Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: ungültiges bild

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Thema geschlossen
Alt 17.01.2017, 08:22   #1
volkan123
 
ungültiges bild - Standard

ungültiges bild



Guten Abend,

ich habe das problem das wenn ich ein Programm öffnen möchte z. B. Photoshop ein fenster aufploppt mit dem titel "Ungültiges Bild" C:\Program Files\Adobe\Adobe Photoshop CC2017 (32 Bit)\amtlib.dll ist entweder nicht für die Ausführung unter Windows vorgesehen oder enthält einen Fehler. Installieren Sie das Programm mit den Originalinstallationsmedien erneut, oder wenden Sie sich an den Systemadministrator oder Softwarelieferanten, Um Unterstützung zu erhalten.

und ich habe keine ahnung was ich machen soll ich hoffe ihr könnt mir helfen
ich sag dann schonmal danke im vorraus

hab schonmal mit FRST untersucht
FIRST.txt
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2017
durchgeführt von admin (Administrator) auf BILDUNG (17-01-2017 08:09:37)
Gestartet von C:\Users\admin\Downloads
Geladene Profile: admin & Schueler & Simatic &  (Verfügbare Profile: admin & Schueler & Simatic & Administrator)
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Siemens AG) C:\Program Files\Common Files\Siemens\AlmPanelPlugin\ALMPanelPlugin.exe
(Chip Digital GmbH) C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\Gramblr\gramblr.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(National Instruments, Inc.) C:\Windows\System32\lkcitdl.exe
(National Instruments Corporation) C:\Windows\System32\lkads.exe
(National Instruments Corporation) C:\Windows\System32\lktsrv.exe
(Intel Corporation) C:\Program Files\Intel\AMT\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
() C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
( ) C:\Program Files\Autodesk\Inventor 2013\Moldflow\bin\mitsijm.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Windows\System32\nisvcloc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(SIEMENS AG) C:\Program Files\Siemens\Step7\S7BIN\s7hspsvx.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe
(Siemens AG) C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\SimNetCom\pniomgr.exe
(FLB SOFTWARE) C:\Program Files\eXtis GmbH\WCD-Windows Control Daemon\Wcd.Service.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\SimNetCom\pniopcac.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(VMware, Inc.) C:\Program Files\VMware\VMware Player\vmware-authd.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Wondershare) C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
() C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [773848 2016-04-28] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [NI Background Service] => C:\Program Files\National Instruments\Shared\Update Service\BackgroundService.exe [77824 2009-08-25] (National Instruments)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-08-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2384984 2016-12-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\...\Policies\system: [DisableChangePassword] 1
HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\...\MountPoints2: {e114c846-8877-11e6-ab2b-005056c00008} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2562889154-1593366337-4015798880-1013\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-2562889154-1593366337-4015798880-1013\...\Policies\system: [DisableChangePassword] 1
HKU\S-1-5-21-2562889154-1593366337-4015798880-1015\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-2562889154-1593366337-4015798880-1015\...\Policies\system: [DisableChangePassword] 1
HKU\S-1-5-21-3672139495-2832106906-3117653080-14806\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-3672139495-2832106906-3117653080-14806\...\Policies\system: [DisableChangePassword] 1
HKU\S-1-5-21-3672139495-2832106906-3117653080-17494\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-3672139495-2832106906-3117653080-17494\...\Policies\system: [DisableChangePassword] 1
HKU\S-1-5-21-3672139495-2832106906-3117653080-17494\...\MountPoints2: {1ad12e7b-5755-11e3-94a0-001999f37292} - W:\SETUP.EXE
HKU\S-1-5-21-3672139495-2832106906-3117653080-19366\...\Policies\system: [RunLogonScriptSync] 1
HKU\S-1-5-21-3672139495-2832106906-3117653080-19366\...\Policies\system: [DisableChangePassword] 1
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Symbol-Overlay-Steuerprogramm für AutoCAD Digitale Signaturen] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK-Konfigurationstool.lnk [2016-09-29]
ShortcutTarget: TP-LINK-Konfigurationstool.lnk -> C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe ()
GroupPolicy: Beschränkung ? <======= ACHTUNG
GroupPolicy\User: Beschränkung ? <======= ACHTUNG
GroupPolicyScripts: Beschränkung <======= ACHTUNG
GroupPolicyScripts\User: Beschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 21 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984 2014-11-17] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{DF220607-2E7A-41EA-B1CF-19D4CCD352C0}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{EE4B481D-51C5-46AC-BA6B-1E7056BD17CC}: [DhcpNameServer] 10.1.0.2
ManualProxies: 0hxxp://admin/proxy.pac

Internet Explorer:
==================
HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-2562889154-1593366337-4015798880-1013\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
HKU\S-1-5-21-3672139495-2832106906-3117653080-17494\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
HKU\S-1-5-21-3672139495-2832106906-3117653080-19366\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10] (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-23] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-23] (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10] (Adobe Systems Incorporated.)
IE Session Restore: HKU\S-1-5-21-2562889154-1593366337-4015798880-1012 -> ist aktiviert.
Toolbar: HKU\S-1-5-21-3672139495-2832106906-3117653080-17494 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-3672139495-2832106906-3117653080-19366 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-08-16] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default [2017-01-17]
FF Homepage: Mozilla\Firefox\Profiles\6qrh4sxw.default -> hxxp://hp.myway.com/testforspeed/LMDEDE/index.html?coId=7baa95768b5a4f19b99ff9508b351627&subId=29835132866&ln=de&n=78392799&ptb=C69575CE-2299-4ED2-AFE3-4A6E510E04B2&st=tab&p2=%5ECAL%5Exdm114%5ELMDEDE%5Ede&si=29835132866
FF Extension: (Fireforce) - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\Extensions\fireforce@scrt.ch.xpi [2016-12-28]
FF Extension: (TestForSpeed) - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\Extensions\_frMembers_@free.testforspeed.com [2017-01-16]
FF Extension: (PDFConverterHQ) - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\Extensions\_fsMembers_@free.pdfconverterhq.com [2016-10-29]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-03-04] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-23] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-17] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-17] (NVIDIA Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-05] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-12-09] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv86win32.dll [2008-12-10] (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv90win32.dll [2009-10-07] (National Instruments)

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [753240 2016-12-09] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 almservice; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe [1138312 2011-12-11] (SIEMENS AG) [Datei ist nicht signiert]
R2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [866992 2016-04-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [464232 2016-04-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [464232 2016-04-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1044744 2016-04-28] (Avira Operations GmbH & Co. KG)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 chip1click; C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2013-10-30] (Flexera Software, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2015-08-18] (NVIDIA Corporation)
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [7727696 2017-01-07] () [Datei ist nicht signiert]
R2 hasplms; C:\Windows\system32\hasplms.exe [4609928 2013-08-01] (SafeNet Inc.)
R2 LkCitadelServer; C:\Windows\system32\lkcitdl.exe [695136 2010-03-05] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\system32\lkads.exe [45168 2010-09-29] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\system32\lktsrv.exe [55928 2010-09-29] (National Instruments Corporation)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Datei ist nicht signiert]
R2 mi-raysat_3dsmax2013_32; C:\Programme\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe [86016 2011-09-15] () [Datei ist nicht signiert]
R2 mitsijm2013; C:\Programme\Autodesk\Inventor 2013\Moldflow\bin\mitsijm.exe [257344 2012-01-31] ( )
R2 MSSQL$KNXETS4; C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\sqlservr.exe [43130032 2015-03-29] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R2 MSSQL$WINCCFLEXEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [3004416 2007-11-07] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NIDomainService; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [361080 2010-09-29] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2009-09-18] (Macrovision Corporation) [Datei ist nicht signiert]
R2 niSvcLoc; C:\Windows\system32\nisvcloc.exe [13896 2009-06-04] (National Instruments Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-08-18] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632 2015-08-18] (NVIDIA Corporation)
S3 OpcEnum; C:\Windows\system32\OPCEnum.exe [139488 2009-02-05] (OPC Foundation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 s7hspsvx; C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe [61493 2011-05-30] (SIEMENS AG) [Datei ist nicht signiert]
R2 s7oiehsx; C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [412808 2011-11-04] (SIEMENS AG) [Datei ist nicht signiert]
R2 S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [556168 2011-11-04] (SIEMENS AG) [Datei ist nicht signiert]
U2 smartserver; C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe [558416 2011-12-06] (Siemens AG)
S4 SQLAgent$KNXETS4; C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\SQLAGENT.EXE [381104 2015-03-29] (Microsoft Corporation)
R2 UNS; C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2066968 2009-07-21] (Intel Corporation)
R2 VMAuthdService; C:\Program Files\VMware\VMware Player\vmware-authd.exe [87120 2013-02-26] (VMware, Inc.)
S4 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [357456 2013-02-26] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [721048 2012-10-11] (VMware, Inc.)
S4 VMware NAT Service; C:\Windows\system32\vmnat.exe [436304 2013-02-26] (VMware, Inc.)
U2 Wcd.Service; C:\Program Files\eXtis GmbH\WCD-Windows Control Daemon\Wcd.Service.exe [20480 2012-11-09] (FLB SOFTWARE) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [376200 2013-08-01] (SafeNet Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [109016 2016-03-08] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137240 2016-04-28] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-05-05] (Avira Operations GmbH & Co. KG)
R2 cvintdrv; C:\Windows\system32\Drivers\cvintdrv.sys [4096 2009-05-29] () [Datei ist nicht signiert]
R1 dpmconv; C:\Windows\System32\DRIVERS\dpmconv32.sys [288256 2011-04-19] (SIEMENS AG)
S3 dpmcslv; C:\Windows\system32\Drivers\dpmcslv.sys [68280 2005-07-04] (Siemens AG) [Datei ist nicht signiert]
R1 DPMTRCDD; C:\Windows\System32\DRIVERS\DPMTRCDD32.sys [72248 2010-03-22] (SIEMENS AG)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 fwkbdrtm; C:\Windows\system32\drivers\fwkbdrtm.sys [21464 2011-12-06] (Windows (R) Win 7 DDK provider)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [608648 2013-08-01] (SafeNet Inc.)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41496 2012-10-11] (VMware, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2015-08-18] (NVIDIA Corporation)
R3 Pei10Wdm; C:\Windows\System32\Drivers\Pei10Wdm.sys [35547 2012-05-23] (EIBA s.c.) [Datei ist nicht signiert]
R3 Pei16Wdm; C:\Windows\System32\Drivers\Pei16Wdm.sys [34683 2012-05-23] (EIBA s.c.) [Datei ist nicht signiert]
S4 RsFx0153; C:\Windows\System32\DRIVERS\RsFx0153.sys [250152 2015-03-29] (Microsoft Corporation)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3200264 2015-06-19] (Realtek Semiconductor Corporation                           )
R3 S7odpx2x32; C:\Windows\System32\Drivers\S7odpx2x32.sys [87552 2011-05-06] (SIEMENS AG)
R3 s7osmcax32; C:\Windows\System32\Drivers\s7osmcax32.sys [186368 2011-09-29] (SIEMENS AG)
R3 S7otranx32; C:\Windows\System32\Drivers\S7otranx32.sys [521216 2011-05-06] (SIEMENS AG)
R3 s7otsadx32; C:\Windows\System32\Drivers\s7otsadx32.sys [182784 2011-09-29] (SIEMENS AG)
S3 s7oupc2x; C:\Windows\System32\DRIVERS\s7oupc2x.sys [24576 2011-05-06] (SIEMENS AG)
R2 s7ousbu32x; C:\Windows\System32\DRIVERS\s7ousbu32x.sys [641280 2011-09-29] (SIEMENS AG)
R2 s7sn2srtx; C:\Windows\System32\DRIVERS\s7sn2srtx.sys [63104 2011-06-16] (SIEMENS AG) [Datei ist nicht signiert]
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [343888 2011-10-11] (SIEMENS AG)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [27696 2015-12-18] (Avira Operations GmbH & Co. KG)
R3 vmkbd; C:\Windows\system32\drivers\VMkbd.sys [26064 2013-02-26] (VMware, Inc.)
R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [16664 2013-02-26] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37016 2013-02-26] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26192 2013-02-26] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [24272 2013-02-26] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [62416 2013-02-26] (VMware, Inc.)
R1 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada32.sys [140288 2011-04-19] (SIEMENS AG)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [61464 2012-10-24] (VMware, Inc.)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-16 21:55 - 2017-01-16 21:55 - 00000000 ____D C:\sw_installing
2017-01-16 21:30 - 2017-01-16 21:30 - 00001197 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-01-16 21:30 - 2017-01-16 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-01-16 21:30 - 2017-01-16 21:30 - 00000000 ____D C:\Program Files\VS Revo Group
2017-01-16 21:26 - 2017-01-16 21:29 - 07097928 _____ (VS Revo Group ) C:\Users\admin\Downloads\revo202setup.exe
2017-01-16 21:22 - 2017-01-16 21:23 - 00057005 _____ C:\Users\admin\Downloads\Addition.txt
2017-01-16 21:21 - 2017-01-17 08:10 - 00027894 _____ C:\Users\admin\Downloads\FRST.txt
2017-01-16 21:20 - 2017-01-17 08:09 - 00000000 ____D C:\FRST
2017-01-16 21:19 - 2017-01-16 21:20 - 01761280 _____ (Farbar) C:\Users\admin\Downloads\FRST.exe
2017-01-16 19:59 - 2017-01-16 19:59 - 00001266 _____ C:\Users\admin\Desktop\Adobe Photoshop CC 2017 (32 Bit).lnk
2017-01-16 14:23 - 2017-01-16 22:02 - 00000000 ___RD C:\Users\admin\Creative Cloud Files
2017-01-16 14:23 - 2017-01-16 22:02 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-01-16 14:21 - 2017-01-16 14:21 - 00000000 ____D C:\Users\admin\AppData\Local\CEF
2017-01-16 14:17 - 2017-01-16 14:17 - 00001201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-01-16 14:17 - 2017-01-16 14:17 - 00001189 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2017-01-16 13:39 - 2017-01-16 13:39 - 00804440 _____ (Adobe Systems Incorporated) C:\Users\admin\Desktop\CreativeCloudSet-Up.exe
2017-01-11 19:55 - 2017-01-05 18:43 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 19:54 - 2017-01-05 18:46 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 19:54 - 2017-01-05 18:46 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 19:54 - 2017-01-05 18:43 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 19:54 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 19:54 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 19:54 - 2017-01-05 18:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 19:54 - 2017-01-05 18:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 19:54 - 2017-01-05 18:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 19:54 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 19:54 - 2017-01-05 18:19 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 19:54 - 2017-01-05 18:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-08 21:05 - 2017-01-08 21:05 - 00001409 _____ C:\Users\admin\.youtube-upload-credentials.json
2017-01-08 20:47 - 2017-01-08 20:47 - 00000000 ____D C:\ProgramData\Wondershare
2017-01-08 20:46 - 2017-01-08 20:50 - 00013640 _____ C:\Users\admin\Documents\starburn.txt
2017-01-08 20:46 - 2017-01-08 20:46 - 00001267 _____ C:\Users\Public\Desktop\Wondershare Filmora.lnk
2017-01-08 20:46 - 2017-01-08 20:46 - 00000000 ____D C:\Users\admin\AppData\Local\Wondershare
2017-01-08 20:46 - 2017-01-08 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-01-08 20:46 - 2017-01-08 20:46 - 00000000 ____D C:\Program Files\Common Files\Wondershare
2017-01-08 20:44 - 2017-01-08 21:01 - 00000000 ____D C:\Users\admin\Documents\Wondershare Filmora
2017-01-08 20:44 - 2017-01-08 20:44 - 00000000 ____D C:\ProgramData\Wondershare Video Editor
2017-01-08 20:44 - 2017-01-08 20:44 - 00000000 ____D C:\Program Files\Wondershare
2017-01-08 20:40 - 2015-08-17 22:28 - 00606896 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2017-01-08 20:33 - 2017-01-08 20:33 - 00000000 ____D C:\Users\admin\CD95F661A5C444F5A6AAECDD91C24104.TMP
2017-01-08 20:30 - 2017-01-08 20:44 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2017-01-08 20:30 - 2017-01-08 20:30 - 01284240 _____ C:\Users\admin\Downloads\video-editor_setup_full1080.exe
2017-01-07 00:56 - 2017-01-16 22:07 - 00000000 ____D C:\Users\admin\Documents\Visual Studio 2008
2017-01-07 00:54 - 2017-01-07 00:54 - 00038757 _____ C:\Users\admin\Downloads\butt-ass-tattoo-sexy-2317121
2017-01-07 00:51 - 2017-01-17 08:10 - 00000000 ____D C:\ProgramData\Gramblr
2017-01-07 00:51 - 2017-01-07 00:52 - 00000000 ____D C:\Program Files\Gramblr
2017-01-07 00:51 - 2017-01-07 00:51 - 00000961 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gramblr.lnk
2016-12-28 22:58 - 2016-12-28 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2016-12-28 22:58 - 2016-12-28 22:58 - 00000000 ____D C:\Program Files\Microsoft
2016-12-28 00:06 - 2016-12-28 00:06 - 01378498 _____ C:\Users\admin\Desktop\2016-03-01_56d5c065b3241_KungFuPanda32016R0CustomDVDCover.jpg
2016-12-28 00:06 - 2016-12-28 00:06 - 00000000 ____D C:\Users\admin\AppData\Local\VideoEditor
2016-12-28 00:06 - 2016-12-28 00:06 - 00000000 ____D C:\Users\admin\AppData\Local\Movavi
2016-12-28 00:05 - 2016-12-28 00:05 - 00001088 _____ C:\Users\Public\Desktop\Movavi Video Editor 12.lnk
2016-12-28 00:05 - 2016-12-28 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Editor 12
2016-12-28 00:04 - 2016-12-28 00:05 - 00000000 ____D C:\Program Files\Movavi Video Editor 12
2016-12-28 00:04 - 2016-12-28 00:04 - 00005051 _____ C:\ProgramData\czchsjpj.srw
2016-12-28 00:04 - 2016-12-28 00:04 - 00000016 _____ C:\ProgramData\mntemp
2016-12-28 00:04 - 2016-12-28 00:04 - 00000000 ____D C:\ProgramData\Movavi Video Editor 12
2016-12-27 23:59 - 2016-12-28 00:03 - 52850208 _____ (Movavi) C:\Users\admin\Downloads\MovaviVideoEditorSetupF.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-17 07:58 - 2009-07-14 05:34 - 00023328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-17 07:58 - 2009-07-14 05:34 - 00023328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-16 22:08 - 2016-11-16 15:37 - 00000000 ____D C:\Users\admin\AppData\LocalLow\Mozilla
2017-01-16 22:02 - 2014-05-23 13:28 - 00000000 ____D C:\Users\admin\AppData\Local\Adobe
2017-01-16 21:55 - 2015-09-22 11:17 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-16 21:55 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-16 21:53 - 2014-05-19 13:30 - 00000000 ____D C:\Users\admin
2017-01-16 19:59 - 2016-10-01 17:23 - 00000000 ____D C:\Users\admin\Documents\Adobe
2017-01-16 19:59 - 2014-05-19 13:30 - 00000000 ____D C:\Users\admin\AppData\Roaming\Adobe
2017-01-16 19:59 - 2013-10-30 09:35 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-01-16 14:53 - 2013-10-30 09:34 - 00000000 ____D C:\ProgramData\Adobe
2017-01-16 14:24 - 2013-10-30 09:35 - 00000000 ____D C:\Program Files\Adobe
2017-01-16 14:16 - 2014-05-16 11:36 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-14 19:07 - 2016-10-07 05:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-01-14 19:03 - 2016-10-01 16:27 - 00000000 ____D C:\Users\admin\AppData\Roaming\vlc
2017-01-12 19:50 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2017-01-11 21:14 - 2013-10-29 15:52 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 21:09 - 2013-10-29 15:52 - 133456224 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 19:32 - 2009-07-14 05:33 - 02563880 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-08 20:47 - 2014-05-19 13:30 - 00194736 _____ C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT
2017-01-08 20:44 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-01-08 20:41 - 2015-09-22 11:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-08 20:41 - 2013-10-30 13:29 - 00000000 ____D C:\Temp
2016-12-30 05:32 - 2016-05-13 08:46 - 00042496 ___SH C:\Users\sasshein\ntuser.dat.LOG1
2016-12-30 05:32 - 2016-02-15 10:02 - 00262144 ___SH C:\Users\biebmatt\ntuser.dat.LOG1
2016-12-30 05:32 - 2016-01-27 13:40 - 00262144 ___SH C:\Users\lorecoli\ntuser.dat.LOG1
2016-12-30 05:32 - 2015-03-06 10:20 - 00230400 ___SH C:\Users\philandr\ntuser.dat.LOG1
2016-12-30 05:32 - 2013-10-29 13:07 - 00262144 ___SH C:\Users\Administrator\ntuser.dat.LOG1
2016-12-25 19:36 - 2009-07-14 05:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-23 15:15 - 2016-11-06 00:41 - 00000000 ____D C:\Users\admin\Desktop\Neuer Ordner (3)
2016-12-18 09:42 - 2016-11-16 04:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-12-18 09:42 - 2013-10-30 09:23 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-18 09:42 - 2010-11-20 22:48 - 00296092 _____ C:\Windows\PFRO.log

