16/2016 07:00:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: chrome.exe, Version: 51.0.2704.84, Zeitstempel: 0x575221e0
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.18233, Zeitstempel: 0x56bb4e1d
Ausnahmecode: 0xc0000018
Fehleroffset: 0x0009d3c2
ID des fehlerhaften Prozesses: 0x16c4
Startzeit der fehlerhaften Anwendung: 0xchrome.exe0
Pfad der fehlerhaften Anwendung: chrome.exe1
Pfad des fehlerhaften Moduls: chrome.exe2
Berichtskennung: chrome.exe3
Vollständiger Name des fehlerhaften Pakets: chrome.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: chrome.exe5


Systemfehler:
=============
Error: (06/16/2016 08:11:58 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Gerätezuordnungsdienst" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056 = Es wird bereits eine Instanz des Dienstes ausgeführt.


Error: (06/16/2016 08:11:03 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Netzwerkverbindungsbroker" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056 = Es wird bereits eine Instanz des Dienstes ausgeführt.


Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Driver Foundation - Benutzermodus-Treiberframework" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Diagnosesystemhost" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Überwachung verteilter Verknüpfungen (Client)" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Superfetch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Programmkompatibilitäts-Assistent-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Netzwerkverbindungen" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 100 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Netzwerkverbindungsbroker" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (06/16/2016 08:10:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Eingabegerätedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2015-08-15 18:11:31.256
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:31.204
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:31.072
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:31.020
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:30.963
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:30.913
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:30.781
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:30.724
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:30.660
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.

  Date: 2015-08-15 18:11:30.598
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\SpaceSoundPro\SpaceSoundPro.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 17%
Installierter physikalischer RAM: 16258.78 MB
Verfügbarer physikalischer RAM: 13456.77 MB
Summe virtueller Speicher: 18690.78 MB
Verfügbarer virtueller Speicher: 15674.17 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.27 GB) (Free:29.86 GB) NTFS
Drive d: () (Fixed) (Total:1862.89 GB) (Free:1691.45 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
__________________

Geändert von Dzemal (17.06.2016 um 12:13 Uhr)

Alt 17.06.2016, 12:12   #4
Dzemal
 
C: mit Viren - Standard

C: mit Viren



Code:
ATTFilter
12:08:47.0388 0x0ac8  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
12:08:47.0388 0x0ac8  UEFI system
12:08:50.0184 0x0ac8  ============================================================
12:08:50.0184 0x0ac8  Current date / time: 2016/06/17 12:08:50.0184
12:08:50.0184 0x0ac8  SystemInfo:
12:08:50.0184 0x0ac8  
12:08:50.0184 0x0ac8  OS Version: 6.3.9600 ServicePack: 0.0
12:08:50.0184 0x0ac8  Product type: Workstation
12:08:50.0184 0x0ac8  ComputerName: HOME-PC
12:08:50.0184 0x0ac8  UserName: Dzemal
12:08:50.0184 0x0ac8  Windows directory: C:\Windows
12:08:50.0184 0x0ac8  System windows directory: C:\Windows
12:08:50.0184 0x0ac8  Running under WOW64
12:08:50.0184 0x0ac8  Processor architecture: Intel x64
12:08:50.0184 0x0ac8  Number of processors: 4
12:08:50.0184 0x0ac8  Page size: 0x1000
12:08:50.0184 0x0ac8  Boot type: Normal boot
12:08:50.0184 0x0ac8  ============================================================
12:08:50.0203 0x0ac8  KLMD registered as C:\Windows\system32\drivers\40660416.sys
12:08:50.0268 0x0ac8  System UUID: {E04D62F2-61CC-1C53-55C3-89E3A0793602}
12:08:50.0525 0x0ac8  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:08:51.0038 0x0ac8  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:08:51.0042 0x0ac8  ============================================================
12:08:51.0042 0x0ac8  \Device\Harddisk0\DR0:
12:08:51.0042 0x0ac8  GPT partitions:
12:08:51.0042 0x0ac8  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CCECD931-41C9-43EA-926B-2A2B4F677095}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x96000
12:08:51.0042 0x0ac8  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {638D96DB-B98D-459C-9B6B-D5688F375B14}, Name: EFI system partition, StartLBA 0x96800, BlocksNum 0x31800
12:08:51.0042 0x0ac8  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {56A3EBC4-2300-4C34-A1D1-A6F7FE652C80}, Name: Microsoft reserved partition, StartLBA 0xC8000, BlocksNum 0x40000
12:08:51.0042 0x0ac8  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A7597FB0-2825-4E53-A15D-732C92C7D1E5}, Name: Basic data partition, StartLBA 0x108000, BlocksNum 0xDE8CB8F
12:08:51.0042 0x0ac8  MBR partitions:
12:08:51.0042 0x0ac8  \Device\Harddisk1\DR1:
12:08:51.0042 0x0ac8  GPT partitions:
12:08:51.0071 0x0ac8  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {9F4C22FA-5AF2-4704-A6C6-ECEC93400A4E}, Name: Microsoft reserved partition, StartLBA 0x800, BlocksNum 0x40000
12:08:51.0071 0x0ac8  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8FEF7759-ED60-4D64-991C-F2FF56E72D90}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0xE8DC8000
12:08:51.0071 0x0ac8  MBR partitions:
12:08:51.0071 0x0ac8  ============================================================
12:08:51.0074 0x0ac8  C: <-> \Device\Harddisk0\DR0\Partition4
12:08:51.0108 0x0ac8  D: <-> \Device\Harddisk1\DR1\Partition2
12:08:51.0108 0x0ac8  ============================================================
12:08:51.0108 0x0ac8  Initialize success
12:08:51.0108 0x0ac8  ============================================================
12:09:00.0965 0x07f4  ============================================================
12:09:00.0965 0x07f4  Scan started
12:09:00.0965 0x07f4  Mode: Manual; SigCheck; TDLFS; 
12:09:00.0965 0x07f4  ============================================================
12:09:00.0965 0x07f4  KSN ping started
12:09:03.0385 0x07f4  KSN ping finished: true
12:09:04.0171 0x07f4  ================ Scan system memory ========================
12:09:04.0171 0x07f4  System memory - ok
12:09:04.0172 0x07f4  ================ Scan services =============================
12:09:04.0198 0x07f4  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
12:09:04.0233 0x07f4  1394ohci - ok
12:09:04.0243 0x07f4  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
12:09:04.0257 0x07f4  3ware - ok
12:09:04.0270 0x07f4  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:09:04.0295 0x07f4  ACPI - ok
12:09:04.0298 0x07f4  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
12:09:04.0311 0x07f4  acpiex - ok
12:09:04.0314 0x07f4  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
12:09:04.0326 0x07f4  acpipagr - ok
12:09:04.0328 0x07f4  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
12:09:04.0340 0x07f4  AcpiPmi - ok
12:09:04.0343 0x07f4  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
12:09:04.0355 0x07f4  acpitime - ok
12:09:04.0368 0x07f4  [ 28FFB14117CCEDD7D2F124596AA9B785, 8FC482C6444C904B5536979B3354597FD714634EC7372B464118C42AA9DCB58A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:09:04.0377 0x07f4  AdobeFlashPlayerUpdateSvc - ok
12:09:04.0392 0x07f4  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
12:09:04.0421 0x07f4  ADP80XX - ok
12:09:04.0428 0x07f4  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:09:04.0439 0x07f4  AeLookupSvc - ok
12:09:04.0450 0x07f4  [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD             C:\Windows\system32\drivers\afd.sys
12:09:04.0476 0x07f4  AFD - ok
12:09:04.0479 0x07f4  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:09:04.0491 0x07f4  agp440 - ok
12:09:04.0523 0x07f4  [ C17171E63E84F5711DF23B8F1E7A100E, C2AFDDA0A1A502FAE6B51BD00FF5884F46A74D9AEC76856B32E82D244D14FA97 ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
12:09:04.0556 0x07f4  AGSService - ok
12:09:04.0561 0x07f4  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
12:09:04.0574 0x07f4  ahcache - ok
12:09:04.0578 0x07f4  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\Windows\System32\alg.exe
12:09:04.0586 0x07f4  ALG - ok
12:09:04.0590 0x07f4  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
12:09:04.0604 0x07f4  AmdK8 - ok
12:09:04.0609 0x07f4  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
12:09:04.0622 0x07f4  AmdPPM - ok
12:09:04.0626 0x07f4  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:09:04.0638 0x07f4  amdsata - ok
12:09:04.0645 0x07f4  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:09:04.0662 0x07f4  amdsbs - ok
12:09:04.0664 0x07f4  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:09:04.0676 0x07f4  amdxata - ok
12:09:04.0679 0x07f4  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\Windows\system32\drivers\appid.sys
12:09:04.0693 0x07f4  AppID - ok
12:09:04.0696 0x07f4  [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:09:04.0703 0x07f4  AppIDSvc - ok
12:09:04.0708 0x07f4  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\Windows\System32\appinfo.dll
12:09:04.0716 0x07f4  Appinfo - ok
12:09:04.0728 0x07f4  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
12:09:04.0743 0x07f4  AppReadiness - ok
12:09:04.0768 0x07f4  [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
12:09:04.0794 0x07f4  AppXSvc - ok
12:09:04.0799 0x07f4  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:09:04.0812 0x07f4  arcsas - ok
12:09:04.0815 0x07f4  [ 1694434F5B9AB16772C7A8E2EF9134CA, B84FA624EB6D438BB01AB886AE85FA42BEA46F2E33454C6C4D9078015813CDB5 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
12:09:04.0830 0x07f4  aswHwid - ok
12:09:04.0833 0x07f4  [ 786E8BCDFF674068F3C950615FC2E71C, B5803960297F9622F594EC113FF6C89221606FC6B26B02EA6F021BE38AA66794 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
12:09:04.0844 0x07f4  aswKbd - ok
12:09:04.0848 0x07f4  [ 33D0DD0471FDF449C81338863FC63978, D5898B51B3BCE43E62D459CE808888085D82A4B9B284F90E3301CEF7C33C03E4 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
12:09:04.0860 0x07f4  aswMonFlt - ok
12:09:04.0870 0x07f4  [ 5261F0E21A21027CDED0CD47D20E16F2, D56EE09C8F53D7CFC8E62F487C6733AF5CADC61A6839B7E80B5D8F4573E9DE1E ] aswNetSec       C:\Windows\system32\drivers\aswNetSec.sys
12:09:04.0884 0x07f4  aswNetSec - ok
12:09:04.0888 0x07f4  [ DF190688D993A3DB227BFB0BB40BD7D4, C7EDA64AE84001089AE2085B8336B7572DEDDCC80EAAA05D73C9C675CAD8C511 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
12:09:04.0900 0x07f4  aswRdr - ok
12:09:04.0904 0x07f4  [ D873455DFA27680585AE238503917DF5, CAD9CBCD24F33FF8E49C77C795F8FE0540243E455A6FC9E3035B8C15C9EEBD6C ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
12:09:04.0916 0x07f4  aswRvrt - ok
12:09:04.0933 0x07f4  [ A371A06EC8F4830C263D3F5CA5A11B65, 62E55DD439C106184F3AF73198D5CEAB5828A0EE1E30A13C35103B1B57966AB6 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
12:09:04.0969 0x07f4  aswSnx - ok
12:09:04.0978 0x07f4  [ 6B7F6CE19A16240EE9DE2C528897ED9C, 3B7C24F5B152B408D87DA70B01AD2E744DCB877D46602C0620931FCADB275E17 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
12:09:04.0999 0x07f4  aswSP - ok
12:09:05.0004 0x07f4  [ 3575F9226251DE48E065ED5C384A21EF, 032F53FEEB0BB43F1AD673EE13F507D3A8AC10F78543EA1294C40BAA918ED323 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
12:09:05.0012 0x07f4  aswStm - ok
12:09:05.0015 0x07f4  [ E4ABC023E251D2BB6B98C9FCAF5CF16D, 2A94320A3EF16E641B693BF6EABABB57C891B914B00F73ACD7ADB8CA5089EC40 ] aswTap          C:\Windows\system32\DRIVERS\aswTap.sys
12:09:05.0025 0x07f4  aswTap - ok
12:09:05.0032 0x07f4  [ BA4CDCD8C0395E91C38CD2C5CE3E7FA2, EF037C9C62F67C3D4432C86E3F568F62AABF468C792EA75477FCBC8EC8151C29 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
12:09:05.0050 0x07f4  aswVmm - ok
12:09:05.0053 0x07f4  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:09:05.0064 0x07f4  atapi - ok
12:09:05.0070 0x07f4  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:09:05.0080 0x07f4  AudioEndpointBuilder - ok
12:09:05.0096 0x07f4  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:09:05.0116 0x07f4  Audiosrv - ok
12:09:05.0124 0x07f4  [ A24AF1F8186B4B69D54DCC4B059CA695, 882338FEF206231B9FD83787A8685A7B69D76A414923B511A8D6A7619CB86F87 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:09:05.0133 0x07f4  avast! Antivirus - ok
12:09:05.0141 0x07f4  [ 08B412FBCBFDE2901C84801C4F356E2A, E44F5C8078A17B211AD44F46DD633C43B366B6F500BBA75206F4E1E626B59BBF ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
12:09:05.0152 0x07f4  avast! Firewall - ok
12:09:05.0156 0x07f4  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:09:05.0165 0x07f4  AxInstSV - ok
12:09:05.0175 0x07f4  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:09:05.0199 0x07f4  b06bdrv - ok
12:09:05.0203 0x07f4  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
12:09:05.0215 0x07f4  BasicDisplay - ok
12:09:05.0218 0x07f4  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
12:09:05.0230 0x07f4  BasicRender - ok
12:09:05.0234 0x07f4  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
12:09:05.0244 0x07f4  bcmfn2 - ok
12:09:05.0251 0x07f4  [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:09:05.0262 0x07f4  BDESVC - ok
12:09:05.0265 0x07f4  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
12:09:05.0277 0x07f4  Beep - ok
12:09:05.0292 0x07f4  [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE             C:\Windows\System32\bfe.dll
12:09:05.0312 0x07f4  BFE - ok
12:09:05.0329 0x07f4  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\Windows\System32\qmgr.dll
12:09:05.0351 0x07f4  BITS - ok
12:09:05.0355 0x07f4  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:09:05.0368 0x07f4  bowser - ok
12:09:05.0374 0x07f4  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:09:05.0385 0x07f4  BrokerInfrastructure - ok
12:09:05.0389 0x07f4  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\Windows\System32\browser.dll
12:09:05.0398 0x07f4  Browser - ok
12:09:05.0402 0x07f4  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
12:09:05.0414 0x07f4  BthAvrcpTg - ok
12:09:05.0417 0x07f4  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
12:09:05.0430 0x07f4  BthHFEnum - ok
12:09:05.0433 0x07f4  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
12:09:05.0445 0x07f4  bthhfhid - ok
12:09:05.0454 0x07f4  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