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-05-12 13:46 - 2014-05-12 13:46 - 0001153 _____ () C:\Program Files\OneLoupe - Verknüpfung.lnk
2014-05-12 13:46 - 2009-03-30 17:34 - 0025088 _____ (Nenad Hrg) C:\Program Files\OneLoupe.exe
2014-05-12 13:46 - 2014-05-12 13:47 - 0000053 _____ () C:\Program Files\OneLoupe.ini
2014-05-12 13:15 - 2014-05-12 13:42 - 0001764 _____ () C:\ProgramData\CADdy++1000.ini
2014-05-12 13:15 - 2014-05-12 13:42 - 0001764 _____ () C:\ProgramData\CADdy++1010.ini
2014-05-12 13:15 - 2014-05-12 13:42 - 0001764 _____ () C:\ProgramData\CADdy++1100.ini
2014-05-12 13:15 - 2014-05-12 13:15 - 0005784 _____ () C:\ProgramData\CAEManager.lcs
2016-12-28 00:04 - 2016-12-28 00:04 - 0005051 _____ () C:\ProgramData\czchsjpj.srw
2013-10-30 13:25 - 2013-10-30 13:25 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2016-12-28 00:04 - 2016-12-28 00:04 - 0000016 _____ () C:\ProgramData\mntemp

Einige Dateien in TEMP:
====================
C:\Users\admin\AppData\Local\Temp\AcDeltree.exe
C:\Users\admin\AppData\Local\Temp\avgnt.exe
C:\Users\admin\AppData\Local\Temp\callhelp.exe
C:\Users\admin\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\admin\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\admin\AppData\Local\Temp\nvStInst.exe
C:\Users\Administrator\AppData\Local\Temp\AcDeltree.exe
C:\Users\Administrator\AppData\Local\Temp\avgnt.exe
C:\Users\Administrator\AppData\Local\Temp\exie.exe
C:\Users\Administrator\AppData\Local\Temp\expb.exe
C:\Users\Administrator\AppData\Local\Temp\FP_AX_MSI_INSTALLER.exe
C:\Users\Administrator\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe
C:\Users\Administrator\AppData\Local\Temp\ose00000.exe
C:\Users\Administrator\AppData\Local\Temp\ose00001.exe
C:\Users\Administrator\AppData\Local\Temp\ose00002.exe
C:\Users\Administrator\AppData\Local\Temp\simaticn.exe
C:\Users\biebmatt\AppData\Local\Temp\avgnt.exe
C:\Users\brokar.ESB-HAMM\AppData\Local\Temp\avgnt.exe
C:\Users\lorecoli\AppData\Local\Temp\avgnt.exe
C:\Users\mascmarc\AppData\Local\Temp\avgnt.exe
C:\Users\rosephil\AppData\Local\Temp\avgnt.exe
C:\Users\sasshein\AppData\Local\Temp\avgnt.exe
C:\Users\Schueler\AppData\Local\Temp\avgnt.exe
C:\Users\Simatic\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-14 21:30

==================== Ende vom FRST.txt ============================
         
Addition.txt
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 15-01-2017
durchgeführt von admin (17-01-2017 08:10:54)
Gestartet von C:\Users\admin\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) (2013-10-29 11:46:19)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

admin (S-1-5-21-2562889154-1593366337-4015798880-1012 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-2562889154-1593366337-4015798880-500 - Administrator - Enabled) => C:\Users\Administrator
Gast (S-1-5-21-2562889154-1593366337-4015798880-501 - Limited - Disabled)
Schueler (S-1-5-21-2562889154-1593366337-4015798880-1013 - Limited - Enabled) => C:\Users\Schueler
Simatic (S-1-5-21-2562889154-1593366337-4015798880-1015 - Limited - Enabled) => C:\Users\Simatic

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Desktop (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

32 Bit HP CIO Components Installer (Version: 18.1.4 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.2.443 - Adobe Systems Incorporated)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Master Collection (HKLM\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM\...\{3A6829EF-0791-4FDD-9382-C690DD0821B9}) (Version: 10.0.2.54 - Adobe Systems, Inc.)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (32 Bit) (HKLM\...\PHSP_18_0_1_32) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.04) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.04 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)
AutoCAD Architecture 2013 - Deutsch (German) (HKLM\...\AutoCAD Architecture 2013 - Deutsch (German)) (Version: 7.0.50.0 - Autodesk)
AutoCAD Architecture 2013 - Deutsch (German) (Version: 7.0.50.0 - Autodesk) Hidden
AutoCAD Architecture 2013 Language Pack - Deutsch (Version: 7.0.50.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 - Deutsch (German) (HKLM\...\AutoCAD Civil 3D 2013 - Deutsch (German)) (Version: 10.0.1111.0 - Autodesk)
AutoCAD Civil 3D 2013 - Deutsch (German) (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 Language Pack - Deutsch (German) (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Mechanical 2013 - Deutsch (German) (HKLM\...\AutoCAD Mechanical 2013 - Deutsch (German)) (Version: 17.0.48.0 - Autodesk)
AutoCAD Mechanical 2013 - Deutsch (German) (Version: 17.0.48.0 - Autodesk) Hidden
AutoCAD Mechanical 2013 Language Pack - Deutsch (German) (Version: 17.0.48.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2013 32-bit (HKLM\...\Autodesk 3ds Max Design 2013 32-bit) (Version: 15.0.0.347 - Autodesk)
Autodesk 3ds Max Design 2013 32-bit (Version: 15.0.0.347 - Autodesk) Hidden
Autodesk Backburner 2013.0.0 (HKLM\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2013.0.0 - Autodesk, Inc.)
Autodesk Civil View for 3ds Max Design 2013 (HKLM\...\{FE6DCC8D-427F-405C-A779-C93B6D9F77A5}) (Version: 1.0.0.2 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)
Autodesk Content Service (Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DirectConnect 2013 32-bit (HKLM\...\Autodesk DirectConnect 2013 32-bit) (Version: 7.0.28.0 - Autodesk)
Autodesk DirectConnect 2013 32-bit (Version: 7.0.28.0 - Autodesk) Hidden
Autodesk Essential Skills Movies for 3ds Max Design 2013 32-bit (HKLM\...\{7FD5D1E2-EF17-4045-8D83-BB8E88C0D672}) (Version: 1.0.0.1 - Autodesk)
Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 (HKLM\...\Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013) (Version:  - Autodesk)
Autodesk Inventor Content Center Libraries 2013 (Desktop Content) (HKLM\...\{B46DECD1-1732-4EF1-0000-22D71E81877C}) (Version: 17.0.13800.0000 - Autodesk)
Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Autodesk Inventor Fusion Plugin for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Inventor Fusion Plugin for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Fusion Plugin Language Pack for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Professional 2013 (Version: 17.0.13800.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2013 Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2013) (Version: 17.0.13800.0000 - Autodesk)
Autodesk Inventor Professional 2013 Language Pack - Deutsch (German) (Version: 17.0.13800.0000 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max Design 2013 32-bit (HKLM\...\{BC66B242-DF13-1632-851B-00123612ED98}) (Version: 15.0 - Autodesk)
Autodesk Inventor View 2013 (Version: 17.0.12600.0000 - Autodesk) Hidden
Autodesk Inventor View 2013 Deutsch (German) (HKLM\...\Autodesk Inventor View 2013) (Version: 17.0.12600.0000 - Autodesk)
Autodesk Inventor View 2013 Language Pack - Deutsch (German) (Version: 17.0.12600.0000 - Autodesk) Hidden
Autodesk Material Library 2013 (HKLM\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2013 (HKLM\...\{27C6C0A2-2EC9-4FEA-BE2B-659EAAC2C68C}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2013 (HKLM\...\{58760EEC-8B6A-43F4-81AA-696E381DFADD}) (Version: 3.0.13 - Autodesk)
Autodesk Revit Architecture 2013 (HKLM\...\Autodesk Revit Architecture 2013) (Version: 12.02.21203 - Autodesk)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 32-bit (HKLM\...\{06E18300-BB64-1632-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk)
Autodesk SketchBook Designer 2013 (HKLM\...\Autodesk SketchBook Designer 2013) (Version: 3.00.0000 - Autodesk)
Autodesk SketchBook Designer 2013 (Version: 3.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer for AutoCAD 2013 (HKLM\...\Autodesk SketchBook Designer for AutoCAD 2013) (Version: 3.00.0000 - Autodesk)
Autodesk SketchBook Designer for AutoCAD 2013 (Version: 3.00.0000 - Autodesk) Hidden
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
Autodesk Vault Basic 2013 (Client) (HKLM\...\Autodesk Vault Basic 2013 (Client)) (Version: 17.0.61.0 - Autodesk)
Autodesk Vault Basic 2013 (Client) (Version: 17.0.61.0 - Autodesk) Hidden
Autodesk Vault Basic 2013 (Client) German Language Pack (Version: 17.0.61.0 - Autodesk) Hidden
Autodesk Workflows 2013 (HKLM\...\{06388E0D-A386-478B-8E40-7D76142A8DF1}) (Version: 3.0.10.0 - Autodesk)
Avira Professional Security (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.17.192 - Avira Operations GmbH & Co. KG)
chip 1-click download service (HKLM\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Composite 2013 (HKLM\...\{92203FA0-7C43-429F-857C-0AE197D8199C}) (Version: 8.0.0 - Autodesk)
Connect (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Crystal Reports Basic for Visual Studio 2008 (HKLM\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects)
Crystal Reports Basic German Language Pack for Visual Studio 2008 (HKLM\...\{3924C3E7-C440-4B23-9740-9A9EC0545F21}) (Version: 10.5.0.0 - Business Objects)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DASYLab 12.0.0 (HKLM\...\DLAB.{5B0CB826-E499-4E6B-94F0-75B6327ED934}) (Version: 12.0.0 - National Instruments)
DASYLab 12.0.0 OEM ARP (Version: 12.0.0287 - National Instruments) Hidden
DigitalSimulatorV5.57 (remove only) (HKLM\...\DigitalSimulatorV5.57) (Version:  - )
dso-220 usb(V5.0.0.1) (HKLM\...\dso-220 usb(V5.0.0.1)) (Version: 5.0.0.1 - oem)
DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk)
DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden
easy Whiteboard (HKLM\...\easy Whiteboard) (Version:  - FinanzPortal24 GmbH)
Eco Materials Adviser for Autodesk Inventor 2013 (HKLM\...\{39FF4C41-0C7E-498D-ABAA-3CC74830BA53}) (Version: 3.9.12.0 - Granta Design Limited)
FileZilla Client 3.7.1.1 (HKLM\...\FileZilla Client) (Version: 3.7.1.1 - Tim Kosse)
Fotogalerie (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GDR 4042 für SQL Server 2008 R2 (KB3045313) (HKLM\...\KB3045313) (Version: 10.52.4042.0 - Microsoft Corporation)
GeoGebra 5 (HKU\S-1-5-21-3672139495-2832106906-3117653080-19366\...\GeoGebra 5) (Version: 5.0.195.0 - International GeoGebra Institute)
Gramblr (HKLM\...\Gramblr) (Version: 2.8.0 - Gramblr Team)
HI-TECH C51-lite V9.60PL0 (HKLM\...\HC51 9.60PL0) (Version: 9.60 - HI-TECH Software)
HI-TECH PICC lite V9.60PL0 (HKLM\...\PICC 9.60PL0) (Version: 9.60 - HI-TECH Software)
Hotfix für Microsoft Visual Studio 2008 Professional Edition - DEU (KBKB971091) (HKLM\...\{445174EA-3D3A-308E-84AD-446127E71441}.KB971091) (Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2008 Professional Edition - DEU (KBKB973674) (HKLM\...\{445174EA-3D3A-308E-84AD-446127E71441}.KB973674) (Version: 1 - Microsoft Corporation)
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2104 - Intel Corporation)
Intel(R) Management Engine Interface (HKLM\...\HECI) (Version:  - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 14.8 - Intel)
Intel® Active-Management-Technologie (HKLM\...\MESOL) (Version:  - Intel Corporation)
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.14 - Oracle Corporation)
Keil µVision3 (HKLM\...\Keil µVision3) (Version:  - )
KNX eteC Falcon Runtime v2.1 (Version: 2.1.5213.27900 - KNX Association cvba) Hidden
KNX ETS4 (HKLM\...\KNX ETS4) (Version: 4.1.3246.36180 - KNX Association cvba)
KNX ETS4 (Version: 4.1.3246.36180 - KNX Association cvba) Hidden
KNX ETS4 Additional Runtime (Version: 4.0.0.0 - KNX Association cvba) Hidden
kuler (Version: 2.0 - Adobe Systems Incorporated) Hidden
LOGO!Soft Comfort V7.0  (HKLM\...\LOGO!Soft Comfort V7.0 ) (Version: 7.0.0.0 - Siemens AG)
Microsoft .NET Compact Framework 2.0 SP2 (HKLM\...\{B1060346-9388-4C5B-AA52-176C39819E43}) (Version: 2.0.7045 - Microsoft Corporation)
Microsoft .NET Compact Framework 3.5 (HKLM\...\{72CCBEA1-8D57-4981-A337-81019F28C5BA}) (Version: 3.5.7283 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Device Emulator Version 3.0 - DEU (HKLM\...\{4E3A817A-8033-3D7E-BCA9-102EFF3FD9CA}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Document Explorer 2008 Language Pack - DEU (HKLM\...\Microsoft Document Explorer 2008 Language Pack - DEU) (Version:  - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM\...\Microsoft SQL Server 2008 R2) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{8E0BF061-4331-4459-BB6C-C20F237B53DB}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM\...\{EFECC55D-7B0A-4D05-8487-CC2FD7C618A3}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 Design Tools DEU (HKLM\...\{E32260E7-0B10-43C7-9B77-AB9F4184676D}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 DEU (HKLM\...\{159098AF-4EB8-4C10-B0C6-24CDA32B45F9}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 for Devices DEU (HKLM\...\{1C3ADB5F-750E-4453-AC98-B75C5323845C}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{47BE41E6-2F0F-4D17-9C2D-3850FFD9D405}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft Visio Professional 2013 (HKLM\...\Office15.VISPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack (HKLM\...\Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Professional Edition - DEU (HKLM\...\Microsoft Visual Studio 2008 Professional Edition - DEU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Web Authoring Component (HKLM\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{99F0C3CC-8DF0-3611-B190-CF4D1AF0E053}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{842FAF7C-50EF-4463-9B8F-6222E1384D7D}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{64c5b887-b5ee-42b8-8596-78905a6b5f1f}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{B268E9A1-04A9-40D0-9866-846BE2B74BA7}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movavi Video Editor 12 (HKLM\...\Movavi Video Editor 12) (Version: 12.1.0 - Movavi)
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 50.1.0 (x86 de) (HKLM\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
National Instruments - Software (HKLM\...\NI Uninstaller) (Version:  - National Instruments)
NI Circuit Design Suite 11.0 Core (Version: 11.0.278 - National Instruments) Hidden
NI Circuit Design Suite 11.0 Edu Licenses (Version: 11.0.278 - National Instruments) Hidden
NI Circuit Design Suite 11.0 Education (Version: 11.0.278 - National Instruments) Hidden
NI DASYLab 12.0.0 (Version: 12.0.0287 - National Instruments) Hidden
NI DataSocket 4.8 (Version: 4.8.21.0 - National Instruments) Hidden
NI DN 2.0 installer (Version: 2.00.49154 - National Instruments) Hidden
NI EULA Depot (Version: 2.80.304 - National Instruments) Hidden
NI Example Finder 9.0 (Version: 9.0.136.0 - National Instruments) Hidden
NI Help Assistant (Version: 1.0.10 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (Version: 8.6.348.0 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (Version: 9.0.222.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2009 (Version: 9.0.315.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.6.1 (Version: 8.6.426.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2009 (Version: 9.0.78.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Web Services (Version: 9.0.197.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (Version: 8.6.41.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (Version: 9.0.185.0 - National Instruments) Hidden
NI LabVIEW Web Services Runtime (Version: 8.6.48.0 - National Instruments) Hidden
NI LabWindows/CVI 2010 Analysis Library (Version: 10.0.0360 - National Instruments) Hidden
NI LabWindows/CVI 9.0.1 Run-Time Engine (Version: 9.0.1376 - National Instruments) Hidden
NI License Manager (Version: 3.4.28 - National Instruments) Hidden
NI Logos 5.2.1 (Version: 5.2.28.0 - National Instruments) Hidden
NI Logos XT Support (Version: 5.2.24.0 - National Instruments) Hidden
NI Math Kernel Libraries (Version: 1.0.25.0 - National Instruments) Hidden
NI Math Kernel Libraries (Version: 1.0.28.0 - National Instruments) Hidden
NI Math Kernel Libraries (Version: 1.0.861.0 - National Instruments) Hidden
NI MDF Support (Version: 2.80.304 - National Instruments) Hidden
NI MetaSuite Installer (Version: 2.70.346 - National Instruments) Hidden
NI Service Locator (Version: 9.0.260.0 - National Instruments) Hidden
NI TDMS (Version: 2.0.171.0 - National Instruments) Hidden
NI Trace Engine (Version: 9.0.146.0 - National Instruments) Hidden
NI Uninstaller (Version: 2.80.304 - National Instruments) Hidden
NI Update Service 1.0 (Version: 1.1.6.0 - National Instruments) Hidden
NI Update Service Extras 1.0 (Version: 1.1.6.0 - National Instruments) Hidden
NI USI 1.7.0 (Version: 1.7.03805 - National Instruments) Hidden
NI VC2005MSMs x86 (Version: 8.01.5 - National Instruments) Hidden
NI VC2008MSMs x86 (Version: 9.0.301 - National Instruments) Hidden
NI Web Pipeline 2.0.1 (Version: 2.0.128.0 - National Instruments) Hidden
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.81 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.81 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OPC Core Components Redistributable (x86) 101.2 (HKLM\...\{AD9F5DB5-ACE0-4538-A272-88B10A6C93C8}) (Version: 3.00.10102 - OPC Foundation)
OpenOffice 4.1.0 (HKLM\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OSSClientInstall (HKLM\...\{29AD022D-8F50-469D-AA66-C1F79D21C2FA}) (Version: 1.0.0 - eXtis GmbH)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Settings CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.2 - pdfforge)
Photoshop Camera Raw (Version: 5.0 - Adobe Systems Incorporated) Hidden
Pixel Bender Toolkit (Version: 1.0 - Adobe Systems Incorporated) Hidden
PKZIP Server for Windows 12.40.0008 (HKLM\...\{134A51EB-1BBB-4249-BAF5-494C3D186A06}) (Version: 12.40.0008 - PKWARE, Inc)
QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
Revit Architecture 2013 (Version: 12.02.21203 - Autodesk) Hidden
Revit Architecture 2013 Language Pack - Deutsch (Version: 12.02.21203 - Autodesk) Hidden
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Schnell-Deinstallations-Tool für Autodesk Inventor 2013 (HKLM\...\{D25FF5C1-1732-469A-9794-69309387C193}) (Version: 17.0.13800.0000 - Autodesk)
SEE Electrical Building School V2 (HKLM\...\{57689281-9E59-44AC-95FD-86D2897A36FF}) (Version: 2.20.3340 - IGE+XAO)
SEE Electrical Schulversion V5R1 (HKLM\...\SEE Electrical Schulversion V5R1) (Version:  - )
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{91150000-0051-0000-0000-0000000FF1CE}_Office15.VISPROR_{8D2E04ED-3350-4ECE-9D6E-3BC9A9A93A47}) (Version:  - Microsoft)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Siemens Automation License Manager (Version: 05.01.0103 - Siemens AG) Hidden
Siemens Automation License Manager V5.1 + SP1 + Upd3   (HKLM\...\{588DC473-0F95-42C4-BBF0-92CCE9FD6D27}LicenseManager) (Version: 05.01.0103 - Siemens AG)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM\...\SLABCOMM&10C4&EA60) (Version:  - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM\...\{9988E238-A304-41E3-9DAC-2D6F0A24F8C4}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
SIMATIC  STEP 7 (Version: 05.05.0100 - Siemens AG) Hidden
SIMATIC  STEP 7 V5.5 + SP1   (HKLM\...\{5D59B9B7-D9D4-4CA4-9594-305EBAF2B238}STEP7) (Version: 05.05.0100 - Siemens AG)
SIMATIC Device Drivers (Version: 08.02.0200 - Siemens AG) Hidden
SIMATIC HMI Symbol Library (Version: 11.00.0200 - Siemens AG) Hidden
SIMATIC Prosave (Version: 09.00.0300 - Siemens AG) Hidden
SIMATIC Prosave V9.0 incl. SP3   (HKLM\...\{AE533A06-4655-41E8-88BB-48293AAF1FA0}Prosave) (Version: 09.00.0300 - Siemens AG)
SIMATIC S7-PLCSIM (Version: 5.4.0500 - Siemens AG) Hidden
SIMATIC S7-PLCSIM V5.4 + SP5 Professional 2010   (HKLM\...\{FEF6402C-4209-45F6-BDC5-680B06C6D024}PLCSim) (Version: 5.4.0500 - Siemens AG)
SIMATIC WinCC flexible 2008 SP3 (HKLM\...\InstallShield_{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 01.04.0000 - Siemens AG)
SIMATIC WinCC flexible OCX (Version: 01.04.0000 - Siemens AG) Hidden
SIMATIC WinCC flexible Runtime (Version: 01.04.0000 - Siemens AG) Hidden
SIMATIC WinCC flexible Runtime 2008 SP3   (HKLM\...\{BA076DAD-B2E9-4DE6-8DC3-A12C0E569EAC}HmiRTm) (Version: 01.04.0000 - Siemens AG)
SIMATIC WinCC flexible Simulator (Version: 01.08.0300 - Siemens AG) Hidden
SIMATIC WinCC flexible Tag Simulator (Version: 01.04.0000 - Siemens AG) Hidden
SPS-VISU V4.78a (HKLM\...\SPS-VISU V4.78a) (Version:  - )
SQL Server 2008 R2 SP2 Common Files (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Suite Shared Configuration CS4 (Version: 1.0 - Adobe Systems Incorporated) Hidden
TL-WN725N_WN723N Treiber (HKLM\...\{3C3F9CEB-2C5A-4A47-8EAA-DA76037546BA}) (Version: 1.3.1 - TP-LINK)
TP-LINK-Konfigurationstool (HKLM\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (HKLM\...\{07629207-FAA0-4F1A-8092-BF5085BE511F}) (Version: 9.00.5000.00 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_PROPLUS_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUS_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_PROPLUS_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_PROPLUS_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update für Microsoft Visual Studio 2008 Professional Edition - DEU (KBKB972221) (HKLM\...\{445174EA-3D3A-308E-84AD-446127E71441}.KB972221) (Version: 1 - Microsoft Corporation)
VBA (2627.01) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VBA (2701.01) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VC Runtimes MSI (Version: 9.0.21022 - Microsoft) Hidden
Vectorworks 2012 Hilfe (HKLM\...\eu.computerworks.vectorworks.2012.help.deu.07222458214E034A0B494E83FAD6744C17D2B914.1) (Version: 1.0 - UNKNOWN)
Vectorworks 2012 Hilfe (Version: 1.0 - UNKNOWN) Hidden
VirtualCloneDrive (HKLM\...\VirtualCloneDrive) (Version:  - Elaborate Bytes)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio-Tools für Office System 3.0 Runtime Language Pack - DEU (HKLM\...\Visual Studio Tools for the Office system 3.0 Runtime Language Pack - DEU) (Version:  - Microsoft Corporation)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VMware Player (HKLM\...\VMware_Player) (Version: 5.0.2 - VMware, Inc)
VMware Player (Version: 5.0.2 - VMware, Inc.) Hidden
VMware vSphere Client 4.1 (HKLM\...\{A0B433B1-941D-46F5-AE59-286263534232}) (Version: 4.1.0.32733 - VMware, Inc.)
WCD-Windows Control Daemon (HKLM\...\{C4BFC114-7461-4E20-B25E-8B531D211E70}) (Version: 1.1.0 - eXtis GmbH)
WinCC flexible (Version: 01.04.0000 - Siemens AG) Hidden
WinCC flexible Graphics (Version: 1.04.0000 - Siemens AG) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Pocket PC (HKLM\...\{721B5CF0-D220-4955-BB6F-EBCFB1096DE7}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Smartphone (HKLM\...\{DA7F48EF-5F56-45FE-9169-3B8159A7A323}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
WinFACT 8 (HKLM\...\{0F00C986-561C-4536-B62B-0EDE3475312A}) (Version: 8.1.1 - Ingenieurbüro Dr. Kahlert)
WinRAR 5.40 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Filmora(Build 7.8.9) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2562889154-1593366337-4015798880-1012_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {13EDA03C-018B-4023-8A8B-5844EC7A382B} - System32\Tasks\{17397CD6-C9E1-41D7-BDC9-B1A83AED3CEC} => pcalua.exe -a D:\Simatic_EKB_Install_2012_03_08\Simatic_EKB_Install_2012_03_08\Simatic_EKB_Install_2012_03_08.exe -d D:\Simatic_EKB_Install_2012_03_08\Simatic_EKB_Install_2012_03_08
Task: {45061C0A-5505-4FB2-9F07-154785A9FD16} - System32\Tasks\{B115C516-614A-44DC-BC5B-C71C13EAED48} => pcalua.exe -a C:\Users\admin\Downloads\jxpiinstall(1).exe -d C:\Users\admin\Downloads
Task: {7CBF1E11-5229-4CFD-A8B3-C9D810709AF2} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2562889154-1593366337-4015798880-1012
Task: {A7ACC0C6-29BE-4711-B99A-515F20844B88} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {B5BEC2A9-1551-4E8C-A964-3394D452E3C9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {C8B8AB17-B071-4C36-B2FA-1B0EA7D50DBB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-05-23 13:39 - 2001-07-31 09:17 - 00094274 _____ () C:\Windows\System32\HPBHealr.dll
2011-03-07 16:08 - 2011-03-07 16:08 - 00869376 _____ () C:\Program Files\Common Files\Siemens\SWS\PlugIns\SCP\Scpwin32.dll
2017-01-07 00:51 - 2017-01-07 00:52 - 07727696 _____ () C:\Program Files\Gramblr\gramblr.exe
2011-09-15 05:19 - 2011-09-15 05:19 - 00086016 _____ () C:\Programme\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
2011-06-14 17:20 - 2011-06-14 17:20 - 00405504 _____ () C:\Windows\system32\sn_regbase.dll
2011-12-06 21:11 - 2011-12-06 21:11 - 00061776 _____ () C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\zlib.dll
2013-10-30 10:21 - 2009-07-16 09:20 - 00077824 _____ () C:\Program Files\Common Files\Intel\Privacy Icon\UNS\DTMessageLib.dll
2015-09-22 11:17 - 2015-08-18 00:28 - 00106800 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2013-02-26 02:28 - 2013-02-26 02:28 - 01260624 _____ () C:\Program Files\VMware\VMware Player\libxml2.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 00407216 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll
2013-06-27 21:12 - 2013-06-27 21:12 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2017-01-08 20:46 - 2016-10-08 16:48 - 01506304 _____ () C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2017-01-08 20:46 - 2016-07-21 10:54 - 00137728 _____ () C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-12-09 15:09 - 2016-12-09 15:09 - 52051544 _____ () C:\Program Files\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-09-29 18:19 - 2015-03-20 15:23 - 02206208 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe
2016-09-29 18:19 - 2015-03-20 16:42 - 01401856 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\nicLan.dll
2016-09-29 18:19 - 2015-03-20 15:16 - 00192000 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\DC_WFF.dll
2016-09-29 18:19 - 2015-03-20 15:36 - 01693696 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\WJRtl.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 31723696 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-12-02 01:54 - 2016-12-02 01:54 - 00118272 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00223232 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00117248 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00124928 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 15:09 - 2016-12-09 15:09 - 00110680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-12-02 01:54 - 2016-12-02 01:54 - 00086528 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00118272 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00117760 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00125440 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-10 23:17 - 2016-10-10 23:17 - 00223232 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-09 15:02 - 2016-12-09 15:02 - 00110680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-10 23:14 - 2016-10-10 23:14 - 00121856 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2016-10-10 23:14 - 2016-10-10 23:14 - 00166400 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\Control Panel\Desktop\\Wallpaper -> 
HKU\S-1-5-21-2562889154-1593366337-4015798880-1013\Control Panel\Desktop\\Wallpaper -> C:\Users\Schueler\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-2562889154-1593366337-4015798880-1015\Control Panel\Desktop\\Wallpaper -> C:\Users\Simatic\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3672139495-2832106906-3117653080-14806\Control Panel\Desktop\\Wallpaper -> 
HKU\S-1-5-21-3672139495-2832106906-3117653080-17494\Control Panel\Desktop\\Wallpaper -> C:\Users\mascmarc\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-3672139495-2832106906-3117653080-19366\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeCS4ServiceManager => "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Adobe_ID0ENQBO => C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707 => C:\Program Files\National Instruments\Shared\NIUninstaller\InstallValidator.exe -s
MSCONFIG\startupreg: PDFPrint => C:\Program Files\PDF24\pdf24.exe
MSCONFIG\startupreg: picon => "C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe" -startup
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: S7UB Start => "C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
MSCONFIG\startupreg: WinCC flexible Smart Start => "C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe" /startup