12:09:05.0465 0x07f4  BthHFSrv - ok
12:09:05.0469 0x07f4  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
12:09:05.0482 0x07f4  BTHMODEM - ok
12:09:05.0486 0x07f4  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\Windows\system32\bthserv.dll
12:09:05.0494 0x07f4  bthserv - ok
12:09:05.0497 0x07f4  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:09:05.0511 0x07f4  cdfs - ok
12:09:05.0517 0x07f4  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys
12:09:05.0532 0x07f4  cdrom - ok
12:09:05.0537 0x07f4  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:09:05.0546 0x07f4  CertPropSvc - ok
12:09:05.0549 0x07f4  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
12:09:05.0562 0x07f4  circlass - ok
12:09:05.0570 0x07f4  [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
12:09:05.0590 0x07f4  CLFS - ok
12:09:05.0597 0x07f4  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
12:09:05.0611 0x07f4  CmBatt - ok
12:09:05.0623 0x07f4  [ 6A48941C527C8C51051A1514C5B23A31, B0553DAE1F70DB43F2FB3BE699B80783B7943CDE8B31FB3AAB98E689971DFA51 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:09:05.0650 0x07f4  CNG - ok
12:09:05.0654 0x07f4  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
12:09:05.0667 0x07f4  CompositeBus - ok
12:09:05.0669 0x07f4  COMSysApp - ok
12:09:05.0673 0x07f4  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
12:09:05.0686 0x07f4  condrv - ok
12:09:05.0698 0x07f4  [ 7C3EF8B5521499E47D2C5402031831C4, C71DD1BC87DCD34F97D809B66F6081E17D3C135E8E185DE2451484543A08D23A ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
12:09:05.0709 0x07f4  cphs - ok
12:09:05.0715 0x07f4  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:09:05.0724 0x07f4  CryptSvc - ok
12:09:05.0727 0x07f4  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam             C:\Windows\system32\drivers\dam.sys
12:09:05.0739 0x07f4  dam - ok
12:09:05.0755 0x07f4  [ E4220FD9C7F1579D9C5F9DFB00427841, 77740122A01A08F18CC82A4BB3F00EC59F29EE10779092F872572C264F6728D0 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:09:05.0776 0x07f4  DcomLaunch - ok
12:09:05.0786 0x07f4  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\Windows\System32\defragsvc.dll
12:09:05.0801 0x07f4  defragsvc - ok
12:09:05.0810 0x07f4  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\Windows\system32\das.dll
12:09:05.0822 0x07f4  DeviceAssociationService - ok
12:09:05.0827 0x07f4  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
12:09:05.0838 0x07f4  DeviceInstall - ok
12:09:05.0842 0x07f4  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
12:09:05.0857 0x07f4  Dfsc - ok
12:09:05.0861 0x07f4  [ D722BC26F7431A4DA9A183E56CA9FEE3, 86AB717431CB3DDAF6213A1CFE8DF3684080BAAD569731A90AA1AA198E97506D ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:09:05.0875 0x07f4  dg_ssudbus - ok
12:09:05.0883 0x07f4  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:09:05.0896 0x07f4  Dhcp - ok
12:09:05.0922 0x07f4  [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack       C:\Windows\system32\diagtrack.dll
12:09:05.0954 0x07f4  DiagTrack - ok
12:09:05.0960 0x07f4  [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk            C:\Windows\system32\drivers\disk.sys
12:09:05.0975 0x07f4  disk - ok
12:09:05.0977 0x07f4  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
12:09:05.0990 0x07f4  dmvsc - ok
12:09:05.0996 0x07f4  [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:09:06.0008 0x07f4  Dnscache - ok
12:09:06.0014 0x07f4  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:09:06.0025 0x07f4  dot3svc - ok
12:09:06.0030 0x07f4  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\Windows\system32\dps.dll
12:09:06.0041 0x07f4  DPS - ok
12:09:06.0043 0x07f4  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:09:06.0054 0x07f4  drmkaud - ok
12:09:06.0059 0x07f4  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
12:09:06.0070 0x07f4  DsmSvc - ok
12:09:06.0096 0x07f4  [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:09:06.0146 0x07f4  DXGKrnl - ok
12:09:06.0152 0x07f4  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\Windows\System32\eapsvc.dll
12:09:06.0161 0x07f4  Eaphost - ok
12:09:06.0209 0x07f4  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:09:06.0270 0x07f4  ebdrv - ok
12:09:06.0276 0x07f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\Windows\System32\lsass.exe
12:09:06.0284 0x07f4  EFS - ok
12:09:06.0288 0x07f4  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
12:09:06.0300 0x07f4  EhStorClass - ok
12:09:06.0305 0x07f4  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:09:06.0318 0x07f4  EhStorTcgDrv - ok
12:09:06.0321 0x07f4  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
12:09:06.0333 0x07f4  ErrDev - ok
12:09:06.0345 0x07f4  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\Windows\system32\es.dll
12:09:06.0359 0x07f4  EventSystem - ok
12:09:06.0365 0x07f4  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:09:06.0384 0x07f4  exfat - ok
12:09:06.0390 0x07f4  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:09:06.0406 0x07f4  fastfat - ok
12:09:06.0419 0x07f4  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\Windows\system32\fxssvc.exe
12:09:06.0435 0x07f4  Fax - ok
12:09:06.0439 0x07f4  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys
12:09:06.0451 0x07f4  fdc - ok
12:09:06.0454 0x07f4  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\Windows\system32\fdPHost.dll
12:09:06.0462 0x07f4  fdPHost - ok
12:09:06.0464 0x07f4  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:09:06.0473 0x07f4  FDResPub - ok
12:09:06.0476 0x07f4  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\Windows\system32\fhsvc.dll
12:09:06.0486 0x07f4  fhsvc - ok
12:09:06.0489 0x07f4  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:09:06.0502 0x07f4  FileInfo - ok
12:09:06.0505 0x07f4  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:09:06.0521 0x07f4  Filetrace - ok
12:09:06.0524 0x07f4  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
12:09:06.0536 0x07f4  flpydisk - ok
12:09:06.0544 0x07f4  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:09:06.0563 0x07f4  FltMgr - ok
12:09:06.0587 0x07f4  [ 2F225BC85B84C04EA01BAB8D8DACFA83, 1F6E20C8F0FFD3FA60BDF556FB8392FE014E6519C3F314D1D22D394DB2A040CA ] FontCache       C:\Windows\system32\FntCache.dll
12:09:06.0615 0x07f4  FontCache - ok
12:09:06.0620 0x07f4  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:09:06.0626 0x07f4  FontCache3.0.0.0 - ok
12:09:06.0629 0x07f4  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:09:06.0641 0x07f4  FsDepends - ok
12:09:06.0644 0x07f4  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:09:06.0655 0x07f4  Fs_Rec - ok
12:09:06.0657 0x07f4  Futuremark SystemInfo Service - ok
12:09:06.0668 0x07f4  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:09:06.0693 0x07f4  fvevol - ok
12:09:06.0696 0x07f4  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
12:09:06.0709 0x07f4  FxPPM - ok
12:09:06.0712 0x07f4  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:09:06.0725 0x07f4  gagp30kx - ok
12:09:06.0726 0x07f4  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
12:09:06.0737 0x07f4  gdrv - ok
12:09:06.0739 0x07f4  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
12:09:06.0751 0x07f4  gencounter - ok
12:09:06.0770 0x07f4  [ 4CEDC66C726F7BE116BE7694B3CD22CD, C55DDC432F640C215E57C5AC9B7D801F7B2DA21E50BFA9ABC209AADC3070C744 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
12:09:06.0792 0x07f4  GfExperienceService - ok
12:09:06.0795 0x07f4  [ 5D4DF0BAC74E9AC62AF6BC99440B050B, 655110646BFF890C448C0951E11132DC3592BDA6E080696341B930D090224723 ] GPCIDrv         C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys
12:09:06.0804 0x07f4  GPCIDrv - ok
12:09:06.0808 0x07f4  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
12:09:06.0823 0x07f4  GPIOClx0101 - ok
12:09:06.0845 0x07f4  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:09:06.0872 0x07f4  gpsvc - ok
12:09:06.0877 0x07f4  [ 7814A8ED32D5186BA651008AFFB55080, 1116694AD45DC53B987910DFD16909B69DEF754034E4C535AEE6340229CE5697 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:09:06.0883 0x07f4  gupdate - ok
12:09:06.0887 0x07f4  [ 7814A8ED32D5186BA651008AFFB55080, 1116694AD45DC53B987910DFD16909B69DEF754034E4C535AEE6340229CE5697 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:09:06.0892 0x07f4  gupdatem - ok
12:09:06.0902 0x07f4  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:09:06.0923 0x07f4  HdAudAddService - ok
12:09:06.0927 0x07f4  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
12:09:06.0941 0x07f4  HDAudBus - ok
12:09:06.0943 0x07f4  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
12:09:06.0956 0x07f4  HidBatt - ok
12:09:06.0960 0x07f4  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
12:09:06.0974 0x07f4  HidBth - ok
12:09:06.0977 0x07f4  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
12:09:06.0990 0x07f4  hidi2c - ok
12:09:06.0993 0x07f4  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys
12:09:07.0006 0x07f4  HidIr - ok
12:09:07.0009 0x07f4  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\Windows\system32\hidserv.dll
12:09:07.0018 0x07f4  hidserv - ok
12:09:07.0021 0x07f4  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
12:09:07.0033 0x07f4  HidUsb - ok
12:09:07.0037 0x07f4  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:09:07.0046 0x07f4  hkmsvc - ok
12:09:07.0053 0x07f4  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:09:07.0065 0x07f4  HomeGroupListener - ok
12:09:07.0074 0x07f4  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:09:07.0089 0x07f4  HomeGroupProvider - ok
12:09:07.0092 0x07f4  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:09:07.0104 0x07f4  HpSAMD - ok
12:09:07.0122 0x07f4  [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:09:07.0157 0x07f4  HTTP - ok
12:09:07.0161 0x07f4  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:09:07.0172 0x07f4  hwpolicy - ok
12:09:07.0174 0x07f4  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
12:09:07.0186 0x07f4  hyperkbd - ok
12:09:07.0188 0x07f4  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
12:09:07.0200 0x07f4  HyperVideo - ok
12:09:07.0205 0x07f4  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
12:09:07.0219 0x07f4  i8042prt - ok
12:09:07.0222 0x07f4  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
12:09:07.0232 0x07f4  iaLPSSi_GPIO - ok
12:09:07.0236 0x07f4  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
12:09:07.0247 0x07f4  iaLPSSi_I2C - ok
12:09:07.0260 0x07f4  [ D62CBCD73F175C8A7F92CAFB6B6AF4DD, 9E021E6A73665DB3337D5D55045F24E675C6D0BF7B26660C16117E0971E9EDD4 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
12:09:07.0283 0x07f4  iaStorA - ok
12:09:07.0295 0x07f4  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
12:09:07.0318 0x07f4  iaStorAV - ok
12:09:07.0327 0x07f4  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:09:07.0347 0x07f4  iaStorV - ok
12:09:07.0350 0x07f4  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
12:09:07.0353 0x07f4  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
12:09:09.0812 0x07f4  Detect skipped due to KSN trusted
12:09:09.0812 0x07f4  IDriverT - ok
12:09:09.0814 0x07f4  IEEtwCollectorService - ok
12:09:09.0888 0x07f4  [ C5E23116B13704940651AD1694B1A37D, 2FF3E2D16799B0D896E1CE9AB22637FF290CD9D03EBE773EBC2C23281A9C6F8C ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
12:09:09.0972 0x07f4  igfx - ok
12:09:09.0984 0x07f4  [ F5BBF0F3A5F2FE6B292038132D483A25, C4E3BF543E5F83A56FC6BD48A54191592F242EF64DFD7F5277E13BDD66554B4C ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
12:09:09.0995 0x07f4  igfxCUIService1.0.0.0 - ok
12:09:10.0014 0x07f4  [ 2530D33CE2F5F30D08A039EC33E91F17, DE1669A9F67C9CA3EEF6D0D0A56167318E4DB50965D87BF94A2795A21EBEE979 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:09:10.0037 0x07f4  IKEEXT - ok
12:09:10.0041 0x07f4  [ 5950F69F9B345952F3C2275C39EA393B, 382923DE0F5F25285F8C86BA628350DF1CFB6E63FF20736CF9285FB0F36A76DE ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
12:09:10.0052 0x07f4  intaud_WaveExtensible - ok
12:09:10.0110 0x07f4  [ 1747CAA9AB414DEC0FF38CDEBD3A7418, 0B647EF6FFF1E02DAD8B4C764A4A00430898BD089304D52BC05E0D99E80F1236 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:09:10.0170 0x07f4  IntcAzAudAddService - ok
12:09:10.0184 0x07f4  [ 8AEEE0F4D210B61F917CFEA9653973C4, F09389C2A3E1DED402C08BF1A30BD79A342B0E55AD4996CF2E5189A004E6E62F ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
12:09:10.0196 0x07f4  IntcDAud - ok
12:09:10.0199 0x07f4  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:09:10.0210 0x07f4  intelide - ok
12:09:10.0213 0x07f4  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
12:09:10.0225 0x07f4  intelpep - ok
12:09:10.0229 0x07f4  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
12:09:10.0242 0x07f4  intelppm - ok
12:09:10.0246 0x07f4  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:09:10.0261 0x07f4  IpFilterDriver - ok
12:09:10.0277 0x07f4  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:09:10.0298 0x07f4  iphlpsvc - ok
12:09:10.0302 0x07f4  [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
12:09:10.0315 0x07f4  IPMIDRV - ok
12:09:10.0320 0x07f4  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:09:10.0334 0x07f4  IPNAT - ok
12:09:10.0337 0x07f4  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:09:10.0350 0x07f4  IRENUM - ok
12:09:10.0353 0x07f4  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:09:10.0364 0x07f4  isapnp - ok
12:09:10.0372 0x07f4  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
12:09:10.0389 0x07f4  iScsiPrt - ok
12:09:10.0392 0x07f4  [ F1D3A377ED9BA1CA449824C41CAF104C, EA0E90D5D827664CFDB644753C6DC134C3F8F852F24175EC8328A9FA925B25BF ] iwdbus          C:\Windows\System32\drivers\iwdbus.sys
12:09:10.0397 0x07f4  iwdbus - ok
12:09:10.0400 0x07f4  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
12:09:10.0412 0x07f4  kbdclass - ok
12:09:10.0415 0x07f4  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
12:09:10.0427 0x07f4  kbdhid - ok
12:09:10.0430 0x07f4  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
12:09:10.0441 0x07f4  kdnic - ok
12:09:10.0444 0x07f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\Windows\system32\lsass.exe
12:09:10.0452 0x07f4  KeyIso - ok
12:09:10.0455 0x07f4  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:09:10.0468 0x07f4  KSecDD - ok
12:09:10.0473 0x07f4  [ A950AB512ED2BD847789FAAD3E967AFA, 005340965B30C5A14E4E081E2CDF7214D2C00BAF05C62DA9ED63EA3026E70C8A ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:09:10.0487 0x07f4  KSecPkg - ok
12:09:10.0490 0x07f4  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:09:10.0502 0x07f4  ksthunk - ok
12:09:10.0509 0x07f4  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:09:10.0523 0x07f4  KtmRm - ok
12:09:10.0530 0x07f4  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:09:10.0542 0x07f4  LanmanServer - ok
12:09:10.0549 0x07f4  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:09:10.0562 0x07f4  LanmanWorkstation - ok
12:09:10.0573 0x07f4  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
12:09:10.0588 0x07f4  lfsvc - ok
12:09:10.0591 0x07f4  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
12:09:10.0601 0x07f4  LGBusEnum - ok
12:09:10.0604 0x07f4  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
12:09:10.0613 0x07f4  LGVirHid - ok
12:09:10.0616 0x07f4  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:09:10.0630 0x07f4  lltdio - ok
12:09:10.0637 0x07f4  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:09:10.0649 0x07f4  lltdsvc - ok
12:09:10.0651 0x07f4  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:09:10.0661 0x07f4  lmhosts - ok
12:09:10.0666 0x07f4  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:09:10.0681 0x07f4  LSI_SAS - ok
12:09:10.0685 0x07f4  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:09:10.0700 0x07f4  LSI_SAS2 - ok
12:09:10.0703 0x07f4  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
12:09:10.0716 0x07f4  LSI_SAS3 - ok
12:09:10.0719 0x07f4  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
12:09:10.0731 0x07f4  LSI_SSS - ok
12:09:10.0746 0x07f4  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM             C:\Windows\System32\lsm.dll
12:09:10.0765 0x07f4  LSM - ok
12:09:10.0769 0x07f4  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:09:10.0784 0x07f4  luafv - ok
12:09:10.0791 0x07f4  [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
12:09:10.0800 0x07f4  LVRS64 - ok
12:09:10.0867 0x07f4  [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
12:09:10.0936 0x07f4  LVUVC64 - ok
12:09:10.0944 0x07f4  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys
12:09:10.0956 0x07f4  megasas - ok
12:09:10.0967 0x07f4  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
12:09:10.0990 0x07f4  megasr - ok
12:09:10.0995 0x07f4  [ 1BC9159CF58BABD89419072EA180A8F6, 6C9AB779C2355A341800A8F93AAAF9B19FAFF444CD6A7BD27C63D53F379A75EF ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
12:09:11.0003 0x07f4  MEIx64 - ok
12:09:11.0006 0x07f4  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\Windows\system32\mmcss.dll
12:09:11.0015 0x07f4  MMCSS - ok
12:09:11.0017 0x07f4  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys
12:09:11.0031 0x07f4  Modem - ok
12:09:11.0034 0x07f4  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys
12:09:11.0046 0x07f4  monitor - ok
12:09:11.0049 0x07f4  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
12:09:11.0060 0x07f4  mouclass - ok
12:09:11.0063 0x07f4  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
12:09:11.0076 0x07f4  mouhid - ok
12:09:11.0079 0x07f4  [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:09:11.0092 0x07f4  mountmgr - ok
12:09:11.0095 0x07f4  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:09:11.0109 0x07f4  mpsdrv - ok
12:09:11.0124 0x07f4  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:09:11.0144 0x07f4  MpsSvc - ok
12:09:11.0149 0x07f4  [ D2AC8F07995CE6CD18848C129435B481, 839B04116B49A757950E049150F6AADE41335914CC699ED73BE886BECAC39D36 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:09:11.0163 0x07f4  MRxDAV - ok
12:09:11.0172 0x07f4  [ 5DCD41F62F71519D2A46D41F60C69B0C, A9C2F8B8F82BDBF48F34D5837ED27CE251C75232A07AF26F7B796D2A106795A0 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:09:11.0193 0x07f4  mrxsmb - ok
12:09:11.0199 0x07f4  [ D7C9BC4D37BF08C7DD436A0A5F321668, 30A5AF211BEC89E26134CDAE3E60D0D9F0AE2748F56E9D09B07431206AD381C6 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:09:11.0217 0x07f4  mrxsmb10 - ok
12:09:11.0222 0x07f4  [ FE219A7107C4BC3BBC35D6CDC281612C, 98CA0FECF1F7269DAED43561FA40AAC1A9456F2C2FE7C1243C628F78864D2F54 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:09:11.0238 0x07f4  mrxsmb20 - ok
12:09:11.0242 0x07f4  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
12:09:11.0256 0x07f4  MsBridge - ok
12:09:11.0260 0x07f4  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\Windows\System32\msdtc.exe
12:09:11.0270 0x07f4  MSDTC - ok
12:09:11.0274 0x07f4  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:09:11.0287 0x07f4  Msfs - ok
12:09:11.0290 0x07f4  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
12:09:11.0302 0x07f4  msgpiowin32 - ok
12:09:11.0304 0x07f4  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:09:11.0316 0x07f4  mshidkmdf - ok
12:09:11.0318 0x07f4  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
12:09:11.0330 0x07f4  mshidumdf - ok
12:09:11.0332 0x07f4  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:09:11.0343 0x07f4  msisadrv - ok
12:09:11.0348 0x07f4  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:09:11.0357 0x07f4  MSiSCSI - ok
12:09:11.0359 0x07f4  msiserver - ok
12:09:11.0361 0x07f4  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:09:11.0373 0x07f4  MSKSSRV - ok
12:09:11.0376 0x07f4  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
12:09:11.0389 0x07f4  MsLldp - ok
12:09:11.0391 0x07f4  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:09:11.0403 0x07f4  MSPCLOCK - ok
12:09:11.0405 0x07f4  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:09:11.0417 0x07f4  MSPQM - ok
12:09:11.0424 0x07f4  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:09:11.0444 0x07f4  MsRPC - ok
12:09:11.0448 0x07f4  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
12:09:11.0459 0x07f4  mssmbios - ok
12:09:11.0461 0x07f4  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:09:11.0473 0x07f4  MSTEE - ok
12:09:11.0475 0x07f4  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
12:09:11.0487 0x07f4  MTConfig - ok
12:09:11.0490 0x07f4  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys
12:09:11.0503 0x07f4  Mup - ok
12:09:11.0506 0x07f4  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
12:09:11.0518 0x07f4  mvumis - ok
12:09:11.0527 0x07f4  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\Windows\system32\qagentRT.dll
12:09:11.0542 0x07f4  napagent - ok
12:09:11.0551 0x07f4  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:09:11.0572 0x07f4  NativeWifiP - ok
12:09:11.0577 0x07f4  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\Windows\System32\ncasvc.dll
12:09:11.0587 0x07f4  NcaSvc - ok
12:09:11.0592 0x07f4  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\Windows\System32\ncbservice.dll
12:09:11.0602 0x07f4  NcbService - ok
12:09:11.0605 0x07f4  [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
12:09:11.0614 0x07f4  NcdAutoSetup - ok
12:09:11.0632 0x07f4  [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:09:11.0669 0x07f4  NDIS - ok
12:09:11.0673 0x07f4  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:09:11.0686 0x07f4  NdisCap - ok
12:09:11.0690 0x07f4  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:09:11.0704 0x07f4  NdisImPlatform - ok
12:09:11.0707 0x07f4  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:09:11.0719 0x07f4  NdisTapi - ok
12:09:11.0721 0x07f4  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:09:11.0734 0x07f4  Ndisuio - ok
12:09:11.0737 0x07f4  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
12:09:11.0750 0x07f4  NdisVirtualBus - ok
12:09:11.0755 0x07f4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:09:11.0773 0x07f4  NdisWan - ok
12:09:11.0778 0x07f4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
12:09:11.0795 0x07f4  NdisWanLegacy - ok
12:09:11.0799 0x07f4  [ B8F36CBC72FC5C8B8A30AD850165EA8E, 478454B1399700B745265A64EC9C797C66BD0141471200BCF222F5EB15B0F40C ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:09:11.0812 0x07f4  NDProxy - ok
12:09:11.0815 0x07f4  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
12:09:11.0830 0x07f4  Ndu - ok
12:09:11.0833 0x07f4  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:09:11.0845 0x07f4  NetBIOS - ok
12:09:11.0852 0x07f4  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:09:11.0870 0x07f4  NetBT - ok
12:09:11.0873 0x07f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\Windows\system32\lsass.exe
12:09:11.0880 0x07f4  Netlogon - ok
12:09:11.0886 0x07f4  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\Windows\System32\netman.dll
12:09:11.0899 0x07f4  Netman - ok
12:09:11.0909 0x07f4  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\Windows\System32\netprofmsvc.dll
12:09:11.0925 0x07f4  netprofm - ok
12:09:11.0930 0x07f4  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:09:11.0938 0x07f4  NetTcpPortSharing - ok
12:09:11.0941 0x07f4  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\Windows\System32\drivers\netvsc63.sys