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{0D337887-6D30-453D-8C9D-93EE2A34D45E}] => c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{6A9C5700-F676-4047-85B5-A67389AB20AE}] => LPort=1969
FirewallRules: [{F655E490-0883-4BEF-8FC1-B74711C04477}] => LPort=5353
FirewallRules: [{07F306EF-B5AD-4EA5-A03D-FCE0145B9A7A}] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{4ED96CA3-1644-4526-9BD6-C983575F9803}] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{7FEDF833-08BA-437D-B281-785C814FD754}] => LPort=3703
FirewallRules: [{145DECB3-9D20-49A0-84B8-BF711839577D}] => LPort=3704
FirewallRules: [{00E01D54-8F3D-4D89-8B7B-8D47274154B9}] => LPort=51000
FirewallRules: [{E98072A3-E87D-4667-97DD-94358757CF3F}] => LPort=51001
FirewallRules: [{E391AA31-1328-48CA-9950-EC5C05F4031A}] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
FirewallRules: [{58FC4590-B418-4A41-9A39-11C060253444}] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
FirewallRules: [{59AE9B1E-6933-42DF-89A3-DC977363A2AA}] => C:\Program Files\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{FE561AA8-229C-4F81-B4BD-B03DA17D65C7}] => C:\Program Files\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{EAD8637B-5349-4264-B83B-B9BE73D162E1}] => C:\Windows\System32\hasplms.exe
FirewallRules: [{B516B0C9-D9DB-404B-B9EE-32C0B3EF8C9A}] => C:\Windows\System32\hasplms.exe
FirewallRules: [{057CC0F5-EC2B-4E85-8339-A119CAF0F0D5}] => LPort=50248
FirewallRules: [{6051A0CA-9729-4827-A1DD-F9D8E97317D1}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
FirewallRules: [{0E4EEDBE-54FC-4957-9E0C-462C240D4D48}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
FirewallRules: [{FCB5A28D-F52D-4868-B637-0DEED83E381D}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32.exe
FirewallRules: [{EA639BCF-D184-4FD3-8F7B-E79008266D4E}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32.exe
FirewallRules: [{3254F1A0-9287-4836-BEDD-57DDEEC58AC3}] => C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe
FirewallRules: [{995FDB54-9260-4D79-9746-51036CC2A518}] => C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe
FirewallRules: [{12C6C47A-D095-4B8C-BD9F-440FCC40C41B}] => C:\Program Files\Autodesk\Backburner\monitor.exe
FirewallRules: [{F8FAD4C5-5DDE-49EE-9A2D-9EC4E548F203}] => C:\Program Files\Autodesk\Backburner\monitor.exe
FirewallRules: [{5DFD22C3-D908-4230-9B75-3825C7A66C47}] => C:\Program Files\Autodesk\Backburner\manager.exe
FirewallRules: [{10061E4C-C273-46A7-A43A-2F6C36B004BA}] => C:\Program Files\Autodesk\Backburner\manager.exe
FirewallRules: [{0C92AA09-F5EF-4843-8F69-C1CD326A4685}] => C:\Program Files\Autodesk\Backburner\server.exe
FirewallRules: [{D9A3FDBE-EF01-46EE-A099-EEF8664A7CBE}] => C:\Program Files\Autodesk\Backburner\server.exe
FirewallRules: [{6BE9D963-7730-4338-A932-7457FEF51608}] => C:\Program Files\Common Files\Siemens\SQLANY\Dbsrv9.exe
FirewallRules: [{53B6E02D-7EF8-4011-9C8C-D6379293D752}] => C:\Program Files\Common Files\Siemens\SQLANY\Dbeng9.exe
FirewallRules: [{81E241C5-F98D-4AC3-84EA-3F3FAD2A93E7}] => C:\Windows\system32\S7otbxsx.exe
FirewallRules: [{34FB6421-A9DB-4A2E-A649-7FD5D5A687BC}] => C:\Program Files\Siemens\Step7\S7INF\S7usiapx.exe
FirewallRules: [{55843360-F188-40BF-9596-C4B71780FF9D}] => C:\Program Files\Siemens\Step7\S7BIN\S7tgtopx.exe
FirewallRules: [{314BB665-76DF-47F2-AC7F-1F1DB4E4AD17}] => C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
FirewallRules: [{2C1E9840-D18E-4333-A2F4-3B1995DAA629}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiES.exe
FirewallRules: [{18B94566-3333-484F-ABE2-F626FE47943E}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\TraceServer.exe
FirewallRules: [{02FF865A-8671-4589-ADDC-1465AE94C7B2}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\MiniWeb.exe
FirewallRules: [{0808A7EA-AC86-4C74-912D-AF492689BE0C}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
FirewallRules: [{A3F3065C-5625-45AC-96CC-A5E3229873E3}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\HmiLoad.exe
FirewallRules: [{348C0100-0C22-40B8-BF9B-35B1ADADB996}] => C:\Windows\system32\hasplms.exe
FirewallRules: [{4CCFE9AA-486B-40C0-BF91-5F138CEF32B3}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{115508B0-59B4-4526-B066-D65332FC62C8}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ED7BEAE1-A0E8-41E6-9166-F5CE589B7D34}] => C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AEC04D0C-1BEB-4A6F-BF07-2D53FE81C8C4}] => C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{69FAD0E5-D1A9-40ED-9EF2-CC7F36C3CCA7}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D6BDCC19-64C5-4B0D-99C3-57F30F69432C}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{267E5EEA-5D4F-407E-9F84-4F37F52D16FC}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{088BA12A-E891-42AD-8DC4-BDCDE294EB44}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F24225C6-E706-493A-A9FE-4A8C67F2C829}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{10685141-0B16-4F7C-8725-5669BC2D528A}] => LPort=2869
FirewallRules: [{9B599CA2-B62A-4CB9-A59E-94912A03F63A}] => LPort=1900

==================== Wiederherstellungspunkte =========================

14-01-2017 19:04:21 Windows Update
16-01-2017 14:14:45 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
16-01-2017 14:15:42 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
16-01-2017 14:16:25 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918
16-01-2017 21:37:21 Revo Uninstaller's restore point - Adobe Reader XI (11.0.04) - Deutsch

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/17/2017 07:12:08 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 06:12:10 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 05:12:09 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 04:12:05 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 03:12:03 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 02:12:03 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 01:12:01 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/17/2017 12:27:16 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (01/17/2017 12:12:05 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.

Error: (01/16/2017 11:11:58 PM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Das Update von BILDUNG (192.168.2.125) ist fehlgeschlagen.
Während des Herunterladens ist ein Fehler aufgetreten..
Es wurden keine neuen Dateien geladen.


Systemfehler:
=============
Error: (01/16/2017 10:04:58 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{1BD51F8C-8CFC-4708-A88D-5690DE4D5C16}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/16/2017 10:02:43 PM) (Source: DCOM) (EventID: 10016) (User: BILDUNG)
Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-2562889154-1593366337-4015798880-1012) für Benutzer BILDUNG\admin von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID 
{B20E899D-B079-479D-A4DC-10F758D9CD9A}
 und APPID 
{9209B1A6-964A-11D0-9372-00A0C9034910}
 gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.

Error: (01/16/2017 09:58:36 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "WcdService" wurde nicht richtig gestartet.

Error: (01/16/2017 09:55:18 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (01/16/2017 09:55:18 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (01/16/2017 09:55:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (01/16/2017 08:59:14 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{1BD51F8C-8CFC-4708-A88D-5690DE4D5C16}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/16/2017 08:58:28 PM) (Source: DCOM) (EventID: 10016) (User: BILDUNG)
Description: Durch die Berechtigungseinstellungen (Anwendungsspezifisch) wird der SID (S-1-5-21-2562889154-1593366337-4015798880-1012) für Benutzer BILDUNG\admin von Adresse LocalHost (unter Verwendung von LRPC) keine Berechtigung zum Aktivierung (Lokal) für die COM-Serveranwendung mit CLSID 
{B20E899D-B079-479D-A4DC-10F758D9CD9A}
 und APPID 
{9209B1A6-964A-11D0-9372-00A0C9034910}
 gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungsprogramm für Komponentendienste geändert werden.

Error: (01/16/2017 07:01:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "WcdService" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (01/16/2017 07:01:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst WcdService erreicht.


==================== Memory info =========================== 

Processor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz
Prozentuale Nutzung des RAM: 58%
Installierter physikalischer RAM: 3070.23 MB
Verfügbarer physikalischer RAM: 1279.35 MB
Summe virtueller Speicher: 6138.79 MB
Verfügbarer virtueller Speicher: 3600.26 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:100 GB) (Free:1.55 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:49.05 GB) (Free:48.96 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: BE8CBE8C)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=49 GB) - (Type=07 NTFS)

==================== Ende vom Addition.txt ============================
         

Alt 17.01.2017, 09:38   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



hi,

das ist ja mal ne fette Softwaresammlung. Gewerblich genutztes System? Oder sind die vielen teuren Programm ein rein privates Vergnügen?
__________________

__________________

Alt 17.01.2017, 09:55   #3
volkan123
 
ungültiges bild - Standard

ungültiges bild



den rechner habe ich vor kurzem geschenkt bekommen die ganzen programme sind soweit ich weiss testversionen außer photoshop 2017
__________________

Alt 17.01.2017, 09:58   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



+++ WICHTIGER HINWEIS +++


Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache.
Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung!
Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben.

Gelesen und verstanden?



Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.01.2017, 10:21   #5
volkan123
 
ungültiges bild - Standard

ungültiges bild



avira wurde deinstalliert


Alt 17.01.2017, 10:42   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
--> ungültiges bild

Alt 17.01.2017, 12:00   #7
volkan123
 
ungültiges bild - Standard

ungültiges bild



mbar

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.01.17.04
  rootkit: v2016.11.20.01

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.18537
admin :: BILDUNG [administrator]