12:09:11.0955 0x07f4  netvsc - ok
12:09:11.0963 0x07f4  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:09:11.0976 0x07f4  NlaSvc - ok
12:09:11.0979 0x07f4  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:09:11.0993 0x07f4  Npfs - ok
12:09:11.0996 0x07f4  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
12:09:12.0008 0x07f4  npsvctrig - ok
12:09:12.0011 0x07f4  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\Windows\system32\nsisvc.dll
12:09:12.0019 0x07f4  nsi - ok
12:09:12.0022 0x07f4  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:09:12.0035 0x07f4  nsiproxy - ok
12:09:12.0066 0x07f4  [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:09:12.0128 0x07f4  Ntfs - ok
12:09:12.0131 0x07f4  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
12:09:12.0143 0x07f4  Null - ok
12:09:12.0147 0x07f4  [ 1F99AD85DC4F9E322CDE2363378CD374, 5E80D10FF0BC46ECF6F1F2294F35A0A7FD76E6F0B4534FD45C9AA8C57AE97F68 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
12:09:12.0155 0x07f4  NVHDA - ok
12:09:12.0335 0x07f4  [ F1AD55BE455B70D8348C08EC891BA263, 0F8FDF483B227A8CCA844D2E2039754B800137C588B67B32AC50DA891A88D8E7 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:09:12.0523 0x07f4  nvlddmkm - ok
12:09:12.0564 0x07f4  [ FA9BC0048ED46C5FB5C93EAFFC97F63D, 2014C08B55940E055F6243E81F0227861272F2B6353D05BFEF364ED4F11EA9B0 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
12:09:12.0594 0x07f4  NvNetworkService - ok
12:09:12.0600 0x07f4  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:09:12.0614 0x07f4  nvraid - ok
12:09:12.0619 0x07f4  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:09:12.0633 0x07f4  nvstor - ok
12:09:12.0635 0x07f4  [ DEF76B479C3525952D0BD71E881E07B0, DC4B13AA97F61542F55F92769F9C8C5EB253BD6EB165EF064107D11158CD412F ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
12:09:12.0646 0x07f4  NvStreamKms - ok
12:09:12.0699 0x07f4  [ AF5BE3694A76365874B8967331049F2C, F704A0403B63E856EE9ECCE7C913650F5FF928F0872035EE73E1AE1CD54BC046 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
12:09:12.0753 0x07f4  NvStreamNetworkSvc - ok
12:09:12.0795 0x07f4  [ 77BE9E1AFCE995652A1C4FF4C8A0F839, 4AD981BCC349D413B3CCDC06DC8D6D2C2648D049726D6825E35A9A91D4C072FF ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
12:09:12.0835 0x07f4  NvStreamSvc - ok
12:09:12.0859 0x07f4  [ 27F1E6074709F1BEFE011DDEA6A11373, E4DDA22519C77165E3E02599338CCF213B4A0A21C1EFF471A4C9BFBBCD6F3334 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:09:12.0884 0x07f4  nvsvc - ok
12:09:12.0887 0x07f4  [ 2CBC64D8821F3C534FB34EF4B4FB2CF1, 4EF833824B39A62A79BFC27C17BF555D05DF79F9EFEFAE7F7475ECAA38E4FE23 ] NVVADARM        C:\Windows\system32\drivers\nvvadarm.sys
12:09:12.0897 0x07f4  NVVADARM - ok
12:09:12.0901 0x07f4  [ F37FE6B15A987AEEC08EEF531F2FAED7, CC768E7DE80C7A8CB2392F9BC528212B8A3A35A30A222ED0B0B959051E6F8065 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
12:09:12.0912 0x07f4  nvvad_WaveExtensible - ok
12:09:12.0916 0x07f4  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:09:12.0929 0x07f4  nv_agp - ok
12:09:12.0937 0x07f4  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:09:12.0950 0x07f4  p2pimsvc - ok
12:09:12.0960 0x07f4  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\Windows\system32\p2psvc.dll
12:09:12.0974 0x07f4  p2psvc - ok
12:09:12.0978 0x07f4  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys
12:09:12.0992 0x07f4  Parport - ok
12:09:12.0995 0x07f4  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:09:13.0008 0x07f4  partmgr - ok
12:09:13.0017 0x07f4  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:09:13.0031 0x07f4  PcaSvc - ok
12:09:13.0039 0x07f4  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\Windows\system32\drivers\pci.sys
12:09:13.0057 0x07f4  pci - ok
12:09:13.0059 0x07f4  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:09:13.0070 0x07f4  pciide - ok
12:09:13.0075 0x07f4  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:09:13.0089 0x07f4  pcmcia - ok
12:09:13.0092 0x07f4  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:09:13.0104 0x07f4  pcw - ok
12:09:13.0107 0x07f4  [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc             C:\Windows\system32\drivers\pdc.sys
12:09:13.0119 0x07f4  pdc - ok
12:09:13.0132 0x07f4  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:09:13.0147 0x07f4  PEAUTH - ok
12:09:13.0158 0x07f4  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:09:13.0166 0x07f4  PerfHost - ok
12:09:13.0193 0x07f4  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\Windows\system32\pla.dll
12:09:13.0225 0x07f4  pla - ok
12:09:13.0231 0x07f4  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:09:13.0243 0x07f4  PlugPlay - ok
12:09:13.0246 0x07f4  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:09:13.0255 0x07f4  PNRPAutoReg - ok
12:09:13.0263 0x07f4  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:09:13.0277 0x07f4  PNRPsvc - ok
12:09:13.0285 0x07f4  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:09:13.0298 0x07f4  PolicyAgent - ok
12:09:13.0302 0x07f4  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\Windows\system32\umpo.dll
12:09:13.0312 0x07f4  Power - ok
12:09:13.0357 0x07f4  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
12:09:13.0404 0x07f4  PrintNotify - ok
12:09:13.0411 0x07f4  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys
12:09:13.0425 0x07f4  Processor - ok
12:09:13.0430 0x07f4  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc         C:\Windows\system32\profsvc.dll
12:09:13.0442 0x07f4  ProfSvc - ok
12:09:13.0446 0x07f4  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:09:13.0462 0x07f4  Psched - ok
12:09:13.0469 0x07f4  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\Windows\system32\qwave.dll
12:09:13.0481 0x07f4  QWAVE - ok
12:09:13.0484 0x07f4  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:09:13.0496 0x07f4  QWAVEdrv - ok
12:09:13.0498 0x07f4  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:09:13.0510 0x07f4  RasAcd - ok
12:09:13.0514 0x07f4  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\Windows\System32\rasauto.dll
12:09:13.0524 0x07f4  RasAuto - ok
12:09:13.0534 0x07f4  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\Windows\System32\rasmans.dll
12:09:13.0550 0x07f4  RasMan - ok
12:09:13.0553 0x07f4  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:09:13.0568 0x07f4  RasPppoe - ok
12:09:13.0577 0x07f4  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:09:13.0597 0x07f4  rdbss - ok
12:09:13.0600 0x07f4  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
12:09:13.0612 0x07f4  rdpbus - ok
12:09:13.0617 0x07f4  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:09:13.0633 0x07f4  RDPDR - ok
12:09:13.0637 0x07f4  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:09:13.0648 0x07f4  RdpVideoMiniport - ok
12:09:13.0654 0x07f4  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:09:13.0670 0x07f4  rdyboost - ok
12:09:13.0686 0x07f4  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
12:09:13.0720 0x07f4  ReFS - ok
12:09:13.0726 0x07f4  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:09:13.0737 0x07f4  RemoteAccess - ok
12:09:13.0742 0x07f4  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:09:13.0753 0x07f4  RemoteRegistry - ok
12:09:13.0757 0x07f4  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:09:13.0766 0x07f4  RpcEptMapper - ok
12:09:13.0769 0x07f4  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\Windows\system32\locator.exe
12:09:13.0777 0x07f4  RpcLocator - ok
12:09:13.0791 0x07f4  [ E4220FD9C7F1579D9C5F9DFB00427841, 77740122A01A08F18CC82A4BB3F00EC59F29EE10779092F872572C264F6728D0 ] RpcSs           C:\Windows\system32\rpcss.dll
12:09:13.0811 0x07f4  RpcSs - ok
12:09:13.0815 0x07f4  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:09:13.0830 0x07f4  rspndr - ok
12:09:13.0845 0x07f4  [ 28BEF2E6CCB3BA4AB67B832FF6F82BF6, DBC02CE0BC044166DD3F79977AC61C4FA2509114665AFF038C89576E6C0CC4E7 ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
12:09:13.0871 0x07f4  RTL8168 - ok
12:09:13.0874 0x07f4  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
12:09:13.0885 0x07f4  s3cap - ok
12:09:13.0888 0x07f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\Windows\system32\lsass.exe
12:09:13.0896 0x07f4  SamSs - ok
12:09:13.0900 0x07f4  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:09:13.0913 0x07f4  sbp2port - ok
12:09:13.0919 0x07f4  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:09:13.0930 0x07f4  SCardSvr - ok
12:09:13.0934 0x07f4  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
12:09:13.0945 0x07f4  ScDeviceEnum - ok
12:09:13.0948 0x07f4  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:09:13.0961 0x07f4  scfilter - ok
12:09:13.0983 0x07f4  [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule        C:\Windows\system32\schedsvc.dll
12:09:14.0009 0x07f4  Schedule - ok
12:09:14.0014 0x07f4  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:09:14.0024 0x07f4  SCPolicySvc - ok
12:09:14.0031 0x07f4  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus           C:\Windows\System32\drivers\sdbus.sys
12:09:14.0048 0x07f4  sdbus - ok
12:09:14.0052 0x07f4  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
12:09:14.0064 0x07f4  sdstor - ok
12:09:14.0067 0x07f4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:09:14.0079 0x07f4  secdrv - ok
12:09:14.0082 0x07f4  [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon        C:\Windows\system32\seclogon.dll
12:09:14.0091 0x07f4  seclogon - ok
12:09:14.0095 0x07f4  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\Windows\System32\sens.dll
12:09:14.0105 0x07f4  SENS - ok
12:09:14.0111 0x07f4  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:09:14.0122 0x07f4  SensrSvc - ok
12:09:14.0126 0x07f4  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
12:09:14.0138 0x07f4  SerCx - ok
12:09:14.0142 0x07f4  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
12:09:14.0157 0x07f4  SerCx2 - ok
12:09:14.0159 0x07f4  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys
12:09:14.0172 0x07f4  Serenum - ok
12:09:14.0175 0x07f4  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys
12:09:14.0189 0x07f4  Serial - ok
12:09:14.0192 0x07f4  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\Windows\System32\drivers\sermouse.sys
12:09:14.0204 0x07f4  sermouse - ok
12:09:14.0214 0x07f4  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\Windows\system32\sessenv.dll
12:09:14.0227 0x07f4  SessionEnv - ok
12:09:14.0230 0x07f4  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
12:09:14.0242 0x07f4  sfloppy - ok
12:09:14.0251 0x07f4  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:09:14.0265 0x07f4  SharedAccess - ok
12:09:14.0278 0x07f4  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:09:14.0295 0x07f4  ShellHWDetection - ok
12:09:14.0298 0x07f4  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:09:14.0311 0x07f4  SiSRaid2 - ok
12:09:14.0314 0x07f4  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:09:14.0326 0x07f4  SiSRaid4 - ok
12:09:14.0334 0x07f4  [ 9A66A87BBC0EC4463042959B7C0D4AC1, 2E61DC50AD4A4D4782F3271BAD010137DA9A6AFC46C7568C709F68C7621DCD40 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:09:14.0343 0x07f4  SkypeUpdate - ok
12:09:14.0346 0x07f4  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\Windows\System32\smphost.dll
12:09:14.0355 0x07f4  smphost - ok
12:09:14.0359 0x07f4  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:09:14.0367 0x07f4  SNMPTRAP - ok
12:09:14.0378 0x07f4  [ B45AE0970B2D66CCE756DE6989E23EEC, 8393CF2DC4F65CD48D4D7B3C8C2D29E26728593B652D6CEAB65B50AEDA0884B7 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
12:09:14.0400 0x07f4  spaceport - ok
12:09:14.0403 0x07f4  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
12:09:14.0416 0x07f4  SpbCx - ok
12:09:14.0431 0x07f4  [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler         C:\Windows\System32\spoolsv.exe
12:09:14.0452 0x07f4  Spooler - ok
12:09:14.0551 0x07f4  [ 46549AF7CB672BC8138264CC4100E9F8, 6434249FADB07A033FD40C37DF2B775CF0617CF0C3E7C170F2984BD3CE423794 ] sppsvc          C:\Windows\system32\sppsvc.exe
12:09:14.0672 0x07f4  sppsvc - ok
12:09:14.0686 0x07f4  [ 8003E034E3EA0E29DA54215A770FC27C, 28AB1FDEA372D33540A26DAE413A10336409D33B91F51DC0AE144D451022A2A7 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:09:14.0706 0x07f4  srv - ok
12:09:14.0719 0x07f4  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:09:14.0748 0x07f4  srv2 - ok
12:09:14.0755 0x07f4  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:09:14.0771 0x07f4  srvnet - ok
12:09:14.0777 0x07f4  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:09:14.0790 0x07f4  SSDPSRV - ok
12:09:14.0794 0x07f4  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:09:14.0805 0x07f4  SstpSvc - ok
12:09:14.0810 0x07f4  [ 36C3697CA09B23C77BDF95A6B0B57310, DAEF9CFBDE444A80FB41DA0BC5C3C4E1E4B535497A5EDA43EC8768A6EC42E4EA ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:09:14.0820 0x07f4  ssudmdm - ok
12:09:14.0846 0x07f4  [ A4FC868F6FC03876E29E4D87731B8E31, C774DA022879A69CBC2178CA1BB779438CD69D1582B4ECF22C90E4F0C4E9D9E4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:09:14.0874 0x07f4  Steam Client Service - ok
12:09:14.0885 0x07f4  [ E1AAD79D0C59C157258845C998715575, AF08F3DE709045E8E5B5EAC7D05F307C92AA031753CFE9ABB9A5A3B37FE392BA ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
12:09:14.0897 0x07f4  Stereo Service - ok
12:09:14.0900 0x07f4  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:09:14.0912 0x07f4  stexstor - ok
12:09:14.0925 0x07f4  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\Windows\System32\wiaservc.dll
12:09:14.0943 0x07f4  stisvc - ok
12:09:14.0947 0x07f4  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
12:09:14.0960 0x07f4  storahci - ok
12:09:14.0963 0x07f4  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:09:14.0975 0x07f4  storflt - ok
12:09:14.0979 0x07f4  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
12:09:14.0991 0x07f4  stornvme - ok
12:09:14.0993 0x07f4  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\Windows\system32\storsvc.dll
12:09:15.0002 0x07f4  StorSvc - ok
12:09:15.0005 0x07f4  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:09:15.0017 0x07f4  storvsc - ok
12:09:15.0020 0x07f4  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\Windows\system32\svsvc.dll
12:09:15.0028 0x07f4  svsvc - ok
12:09:15.0030 0x07f4  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\Windows\System32\drivers\swenum.sys
12:09:15.0041 0x07f4  swenum - ok
12:09:15.0055 0x07f4  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\Windows\System32\swprv.dll
12:09:15.0074 0x07f4  swprv - ok
12:09:15.0095 0x07f4  [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain         C:\Windows\system32\sysmain.dll
12:09:15.0121 0x07f4  SysMain - ok
12:09:15.0129 0x07f4  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:09:15.0142 0x07f4  SystemEventsBroker - ok
12:09:15.0147 0x07f4  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:09:15.0157 0x07f4  TabletInputService - ok
12:09:15.0160 0x07f4  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
12:09:15.0171 0x07f4  tap0901 - ok
12:09:15.0174 0x07f4  [ 8945D45C28201611A75A734AA91C6198, 32CB203142C17452F38D0879BE1CD159F7E3BDA89150B89D5F6ED66C71966B22 ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
12:09:15.0184 0x07f4  taphss6 - ok
12:09:15.0191 0x07f4  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:09:15.0204 0x07f4  TapiSrv - ok
12:09:15.0243 0x07f4  [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:09:15.0311 0x07f4  Tcpip - ok
12:09:15.0352 0x07f4  [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:09:15.0421 0x07f4  TCPIP6 - ok
12:09:15.0427 0x07f4  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:09:15.0440 0x07f4  tcpipreg - ok
12:09:15.0445 0x07f4  [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:09:15.0459 0x07f4  tdx - ok
12:09:15.0462 0x07f4  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
12:09:15.0474 0x07f4  terminpt - ok
12:09:15.0494 0x07f4  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\Windows\System32\termsrv.dll
12:09:15.0518 0x07f4  TermService - ok
12:09:15.0522 0x07f4  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\Windows\system32\themeservice.dll
12:09:15.0532 0x07f4  Themes - ok
12:09:15.0535 0x07f4  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\Windows\system32\mmcss.dll
12:09:15.0544 0x07f4  THREADORDER - ok
12:09:15.0551 0x07f4  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
12:09:15.0563 0x07f4  TimeBroker - ok
12:09:15.0569 0x07f4  [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM             C:\Windows\system32\drivers\tpm.sys
12:09:15.0584 0x07f4  TPM - ok
12:09:15.0588 0x07f4  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\Windows\System32\trkwks.dll
12:09:15.0599 0x07f4  TrkWks - ok
12:09:15.0602 0x07f4  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:09:15.0610 0x07f4  TrustedInstaller - ok
12:09:15.0614 0x07f4  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:09:15.0626 0x07f4  TsUsbFlt - ok
12:09:15.0629 0x07f4  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
12:09:15.0641 0x07f4  TsUsbGD - ok
12:09:15.0646 0x07f4  [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:09:15.0660 0x07f4  tunnel - ok
12:09:15.0663 0x07f4  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:09:15.0676 0x07f4  uagp35 - ok
12:09:15.0679 0x07f4  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
12:09:15.0692 0x07f4  UASPStor - ok
12:09:15.0697 0x07f4  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
12:09:15.0714 0x07f4  UCX01000 - ok
12:09:15.0722 0x07f4  [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:09:15.0742 0x07f4  udfs - ok
12:09:15.0746 0x07f4  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
12:09:15.0758 0x07f4  UEFI - ok
12:09:15.0763 0x07f4  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:09:15.0772 0x07f4  UI0Detect - ok
12:09:15.0775 0x07f4  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:09:15.0787 0x07f4  uliagpkx - ok
12:09:15.0790 0x07f4  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys
12:09:15.0803 0x07f4  umbus - ok
12:09:15.0806 0x07f4  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
12:09:15.0817 0x07f4  UmPass - ok
12:09:15.0824 0x07f4  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:09:15.0837 0x07f4  UmRdpService - ok
12:09:15.0854 0x07f4  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\Windows\System32\upnphost.dll
12:09:15.0869 0x07f4  upnphost - ok
12:09:15.0872 0x07f4  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
12:09:15.0881 0x07f4  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
12:09:18.0316 0x07f4  Detect skipped due to KSN trusted
12:09:18.0316 0x07f4  USBAAPL64 - ok
12:09:18.0322 0x07f4  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:09:18.0337 0x07f4  usbaudio - ok
12:09:18.0342 0x07f4  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
12:09:18.0357 0x07f4  usbccgp - ok
12:09:18.0361 0x07f4  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
12:09:18.0374 0x07f4  usbcir - ok
12:09:18.0379 0x07f4  [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
12:09:18.0391 0x07f4  usbehci - ok
12:09:18.0403 0x07f4  [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
12:09:18.0425 0x07f4  usbhub - ok
12:09:18.0437 0x07f4  [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
12:09:18.0459 0x07f4  USBHUB3 - ok
12:09:18.0462 0x07f4  [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci         C:\Windows\System32\drivers\usbohci.sys
12:09:18.0475 0x07f4  usbohci - ok
12:09:18.0478 0x07f4  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
12:09:18.0491 0x07f4  usbprint - ok
12:09:18.0496 0x07f4  [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
12:09:18.0511 0x07f4  USBSTOR - ok
12:09:18.0514 0x07f4  [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
12:09:18.0527 0x07f4  usbuhci - ok
12:09:18.0534 0x07f4  [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
12:09:18.0550 0x07f4  usbvideo - ok
12:09:18.0559 0x07f4  [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
12:09:18.0579 0x07f4  USBXHCI - ok
12:09:18.0582 0x07f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\Windows\system32\lsass.exe
12:09:18.0590 0x07f4  VaultSvc - ok
12:09:18.0593 0x07f4  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:09:18.0605 0x07f4  vdrvroot - ok
12:09:18.0627 0x07f4  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\Windows\System32\vds.exe
12:09:18.0656 0x07f4  vds - ok
12:09:18.0661 0x07f4  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
12:09:18.0676 0x07f4  VerifierExt - ok
12:09:18.0690 0x07f4  [ 34CAF69BF4166AB40BFF0ED068FF6F91, BF5DA4F85A2C537DD76A3271956EC5BDB9ABC495FAA9371037F608152BE2725D ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
12:09:18.0714 0x07f4  vhdmp - ok
12:09:18.0717 0x07f4  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:09:18.0728 0x07f4  viaide - ok
12:09:18.0732 0x07f4  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:09:18.0745 0x07f4  vmbus - ok
12:09:18.0748 0x07f4  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
12:09:18.0760 0x07f4  VMBusHID - ok
12:09:18.0770 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
12:09:18.0785 0x07f4  vmicguestinterface - ok
12:09:18.0796 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
12:09:18.0810 0x07f4  vmicheartbeat - ok
12:09:18.0821 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:09:18.0835 0x07f4  vmickvpexchange - ok
12:09:18.0845 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\Windows\System32\ICSvc.dll
12:09:18.0860 0x07f4  vmicrdv - ok
12:09:18.0870 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
12:09:18.0885 0x07f4  vmicshutdown - ok
12:09:18.0894 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\Windows\System32\ICSvc.dll
12:09:18.0909 0x07f4  vmictimesync - ok
12:09:18.0919 0x07f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\Windows\System32\ICSvc.dll
12:09:18.0934 0x07f4  vmicvss - ok
12:09:18.0938 0x07f4  [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:09:18.0950 0x07f4  volmgr - ok
12:09:18.0958 0x07f4  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:09:18.0977 0x07f4  volmgrx - ok
12:09:18.0985 0x07f4  [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:09:19.0004 0x07f4  volsnap - ok
12:09:19.0007 0x07f4  [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci            C:\Windows\System32\drivers\vpci.sys
12:09:19.0019 0x07f4  vpci - ok
12:09:19.0024 0x07f4  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:09:19.0039 0x07f4  vsmraid - ok
12:09:19.0064 0x07f4  [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS             C:\Windows\system32\vssvc.exe
12:09:19.0092 0x07f4  VSS - ok
12:09:19.0100 0x07f4  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
12:09:19.0118 0x07f4  VSTXRAID - ok
12:09:19.0121 0x07f4  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:09:19.0133 0x07f4  vwifibus - ok
12:09:19.0141 0x07f4  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\Windows\system32\w32time.dll
12:09:19.0155 0x07f4  W32Time - ok
12:09:19.0158 0x07f4  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
12:09:19.0170 0x07f4  WacomPen - ok
12:09:19.0196 0x07f4  [ 139D842E5FB75A1E2F0212FBD7B0E457, F29F73B56865C5EBBE89B8F92AEFE2DB19E5C29A94D2E006A23243C23A41AE79 ] wbengine        C:\Windows\system32\wbengine.exe
12:09:19.0226 0x07f4  wbengine - ok
12:09:19.0236 0x07f4  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:09:19.0251 0x07f4  WbioSrvc - ok