17.01.2017 10:50:03
mbar-log-2017-01-17 (10-50-03).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 846128
Time elapsed: 51 minute(s), 19 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
tdss killer
Code:
ATTFilter
11:49:14.0019 0x19b4  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
11:49:23.0162 0x19b4  ============================================================
11:49:23.0162 0x19b4  Current date / time: 2017/01/17 11:49:23.0162
11:49:23.0162 0x19b4  SystemInfo:
11:49:23.0162 0x19b4  
11:49:23.0162 0x19b4  OS Version: 6.1.7601 ServicePack: 1.0
11:49:23.0162 0x19b4  Product type: Workstation
11:49:23.0162 0x19b4  ComputerName: BILDUNG
11:49:23.0162 0x19b4  UserName: admin
11:49:23.0162 0x19b4  Windows directory: C:\Windows
11:49:23.0163 0x19b4  System windows directory: C:\Windows
11:49:23.0163 0x19b4  Processor architecture: Intel x86
11:49:23.0163 0x19b4  Number of processors: 2
11:49:23.0163 0x19b4  Page size: 0x1000
11:49:23.0163 0x19b4  Boot type: Normal boot
11:49:23.0163 0x19b4  CodeIntegrityOptions = 0x00000000
11:49:23.0163 0x19b4  ============================================================
11:49:25.0347 0x19b4  KLMD registered as C:\Windows\system32\drivers\59879121.sys
11:49:25.0347 0x19b4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x0
11:49:25.0957 0x19b4  System UUID: {73EBEAE6-CC6B-C593-5887-898C2DD969D6}
11:49:26.0475 0x19b4  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:49:26.0477 0x19b4  ============================================================
11:49:26.0477 0x19b4  \Device\Harddisk0\DR0:
11:49:26.0477 0x19b4  MBR partitions:
11:49:26.0477 0x19b4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC800000
11:49:26.0477 0x19b4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC800800, BlocksNum 0x6218000
11:49:26.0477 0x19b4  ============================================================
11:49:26.0510 0x19b4  C: <-> \Device\Harddisk0\DR0\Partition1
11:49:26.0534 0x19b4  D: <-> \Device\Harddisk0\DR0\Partition2
11:49:26.0534 0x19b4  ============================================================
11:49:26.0534 0x19b4  Initialize success
11:49:26.0534 0x19b4  ============================================================
11:49:28.0008 0x1ae8  ============================================================
11:49:28.0008 0x1ae8  Scan started
11:49:28.0008 0x1ae8  Mode: Manual; 
11:49:28.0008 0x1ae8  ============================================================
11:49:28.0008 0x1ae8  KSN ping started
11:49:33.0575 0x1ae8  KSN ping finished: true
11:49:35.0135 0x1ae8  ================ Scan system memory ========================
11:49:35.0135 0x1ae8  System memory - ok
11:49:35.0137 0x1ae8  ================ Scan services =============================
11:49:35.0286 0x1ae8  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:49:35.0290 0x1ae8  1394ohci - ok
11:49:35.0351 0x1ae8  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:49:35.0357 0x1ae8  ACPI - ok
11:49:35.0388 0x1ae8  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:49:35.0388 0x1ae8  AcpiPmi - ok
11:49:35.0441 0x1ae8  [ 6D7F09CD92A9FEF3A8EFCE66231FDD79, FBEE01F2FFDB6854F682B4BE91673462A146927DD333D3C4DE66E6B86D9ED8DB ] adfs            C:\Windows\system32\drivers\adfs.sys
11:49:35.0443 0x1ae8  adfs - ok
11:49:35.0572 0x1ae8  [ 57A3B9A69F14414ACE12AFD6BA701773, E17FD004315B666E3A880C987A83A2B6C6156C3D6E9550AAC6F686348F7CE7AC ] Adobe Version Cue CS4 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
11:49:35.0578 0x1ae8  Adobe Version Cue CS4 - ok
11:49:35.0616 0x1ae8  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:49:35.0617 0x1ae8  AdobeARMservice - ok
11:49:35.0791 0x1ae8  [ 5B4D60ACCEA6918DBBB8C9FD4ADBDD29, FE3A768A76B673DCD09716F600D52B53A6EABEC6AA65E0DE89144F322E8571B8 ] AdobeUpdateService C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
11:49:35.0806 0x1ae8  AdobeUpdateService - ok
11:49:35.0873 0x1ae8  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
11:49:35.0882 0x1ae8  adp94xx - ok
11:49:35.0897 0x1ae8  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
11:49:35.0903 0x1ae8  adpahci - ok
11:49:35.0928 0x1ae8  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
11:49:35.0931 0x1ae8  adpu320 - ok
11:49:35.0983 0x1ae8  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:49:35.0986 0x1ae8  AeLookupSvc - ok
11:49:36.0057 0x1ae8  [ 93B49FA857F7036A4EFF32371F6E7391, B9B2867D9A80E7F028E9D7C6ABCB9EC5198ACE28CEE101C5A846666B356B2843 ] AFD             C:\Windows\system32\drivers\afd.sys
11:49:36.0064 0x1ae8  AFD - ok
11:49:36.0104 0x1ae8  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
11:49:36.0105 0x1ae8  agp440 - ok
11:49:36.0332 0x1ae8  [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService      C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
11:49:36.0381 0x1ae8  AGSService - ok
11:49:36.0441 0x1ae8  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
11:49:36.0443 0x1ae8  aic78xx - ok
11:49:36.0526 0x1ae8  [ FA9B4921088981A0E44DEA8A605E58C8, 18DD501C056660F868A212E6F96DB0A4394602A2B608EB6830F580008031016A ] aksfridge       C:\Windows\system32\drivers\aksfridge.sys
11:49:36.0535 0x1ae8  aksfridge - ok
11:49:36.0584 0x1ae8  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
11:49:36.0586 0x1ae8  ALG - ok
11:49:36.0618 0x1ae8  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:49:36.0619 0x1ae8  aliide - ok
11:49:36.0795 0x1ae8  [ 40F9750DDD2CAB38DB98C3D6B6601C3C, 213E8C483D519F6C31BBC5E30B153FAF724C57301DEAE070BE3BF78C8D8F5D91 ] almservice      C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
11:49:36.0818 0x1ae8  almservice - ok
11:49:36.0862 0x1ae8  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
11:49:36.0864 0x1ae8  amdagp - ok
11:49:36.0892 0x1ae8  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
11:49:36.0892 0x1ae8  amdide - ok
11:49:36.0927 0x1ae8  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
11:49:36.0929 0x1ae8  AmdK8 - ok
11:49:36.0964 0x1ae8  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
11:49:36.0966 0x1ae8  AmdPPM - ok
11:49:36.0999 0x1ae8  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:49:37.0001 0x1ae8  amdsata - ok
11:49:37.0020 0x1ae8  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
11:49:37.0024 0x1ae8  amdsbs - ok
11:49:37.0044 0x1ae8  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:49:37.0045 0x1ae8  amdxata - ok
11:49:37.0101 0x1ae8  [ 873F0162D10893E3DF34FA2AC604E6EA, 79655CDB125DBA14DDA01E45A2F8E185788081A3DF8D9E7A6A167C9F0D5C3F62 ] AppID           C:\Windows\system32\drivers\appid.sys
11:49:37.0103 0x1ae8  AppID - ok
11:49:37.0134 0x1ae8  [ E10F22695EAC1689DED6A9A45D6C352A, 15B10D2E4AB88DE729905E9E4DD24E812163AD45806713E3883E701723D44E3A ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:49:37.0136 0x1ae8  AppIDSvc - ok
11:49:37.0158 0x1ae8  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
11:49:37.0160 0x1ae8  Appinfo - ok
11:49:37.0192 0x1ae8  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
11:49:37.0196 0x1ae8  AppMgmt - ok
11:49:37.0228 0x1ae8  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
11:49:37.0229 0x1ae8  arc - ok
11:49:37.0241 0x1ae8  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:49:37.0242 0x1ae8  arcsas - ok
11:49:37.0356 0x1ae8  [ C5BBC8487D89FC1C5D819BB1344F2845, 2265560C9D1DD544C17808F4F2D625B926014EFD5DFE2770BFACF89AB26B54AF ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:49:37.0357 0x1ae8  aspnet_state - ok
11:49:37.0389 0x1ae8  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:49:37.0389 0x1ae8  AsyncMac - ok
11:49:37.0416 0x1ae8  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:49:37.0417 0x1ae8  atapi - ok
11:49:37.0491 0x1ae8  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:49:37.0503 0x1ae8  AudioEndpointBuilder - ok
11:49:37.0519 0x1ae8  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
11:49:37.0528 0x1ae8  Audiosrv - ok
11:49:37.0684 0x1ae8  [ F431DC5D94F4B2FDBC927655D8A9B10E, FA16A95E5B83D08F0FD76FDAB03FC7CD4B6917BFE15F2F1D9F3B781F6A1888D8 ] Autodesk Content Service C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
11:49:37.0686 0x1ae8  Autodesk Content Service - ok
11:49:37.0717 0x1ae8  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:49:37.0720 0x1ae8  AxInstSV - ok
11:49:37.0755 0x1ae8  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
11:49:37.0764 0x1ae8  b06bdrv - ok
11:49:37.0827 0x1ae8  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
11:49:37.0831 0x1ae8  b57nd60x - ok
11:49:37.0889 0x1ae8  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
11:49:37.0891 0x1ae8  BDESVC - ok
11:49:37.0906 0x1ae8  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:49:37.0906 0x1ae8  Beep - ok
11:49:37.0948 0x1ae8  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
11:49:37.0961 0x1ae8  BFE - ok
11:49:37.0996 0x1ae8  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
11:49:38.0012 0x1ae8  BITS - ok
11:49:38.0035 0x1ae8  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:49:38.0036 0x1ae8  blbdrive - ok
11:49:38.0086 0x1ae8  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:49:38.0088 0x1ae8  bowser - ok
11:49:38.0107 0x1ae8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
11:49:38.0107 0x1ae8  BrFiltLo - ok
11:49:38.0122 0x1ae8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
11:49:38.0122 0x1ae8  BrFiltUp - ok
11:49:38.0156 0x1ae8  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
11:49:38.0159 0x1ae8  Browser - ok
11:49:38.0198 0x1ae8  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:49:38.0204 0x1ae8  Brserid - ok
11:49:38.0229 0x1ae8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:49:38.0231 0x1ae8  BrSerWdm - ok
11:49:38.0256 0x1ae8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:49:38.0256 0x1ae8  BrUsbMdm - ok
11:49:38.0270 0x1ae8  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:49:38.0271 0x1ae8  BrUsbSer - ok
11:49:38.0288 0x1ae8  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
11:49:38.0289 0x1ae8  BTHMODEM - ok
11:49:38.0323 0x1ae8  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
11:49:38.0326 0x1ae8  bthserv - ok
11:49:38.0355 0x1ae8  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:49:38.0357 0x1ae8  cdfs - ok
11:49:38.0401 0x1ae8  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:49:38.0403 0x1ae8  cdrom - ok
11:49:38.0437 0x1ae8  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:49:38.0439 0x1ae8  CertPropSvc - ok
11:49:38.0527 0x1ae8  [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click      C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe
11:49:38.0529 0x1ae8  chip1click - ok
11:49:38.0554 0x1ae8  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
11:49:38.0555 0x1ae8  circlass - ok
11:49:38.0640 0x1ae8  [ 1136E4A71849BCFCB057140AD03AAEE6, 9A9615F33E475039382E452052040C21EFA9C6669FB4E95D466C014FCAEF4D74 ] CLFS            C:\Windows\system32\CLFS.sys
11:49:38.0661 0x1ae8  CLFS - ok
11:49:38.0789 0x1ae8  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:49:38.0791 0x1ae8  clr_optimization_v2.0.50727_32 - ok
11:49:38.0854 0x1ae8  [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:49:38.0856 0x1ae8  clr_optimization_v4.0.30319_32 - ok
11:49:38.0884 0x1ae8  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
11:49:38.0885 0x1ae8  CmBatt - ok
11:49:38.0912 0x1ae8  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:49:38.0912 0x1ae8  cmdide - ok
11:49:38.0972 0x1ae8  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
11:49:38.0978 0x1ae8  CNG - ok
11:49:39.0006 0x1ae8  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
11:49:39.0007 0x1ae8  Compbatt - ok
11:49:39.0030 0x1ae8  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
11:49:39.0031 0x1ae8  CompositeBus - ok
11:49:39.0050 0x1ae8  COMSysApp - ok
11:49:39.0070 0x1ae8  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
11:49:39.0073 0x1ae8  crcdisk - ok
11:49:39.0158 0x1ae8  [ 348B3A4DD922F590EB39DB231F7AEE4D, 62341BBB263E8E72436FE008E2645692712C2143964D67CE38D58F47F5DEA8B1 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:49:39.0168 0x1ae8  CryptSvc - ok
11:49:39.0278 0x1ae8  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
11:49:39.0288 0x1ae8  CSC - ok
11:49:39.0325 0x1ae8  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
11:49:39.0338 0x1ae8  CscService - ok
11:49:39.0526 0x1ae8  [ DBD89BC0DBE00DCD245BE8F61DBEE291, 7AC7291EF660338695CF4C8A8C0BBC8A6F456688E71D889F39EFBD2F5854DA26 ] cvintdrv        C:\Windows\system32\drivers\cvintdrv.sys
11:49:39.0548 0x1ae8  cvintdrv - ok
11:49:39.0609 0x1ae8  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:49:39.0619 0x1ae8  DcomLaunch - ok
11:49:39.0650 0x1ae8  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
11:49:39.0656 0x1ae8  defragsvc - ok
11:49:39.0718 0x1ae8  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:49:39.0720 0x1ae8  DfsC - ok
11:49:39.0754 0x1ae8  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:49:39.0761 0x1ae8  Dhcp - ok
11:49:39.0847 0x1ae8  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
11:49:39.0877 0x1ae8  DiagTrack - ok
11:49:39.0897 0x1ae8  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
11:49:39.0898 0x1ae8  discache - ok
11:49:39.0939 0x1ae8  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
11:49:39.0941 0x1ae8  Disk - ok
11:49:39.0976 0x1ae8  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
11:49:39.0978 0x1ae8  dmvsc - ok
11:49:40.0019 0x1ae8  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:49:40.0023 0x1ae8  Dnscache - ok
11:49:40.0059 0x1ae8  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:49:40.0066 0x1ae8  dot3svc - ok
11:49:40.0105 0x1ae8  [ 54B4256D1EDF1D104BEA2B73C24C89AD, CF5F440729C7928F998106C0D70322ADEC7D3835DAD3DD16D8B75A429A92DEC3 ] dpmconv         C:\Windows\system32\DRIVERS\dpmconv32.sys
11:49:40.0110 0x1ae8  dpmconv - ok
11:49:40.0167 0x1ae8  [ 0BD72E62C3974C4F5E4372DBA971901B, E3A6ACA940A92B7721773E38141FC7C4E353423C007DB72CF2361E95DFDE5B93 ] dpmcslv         C:\Windows\system32\drivers\dpmcslv.sys
11:49:40.0169 0x1ae8  dpmcslv - ok
11:49:40.0193 0x1ae8  [ 69022154D10A96FE2EC483D9648E6DD4, EE4173BBDA5B3EC60B88C1D3028807D87F62961FA115370293937A3798C1C535 ] DPMTRCDD        C:\Windows\system32\DRIVERS\DPMTRCDD32.sys
11:49:40.0194 0x1ae8  DPMTRCDD - ok
11:49:40.0230 0x1ae8  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
11:49:40.0235 0x1ae8  DPS - ok
11:49:40.0276 0x1ae8  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:49:40.0277 0x1ae8  drmkaud - ok
11:49:40.0348 0x1ae8  [ 4B21D102E49E9D44C478D6766A7FCBE5, 7CEEBCF81EE23876F039ED1222020D6F45FE6B3A5CE3BB93DDA3B8BBEAA15E47 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:49:40.0361 0x1ae8  DXGKrnl - ok
11:49:40.0403 0x1ae8  [ A13F07A0422E4A04E7FF6F6F3B05E729, 9DE9F2E476707A02F6615A0A53A0BE07B3E7C9ABD16C03E73C82648FECC224BE ] e1kexpress      C:\Windows\system32\DRIVERS\e1k6232.sys
11:49:40.0408 0x1ae8  e1kexpress - ok
11:49:40.0450 0x1ae8  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
11:49:40.0453 0x1ae8  EapHost - ok
11:49:40.0587 0x1ae8  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
11:49:40.0647 0x1ae8  ebdrv - ok
11:49:40.0704 0x1ae8  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] EFS             C:\Windows\System32\lsass.exe
11:49:40.0706 0x1ae8  EFS - ok
11:49:40.0759 0x1ae8  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:49:40.0774 0x1ae8  ehRecvr - ok
11:49:40.0789 0x1ae8  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
11:49:40.0792 0x1ae8  ehSched - ok
11:49:40.0827 0x1ae8  [ B83BDCCBACB65BAA9E20888DD0083A16, A38B29C768DF9153E704C92A410663A8CFFB29BDB5E6622881DEB7FFFEF0CB38 ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
11:49:40.0828 0x1ae8  ElbyCDIO - ok
11:49:40.0868 0x1ae8  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
11:49:40.0877 0x1ae8  elxstor - ok
11:49:40.0896 0x1ae8  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:49:40.0897 0x1ae8  ErrDev - ok
11:49:40.0943 0x1ae8  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
11:49:40.0951 0x1ae8  EventSystem - ok
11:49:40.0975 0x1ae8  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:49:40.0978 0x1ae8  exfat - ok
11:49:41.0008 0x1ae8  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:49:41.0011 0x1ae8  fastfat - ok
11:49:41.0062 0x1ae8  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
11:49:41.0078 0x1ae8  Fax - ok
11:49:41.0104 0x1ae8  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:49:41.0104 0x1ae8  fdc - ok
11:49:41.0132 0x1ae8  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
11:49:41.0134 0x1ae8  fdPHost - ok
11:49:41.0140 0x1ae8  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:49:41.0142 0x1ae8  FDResPub - ok
11:49:41.0157 0x1ae8  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:49:41.0158 0x1ae8  FileInfo - ok
11:49:41.0174 0x1ae8  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:49:41.0175 0x1ae8  Filetrace - ok
11:49:41.0252 0x1ae8  [ ACEFEEA621DCA62EFB7A7EEA59F5E91B, 1D998E25B2C4C2DB51BF5E76BD0EFCA172CFC9BC16AFE7044BFC7A9FCF346154 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:49:41.0272 0x1ae8  FLEXnet Licensing Service - ok
11:49:41.0305 0x1ae8  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
11:49:41.0306 0x1ae8  flpydisk - ok
11:49:41.0327 0x1ae8  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:49:41.0332 0x1ae8  FltMgr - ok
11:49:41.0425 0x1ae8  [ DF15E8426D02C15422EBFF28BA83F03A, 51BEB315B0E5114906684FB3F460FA7BEA326C1B589C5C35D29795A7C13AB4FB ] FontCache       C:\Windows\system32\FntCache.dll
11:49:41.0448 0x1ae8  FontCache - ok
11:49:41.0540 0x1ae8  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:49:41.0541 0x1ae8  FontCache3.0.0.0 - ok
11:49:41.0572 0x1ae8  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:49:41.0574 0x1ae8  FsDepends - ok
11:49:41.0615 0x1ae8  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:49:41.0616 0x1ae8  Fs_Rec - ok
11:49:41.0655 0x1ae8  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:49:41.0660 0x1ae8  fvevol - ok
11:49:41.0722 0x1ae8  [ F51AE57CF9177010D4AE565F67EF7354, 7E0770975E37C36910F34C4EB0C8B0B435439A6B229E20C2567FF8E37A317045 ] fwkbdrtm        C:\Windows\system32\drivers\fwkbdrtm.sys
11:49:41.0723 0x1ae8  fwkbdrtm - ok
11:49:41.0765 0x1ae8  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
11:49:41.0766 0x1ae8  gagp30kx - ok
11:49:41.0903 0x1ae8  [ 66AF0B382E050DD2521BCB5337410916, 1ABCA963BC9769EA689571C9A32C8A3C6B02CBA62DFA7EB132AE1E63F53BC052 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
11:49:41.0921 0x1ae8  GfExperienceService - ok
11:49:41.0977 0x1ae8  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:49:41.0991 0x1ae8  gpsvc - ok
11:49:42.0304 0x1ae8  [ F5295EC506515409DC2D6EE23669B2E2, D103F23850C7ED9D4C5C2BF66433ABA1C8D7DFF7D6871935FCE8F4A0D7A36016 ] gramblrclient   C:\Program Files\Gramblr\gramblr.exe
11:49:42.0475 0x1ae8  gramblrclient - ok
11:49:42.0588 0x1ae8  [ 99FCD7CE9894C241FB98A7811D2D8813, 713E9D6E1AA98AC4D7644872C988082870BC23FEE70C5831FB26159608E7E00A ] hardlock        C:\Windows\system32\drivers\hardlock.sys
11:49:42.0600 0x1ae8  hardlock - ok
11:49:42.0609 0x1ae8  hasplms - ok
11:49:42.0639 0x1ae8  [ B6F5AC88A1A1FDD802CB689721D640FE, 18A4674BE2D24539F69F1368C18D1FDF9185805843380719DC805FF323515FB5 ] hcmon           C:\Windows\system32\drivers\hcmon.sys
11:49:42.0640 0x1ae8  hcmon - ok
11:49:42.0665 0x1ae8  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:49:42.0666 0x1ae8  hcw85cir - ok
11:49:42.0723 0x1ae8  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:49:42.0728 0x1ae8  HdAudAddService - ok
11:49:42.0762 0x1ae8  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:49:42.0765 0x1ae8  HDAudBus - ok
11:49:42.0804 0x1ae8  [ 88A67C34E37186665E916FD347B50D19, 23C4F11E421DE7D8330418118524D345A905300816E3D7D486DB18C670226EE1 ] HECI            C:\Windows\system32\DRIVERS\HECI.sys
11:49:42.0806 0x1ae8  HECI - ok
11:49:42.0835 0x1ae8  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
11:49:42.0836 0x1ae8  HidBatt - ok
11:49:42.0859 0x1ae8  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
11:49:42.0861 0x1ae8  HidBth - ok
11:49:42.0890 0x1ae8  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
11:49:42.0891 0x1ae8  HidIr - ok
11:49:42.0919 0x1ae8  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
11:49:42.0922 0x1ae8  hidserv - ok
11:49:42.0989 0x1ae8  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:49:42.0989 0x1ae8  HidUsb - ok
11:49:43.0008 0x1ae8  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:49:43.0011 0x1ae8  hkmsvc - ok
11:49:43.0033 0x1ae8  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:49:43.0039 0x1ae8  HomeGroupListener - ok
11:49:43.0067 0x1ae8  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:49:43.0074 0x1ae8  HomeGroupProvider - ok
11:49:43.0115 0x1ae8  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:49:43.0117 0x1ae8  HpSAMD - ok
11:49:43.0190 0x1ae8  [ 487569E5DA56A5A432FF8AF6D3599CF9, 7C974D8379C60B4F69A20B01876C49181B0A63AC318C4BD0A21DABFF27A15C9D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:49:43.0200 0x1ae8  HTTP - ok
11:49:43.0221 0x1ae8  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:49:43.0222 0x1ae8  hwpolicy - ok
11:49:43.0267 0x1ae8  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:49:43.0269 0x1ae8  i8042prt - ok
11:49:43.0328 0x1ae8  [ 26541A068572F650A2FA490726FE81BE, 9D6EF745731D45C4482274BE9C56300BBE8843D6C182F0E5C621AB121DBE371E ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
11:49:43.0336 0x1ae8  iaStor - ok
11:49:43.0381 0x1ae8  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:49:43.0387 0x1ae8  iaStorV - ok
11:49:43.0462 0x1ae8  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:49:43.0481 0x1ae8  idsvc - ok
11:49:43.0488 0x1ae8  IEEtwCollectorService - ok
11:49:43.0873 0x1ae8  [ 0DAB2D553BE272359BCCE55C3449937E, FA539CF0DAA084C56BE22D14E857BD2E753C4B24FEA0C6168EC41B5788D9E7F8 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
11:49:44.0069 0x1ae8  igfx - ok
11:49:44.0134 0x1ae8  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
11:49:44.0135 0x1ae8  iirsp - ok
11:49:44.0206 0x1ae8  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
11:49:44.0223 0x1ae8  IKEEXT - ok
11:49:44.0267 0x1ae8  [ 5CF0990FC1F6676F7B00366AB224DA92, 980908606D401024CAD24E294397F0386DA68DDA13E0DE2AE551EE4B59E36296 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
11:49:44.0270 0x1ae8  IntcHdmiAddService - ok
11:49:44.0290 0x1ae8  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
11:49:44.0290 0x1ae8  intelide - ok
11:49:44.0319 0x1ae8  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:49:44.0321 0x1ae8  intelppm - ok
11:49:44.0348 0x1ae8  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:49:44.0351 0x1ae8  IPBusEnum - ok
11:49:44.0369 0x1ae8  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:49:44.0370 0x1ae8  IpFilterDriver - ok
11:49:44.0411 0x1ae8  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:49:44.0422 0x1ae8  iphlpsvc - ok
11:49:44.0449 0x1ae8  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:49:44.0451 0x1ae8  IPMIDRV - ok
11:49:44.0465 0x1ae8  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:49:44.0468 0x1ae8  IPNAT - ok
11:49:44.0504 0x1ae8  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:49:44.0504 0x1ae8  IRENUM - ok
11:49:44.0521 0x1ae8  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:49:44.0522 0x1ae8  isapnp - ok
11:49:44.0572 0x1ae8  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:49:44.0576 0x1ae8  iScsiPrt - ok
11:49:44.0624 0x1ae8  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:49:44.0625 0x1ae8  kbdclass - ok
11:49:44.0643 0x1ae8  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:49:44.0644 0x1ae8  kbdhid - ok
11:49:44.0661 0x1ae8  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] KeyIso          C:\Windows\system32\lsass.exe
11:49:44.0664 0x1ae8  KeyIso - ok
11:49:44.0717 0x1ae8  [ EF7A3616C7902A232FEDAAB886AA07C2, B739EA5840E09E32AEF23A414F1E74B33785189BC0F43E156F6321CC0FA5BC35 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:49:44.0718 0x1ae8  KSecDD - ok
11:49:44.0731 0x1ae8  [ 78EF4037997534DD08545416EF4438E2, ABB739F1BA59A1D88F94C0F6569E92DBCFA73109A4AD7678C2CAB14AEEDEDDCD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:49:44.0734 0x1ae8  KSecPkg - ok
11:49:44.0778 0x1ae8  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:49:44.0787 0x1ae8  KtmRm - ok
11:49:44.0823 0x1ae8  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:49:44.0830 0x1ae8  LanmanServer - ok
11:49:44.0864 0x1ae8  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:49:44.0870 0x1ae8  LanmanWorkstation - ok
11:49:44.0959 0x1ae8  [ 20CDB07017497C94A0BAD253C4BAFCBC, 5633D245525F9B8CAC4E87A95B0E19D1F34839483ED75AC8F7661DA29BC87EE7 ] LkCitadelServer C:\Windows\system32\lkcitdl.exe
11:49:44.0974 0x1ae8  LkCitadelServer - ok
11:49:45.0002 0x1ae8  [ F1168176B5B7AD2EB61F78039C20FDC7, 3E6B749BE44BB2F4A5EA314A9C4EC7523086670FB3EDC4289AA80AAF75301F82 ] lkClassAds      C:\Windows\system32\lkads.exe
11:49:45.0005 0x1ae8  lkClassAds - ok
11:49:45.0016 0x1ae8  [ 1E46471FCE854203F81DA4B04C1BEA52, E5A424B84ABB563E2F43D94CA88BD6932BB7466CC87AC904D007056A0BE19746 ] lkTimeSync      C:\Windows\system32\lktsrv.exe
11:49:45.0019 0x1ae8  lkTimeSync - ok
11:49:45.0055 0x1ae8  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:49:45.0056 0x1ae8  lltdio - ok
11:49:45.0100 0x1ae8  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:49:45.0106 0x1ae8  lltdsvc - ok
11:49:45.0130 0x1ae8  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:49:45.0132 0x1ae8  lmhosts - ok
11:49:45.0178 0x1ae8  [ 2763A02188FFB04287F5034EC5B6B451, 679C9316FC101A9135D788BC3D910F3EF4146AF56D97143149D1767F581535F7 ] LMS             C:\Program Files\Intel\AMT\LMS.exe
11:49:45.0182 0x1ae8  LMS - ok
11:49:45.0225 0x1ae8  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
11:49:45.0227 0x1ae8  LSI_FC - ok
11:49:45.0241 0x1ae8  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:49:45.0243 0x1ae8  LSI_SAS - ok
11:49:45.0260 0x1ae8  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
11:49:45.0262 0x1ae8  LSI_SAS2 - ok
11:49:45.0273 0x1ae8  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
11:49:45.0276 0x1ae8  LSI_SCSI - ok
11:49:45.0301 0x1ae8  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:49:45.0304 0x1ae8  luafv - ok
11:49:45.0338 0x1ae8  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:49:45.0341 0x1ae8  Mcx2Svc - ok
11:49:45.0423 0x1ae8  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
11:49:45.0431 0x1ae8  MDM - ok
11:49:45.0501 0x1ae8  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
11:49:45.0502 0x1ae8  megasas - ok
11:49:45.0523 0x1ae8  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
11:49:45.0528 0x1ae8  MegaSR - ok
11:49:45.0571 0x1ae8  mi-raysat_3dsmax2013_32 - ok
11:49:45.0580 0x1ae8  mitsijm2013 - ok
11:49:45.0627 0x1ae8  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
11:49:45.0630 0x1ae8  MMCSS - ok
11:49:45.0677 0x1ae8  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
11:49:45.0678 0x1ae8  Modem - ok
11:49:45.0715 0x1ae8  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:49:45.0716 0x1ae8  monitor - ok
11:49:45.0742 0x1ae8  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:49:45.0744 0x1ae8  mouclass - ok
11:49:45.0814 0x1ae8  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:49:45.0815 0x1ae8  mouhid - ok
11:49:45.0878 0x1ae8  [ D1BDF813C9FE5ED53134EDF360927735, 0FC422513A9C98C32A90C7C5B2635DA6104C6425A2E2A8746B110A07AFB1B539 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:49:45.0880 0x1ae8  mountmgr - ok
11:49:45.0927 0x1ae8  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:49:45.0930 0x1ae8  MozillaMaintenance - ok
11:49:45.0962 0x1ae8  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:49:45.0965 0x1ae8  mpio - ok
11:49:45.0995 0x1ae8  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:49:45.0998 0x1ae8  mpsdrv - ok
11:49:46.0044 0x1ae8  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:49:46.0059 0x1ae8  MpsSvc - ok
11:49:46.0102 0x1ae8  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:49:46.0105 0x1ae8  MRxDAV - ok
11:49:46.0151 0x1ae8  [ 6284D46BAA301BEDB9AB7FA7672B2410, F998D17FEE497491CC3CF4711FB37E507D1A5B2E9B2E4D6001152EDB968A2D98 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:49:46.0154 0x1ae8  mrxsmb - ok
11:49:46.0175 0x1ae8  [ 78AD95493F015FA9941869A009C00286, EC075C44FE78249CA58B338EBC3905A020762571A27DBEDF32A41B2A84FDEAFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:49:46.0180 0x1ae8  mrxsmb10 - ok
11:49:46.0195 0x1ae8  [ D7C3ED1FD46FAC7083473D9B1718255E, BC4BFFDB4B044205A4A658701B7F0E9680C139A6A0141E333BE6D590F99D9D65 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:49:46.0197 0x1ae8  mrxsmb20 - ok
11:49:46.0213 0x1ae8  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:49:46.0214 0x1ae8  msahci - ok
11:49:46.0240 0x1ae8  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:49:46.0242 0x1ae8  msdsm - ok
11:49:46.0276 0x1ae8  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
11:49:46.0280 0x1ae8  MSDTC - ok
11:49:46.0306 0x1ae8  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:49:46.0308 0x1ae8  Msfs - ok
11:49:46.0317 0x1ae8  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:49:46.0318 0x1ae8  mshidkmdf - ok
11:49:46.0328 0x1ae8  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:49:46.0329 0x1ae8  msisadrv - ok
11:49:46.0383 0x1ae8  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:49:46.0386 0x1ae8  MSiSCSI - ok
11:49:46.0391 0x1ae8  msiserver - ok
11:49:46.0433 0x1ae8  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:49:46.0434 0x1ae8  MSKSSRV - ok
11:49:46.0443 0x1ae8  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:49:46.0444 0x1ae8  MSPCLOCK - ok
11:49:46.0455 0x1ae8  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:49:46.0456 0x1ae8  MSPQM - ok
11:49:46.0475 0x1ae8  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:49:46.0479 0x1ae8  MsRPC - ok
11:49:46.0499 0x1ae8  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:49:46.0500 0x1ae8  mssmbios - ok
11:49:46.0607 0x1ae8  MSSQL$KNXETS4 - ok
11:49:46.0739 0x1ae8  MSSQL$SQLEXPRESS - ok
11:49:46.0785 0x1ae8  MSSQL$WINCCFLEXEXPRESS - ok
11:49:46.0840 0x1ae8  [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
11:49:46.0841 0x1ae8  MSSQLServerADHelper - ok
11:49:46.0971 0x1ae8  [ 8E8E74C953EB0C4F8828D99D6F27FD6F, 94AFB1B09A6E92302D29B3C563B1744CECC5F5487418962BE537B7C57717CA42 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
11:49:46.0972 0x1ae8  MSSQLServerADHelper100 - ok
11:49:47.0003 0x1ae8  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:49:47.0003 0x1ae8  MSTEE - ok
11:49:47.0217 0x1ae8  [ E514D0493C272AECBAC7C6C1DAC635D1, EED0574A7B0914F5E4FA9DD92A90DEBBF9B711B7C66A5E949557848436EF30D8 ] msvsmon90       C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe
11:49:47.0274 0x1ae8  msvsmon90 - ok
11:49:47.0330 0x1ae8  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
11:49:47.0331 0x1ae8  MTConfig - ok
11:49:47.0378 0x1ae8  [ E7EB93F16956C1BE56CB9B865802F696, 823185D58EDDD9ADF7662EF122A2035E076F2EF42586B3735A07F9215C72D5E1 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:49:47.0381 0x1ae8  Mup - ok
11:49:47.0445 0x1ae8  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
11:49:47.0455 0x1ae8  napagent - ok
11:49:47.0505 0x1ae8  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:49:47.0510 0x1ae8  NativeWifiP - ok
11:49:47.0584 0x1ae8  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:49:47.0598 0x1ae8  NDIS - ok
11:49:47.0636 0x1ae8  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:49:47.0638 0x1ae8  NdisCap - ok
11:49:47.0657 0x1ae8  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:49:47.0658 0x1ae8  NdisTapi - ok
11:49:47.0684 0x1ae8  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:49:47.0685 0x1ae8  Ndisuio - ok
11:49:47.0696 0x1ae8  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:49:47.0698 0x1ae8  NdisWan - ok
11:49:47.0717 0x1ae8  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:49:47.0718 0x1ae8  NDProxy - ok
11:49:47.0788 0x1ae8  [ 9B6C221BD48B57ED977D5C902BEF7E37, BE9582EB36043A6E3C1EBA2E1C02468CC8716E8B6C667112F3117D9379EFB76B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:49:47.0790 0x1ae8  Net Driver HPZ12 - ok
11:49:47.0814 0x1ae8  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:49:47.0815 0x1ae8  NetBIOS - ok
11:49:47.0870 0x1ae8  [ A00996C9BFEF29A93B9F21DBE1DC502D, A97982CBBC2E240B0CD884ED3ED5D11B207DA8E7BEF73DCEA44E16E1CD84222F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:49:47.0874 0x1ae8  NetBT - ok
11:49:47.0887 0x1ae8  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] Netlogon        C:\Windows\system32\lsass.exe
11:49:47.0889 0x1ae8  Netlogon - ok
11:49:47.0923 0x1ae8  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
11:49:47.0931 0x1ae8  Netman - ok
11:49:47.0990 0x1ae8  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:49:47.0993 0x1ae8  NetMsmqActivator - ok
11:49:48.0000 0x1ae8  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:49:48.0003 0x1ae8  NetPipeActivator - ok
11:49:48.0025 0x1ae8  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
11:49:48.0036 0x1ae8  netprofm - ok
11:49:48.0043 0x1ae8  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:49:48.0048 0x1ae8  NetTcpActivator - ok
11:49:48.0054 0x1ae8  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:49:48.0057 0x1ae8  NetTcpPortSharing - ok
11:49:48.0097 0x1ae8  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
11:49:48.0098 0x1ae8  nfrd960 - ok
11:49:48.0231 0x1ae8  [ 09BD195FCA242336BE4AC5C75CFD03F8, 6C6AB467A1652362E7B773D718CEDA8274C2C65AF83090F22E332D163DFC1685 ] NIDomainService C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
11:49:48.0238 0x1ae8  NIDomainService - ok
11:49:48.0354 0x1ae8  [ B17093B9A2C5F874975C732C1A8BA771, EAF5AF9A5CCBF982D0A4F8ACEDED25588E67981D938FE17A94F1C9B331709FAB ] NILM License Manager C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
11:49:48.0377 0x1ae8  NILM License Manager - ok
11:49:48.0396 0x1ae8  niSvcLoc - ok
11:49:48.0455 0x1ae8  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:49:48.0463 0x1ae8  NlaSvc - ok
11:49:48.0474 0x1ae8  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:49:48.0476 0x1ae8  Npfs - ok
11:49:48.0503 0x1ae8  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
11:49:48.0506 0x1ae8  nsi - ok
11:49:48.0528 0x1ae8  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:49:48.0529 0x1ae8  nsiproxy - ok
11:49:48.0616 0x1ae8  [ 978E7A2E4BF4E8E70D0776EF0D9E97FB, B6C82BB9B3025FD2D37B6AB6FA9C2944F8B3020CD4588BE464CE73A992B7FF00 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:49:48.0643 0x1ae8  Ntfs - ok
11:49:48.0657 0x1ae8  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
11:49:48.0657 0x1ae8  Null - ok
11:49:49.0041 0x1ae8  [ 854144A2DE8DED0569483F2BAC9C5DEB, B9B24D4522A60DC2BA47BF8316CD134C61858BE6A436C5E5C764BD2DA749063E ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:49:49.0257 0x1ae8  nvlddmkm - ok
11:49:49.0551 0x1ae8  [ 93C82F365F9C0A2058A211E305A5CCFA, 1B3FA9122377CF8C982EEE8719E2E295E3D118AC15646ACAB3A5BF78E1EE7E70 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
11:49:49.0591 0x1ae8  NvNetworkService - ok
11:49:49.0623 0x1ae8  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:49:49.0625 0x1ae8  nvraid - ok
11:49:49.0647 0x1ae8  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:49:49.0650 0x1ae8  nvstor - ok
11:49:49.0731 0x1ae8  [ C0C581843EC841439E06B39307E5A6AE, B08AC04CE38BEADF75BCAB033E0909BFE7D800844FFC5F73E90E70C9009A05CA ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
11:49:49.0731 0x1ae8  NvStreamKms - ok
11:49:50.0438 0x1ae8  [ 206084ADC8C7A0D723C65573219600E4, 085BA561DF4CF454FB0732B4F25623336932B3E99C6B5773B00325CED3EC1294 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
11:49:50.0876 0x1ae8  NvStreamSvc - ok
11:49:51.0046 0x1ae8  [ FB931D6633376412D6DEAD287D597F17, 1F94850B1793E77E0F1231E2B3D2DB8F88868CC540684B613B4B32AC7EE220D6 ] nvsvc           C:\Windows\system32\nvvsvc.exe
11:49:51.0063 0x1ae8  nvsvc - ok
11:49:51.0105 0x1ae8  [ 3EEDE5E218F0978D802CE3196E8B9028, CEC193159C3EC91A48365A4EF50FF9F6D270B36840234F8B0751EFC1946B1D8F ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad32v.sys
11:49:51.0106 0x1ae8  nvvad_WaveExtensible - ok
11:49:51.0139 0x1ae8  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:49:51.0147 0x1ae8  nv_agp - ok
11:49:51.0237 0x1ae8  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:49:51.0246 0x1ae8  odserv - ok
11:49:51.0274 0x1ae8  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:49:51.0276 0x1ae8  ohci1394 - ok
11:49:51.0335 0x1ae8  [ 4B46978A6C6793312E39E0A41496E75E, 1CB3BE287C0E5A424C077CEB314649DFB8F2235DA2490E8B8888D2CA2FE3FE65 ] OpcEnum         C:\Windows\system32\OPCEnum.exe
11:49:51.0341 0x1ae8  OpcEnum - ok
11:49:51.0509 0x1ae8  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:49:51.0512 0x1ae8  ose - ok
11:49:51.0926 0x1ae8  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:49:52.0082 0x1ae8  osppsvc - ok
11:49:52.0140 0x1ae8  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:49:52.0149 0x1ae8  p2pimsvc - ok
11:49:52.0167 0x1ae8  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:49:52.0179 0x1ae8  p2psvc - ok
11:49:52.0215 0x1ae8  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:49:52.0216 0x1ae8  Parport - ok
11:49:52.0237 0x1ae8  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:49:52.0239 0x1ae8  partmgr - ok
11:49:52.0251 0x1ae8  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
11:49:52.0252 0x1ae8  Parvdm - ok
11:49:52.0265 0x1ae8  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:49:52.0274 0x1ae8  PcaSvc - ok
11:49:52.0294 0x1ae8  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
11:49:52.0297 0x1ae8  pci - ok
11:49:52.0321 0x1ae8  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:49:52.0322 0x1ae8  pciide - ok
11:49:52.0353 0x1ae8  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:49:52.0357 0x1ae8  pcmcia - ok
11:49:52.0371 0x1ae8  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:49:52.0372 0x1ae8  pcw - ok
11:49:52.0438 0x1ae8  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:49:52.0452 0x1ae8  PEAUTH - ok
11:49:52.0518 0x1ae8  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
11:49:52.0545 0x1ae8  PeerDistSvc - ok
11:49:52.0603 0x1ae8  [ 76E1E107355D986842779BDE5FB35D5F, CC82B393AF54012F37D3E9A90E3B52166F0B3B19103BE231B6DACC68932509F1 ] Pei10Wdm        C:\Windows\system32\Drivers\Pei10Wdm.sys
11:49:52.0605 0x1ae8  Pei10Wdm - ok
11:49:52.0660 0x1ae8  [ 1035DAA6900F040FA087866421DA0E47, 3CF05E684C52C4716CCAA09BD18DB354A5C45BB5B07A9E1E87FE36910A33F91D ] Pei16Wdm        C:\Windows\system32\Drivers\Pei16Wdm.sys
11:49:52.0662 0x1ae8  Pei16Wdm - ok
11:49:52.0749 0x1ae8  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
11:49:52.0789 0x1ae8  pla - ok
11:49:52.0843 0x1ae8  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:49:52.0856 0x1ae8  PlugPlay - ok
11:49:52.0916 0x1ae8  [ 03E35F5345C80BD6C468D780688834A2, 77760ECE310BCBEC185A1B863AE59A42BE7EE4AC51E4CE1AA05FF5361091512A ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:49:52.0918 0x1ae8  Pml Driver HPZ12 - ok
11:49:52.0938 0x1ae8  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:49:52.0941 0x1ae8  PNRPAutoReg - ok
11:49:52.0957 0x1ae8  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:49:52.0966 0x1ae8  PNRPsvc - ok
11:49:53.0008 0x1ae8  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:49:53.0018 0x1ae8  PolicyAgent - ok
11:49:53.0052 0x1ae8  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
11:49:53.0059 0x1ae8  Power - ok
11:49:53.0092 0x1ae8  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:49:53.0095 0x1ae8  PptpMiniport - ok
11:49:53.0107 0x1ae8  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
11:49:53.0109 0x1ae8  Processor - ok
11:49:53.0164 0x1ae8  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:49:53.0171 0x1ae8  ProfSvc - ok
11:49:53.0203 0x1ae8  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:49:53.0206 0x1ae8  ProtectedStorage - ok
11:49:53.0246 0x1ae8  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:49:53.0249 0x1ae8  Psched - ok
11:49:53.0280 0x1ae8  [ D970470F8F39470BDAE94D313A1CCDCE, C41B314F3A1CD6A747A4578C2A1F20373884C2AD96880A81255E66BA9D886EB4 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
11:49:53.0282 0x1ae8  PxHelp20 - ok
11:49:53.0386 0x1ae8  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
11:49:53.0413 0x1ae8  ql2300 - ok
11:49:53.0545 0x1ae8  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
11:49:53.0548 0x1ae8  ql40xx - ok
11:49:53.0647 0x1ae8  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
11:49:53.0656 0x1ae8  QWAVE - ok
11:49:53.0683 0x1ae8  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:49:53.0684 0x1ae8  QWAVEdrv - ok
11:49:53.0706 0x1ae8  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:49:53.0707 0x1ae8  RasAcd - ok
11:49:53.0787 0x1ae8  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:49:53.0789 0x1ae8  RasAgileVpn - ok
11:49:53.0819 0x1ae8  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
11:49:53.0824 0x1ae8  RasAuto - ok
11:49:53.0848 0x1ae8  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:49:53.0850 0x1ae8  Rasl2tp - ok
11:49:53.0875 0x1ae8  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
11:49:53.0885 0x1ae8  RasMan - ok
11:49:53.0915 0x1ae8  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:49:53.0917 0x1ae8  RasPppoe - ok
11:49:53.0929 0x1ae8  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:49:53.0930 0x1ae8  RasSstp - ok
11:49:53.0989 0x1ae8  [ B15D1178AD7AA2D4F32E88B68C7E2DA2, 0FC3137F28548B7A25F7F6837FC5984547BE49E9D92399B2B78D1919EC95FD73 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:49:53.0994 0x1ae8  rdbss - ok
11:49:54.0023 0x1ae8  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:49:54.0024 0x1ae8  rdpbus - ok
11:49:54.0045 0x1ae8  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:49:54.0046 0x1ae8  RDPCDD - ok
11:49:54.0158 0x1ae8  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
11:49:54.0163 0x1ae8  RDPDR - ok
11:49:54.0245 0x1ae8  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:49:54.0245 0x1ae8  RDPENCDD - ok
11:49:54.0265 0x1ae8  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:49:54.0266 0x1ae8  RDPREFMP - ok
11:49:54.0325 0x1ae8  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:49:54.0329 0x1ae8  RDPWD - ok
11:49:54.0370 0x1ae8  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:49:54.0373 0x1ae8  rdyboost - ok
11:49:54.0406 0x1ae8  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:49:54.0410 0x1ae8  RemoteAccess - ok
11:49:54.0471 0x1ae8  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:49:54.0477 0x1ae8  RemoteRegistry - ok
11:49:54.0519 0x1ae8  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:49:54.0523 0x1ae8  RpcEptMapper - ok
11:49:54.0567 0x1ae8  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
11:49:54.0569 0x1ae8  RpcLocator - ok
11:49:54.0625 0x1ae8  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] RpcSs           C:\Windows\system32\rpcss.dll
11:49:54.0635 0x1ae8  RpcSs - ok
11:49:54.0693 0x1ae8  [ 412FEE325FDC5054AE44CF7797692AF3, AF70081E16A1A90AA635079C8FB1259C7C6588CCC825BCD8374BF558E66D8FEC ] RsFx0153        C:\Windows\system32\DRIVERS\RsFx0153.sys
11:49:54.0698 0x1ae8  RsFx0153 - ok
11:49:54.0737 0x1ae8  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:49:54.0738 0x1ae8  rspndr - ok
11:49:54.0896 0x1ae8  [ 8A2D845B0F69D39A2AD9ED98D8F0B592, 8B2B3ED7B6892E4995A7615BF3358C569264D4170DCAADAD3CCEBEA6270DAD23 ] RtlWlanu        C:\Windows\system32\DRIVERS\rtwlanu.sys
11:49:54.0963 0x1ae8  RtlWlanu - ok
11:49:55.0012 0x1ae8  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
11:49:55.0013 0x1ae8  s3cap - ok
11:49:55.0092 0x1ae8  [ 1D02E122B60DDBB868A56A852BF58A91, 96E2151E8DF3C58B9DBB805FC033D1C360CA841A2E1A9E59F52D87012992185B ] s7hspsvx        C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe
11:49:55.0096 0x1ae8  s7hspsvx - ok
11:49:55.0121 0x1ae8  [ 515E9D5A6BF42C493678885E86E2A3E5, 2CAF8278B231E1EE53A7DFCB8F7DB653C322E7B5613F8614C0598296B0F42600 ] S7odpx2x32      C:\Windows\system32\Drivers\S7odpx2x32.sys
11:49:55.0123 0x1ae8  S7odpx2x32 - ok
11:49:55.0190 0x1ae8  [ FB37CAF8E26BE5D28BBB0FE8E9C85EB2, DEFEC0C8176D1352C61F91431D68589D617AA16333A1A24CE779A41BAD1D3C94 ] s7oiehsx        C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe
11:49:55.0198 0x1ae8  s7oiehsx - ok
11:49:55.0230 0x1ae8  [ 082313C2509B72F18179C0F8F737671D, A18C7AD206D959C523A7F3FF7816560FBE0461692BA72B0ECF4565A72232B1EB ] s7osmcax32      C:\Windows\system32\Drivers\s7osmcax32.sys
11:49:55.0234 0x1ae8  s7osmcax32 - ok
11:49:55.0287 0x1ae8  [ 079E29C80A51EEBCA3B0A52C151ABAA9, 6855C056D9977C15A169A2268C98C8692191AD86FF044807DC49880184256520 ] S7otranx32      C:\Windows\system32\Drivers\S7otranx32.sys