12:09:19.0259 0x07f4  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
12:09:19.0272 0x07f4  Wcmsvc - ok
12:09:19.0282 0x07f4  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:09:19.0297 0x07f4  wcncsvc - ok
12:09:19.0300 0x07f4  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:09:19.0308 0x07f4  WcsPlugInService - ok
12:09:19.0311 0x07f4  [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
12:09:19.0324 0x07f4  WdBoot - ok
12:09:19.0338 0x07f4  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:09:19.0368 0x07f4  Wdf01000 - ok
12:09:19.0375 0x07f4  [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
12:09:19.0393 0x07f4  WdFilter - ok
12:09:19.0396 0x07f4  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:09:19.0407 0x07f4  WdiServiceHost - ok
12:09:19.0410 0x07f4  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:09:19.0421 0x07f4  WdiSystemHost - ok
12:09:19.0425 0x07f4  [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
12:09:19.0439 0x07f4  WdNisDrv - ok
12:09:19.0441 0x07f4  WdNisSvc - ok
12:09:19.0447 0x07f4  [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient       C:\Windows\System32\webclnt.dll
12:09:19.0459 0x07f4  WebClient - ok
12:09:19.0464 0x07f4  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:09:19.0476 0x07f4  Wecsvc - ok
12:09:19.0479 0x07f4  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
12:09:19.0488 0x07f4  WEPHOSTSVC - ok
12:09:19.0492 0x07f4  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:09:19.0503 0x07f4  wercplsupport - ok
12:09:19.0507 0x07f4  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\Windows\System32\WerSvc.dll
12:09:19.0518 0x07f4  WerSvc - ok
12:09:19.0522 0x07f4  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
12:09:19.0536 0x07f4  WFPLWFS - ok
12:09:19.0540 0x07f4  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\Windows\System32\wiarpc.dll
12:09:19.0549 0x07f4  WiaRpc - ok
12:09:19.0552 0x07f4  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:09:19.0564 0x07f4  WIMMount - ok
12:09:19.0565 0x07f4  WinDefend - ok
12:09:19.0581 0x07f4  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:09:19.0602 0x07f4  WinHttpAutoProxySvc - ok
12:09:19.0610 0x07f4  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:09:19.0620 0x07f4  Winmgmt - ok
12:09:19.0658 0x07f4  [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM           C:\Windows\system32\WsmSvc.dll
12:09:19.0704 0x07f4  WinRM - ok
12:09:19.0712 0x07f4  [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
12:09:19.0725 0x07f4  WinUsb - ok
12:09:19.0750 0x07f4  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\Windows\System32\wlansvc.dll
12:09:19.0780 0x07f4  WlanSvc - ok
12:09:19.0807 0x07f4  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
12:09:19.0838 0x07f4  wlidsvc - ok
12:09:19.0842 0x07f4  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
12:09:19.0853 0x07f4  WmiAcpi - ok
12:09:19.0859 0x07f4  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:09:19.0868 0x07f4  wmiApSrv - ok
12:09:19.0870 0x07f4  WMPNetworkSvc - ok
12:09:19.0875 0x07f4  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\Windows\system32\drivers\Wof.sys
12:09:19.0890 0x07f4  Wof - ok
12:09:19.0917 0x07f4  [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
12:09:19.0948 0x07f4  workfolderssvc - ok
12:09:19.0952 0x07f4  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
12:09:19.0964 0x07f4  wpcfltr - ok
12:09:19.0967 0x07f4  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:09:19.0976 0x07f4  WPCSvc - ok
12:09:19.0979 0x07f4  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:09:19.0989 0x07f4  WPDBusEnum - ok
12:09:19.0991 0x07f4  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
12:09:20.0002 0x07f4  WpdUpFltr - ok
12:09:20.0005 0x07f4  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:09:20.0018 0x07f4  ws2ifsl - ok
12:09:20.0023 0x07f4  [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc          C:\Windows\System32\wscsvc.dll
12:09:20.0034 0x07f4  wscsvc - ok
12:09:20.0036 0x07f4  WSearch - ok
12:09:20.0088 0x07f4  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\Windows\System32\WSService.dll
12:09:20.0155 0x07f4  WSService - ok
12:09:20.0212 0x07f4  [ 020F47C655ED1F63BBA834AA53575D5C, 7E36BB83B937CEA8B5D1EAF1DF63D32D64CA8045DA377DF5237D2F4DC16574CC ] wuauserv        C:\Windows\system32\wuaueng.dll
12:09:20.0272 0x07f4  wuauserv - ok
12:09:20.0279 0x07f4  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:09:20.0293 0x07f4  WudfPf - ok
12:09:20.0299 0x07f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
12:09:20.0315 0x07f4  WUDFRd - ok
12:09:20.0321 0x07f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
12:09:20.0336 0x07f4  WUDFSensorLP - ok
12:09:20.0340 0x07f4  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:09:20.0350 0x07f4  wudfsvc - ok
12:09:20.0355 0x07f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
12:09:20.0371 0x07f4  WUDFWpdFs - ok
12:09:20.0376 0x07f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
12:09:20.0391 0x07f4  WUDFWpdMtp - ok
12:09:20.0402 0x07f4  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:09:20.0417 0x07f4  WwanSvc - ok
12:09:20.0419 0x07f4  xhunter1 - ok
12:09:20.0424 0x07f4  ================ Scan global ===============================
12:09:20.0427 0x07f4  [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\Windows\system32\basesrv.dll
12:09:20.0433 0x07f4  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\Windows\system32\winsrv.dll
12:09:20.0441 0x07f4  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\Windows\system32\sxssrv.dll
12:09:20.0451 0x07f4  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\Windows\system32\services.exe
12:09:20.0457 0x07f4  [ Global ] - ok
12:09:20.0458 0x07f4  ================ Scan MBR ==================================
12:09:20.0459 0x07f4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:09:20.0481 0x07f4  \Device\Harddisk0\DR0 - ok
12:09:20.0482 0x07f4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
12:09:21.0027 0x07f4  \Device\Harddisk1\DR1 - ok
12:09:21.0027 0x07f4  ================ Scan VBR ==================================
12:09:21.0029 0x07f4  [ 21678DF7FEAD0CD3C68CC8FA6C59A550 ] \Device\Harddisk0\DR0\Partition1
12:09:21.0030 0x07f4  \Device\Harddisk0\DR0\Partition1 - ok
12:09:21.0031 0x07f4  [ 6A1A6EBE233C2E21192962D2BDB5CF0B ] \Device\Harddisk0\DR0\Partition2
12:09:21.0032 0x07f4  \Device\Harddisk0\DR0\Partition2 - ok
12:09:21.0033 0x07f4  [ FE1F471211F777CCC7504074770F7D96 ] \Device\Harddisk0\DR0\Partition3
12:09:21.0033 0x07f4  \Device\Harddisk0\DR0\Partition3 - ok
12:09:21.0035 0x07f4  [ 53F7EE76E3E7F0927614C256F94CF093 ] \Device\Harddisk0\DR0\Partition4
12:09:21.0036 0x07f4  \Device\Harddisk0\DR0\Partition4 - ok
12:09:21.0037 0x07f4  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
12:09:21.0037 0x07f4  \Device\Harddisk1\DR1\Partition1 - ok
12:09:21.0039 0x07f4  [ E0C9132CF0A124B71ED9719D0DC096BF ] \Device\Harddisk1\DR1\Partition2
12:09:21.0087 0x07f4  \Device\Harddisk1\DR1\Partition2 - ok
12:09:21.0087 0x07f4  ================ Scan generic autorun ======================
12:09:21.0123 0x07f4  [ C8AC55CCB8AB33713522B4CAAFAC0F59, CCEA638F90395F5C1C9DA892227FF4F3A7BC7567DEF8A7B63AFE2A487DADA88A ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
12:09:21.0165 0x07f4  NvBackend - ok
12:09:21.0169 0x07f4  [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
12:09:21.0179 0x07f4  ShadowPlay - ok
12:09:21.0374 0x07f4  [ 3F0B5EBDEB180C073E01A4A2DFA28C12, 0ACE6F70260E17284B8307D0DD0ACC9B59B379A99AE43429AB644B421ADAE8A7 ] C:\Program Files\Logitech Gaming Software\LCore.exe
12:09:21.0553 0x07f4  Launch LCore - ok
12:09:21.0565 0x07f4  [ EB40CCCBC292BF50F86E948409701A79, D08FA6CD84352F9E31F7149554CD3FF8365FE059ECB0EB0A11F65E22D342C34D ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
12:09:21.0573 0x07f4  Classic Start Menu - detected UnsignedFile.Multi.Generic ( 1 )
12:09:24.0047 0x07f4  Detect skipped due to KSN trusted
12:09:24.0047 0x07f4  Classic Start Menu - ok
12:09:24.0162 0x07f4  [ FEFB41BB37B9C41F8AD9CB07533C43EF, E7D78E186E6C1FCD144ABA986EEDB06FB700D9A5C4666A090DE6CF48B748855D ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
12:09:24.0292 0x07f4  RTHDVCPL - ok
12:09:24.0299 0x07f4  gpuminer - ok
12:09:24.0307 0x07f4  [ 28EB4C759947F12633FCB4BB2AD2AD74, 1454A75E72DE7F7BE4B1281C66D2D0E869D1EB56204EEA9ABE857454461C8447 ] C:\Program Files (x86)\Skiller Pro\Monitor.exe
12:09:24.0317 0x07f4  Skiller Pro - detected UnsignedFile.Multi.Generic ( 1 )
12:09:26.0805 0x07f4  Skiller Pro ( UnsignedFile.Multi.Generic ) - warning
12:09:26.0805 0x07f4  Force sending object to P2P due to detect: C:\Program Files (x86)\Skiller Pro\Monitor.exe
12:09:29.0331 0x07f4  Object send P2P result: true
12:09:31.0774 0x07f4  NCUpdateHelper - ok
12:09:31.0775 0x07f4  RazerCortex - ok
12:09:31.0780 0x07f4  [ 53C6C41356D532FEFD8056AB2906D129, C5E54C571FA44AF7FD1974464CC5D5DD30BA0D31ED20CF6B3DBB5A49FC5F0AC7 ] C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe
12:09:31.0788 0x07f4  Lightshot - ok
12:09:31.0798 0x07f4  [ 6513807FEE68E6C32E67437EE3FFB6C8, 2AB388BD68E984C38EAAF2D42DE918A64B42DA229627FC0B1A896A8AD60B5F91 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
12:09:31.0811 0x07f4  SunJavaUpdateSched - ok
12:09:31.0916 0x07f4  [ 2D6800E17FEBB51E3C75CD935E2BA8F5, 0831307B35FB346116B6DB67B8EF87384A1BF08A8EEEB6343560AA5C4EED2B23 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
12:09:32.0049 0x07f4  AvastUI.exe - ok
12:09:32.0053 0x07f4  Steam - ok
12:09:32.0127 0x07f4  [ F2AD1B265908797F8A5E21E0312F2F25, 2A6A612F7D52D297385C43E77AD0CD37B28F33ED2AF89098F5E66B812B838A52 ] C:\Users\Dzemal\AppData\Local\Akamai\netsession_win.exe
12:09:32.0196 0x07f4  Akamai NetSession Interface - ok
12:09:32.0301 0x07f4  [ 593D1833AEEB34AC07FEB1F65D88487B, DF854B68DA7883EA14FD74C4F541FFAE59B26B61DA541DECFFA3553E7C55AF4C ] C:\Users\Dzemal\AppData\Roaming\Spotify\Spotify.exe
12:09:32.0399 0x07f4  Spotify - ok
12:09:32.0429 0x07f4  [ AC3D7040644600F31F8DCA5FD3127168, 38B893F92A68C5BB8E3D4B82F01756F8F87888B9F73D27FA56B6DA08758A9DE8 ] C:\Users\Dzemal\AppData\Roaming\Spotify\SpotifyWebHelper.exe
12:09:32.0459 0x07f4  Spotify Web Helper - ok
12:09:32.0461 0x07f4  Skype - ok
12:09:32.0463 0x07f4  Speed AutoClicker - ok
12:09:32.0464 0x07f4  CyberGhost - ok
12:09:32.0465 0x07f4  Chromium - ok
12:09:33.0057 0x07f4  [ A035B7B52734B362B1B73E1B59DE9554, F97EFD4A07AC53201FD2D64770FAB51A00A02DBFD529E81E6E11FD4441552298 ] D:\Battle.net\Battle.net\Battle.net Launcher.exe
12:09:33.0103 0x07f4  Battle.net - ok
12:09:33.0224 0x07f4  [ 79B65FCC2AC6169B0B898F2894C61221, 5D4801D5D3C8E60F02D93E07B0068471C37B7E25359786A868DBC391D9E4E9DD ] C:\Program Files\CCleaner\CCleaner64.exe
12:09:33.0345 0x07f4  CCleaner Monitoring - ok
12:09:33.0351 0x07f4  Waiting for KSN requests completion. In queue: 8
12:09:34.0352 0x07f4  Waiting for KSN requests completion. In queue: 8
12:09:35.0353 0x07f4  Waiting for KSN requests completion. In queue: 8
12:09:36.0361 0x07f4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
12:09:36.0363 0x07f4  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.2.2738.0 ), 0x41000 ( enabled : updated )
12:09:36.0364 0x07f4  FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.2.2738.0 ), 0x41010 ( enabled )
12:09:38.0801 0x07f4  ============================================================
12:09:38.0801 0x07f4  Scan finished
12:09:38.0801 0x07f4  ============================================================
12:09:38.0806 0x1dc4  Detected object count: 1
12:09:38.0806 0x1dc4  Actual detected object count: 1
12:11:00.0343 0x1dc4  Skiller Pro ( UnsignedFile.Multi.Generic ) - skipped by user
12:11:00.0343 0x1dc4  Skiller Pro ( UnsignedFile.Multi.Generic ) - User select action: Skip
         