11:49:55.0301 0x1ae8  S7otranx32 - ok
11:49:55.0329 0x1ae8  [ EC96BDBC41C12A476EA1378BAC6A221A, C2E23699F2D80DA1946BE48D1217E95398497CF71DBEE56B3B6B3F25D202CC39 ] s7otsadx32      C:\Windows\system32\Drivers\s7otsadx32.sys
11:49:55.0333 0x1ae8  s7otsadx32 - ok
11:49:55.0377 0x1ae8  [ 2D635736D6E3E340A4D9D135C9B85220, ECDBEE80E63E3C41323B6011531E528AAC60E69ECCE735CD30E970E4ACF4F70C ] s7oupc2x        C:\Windows\system32\DRIVERS\s7oupc2x.sys
11:49:55.0378 0x1ae8  s7oupc2x - ok
11:49:55.0429 0x1ae8  [ 7A3A0432950D8A49B8A5568283263C08, E1C2AD8BD05F70944B19A8AD23B4C95FCDBF5EF6D6483B208F6FDF4FFA87BF16 ] s7ousbu32x      C:\Windows\system32\DRIVERS\s7ousbu32x.sys
11:49:55.0443 0x1ae8  s7ousbu32x - ok
11:49:55.0481 0x1ae8  [ F25735ED9017691F2DBCA8568882BDBA, 04E562068B4004DEA42228014E6A4DD435A08C165BAA33A4592D63CC6623F64A ] s7sn2srtx       C:\Windows\system32\DRIVERS\s7sn2srtx.sys
11:49:55.0482 0x1ae8  s7sn2srtx - ok
11:49:55.0520 0x1ae8  [ A40ACECF0B1317EF0F47D1F6AD21B2CE, 60215B4C369F5F3278B0F503CB6C564A09C44450D921A3481FF19ABADE421A05 ] S7TraceServiceX C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe
11:49:55.0530 0x1ae8  S7TraceServiceX - ok
11:49:55.0569 0x1ae8  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] SamSs           C:\Windows\system32\lsass.exe
11:49:55.0571 0x1ae8  SamSs - ok
11:49:55.0595 0x1ae8  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:49:55.0597 0x1ae8  sbp2port - ok
11:49:55.0651 0x1ae8  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:49:55.0658 0x1ae8  SCardSvr - ok
11:49:55.0711 0x1ae8  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:49:55.0712 0x1ae8  scfilter - ok
11:49:55.0792 0x1ae8  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
11:49:55.0813 0x1ae8  Schedule - ok
11:49:55.0860 0x1ae8  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:49:55.0862 0x1ae8  SCPolicySvc - ok
11:49:55.0920 0x1ae8  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:49:55.0927 0x1ae8  SDRSVC - ok
11:49:55.0985 0x1ae8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:49:55.0986 0x1ae8  secdrv - ok
11:49:56.0036 0x1ae8  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
11:49:56.0040 0x1ae8  seclogon - ok
11:49:56.0086 0x1ae8  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
11:49:56.0090 0x1ae8  SENS - ok
11:49:56.0143 0x1ae8  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:49:56.0146 0x1ae8  SensrSvc - ok
11:49:56.0170 0x1ae8  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:49:56.0171 0x1ae8  Serenum - ok
11:49:56.0198 0x1ae8  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:49:56.0200 0x1ae8  Serial - ok
11:49:56.0222 0x1ae8  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
11:49:56.0223 0x1ae8  sermouse - ok
11:49:56.0267 0x1ae8  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:49:56.0274 0x1ae8  SessionEnv - ok
11:49:56.0302 0x1ae8  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:49:56.0303 0x1ae8  sffdisk - ok
11:49:56.0321 0x1ae8  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:49:56.0322 0x1ae8  sffp_mmc - ok
11:49:56.0355 0x1ae8  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:49:56.0356 0x1ae8  sffp_sd - ok
11:49:56.0369 0x1ae8  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
11:49:56.0371 0x1ae8  sfloppy - ok
11:49:56.0420 0x1ae8  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:49:56.0429 0x1ae8  SharedAccess - ok
11:49:56.0458 0x1ae8  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:49:56.0469 0x1ae8  ShellHWDetection - ok
11:49:56.0498 0x1ae8  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
11:49:56.0499 0x1ae8  sisagp - ok
11:49:56.0544 0x1ae8  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
11:49:56.0545 0x1ae8  SiSRaid2 - ok
11:49:56.0560 0x1ae8  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:49:56.0562 0x1ae8  SiSRaid4 - ok
11:49:56.0709 0x1ae8  [ EDB28D1C30B647C6F7AA3414670FE82B, E9ADC49E25D28491FAD32782EDBF16DF068A4AFD5E2C3517E4253599CD6F1A55 ] smartserver     C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
11:49:56.0753 0x1ae8  smartserver - ok
11:49:56.0789 0x1ae8  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:49:56.0791 0x1ae8  Smb - ok
11:49:56.0824 0x1ae8  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:49:56.0827 0x1ae8  SNMPTRAP - ok
11:49:56.0894 0x1ae8  [ 8FF07AE426518C6A6B43FCFBF62C8EDE, 3FFA18994F4FE6C29826D855304E55668677F68FFCB25D6B172DC4C2A50C1506 ] SNTIE           C:\Windows\system32\DRIVERS\sntie.sys
11:49:56.0913 0x1ae8  SNTIE - ok
11:49:56.0962 0x1ae8  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:49:56.0963 0x1ae8  spldr - ok
11:49:56.0989 0x1ae8  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
11:49:56.0999 0x1ae8  Spooler - ok
11:49:57.0133 0x1ae8  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
11:49:57.0215 0x1ae8  sppsvc - ok
11:49:57.0240 0x1ae8  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:49:57.0245 0x1ae8  sppuinotify - ok
11:49:57.0378 0x1ae8  [ C04D8EFB3906A8B1718ABD7FD21B2918, 870E248B77C034D4FAB5E3572B5AEFCE34D696C2F927FA8D0A507A096AAD0DA3 ] SQLAgent$KNXETS4 C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\SQLAGENT.EXE
11:49:57.0385 0x1ae8  SQLAgent$KNXETS4 - ok
11:49:57.0511 0x1ae8  [ 7F37589E64A7C35AB67D0D8C8F53652B, D389FDF5CF7F4926BFDE966E2E92FAE3AFE5C0ACBDAB40E74A1B5D9F3525101E ] SQLBrowser      C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
11:49:57.0517 0x1ae8  SQLBrowser - ok
11:49:57.0574 0x1ae8  [ 8E6E5CFA06769A417B03FD6FAA29E010, CFF4FF34C2E0D9DFB502FCDB99DF4A21D0DBC335B6AD46805DAB069E789ECF9E ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
11:49:57.0576 0x1ae8  SQLWriter - ok
11:49:57.0654 0x1ae8  [ D86EA722F3337AA3F0253B6E359E6796, BA4C2DF629CBECFA1C1D589FFA6AEF8C5853C427B6B007793FD432B4AA8DA593 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:49:57.0660 0x1ae8  srv - ok
11:49:57.0704 0x1ae8  [ 1931823AC05967E5F79B791E9FFC2398, 255E6278F476F1D488199B0AD2004C3860CC74971AC3C0AB4B1DB4E42B329E94 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:49:57.0714 0x1ae8  srv2 - ok
11:49:57.0727 0x1ae8  [ 50A2FC7B0408F15B77E056076BBB6252, 801AD15B4CDFC09EE4909B7180A5CE562D54D4F08A9C0B7D9CA067ADC42A6C9D ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:49:57.0730 0x1ae8  srvnet - ok
11:49:57.0759 0x1ae8  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:49:57.0765 0x1ae8  SSDPSRV - ok
11:49:57.0783 0x1ae8  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:49:57.0788 0x1ae8  SstpSvc - ok
11:49:57.0927 0x1ae8  [ 93783569ED386910F801535FB138EE01, 21CD659F5B87EB2D49AC0056D49CA78BCF16829211CB9DFEF8A340AEF938428A ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:49:57.0935 0x1ae8  Stereo Service - ok
11:49:57.0966 0x1ae8  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
11:49:57.0967 0x1ae8  stexstor - ok
11:49:58.0021 0x1ae8  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
11:49:58.0035 0x1ae8  StiSvc - ok
11:49:58.0055 0x1ae8  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
11:49:58.0057 0x1ae8  storflt - ok
11:49:58.0089 0x1ae8  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
11:49:58.0093 0x1ae8  StorSvc - ok
11:49:58.0110 0x1ae8  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
11:49:58.0110 0x1ae8  storvsc - ok
11:49:58.0136 0x1ae8  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:49:58.0137 0x1ae8  swenum - ok
11:49:58.0174 0x1ae8  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
11:49:58.0187 0x1ae8  swprv - ok
11:49:58.0265 0x1ae8  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
11:49:58.0298 0x1ae8  SysMain - ok
11:49:58.0323 0x1ae8  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
11:49:58.0328 0x1ae8  TabletInputService - ok
11:49:58.0364 0x1ae8  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:49:58.0373 0x1ae8  TapiSrv - ok
11:49:58.0504 0x1ae8  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:49:58.0533 0x1ae8  Tcpip - ok
11:49:58.0583 0x1ae8  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:49:58.0611 0x1ae8  TCPIP6 - ok
11:49:58.0673 0x1ae8  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:49:58.0676 0x1ae8  tcpipreg - ok
11:49:58.0711 0x1ae8  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:49:58.0712 0x1ae8  TDPIPE - ok
11:49:58.0744 0x1ae8  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:49:58.0745 0x1ae8  TDTCP - ok
11:49:58.0799 0x1ae8  [ BB8817D0508DD5EA69C770C8DEF5AB67, C55671524EEF6E16BBCC92556E83FD1D6457E707EA9330FC1CDD28FB11D99B77 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:49:58.0801 0x1ae8  tdx - ok
11:49:58.0814 0x1ae8  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:49:58.0815 0x1ae8  TermDD - ok
11:49:58.0887 0x1ae8  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
11:49:58.0906 0x1ae8  TermService - ok
11:49:58.0939 0x1ae8  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
11:49:58.0944 0x1ae8  Themes - ok
11:49:58.0966 0x1ae8  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
11:49:58.0969 0x1ae8  THREADORDER - ok
11:49:59.0008 0x1ae8  [ F0E99E1982E78251A564159EB1D22CBE, 33D893E0777B41F8F850FCB18D2344D5DFB41BCC725D2EA9E9BF276AD99DB9E4 ] TPM             C:\Windows\system32\drivers\tpm.sys
11:49:59.0011 0x1ae8  TPM - ok
11:49:59.0038 0x1ae8  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
11:49:59.0043 0x1ae8  TrkWks - ok
11:49:59.0095 0x1ae8  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:49:59.0100 0x1ae8  TrustedInstaller - ok
11:49:59.0160 0x1ae8  [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:49:59.0161 0x1ae8  tssecsrv - ok
11:49:59.0186 0x1ae8  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:49:59.0188 0x1ae8  TsUsbFlt - ok
11:49:59.0200 0x1ae8  [ 01246F0BAAD7B68EC0F472AA41E33282, 51F975AF029AD015576FFFA3E88F5DBB8B40C7CD30ECDEDE8AFABCB08C954199 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
11:49:59.0201 0x1ae8  TsUsbGD - ok
11:49:59.0239 0x1ae8  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:49:59.0244 0x1ae8  tunnel - ok
11:49:59.0256 0x1ae8  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
11:49:59.0258 0x1ae8  uagp35 - ok
11:49:59.0279 0x1ae8  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:49:59.0285 0x1ae8  udfs - ok
11:49:59.0342 0x1ae8  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:49:59.0398 0x1ae8  UI0Detect - ok
11:49:59.0473 0x1ae8  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:49:59.0475 0x1ae8  uliagpkx - ok
11:49:59.0501 0x1ae8  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:49:59.0503 0x1ae8  umbus - ok
11:49:59.0529 0x1ae8  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
11:49:59.0530 0x1ae8  UmPass - ok
11:49:59.0553 0x1ae8  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
11:49:59.0561 0x1ae8  UmRdpService - ok
11:49:59.0672 0x1ae8  [ D47E82866A6FF02DAE9CEDF127C4BEE0, 15F2F637470859672FE93EAE03062C966FFE72F38FADB586B9C0DBC0C635A797 ] UNS             C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
11:49:59.0713 0x1ae8  UNS - ok
11:49:59.0750 0x1ae8  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
11:49:59.0759 0x1ae8  upnphost - ok
11:49:59.0799 0x1ae8  [ A1977C315BF5691DA99235AA4A6907AF, 34B52FBA83F0E1C6B001D0AD1808B00152F731D18AAECC3C53B9918AA89BACEC ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:49:59.0802 0x1ae8  usbaudio - ok
11:49:59.0831 0x1ae8  [ 325A69967CC7B4BFB170F5636143A94A, E0341360827B9B3E244F24D0BC01D3B3C0CC97E232A361960849F799A16AD540 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:49:59.0833 0x1ae8  usbccgp - ok
11:49:59.0870 0x1ae8  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:49:59.0872 0x1ae8  usbcir - ok
11:49:59.0891 0x1ae8  [ 5D57798CAE5A0DD0B8F61C52B8E7C3D1, 5097997508E1406AD5B018C5006D82F8BFC7B157C6CAF1B4D80C7D6DB722A77A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
11:49:59.0893 0x1ae8  usbehci - ok
11:49:59.0937 0x1ae8  [ 3835ECC1E928042F92D7AA1963D40523, 60237CB8C3F935544006621255FFD53C9E09C0AF4741D0C50968CB4D647336D5 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
11:49:59.0943 0x1ae8  usbhub - ok
11:50:00.0004 0x1ae8  [ 81E1E90305A4C7A13BADC5DFA22ABA37, 9EF3F5CD2FCF22A5BCC668778C8340D8C80719E9B43FB6C4484BFC98280B8BD9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:50:00.0006 0x1ae8  usbohci - ok
11:50:00.0105 0x1ae8  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
11:50:00.0106 0x1ae8  usbprint - ok
11:50:00.0256 0x1ae8  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:50:00.0258 0x1ae8  USBSTOR - ok
11:50:00.0266 0x1ae8  [ B4A1789BE90403D9549EF9DBAD37A429, 1F590F8DE0081953B944A076FFEB5FF3BCF7E2BEE4ABD97236A29C00B9242163 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:50:00.0267 0x1ae8  usbuhci - ok
11:50:00.0309 0x1ae8  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
11:50:00.0313 0x1ae8  usbvideo - ok
11:50:00.0339 0x1ae8  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
11:50:00.0343 0x1ae8  UxSms - ok
11:50:00.0351 0x1ae8  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] VaultSvc        C:\Windows\system32\lsass.exe
11:50:00.0353 0x1ae8  VaultSvc - ok
11:50:00.0387 0x1ae8  [ B252DD05C8B1D64239EE8A93C4BC5AD4, 904CCA61863330C456A2BF32118A9BFF77F2A339530F611843FD4908F2AAAF0A ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
11:50:00.0388 0x1ae8  VClone - ok
11:50:00.0409 0x1ae8  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:50:00.0410 0x1ae8  vdrvroot - ok
11:50:00.0435 0x1ae8  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
11:50:00.0449 0x1ae8  vds - ok
11:50:00.0466 0x1ae8  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:50:00.0468 0x1ae8  vga - ok
11:50:00.0484 0x1ae8  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:50:00.0485 0x1ae8  VgaSave - ok
11:50:00.0499 0x1ae8  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:50:00.0503 0x1ae8  vhdmp - ok
11:50:00.0534 0x1ae8  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
11:50:00.0535 0x1ae8  viaagp - ok
11:50:00.0543 0x1ae8  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
11:50:00.0545 0x1ae8  ViaC7 - ok
11:50:00.0573 0x1ae8  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:50:00.0574 0x1ae8  viaide - ok
11:50:00.0625 0x1ae8  [ C740CC9D52EB278A86F42075DA96CB19, 596D9730819A888D07358BA12AC76F17E02186DACFDCDBDA58E8EF4BB7CA51F0 ] VMAuthdService  C:\Program Files\VMware\VMware Player\vmware-authd.exe
11:50:00.0627 0x1ae8  VMAuthdService - ok
11:50:00.0656 0x1ae8  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
11:50:00.0660 0x1ae8  vmbus - ok
11:50:00.0675 0x1ae8  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
11:50:00.0676 0x1ae8  VMBusHID - ok
11:50:00.0695 0x1ae8  [ 753BD0240B6586ABA0D67A70B3EF44A0, 8D891A6632F4241A1C21BF3C9F29D2599F371E2C953A67594417700641153CAB ] vmci            C:\Windows\system32\DRIVERS\vmci.sys
11:50:00.0697 0x1ae8  vmci - ok
11:50:00.0718 0x1ae8  [ 7D509B26A43D5A6A6896C8C9AD944147, 7480759AEE3BE04096A7BF270A5D2BD552FC10328BDF9CCB664910514C4CC93F ] vmkbd           C:\Windows\system32\drivers\VMkbd.sys
11:50:00.0719 0x1ae8  vmkbd - ok
11:50:00.0724 0x1ae8  [ A267D2321ED281359D301BFEB8202652, 63D76585733C79657106A057B97FD371AEDF0564BE5AD4BA50EB8DE096F4F73B ] VMnetAdapter    C:\Windows\system32\DRIVERS\vmnetadapter.sys
11:50:00.0726 0x1ae8  VMnetAdapter - ok
11:50:00.0745 0x1ae8  [ 7A4BB278D7860551A716D46349492692, 8974205C0E4453EAF4CCA167EA052702CC1A3446CA9C7172510BF5AAE9D79207 ] VMnetBridge     C:\Windows\system32\DRIVERS\vmnetbridge.sys
11:50:00.0746 0x1ae8  VMnetBridge - ok
11:50:00.0780 0x1ae8  [ 8285080A268210D8CE9BA96B210E2013, 6E22E81A690808E4E6187440BD887A8BF8A40B0A2957220827AE483553EF147B ] VMnetDHCP       C:\Windows\system32\vmnetdhcp.exe
11:50:00.0791 0x1ae8  VMnetDHCP - ok
11:50:00.0812 0x1ae8  [ 2CB5FFAFEB1BE2CDC5D13EF64583892B, A143971925E0E787104B23C99D2DBCB218A2F310A9FECA9040647A6A500BBECE ] VMnetuserif     C:\Windows\system32\drivers\vmnetuserif.sys
11:50:00.0813 0x1ae8  VMnetuserif - ok
11:50:00.0837 0x1ae8  [ 0724BFB49D0C93EBDA25785D46622766, B85F327F65061FFF90D1F3F0723E45C7A40FF9C179651F4AF4E56246FD3C6FFE ] VMparport       C:\Windows\system32\Drivers\VMparport.sys
11:50:00.0839 0x1ae8  VMparport - ok
11:50:00.0887 0x1ae8  [ 90B4CC5C515B52796E26F72F3EEAF643, 09FD0D3AEE1B4CACDFD178DC4E684B993AF3F9474BF578556EBED56B63253B51 ] VMUSBArbService C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
11:50:00.0902 0x1ae8  VMUSBArbService - ok
11:50:00.0940 0x1ae8  [ E3991000CCB56570294236D11A3C19BE, 07F3A9E765B8B4DD4BE9DE4E6D2A8A1FCF8773524053EE288CE533B1DB617122 ] VMware NAT Service C:\Windows\system32\vmnat.exe
11:50:00.0951 0x1ae8  VMware NAT Service - ok
11:50:00.0987 0x1ae8  [ D0DC0467CCFED1720E90D4476CA85E17, 911D0F7E67181C6797C5CD6C3B745E20361A075DBC306FEBFD749A512EBB9886 ] vmx86           C:\Windows\system32\Drivers\vmx86.sys
11:50:00.0989 0x1ae8  vmx86 - ok
11:50:01.0015 0x1ae8  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:50:01.0017 0x1ae8  volmgr - ok
11:50:01.0037 0x1ae8  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:50:01.0043 0x1ae8  volmgrx - ok
11:50:01.0100 0x1ae8  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:50:01.0105 0x1ae8  volsnap - ok
11:50:01.0144 0x1ae8  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:50:01.0147 0x1ae8  vsmraid - ok
11:50:01.0186 0x1ae8  [ CD9DDDCF41F53A64B7A6C7B44ED5F811, 6FB89CE82A8A8EC2B1085AAE37E8E2BD219F538CB8227EF63AEBF26F089F1960 ] vsnl2ada        C:\Windows\system32\DRIVERS\vsnl2ada32.sys
11:50:01.0189 0x1ae8  vsnl2ada - ok
11:50:01.0222 0x1ae8  [ 4B1B677FC0338C85E1C30BD6F1BFD584, 0048CEDA5C7017D43F15AD4AD387B4EE03CEB0F51BE56CCD4A8FA60D0B5219C2 ] vsock           C:\Windows\system32\drivers\vsock.sys
11:50:01.0224 0x1ae8  vsock - ok
11:50:01.0277 0x1ae8  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
11:50:01.0306 0x1ae8  VSS - ok
11:50:01.0331 0x1ae8  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:50:01.0332 0x1ae8  vwifibus - ok
11:50:01.0360 0x1ae8  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:50:01.0361 0x1ae8  vwififlt - ok
11:50:01.0384 0x1ae8  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
11:50:01.0394 0x1ae8  W32Time - ok
11:50:01.0415 0x1ae8  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
11:50:01.0416 0x1ae8  WacomPen - ok
11:50:01.0445 0x1ae8  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:50:01.0447 0x1ae8  WANARP - ok
11:50:01.0454 0x1ae8  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:50:01.0456 0x1ae8  Wanarpv6 - ok
11:50:01.0505 0x1ae8  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
11:50:01.0536 0x1ae8  wbengine - ok
11:50:01.0563 0x1ae8  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:50:01.0570 0x1ae8  WbioSrvc - ok
11:50:01.0639 0x1ae8  [ BB86A52B20C05B9F49840244D1F67C81, 8113A7C882E9089C42AA59AFAA6D22D3178ACFC3D8D172A7DD04FDC7AEF5A13D ] Wcd.Service     C:\Program Files\eXtis GmbH\WCD-Windows Control Daemon\Wcd.Service.exe
11:50:03.0545 0x1ae8  Wcd.Service - ok
11:50:03.0619 0x1ae8  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:50:03.0629 0x1ae8  wcncsvc - ok
11:50:03.0638 0x1ae8  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:50:03.0643 0x1ae8  WcsPlugInService - ok
11:50:03.0667 0x1ae8  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
11:50:03.0669 0x1ae8  Wd - ok
11:50:03.0709 0x1ae8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:50:03.0719 0x1ae8  Wdf01000 - ok
11:50:03.0771 0x1ae8  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:50:03.0777 0x1ae8  WdiServiceHost - ok
11:50:03.0783 0x1ae8  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:50:03.0788 0x1ae8  WdiSystemHost - ok
11:50:03.0845 0x1ae8  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
11:50:03.0853 0x1ae8  WebClient - ok
11:50:03.0885 0x1ae8  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:50:03.0891 0x1ae8  Wecsvc - ok
11:50:03.0907 0x1ae8  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:50:03.0912 0x1ae8  wercplsupport - ok
11:50:03.0939 0x1ae8  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
11:50:03.0944 0x1ae8  WerSvc - ok
11:50:03.0968 0x1ae8  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:50:03.0969 0x1ae8  WfpLwf - ok
11:50:03.0988 0x1ae8  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:50:03.0989 0x1ae8  WIMMount - ok
11:50:04.0054 0x1ae8  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
11:50:04.0070 0x1ae8  WinDefend - ok
11:50:04.0086 0x1ae8  WinHttpAutoProxySvc - ok
11:50:04.0148 0x1ae8  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:50:04.0153 0x1ae8  Winmgmt - ok
11:50:04.0240 0x1ae8  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:50:04.0272 0x1ae8  WinRM - ok
11:50:04.0313 0x1ae8  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
11:50:04.0315 0x1ae8  WinUsb - ok
11:50:04.0359 0x1ae8  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:50:04.0382 0x1ae8  Wlansvc - ok
11:50:04.0525 0x1ae8  [ 5E7C103F8475C4289847D15E129C20F7, C6325D3557545FA1DA26B0B1EA9A1C95AED1FA84A93BE29A771DAD9ECB00768B ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:50:04.0557 0x1ae8  wlidsvc - ok
11:50:04.0586 0x1ae8  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:50:04.0587 0x1ae8  WmiAcpi - ok
11:50:04.0618 0x1ae8  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:50:04.0622 0x1ae8  wmiApSrv - ok
11:50:04.0699 0x1ae8  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
11:50:04.0720 0x1ae8  WMPNetworkSvc - ok
11:50:04.0749 0x1ae8  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:50:04.0753 0x1ae8  WPCSvc - ok
11:50:04.0772 0x1ae8  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:50:04.0778 0x1ae8  WPDBusEnum - ok
11:50:04.0790 0x1ae8  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:50:04.0791 0x1ae8  ws2ifsl - ok
11:50:04.0808 0x1ae8  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
11:50:04.0813 0x1ae8  wscsvc - ok
11:50:04.0818 0x1ae8  WSearch - ok
11:50:04.0932 0x1ae8  [ FAC7617DD8A8CCCBBB9D36C39AFA5ABE, 64BB658523F4610B6D092BD390D24307F0A545ABA5C78B5DB50B7AA9E65C6A51 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:50:04.0975 0x1ae8  wuauserv - ok
11:50:05.0005 0x1ae8  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:50:05.0008 0x1ae8  WudfPf - ok
11:50:05.0037 0x1ae8  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:50:05.0041 0x1ae8  WUDFRd - ok
11:50:05.0064 0x1ae8  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:50:05.0069 0x1ae8  wudfsvc - ok
11:50:05.0122 0x1ae8  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:50:05.0129 0x1ae8  WwanSvc - ok
         