Alt 17.06.2016, 17:08   #5
burningice
/// Malwareteam
 
C: mit Viren - Standard

C: mit Viren



Schritt 1
Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 2
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.



Schritt 3
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

Bitte poste in deiner nächsten Antwort also:
  • Logfile von AdwCleaner
  • Logfile von Malwarebytes
  • Frst.txt
  • Addition.txt

__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 17.06.2016, 17:56   #6
Dzemal
 
C: mit Viren - Daumen hoch

C: mit Viren



Hab das Problem gelöst. C: komprimiert, dann sind die rar Dateien aufgetaucht und ich habe die Dateien mit avast premier geschreddert. Trotzdem Danke !!!

Geändert von Dzemal (17.06.2016 um 18:13 Uhr)

Alt 19.06.2016, 14:45   #7
burningice
/// Malwareteam
 
C: mit Viren - Standard

C: mit Viren



Sowas ist mir auch aufgefallen und hätten wir später behoben. Trotzdem ist dein PC nicht 100% sauber. Sollen wir das überprüfen?
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Antwort

Themen zu C: mit Viren
35gigabyte, ander, beitrag, brauche, dateien, dringend, eigenschaften, einfach, heulen, heute, konnte, leute, meinem, namen, offen, platz, rar datei, regeln, sache, schaf, speicher, systembereinigung, verschiedene, verschwunden, viren, virus, zurücksetzen



Ähnliche Themen: C: mit Viren


  1. Acer Windows 7-Rechner * Befall von Viren und Trojanern? * Antivir Rescue CD beseitigt Viren/Trojanernicht
    Plagegeister aller Art und deren Bekämpfung - 14.12.2014 (15)
  2. Jeder Viren chutz erkennt bei normalen Programmen über 300 Viren auf meinem PC
    Log-Analyse und Auswertung - 01.08.2013 (9)
  3. Jeder Viren Schutz erkennt bei normalen Programmen über 300 Viren auf meinem PC
    Mülltonne - 31.07.2013 (1)
  4. These: Avira installiert eigene Viren bzw. parallel AV-Programme, die Viren enthalten ...
    Antiviren-, Firewall- und andere Schutzprogramme - 13.05.2013 (7)
  5. 74 Viren gefunden, Firewall down, 95p und Media.. Viren
    Plagegeister aller Art und deren Bekämpfung - 29.12.2011 (1)
  6. Viren befall kein viren programm geht
    Plagegeister aller Art und deren Bekämpfung - 06.01.2010 (22)
  7. Viren....Hilfe...überall Viren....
    Mülltonne - 04.11.2008 (0)
  8. POPUPS und VERSCHIEDENE VIREN VIREN UND TROJANER !
    Mülltonne - 11.10.2008 (0)
  9. Viren ??????
    Log-Analyse und Auswertung - 02.07.2008 (3)
  10. Viren?
    Log-Analyse und Auswertung - 17.03.2008 (6)
  11. Viren bekämpfen ohne Anti Viren Programm
    Plagegeister aller Art und deren Bekämpfung - 28.11.2007 (22)
  12. War eine ganze Weile fei von Viren aber jetzt habe ich Viren Bursters !!!
    Log-Analyse und Auswertung - 17.12.2006 (1)
  13. Viren
    Log-Analyse und Auswertung - 07.12.2006 (5)
  14. kaspersky findet angeblich viren ind java dateien - sind es wirklich viren ?
    Plagegeister aller Art und deren Bekämpfung - 22.08.2005 (6)
  15. Viren über Viren
    Log-Analyse und Auswertung - 29.03.2005 (1)
  16. Viren!! NEED HELP!!
    Plagegeister aller Art und deren Bekämpfung - 11.03.2005 (1)
  17. 77 Viren!!!
    Plagegeister aller Art und deren Bekämpfung - 05.02.2005 (39)

Zum Thema C: mit Viren - Hallo Leute, ich wollte heute ein bisschen Platz auf C: frei machen, als ich C: dann geöffnet habe sind verschiedene rar Dateien mit ähnlichem Namen hintereinander verschwunden und der Speicher - C: mit Viren...
Archiv
Du betrachtest: C: mit Viren auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.