Alt 17.01.2017, 12:01   #8
volkan123
 
ungültiges bild - Standard

ungültiges bild



tdss killer
Code:
ATTFilter
11:50:05.0149 0x1ae8  ================ Scan global ===============================
11:50:05.0199 0x1ae8  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
11:50:05.0259 0x1ae8  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
11:50:05.0277 0x1ae8  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
11:50:05.0352 0x1ae8  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
11:50:05.0408 0x1ae8  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
11:50:05.0416 0x1ae8  [ Global ] - ok
11:50:05.0417 0x1ae8  ================ Scan MBR ==================================
11:50:05.0422 0x1ae8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:50:05.0654 0x1ae8  \Device\Harddisk0\DR0 - ok
11:50:05.0658 0x1ae8  ================ Scan VBR ==================================
11:50:05.0659 0x1ae8  [ 8E516A1526530D751B2C88716E665CA8 ] \Device\Harddisk0\DR0\Partition1
11:50:05.0660 0x1ae8  \Device\Harddisk0\DR0\Partition1 - ok
11:50:05.0665 0x1ae8  [ 664B5DE6A1A8062B275BFFBC01B57BB0 ] \Device\Harddisk0\DR0\Partition2
11:50:05.0666 0x1ae8  \Device\Harddisk0\DR0\Partition2 - ok
11:50:05.0667 0x1ae8  ================ Scan generic autorun ======================
11:50:05.0695 0x1ae8  [ 606B4DD104477ED8AE0C4DCCA2A06F48, 21A5818822A0B2D52A068D1E3339ED4C767F4D83B081BF17B837E9B6E112EE61 ] C:\Windows\system32\igfxtray.exe
11:50:05.0699 0x1ae8  IgfxTray - ok
11:50:05.0716 0x1ae8  [ F975273537E5A6686C0C0118B1858086, CC053F4EC37728336BC7DE3227C20C59F7DEA9ED1FE632561838A52E5FA3C709 ] C:\Windows\system32\igfxpers.exe
11:50:05.0722 0x1ae8  Persistence - ok
11:50:05.0804 0x1ae8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
11:50:05.0829 0x1ae8  Sidebar - ok
11:50:05.0852 0x1ae8  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
11:50:05.0856 0x1ae8  mctadmin - ok
11:50:05.0891 0x1ae8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
11:50:05.0912 0x1ae8  Sidebar - ok
11:50:05.0920 0x1ae8  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
11:50:05.0924 0x1ae8  mctadmin - ok
11:50:06.0032 0x1ae8  Google Update - ok
11:50:06.0088 0x1ae8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
11:50:06.0109 0x1ae8  Sidebar - ok
11:50:06.0127 0x1ae8  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
11:50:06.0131 0x1ae8  mctadmin - ok
11:50:06.0131 0x1ae8  Waiting for KSN requests completion. In queue: 145
11:50:07.0131 0x1ae8  Waiting for KSN requests completion. In queue: 145
11:50:08.0131 0x1ae8  Waiting for KSN requests completion. In queue: 145
11:50:09.0131 0x1ae8  Waiting for KSN requests completion. In queue: 145
11:50:10.0131 0x1ae8  Waiting for KSN requests completion. In queue: 145
11:50:11.0131 0x1ae8  Waiting for KSN requests completion. In queue: 145
11:50:12.0169 0x1ae8  Win FW state via NFP2: enabled ( trusted )
11:50:12.0326 0x1ae8  ============================================================
11:50:12.0326 0x1ae8  Scan finished
11:50:12.0326 0x1ae8  ============================================================
11:50:12.0346 0x1f98  Detected object count: 0
11:50:12.0346 0x1f98  Actual detected object count: 0
11:53:43.0339 0x1b38  ============================================================
11:53:43.0339 0x1b38  Scan started
11:53:43.0339 0x1b38  Mode: Manual; SigCheck; TDLFS; 
11:53:43.0339 0x1b38  ============================================================
11:53:43.0339 0x1b38  KSN ping started
11:53:44.0486 0x1b38  KSN ping finished: true
11:53:45.0446 0x1b38  ================ Scan system memory ========================
11:53:45.0446 0x1b38  System memory - ok
11:53:45.0446 0x1b38  ================ Scan services =============================
11:53:45.0544 0x1b38  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:53:45.0618 0x1b38  1394ohci - ok
11:53:45.0650 0x1b38  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:53:45.0667 0x1b38  ACPI - ok
11:53:45.0686 0x1b38  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:53:45.0723 0x1b38  AcpiPmi - ok
11:53:45.0757 0x1b38  [ 6D7F09CD92A9FEF3A8EFCE66231FDD79, FBEE01F2FFDB6854F682B4BE91673462A146927DD333D3C4DE66E6B86D9ED8DB ] adfs            C:\Windows\system32\drivers\adfs.sys
11:53:45.0766 0x1b38  adfs - ok
11:53:45.0894 0x1b38  [ 57A3B9A69F14414ACE12AFD6BA701773, E17FD004315B666E3A880C987A83A2B6C6156C3D6E9550AAC6F686348F7CE7AC ] Adobe Version Cue CS4 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
11:53:45.0907 0x1b38  Adobe Version Cue CS4 - ok
11:53:45.0923 0x1b38  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:53:45.0934 0x1b38  AdobeARMservice - ok
11:53:46.0088 0x1b38  [ 5B4D60ACCEA6918DBBB8C9FD4ADBDD29, FE3A768A76B673DCD09716F600D52B53A6EABEC6AA65E0DE89144F322E8571B8 ] AdobeUpdateService C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
11:53:46.0116 0x1b38  AdobeUpdateService - ok
11:53:46.0164 0x1b38  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
11:53:46.0184 0x1b38  adp94xx - ok
11:53:46.0197 0x1b38  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
11:53:46.0214 0x1b38  adpahci - ok
11:53:46.0227 0x1b38  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
11:53:46.0239 0x1b38  adpu320 - ok
11:53:46.0290 0x1b38  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:53:46.0334 0x1b38  AeLookupSvc - ok
11:53:46.0380 0x1b38  [ 93B49FA857F7036A4EFF32371F6E7391, B9B2867D9A80E7F028E9D7C6ABCB9EC5198ACE28CEE101C5A846666B356B2843 ] AFD             C:\Windows\system32\drivers\afd.sys
11:53:46.0422 0x1b38  AFD - ok
11:53:46.0461 0x1b38  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
11:53:46.0472 0x1b38  agp440 - ok
11:53:46.0689 0x1b38  [ 021D06851E7AFF5C314039DF813608F3, 081B14840F4AD428B4407AA2E639369A45D174D9507BD107F33FE3A94FB8F8EC ] AGSService      C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
11:53:46.0748 0x1b38  AGSService - ok
11:53:46.0790 0x1b38  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
11:53:46.0801 0x1b38  aic78xx - ok
11:53:46.0865 0x1b38  [ FA9B4921088981A0E44DEA8A605E58C8, 18DD501C056660F868A212E6F96DB0A4394602A2B608EB6830F580008031016A ] aksfridge       C:\Windows\system32\drivers\aksfridge.sys
11:53:46.0883 0x1b38  aksfridge - ok
11:53:46.0914 0x1b38  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
11:53:46.0954 0x1b38  ALG - ok
11:53:46.0992 0x1b38  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:53:47.0003 0x1b38  aliide - ok
11:53:47.0127 0x1b38  [ 40F9750DDD2CAB38DB98C3D6B6601C3C, 213E8C483D519F6C31BBC5E30B153FAF724C57301DEAE070BE3BF78C8D8F5D91 ] almservice      C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
11:53:47.0206 0x1b38  almservice - detected UnsignedFile.Multi.Generic ( 1 )
11:53:47.0206 0x1b38  Detect skipped due to KSN trusted
11:53:47.0207 0x1b38  almservice - ok
11:53:47.0253 0x1b38  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
11:53:47.0263 0x1b38  amdagp - ok
11:53:47.0289 0x1b38  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
11:53:47.0299 0x1b38  amdide - ok
11:53:47.0318 0x1b38  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
11:53:47.0361 0x1b38  AmdK8 - ok
11:53:47.0396 0x1b38  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
11:53:47.0445 0x1b38  AmdPPM - ok
11:53:47.0479 0x1b38  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:53:47.0491 0x1b38  amdsata - ok
11:53:47.0509 0x1b38  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
11:53:47.0522 0x1b38  amdsbs - ok
11:53:47.0535 0x1b38  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:53:47.0545 0x1b38  amdxata - ok
11:53:47.0591 0x1b38  [ 873F0162D10893E3DF34FA2AC604E6EA, 79655CDB125DBA14DDA01E45A2F8E185788081A3DF8D9E7A6A167C9F0D5C3F62 ] AppID           C:\Windows\system32\drivers\appid.sys
11:53:47.0646 0x1b38  AppID - ok
11:53:47.0667 0x1b38  [ E10F22695EAC1689DED6A9A45D6C352A, 15B10D2E4AB88DE729905E9E4DD24E812163AD45806713E3883E701723D44E3A ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:53:47.0704 0x1b38  AppIDSvc - ok
11:53:47.0732 0x1b38  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
11:53:47.0762 0x1b38  Appinfo - ok
11:53:47.0800 0x1b38  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
11:53:47.0832 0x1b38  AppMgmt - ok
11:53:47.0868 0x1b38  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
11:53:47.0880 0x1b38  arc - ok
11:53:47.0889 0x1b38  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:53:47.0901 0x1b38  arcsas - ok
11:53:48.0004 0x1b38  [ C5BBC8487D89FC1C5D819BB1344F2845, 2265560C9D1DD544C17808F4F2D625B926014EFD5DFE2770BFACF89AB26B54AF ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:53:48.0019 0x1b38  aspnet_state - ok
11:53:48.0045 0x1b38  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:53:48.0090 0x1b38  AsyncMac - ok
11:53:48.0123 0x1b38  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:53:48.0134 0x1b38  atapi - ok
11:53:48.0198 0x1b38  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:53:48.0246 0x1b38  AudioEndpointBuilder - ok
11:53:48.0262 0x1b38  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
11:53:48.0284 0x1b38  Audiosrv - ok
11:53:48.0408 0x1b38  [ F431DC5D94F4B2FDBC927655D8A9B10E, FA16A95E5B83D08F0FD76FDAB03FC7CD4B6917BFE15F2F1D9F3B781F6A1888D8 ] Autodesk Content Service C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
11:53:48.0436 0x1b38  Autodesk Content Service - ok
11:53:48.0462 0x1b38  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:53:48.0497 0x1b38  AxInstSV - ok
11:53:48.0544 0x1b38  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
11:53:48.0585 0x1b38  b06bdrv - ok
11:53:48.0625 0x1b38  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
11:53:48.0672 0x1b38  b57nd60x - ok
11:53:48.0704 0x1b38  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
11:53:48.0745 0x1b38  BDESVC - ok
11:53:48.0771 0x1b38  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:53:48.0815 0x1b38  Beep - ok
11:53:48.0853 0x1b38  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
11:53:48.0912 0x1b38  BFE - ok
11:53:48.0961 0x1b38  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
11:53:49.0030 0x1b38  BITS - ok
11:53:49.0050 0x1b38  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:53:49.0082 0x1b38  blbdrive - ok
11:53:49.0118 0x1b38  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:53:49.0160 0x1b38  bowser - ok
11:53:49.0189 0x1b38  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
11:53:49.0202 0x1b38  BrFiltLo - ok
11:53:49.0220 0x1b38  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
11:53:49.0234 0x1b38  BrFiltUp - ok
11:53:49.0264 0x1b38  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
11:53:49.0295 0x1b38  Browser - ok
11:53:49.0339 0x1b38  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:53:49.0392 0x1b38  Brserid - ok
11:53:49.0445 0x1b38  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:53:49.0515 0x1b38  BrSerWdm - ok
11:53:49.0538 0x1b38  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:53:49.0570 0x1b38  BrUsbMdm - ok
11:53:49.0594 0x1b38  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:53:49.0624 0x1b38  BrUsbSer - ok
11:53:49.0653 0x1b38  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
11:53:49.0688 0x1b38  BTHMODEM - ok
11:53:49.0722 0x1b38  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
11:53:49.0750 0x1b38  bthserv - ok
11:53:49.0779 0x1b38  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:53:49.0803 0x1b38  cdfs - ok
11:53:49.0841 0x1b38  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:53:49.0872 0x1b38  cdrom - ok
11:53:49.0902 0x1b38  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:53:49.0949 0x1b38  CertPropSvc - ok
11:53:50.0000 0x1b38  [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click      C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe
11:53:50.0026 0x1b38  chip1click - detected UnsignedFile.Multi.Generic ( 1 )
11:53:50.0026 0x1b38  Detect skipped due to KSN trusted
11:53:50.0026 0x1b38  chip1click - ok
11:53:50.0052 0x1b38  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
11:53:50.0066 0x1b38  circlass - ok
11:53:50.0118 0x1b38  [ 1136E4A71849BCFCB057140AD03AAEE6, 9A9615F33E475039382E452052040C21EFA9C6669FB4E95D466C014FCAEF4D74 ] CLFS            C:\Windows\system32\CLFS.sys
11:53:50.0133 0x1b38  CLFS - ok
11:53:50.0205 0x1b38  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:53:50.0217 0x1b38  clr_optimization_v2.0.50727_32 - ok
11:53:50.0262 0x1b38  [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:53:50.0276 0x1b38  clr_optimization_v4.0.30319_32 - ok
11:53:50.0309 0x1b38  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
11:53:50.0344 0x1b38  CmBatt - ok
11:53:50.0395 0x1b38  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:53:50.0405 0x1b38  cmdide - ok
11:53:50.0463 0x1b38  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
11:53:50.0486 0x1b38  CNG - ok
11:53:50.0514 0x1b38  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
11:53:50.0524 0x1b38  Compbatt - ok
11:53:50.0538 0x1b38  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
11:53:50.0577 0x1b38  CompositeBus - ok
11:53:50.0582 0x1b38  COMSysApp - ok
11:53:50.0609 0x1b38  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
11:53:50.0620 0x1b38  crcdisk - ok
11:53:50.0678 0x1b38  [ 348B3A4DD922F590EB39DB231F7AEE4D, 62341BBB263E8E72436FE008E2645692712C2143964D67CE38D58F47F5DEA8B1 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:53:50.0724 0x1b38  CryptSvc - ok
11:53:50.0769 0x1b38  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
11:53:50.0789 0x1b38  CSC - ok
11:53:50.0815 0x1b38  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
11:53:50.0863 0x1b38  CscService - ok
11:53:50.0901 0x1b38  [ DBD89BC0DBE00DCD245BE8F61DBEE291, 7AC7291EF660338695CF4C8A8C0BBC8A6F456688E71D889F39EFBD2F5854DA26 ] cvintdrv        C:\Windows\system32\drivers\cvintdrv.sys
11:53:50.0921 0x1b38  cvintdrv - detected UnsignedFile.Multi.Generic ( 1 )
11:53:50.0921 0x1b38  Detect skipped due to KSN trusted
11:53:50.0921 0x1b38  cvintdrv - ok
11:53:50.0976 0x1b38  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:53:51.0020 0x1b38  DcomLaunch - ok
11:53:51.0057 0x1b38  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
11:53:51.0088 0x1b38  defragsvc - ok
11:53:51.0143 0x1b38  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:53:51.0179 0x1b38  DfsC - ok
11:53:51.0212 0x1b38  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:53:51.0229 0x1b38  Dhcp - ok
11:53:51.0304 0x1b38  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
11:53:51.0337 0x1b38  DiagTrack - ok
11:53:51.0355 0x1b38  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
11:53:51.0402 0x1b38  discache - ok
11:53:51.0431 0x1b38  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
11:53:51.0442 0x1b38  Disk - ok
11:53:51.0476 0x1b38  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
11:53:51.0501 0x1b38  dmvsc - ok
11:53:51.0544 0x1b38  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:53:51.0576 0x1b38  Dnscache - ok
11:53:51.0617 0x1b38  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:53:51.0667 0x1b38  dot3svc - ok
11:53:51.0712 0x1b38  [ 54B4256D1EDF1D104BEA2B73C24C89AD, CF5F440729C7928F998106C0D70322ADEC7D3835DAD3DD16D8B75A429A92DEC3 ] dpmconv         C:\Windows\system32\DRIVERS\dpmconv32.sys
11:53:51.0750 0x1b38  dpmconv - ok
11:53:51.0791 0x1b38  [ 0BD72E62C3974C4F5E4372DBA971901B, E3A6ACA940A92B7721773E38141FC7C4E353423C007DB72CF2361E95DFDE5B93 ] dpmcslv         C:\Windows\system32\drivers\dpmcslv.sys
11:53:51.0814 0x1b38  dpmcslv - detected UnsignedFile.Multi.Generic ( 1 )
11:53:51.0814 0x1b38  Detect skipped due to KSN trusted
11:53:51.0814 0x1b38  dpmcslv - ok
11:53:51.0842 0x1b38  [ 69022154D10A96FE2EC483D9648E6DD4, EE4173BBDA5B3EC60B88C1D3028807D87F62961FA115370293937A3798C1C535 ] DPMTRCDD        C:\Windows\system32\DRIVERS\DPMTRCDD32.sys
11:53:51.0877 0x1b38  DPMTRCDD - ok
11:53:51.0913 0x1b38  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
11:53:51.0956 0x1b38  DPS - ok
11:53:51.0984 0x1b38  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:53:51.0996 0x1b38  drmkaud - ok
11:53:52.0063 0x1b38  [ 4B21D102E49E9D44C478D6766A7FCBE5, 7CEEBCF81EE23876F039ED1222020D6F45FE6B3A5CE3BB93DDA3B8BBEAA15E47 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:53:52.0090 0x1b38  DXGKrnl - ok
11:53:52.0118 0x1b38  [ A13F07A0422E4A04E7FF6F6F3B05E729, 9DE9F2E476707A02F6615A0A53A0BE07B3E7C9ABD16C03E73C82648FECC224BE ] e1kexpress      C:\Windows\system32\DRIVERS\e1k6232.sys
11:53:52.0135 0x1b38  e1kexpress - ok
11:53:52.0166 0x1b38  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
11:53:52.0212 0x1b38  EapHost - ok
11:53:52.0339 0x1b38  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
11:53:52.0420 0x1b38  ebdrv - ok
11:53:52.0478 0x1b38  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] EFS             C:\Windows\System32\lsass.exe
11:53:52.0516 0x1b38  EFS - ok
11:53:52.0582 0x1b38  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:53:52.0631 0x1b38  ehRecvr - ok
11:53:52.0655 0x1b38  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
11:53:52.0694 0x1b38  ehSched - ok
11:53:52.0727 0x1b38  [ B83BDCCBACB65BAA9E20888DD0083A16, A38B29C768DF9153E704C92A410663A8CFFB29BDB5E6622881DEB7FFFEF0CB38 ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
11:53:52.0736 0x1b38  ElbyCDIO - ok
11:53:52.0776 0x1b38  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
11:53:52.0796 0x1b38  elxstor - ok
11:53:52.0813 0x1b38  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:53:52.0843 0x1b38  ErrDev - ok
11:53:52.0881 0x1b38  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
11:53:52.0936 0x1b38  EventSystem - ok
11:53:52.0958 0x1b38  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:53:52.0984 0x1b38  exfat - ok
11:53:53.0007 0x1b38  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:53:53.0057 0x1b38  fastfat - ok
11:53:53.0102 0x1b38  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
11:53:53.0147 0x1b38  Fax - ok
11:53:53.0178 0x1b38  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:53:53.0209 0x1b38  fdc - ok
11:53:53.0248 0x1b38  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
11:53:53.0296 0x1b38  fdPHost - ok
11:53:53.0303 0x1b38  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:53:53.0329 0x1b38  FDResPub - ok
11:53:53.0356 0x1b38  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:53:53.0368 0x1b38  FileInfo - ok
11:53:53.0399 0x1b38  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:53:53.0445 0x1b38  Filetrace - ok
11:53:53.0508 0x1b38  [ ACEFEEA621DCA62EFB7A7EEA59F5E91B, 1D998E25B2C4C2DB51BF5E76BD0EFCA172CFC9BC16AFE7044BFC7A9FCF346154 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:53:53.0538 0x1b38  FLEXnet Licensing Service - ok
11:53:53.0555 0x1b38  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
11:53:53.0566 0x1b38  flpydisk - ok
11:53:53.0593 0x1b38  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:53:53.0608 0x1b38  FltMgr - ok
11:53:53.0682 0x1b38  [ DF15E8426D02C15422EBFF28BA83F03A, 51BEB315B0E5114906684FB3F460FA7BEA326C1B589C5C35D29795A7C13AB4FB ] FontCache       C:\Windows\system32\FntCache.dll
11:53:53.0739 0x1b38  FontCache - ok
11:53:53.0815 0x1b38  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:53:53.0824 0x1b38  FontCache3.0.0.0 - ok
11:53:53.0855 0x1b38  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:53:53.0866 0x1b38  FsDepends - ok
11:53:53.0890 0x1b38  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:53:53.0900 0x1b38  Fs_Rec - ok
11:53:53.0928 0x1b38  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:53:53.0945 0x1b38  fvevol - ok
11:53:53.0997 0x1b38  [ F51AE57CF9177010D4AE565F67EF7354, 7E0770975E37C36910F34C4EB0C8B0B435439A6B229E20C2567FF8E37A317045 ] fwkbdrtm        C:\Windows\system32\drivers\fwkbdrtm.sys
11:53:54.0004 0x1b38  fwkbdrtm - ok
11:53:54.0031 0x1b38  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
11:53:54.0042 0x1b38  gagp30kx - ok
11:53:54.0172 0x1b38  [ 66AF0B382E050DD2521BCB5337410916, 1ABCA963BC9769EA689571C9A32C8A3C6B02CBA62DFA7EB132AE1E63F53BC052 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
11:53:54.0201 0x1b38  GfExperienceService - ok
11:53:54.0266 0x1b38  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:53:54.0330 0x1b38  gpsvc - ok
11:53:54.0601 0x1b38  [ F5295EC506515409DC2D6EE23669B2E2, D103F23850C7ED9D4C5C2BF66433ABA1C8D7DFF7D6871935FCE8F4A0D7A36016 ] gramblrclient   C:\Program Files\Gramblr\gramblr.exe
11:53:54.0848 0x1b38  gramblrclient - detected UnsignedFile.Multi.Generic ( 1 )
11:53:54.0926 0x1b38  gramblrclient ( UnsignedFile.Multi.Generic ) - warning
11:53:55.0322 0x1b38  [ 99FCD7CE9894C241FB98A7811D2D8813, 713E9D6E1AA98AC4D7644872C988082870BC23FEE70C5831FB26159608E7E00A ] hardlock        C:\Windows\system32\drivers\hardlock.sys
11:53:55.0343 0x1b38  hardlock - ok
11:53:55.0350 0x1b38  hasplms - ok
11:53:55.0372 0x1b38  [ B6F5AC88A1A1FDD802CB689721D640FE, 18A4674BE2D24539F69F1368C18D1FDF9185805843380719DC805FF323515FB5 ] hcmon           C:\Windows\system32\drivers\hcmon.sys
11:53:55.0381 0x1b38  hcmon - ok
11:53:55.0406 0x1b38  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:53:55.0434 0x1b38  hcw85cir - ok
11:53:55.0483 0x1b38  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:53:55.0522 0x1b38  HdAudAddService - ok
11:53:55.0553 0x1b38  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:53:55.0588 0x1b38  HDAudBus - ok
11:53:55.0620 0x1b38  [ 88A67C34E37186665E916FD347B50D19, 23C4F11E421DE7D8330418118524D345A905300816E3D7D486DB18C670226EE1 ] HECI            C:\Windows\system32\DRIVERS\HECI.sys
11:53:55.0654 0x1b38  HECI - ok
11:53:55.0685 0x1b38  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
11:53:55.0722 0x1b38  HidBatt - ok
11:53:55.0750 0x1b38  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
11:53:55.0766 0x1b38  HidBth - ok
11:53:55.0781 0x1b38  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
11:53:55.0815 0x1b38  HidIr - ok
11:53:55.0852 0x1b38  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
11:53:55.0903 0x1b38  hidserv - ok
11:53:55.0946 0x1b38  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:53:55.0958 0x1b38  HidUsb - ok
11:53:55.0973 0x1b38  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:53:56.0017 0x1b38  hkmsvc - ok
11:53:56.0057 0x1b38  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:53:56.0093 0x1b38  HomeGroupListener - ok
11:53:56.0125 0x1b38  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:53:56.0160 0x1b38  HomeGroupProvider - ok
11:53:56.0198 0x1b38  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:53:56.0210 0x1b38  HpSAMD - ok
11:53:56.0281 0x1b38  [ 487569E5DA56A5A432FF8AF6D3599CF9, 7C974D8379C60B4F69A20B01876C49181B0A63AC318C4BD0A21DABFF27A15C9D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:53:56.0324 0x1b38  HTTP - ok
11:53:56.0354 0x1b38  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:53:56.0365 0x1b38  hwpolicy - ok
11:53:56.0392 0x1b38  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:53:56.0429 0x1b38  i8042prt - ok
11:53:56.0477 0x1b38  [ 26541A068572F650A2FA490726FE81BE, 9D6EF745731D45C4482274BE9C56300BBE8843D6C182F0E5C621AB121DBE371E ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
11:53:56.0494 0x1b38  iaStor - ok
11:53:56.0522 0x1b38  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:53:56.0539 0x1b38  iaStorV - ok
11:53:56.0617 0x1b38  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:53:56.0648 0x1b38  idsvc - ok
11:53:56.0656 0x1b38  IEEtwCollectorService - ok
11:53:56.0937 0x1b38  [ 0DAB2D553BE272359BCCE55C3449937E, FA539CF0DAA084C56BE22D14E857BD2E753C4B24FEA0C6168EC41B5788D9E7F8 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
11:53:57.0152 0x1b38  igfx - ok
11:53:57.0200 0x1b38  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
11:53:57.0210 0x1b38  iirsp - ok
11:53:57.0279 0x1b38  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
11:53:57.0306 0x1b38  IKEEXT - ok
11:53:57.0342 0x1b38  [ 5CF0990FC1F6676F7B00366AB224DA92, 980908606D401024CAD24E294397F0386DA68DDA13E0DE2AE551EE4B59E36296 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
11:53:57.0373 0x1b38  IntcHdmiAddService - ok
11:53:57.0406 0x1b38  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
11:53:57.0416 0x1b38  intelide - ok
11:53:57.0435 0x1b38  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:53:57.0472 0x1b38  intelppm - ok
11:53:57.0504 0x1b38  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:53:57.0553 0x1b38  IPBusEnum - ok
11:53:57.0577 0x1b38  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:53:57.0601 0x1b38  IpFilterDriver - ok
11:53:57.0643 0x1b38  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:53:57.0688 0x1b38  iphlpsvc - ok
11:53:57.0724 0x1b38  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:53:57.0759 0x1b38  IPMIDRV - ok
11:53:57.0789 0x1b38  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:53:57.0835 0x1b38  IPNAT - ok
11:53:57.0862 0x1b38  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:53:57.0895 0x1b38  IRENUM - ok
11:53:57.0920 0x1b38  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:53:57.0931 0x1b38  isapnp - ok
11:53:57.0979 0x1b38  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:53:57.0994 0x1b38  iScsiPrt - ok
11:53:58.0023 0x1b38  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:53:58.0034 0x1b38  kbdclass - ok
11:53:58.0051 0x1b38  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:53:58.0087 0x1b38  kbdhid - ok
11:53:58.0111 0x1b38  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] KeyIso          C:\Windows\system32\lsass.exe
11:53:58.0123 0x1b38  KeyIso - ok
11:53:58.0175 0x1b38  [ EF7A3616C7902A232FEDAAB886AA07C2, B739EA5840E09E32AEF23A414F1E74B33785189BC0F43E156F6321CC0FA5BC35 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:53:58.0186 0x1b38  KSecDD - ok
11:53:58.0197 0x1b38  [ 78EF4037997534DD08545416EF4438E2, ABB739F1BA59A1D88F94C0F6569E92DBCFA73109A4AD7678C2CAB14AEEDEDDCD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:53:58.0210 0x1b38  KSecPkg - ok
11:53:58.0252 0x1b38  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:53:58.0304 0x1b38  KtmRm - ok
11:53:58.0347 0x1b38  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:53:58.0396 0x1b38  LanmanServer - ok
11:53:58.0430 0x1b38  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:53:58.0477 0x1b38  LanmanWorkstation - ok
11:53:58.0541 0x1b38  [ 20CDB07017497C94A0BAD253C4BAFCBC, 5633D245525F9B8CAC4E87A95B0E19D1F34839483ED75AC8F7661DA29BC87EE7 ] LkCitadelServer C:\Windows\system32\lkcitdl.exe
11:53:58.0566 0x1b38  LkCitadelServer - ok
11:53:58.0585 0x1b38  [ F1168176B5B7AD2EB61F78039C20FDC7, 3E6B749BE44BB2F4A5EA314A9C4EC7523086670FB3EDC4289AA80AAF75301F82 ] lkClassAds      C:\Windows\system32\lkads.exe
11:53:58.0595 0x1b38  lkClassAds - ok
11:53:58.0615 0x1b38  [ 1E46471FCE854203F81DA4B04C1BEA52, E5A424B84ABB563E2F43D94CA88BD6932BB7466CC87AC904D007056A0BE19746 ] lkTimeSync      C:\Windows\system32\lktsrv.exe
11:53:58.0625 0x1b38  lkTimeSync - ok
11:53:58.0654 0x1b38  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:53:58.0704 0x1b38  lltdio - ok
11:53:58.0756 0x1b38  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:53:58.0801 0x1b38  lltdsvc - ok
11:53:58.0829 0x1b38  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:53:58.0871 0x1b38  lmhosts - ok
11:53:58.0919 0x1b38  [ 2763A02188FFB04287F5034EC5B6B451, 679C9316FC101A9135D788BC3D910F3EF4146AF56D97143149D1767F581535F7 ] LMS             C:\Program Files\Intel\AMT\LMS.exe
11:53:58.0930 0x1b38  LMS - ok
11:53:58.0966 0x1b38  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
11:53:58.0978 0x1b38  LSI_FC - ok
11:53:59.0007 0x1b38  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:53:59.0018 0x1b38  LSI_SAS - ok
11:53:59.0042 0x1b38  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
11:53:59.0053 0x1b38  LSI_SAS2 - ok
11:53:59.0081 0x1b38  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
11:53:59.0099 0x1b38  LSI_SCSI - ok
11:53:59.0142 0x1b38  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:53:59.0202 0x1b38  luafv - ok
11:53:59.0237 0x1b38  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:53:59.0270 0x1b38  Mcx2Svc - ok
11:53:59.0338 0x1b38  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
11:53:59.0349 0x1b38  MDM - detected UnsignedFile.Multi.Generic ( 1 )
11:53:59.0350 0x1b38  Detect skipped due to KSN trusted
11:53:59.0350 0x1b38  MDM - ok
11:53:59.0383 0x1b38  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
11:53:59.0393 0x1b38  megasas - ok
11:53:59.0430 0x1b38  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
11:53:59.0445 0x1b38  MegaSR - ok
11:53:59.0451 0x1b38  mi-raysat_3dsmax2013_32 - ok
11:53:59.0455 0x1b38  mitsijm2013 - ok
11:53:59.0475 0x1b38  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
11:53:59.0520 0x1b38  MMCSS - ok
11:53:59.0542 0x1b38  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
11:53:59.0587 0x1b38  Modem - ok
11:53:59.0622 0x1b38  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:53:59.0654 0x1b38  monitor - ok
11:53:59.0682 0x1b38  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:53:59.0693 0x1b38  mouclass - ok
11:53:59.0746 0x1b38  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:53:59.0757 0x1b38  mouhid - ok
11:53:59.0809 0x1b38  [ D1BDF813C9FE5ED53134EDF360927735, 0FC422513A9C98C32A90C7C5B2635DA6104C6425A2E2A8746B110A07AFB1B539 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:53:59.0821 0x1b38  mountmgr - ok
11:53:59.0858 0x1b38  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:53:59.0871 0x1b38  MozillaMaintenance - ok
11:53:59.0910 0x1b38  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:53:59.0925 0x1b38  mpio - ok
11:53:59.0951 0x1b38  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:53:59.0997 0x1b38  mpsdrv - ok
11:54:00.0049 0x1b38  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:54:00.0109 0x1b38  MpsSvc - ok
11:54:00.0142 0x1b38  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:54:00.0172 0x1b38  MRxDAV - ok
11:54:00.0216 0x1b38  [ 6284D46BAA301BEDB9AB7FA7672B2410, F998D17FEE497491CC3CF4711FB37E507D1A5B2E9B2E4D6001152EDB968A2D98 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:54:00.0231 0x1b38  mrxsmb - ok
11:54:00.0249 0x1b38  [ 78AD95493F015FA9941869A009C00286, EC075C44FE78249CA58B338EBC3905A020762571A27DBEDF32A41B2A84FDEAFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:54:00.0265 0x1b38  mrxsmb10 - ok
11:54:00.0286 0x1b38  [ D7C3ED1FD46FAC7083473D9B1718255E, BC4BFFDB4B044205A4A658701B7F0E9680C139A6A0141E333BE6D590F99D9D65 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:54:00.0299 0x1b38  mrxsmb20 - ok
11:54:00.0311 0x1b38  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:54:00.0322 0x1b38  msahci - ok
11:54:00.0347 0x1b38  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:54:00.0359 0x1b38  msdsm - ok
11:54:00.0391 0x1b38  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
11:54:00.0429 0x1b38  MSDTC - ok
11:54:00.0463 0x1b38  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:54:00.0511 0x1b38  Msfs - ok
11:54:00.0541 0x1b38  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:54:00.0588 0x1b38  mshidkmdf - ok
11:54:00.0618 0x1b38  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:54:00.0628 0x1b38  msisadrv - ok
11:54:00.0664 0x1b38  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:54:00.0704 0x1b38  MSiSCSI - ok
11:54:00.0710 0x1b38  msiserver - ok
11:54:00.0740 0x1b38  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:54:00.0782 0x1b38  MSKSSRV - ok
11:54:00.0808 0x1b38  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:54:00.0831 0x1b38  MSPCLOCK - ok
11:54:00.0853 0x1b38  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:54:00.0877 0x1b38  MSPQM - ok
11:54:00.0900 0x1b38  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:54:00.0915 0x1b38  MsRPC - ok
11:54:00.0930 0x1b38  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:54:00.0941 0x1b38  mssmbios - ok
11:54:01.0038 0x1b38  MSSQL$KNXETS4 - ok
11:54:01.0137 0x1b38  MSSQL$SQLEXPRESS - ok
11:54:01.0174 0x1b38  MSSQL$WINCCFLEXEXPRESS - ok
11:54:01.0221 0x1b38  [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
11:54:01.0230 0x1b38  MSSQLServerADHelper - ok
11:54:01.0327 0x1b38  [ 8E8E74C953EB0C4F8828D99D6F27FD6F, 94AFB1B09A6E92302D29B3C563B1744CECC5F5487418962BE537B7C57717CA42 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
11:54:01.0336 0x1b38  MSSQLServerADHelper100 - ok
11:54:01.0351 0x1b38  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:54:01.0398 0x1b38  MSTEE - ok
11:54:01.0603 0x1b38  [ E514D0493C272AECBAC7C6C1DAC635D1, EED0574A7B0914F5E4FA9DD92A90DEBBF9B711B7C66A5E949557848436EF30D8 ] msvsmon90       C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe
11:54:01.0681 0x1b38  msvsmon90 - ok
11:54:01.0720 0x1b38  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
11:54:01.0752 0x1b38  MTConfig - ok
11:54:01.0793 0x1b38  [ E7EB93F16956C1BE56CB9B865802F696, 823185D58EDDD9ADF7662EF122A2035E076F2EF42586B3735A07F9215C72D5E1 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:54:01.0806 0x1b38  Mup - ok
11:54:01.0843 0x1b38  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
11:54:01.0899 0x1b38  napagent - ok
11:54:01.0945 0x1b38  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:54:01.0985 0x1b38  NativeWifiP - ok
11:54:02.0050 0x1b38  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:54:02.0076 0x1b38  NDIS - ok
11:54:02.0102 0x1b38  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:54:02.0149 0x1b38  NdisCap - ok
11:54:02.0172 0x1b38  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:54:02.0216 0x1b38  NdisTapi - ok
11:54:02.0240 0x1b38  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:54:02.0282 0x1b38  Ndisuio - ok
11:54:02.0311 0x1b38  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:54:02.0355 0x1b38  NdisWan - ok
11:54:02.0390 0x1b38  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:54:02.0413 0x1b38  NDProxy - ok
11:54:02.0461 0x1b38  [ 9B6C221BD48B57ED977D5C902BEF7E37, BE9582EB36043A6E3C1EBA2E1C02468CC8716E8B6C667112F3117D9379EFB76B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:54:02.0487 0x1b38  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
11:54:02.0487 0x1b38  Detect skipped due to KSN trusted
11:54:02.0487 0x1b38  Net Driver HPZ12 - ok
11:54:02.0511 0x1b38  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:54:02.0537 0x1b38  NetBIOS - ok
11:54:02.0643 0x1b38  [ A00996C9BFEF29A93B9F21DBE1DC502D, A97982CBBC2E240B0CD884ED3ED5D11B207DA8E7BEF73DCEA44E16E1CD84222F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:54:02.0681 0x1b38  NetBT - ok
11:54:02.0710 0x1b38  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] Netlogon        C:\Windows\system32\lsass.exe
11:54:02.0722 0x1b38  Netlogon - ok
11:54:02.0755 0x1b38  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
11:54:02.0805 0x1b38  Netman - ok
11:54:02.0854 0x1b38  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:02.0869 0x1b38  NetMsmqActivator - ok
11:54:02.0876 0x1b38  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:02.0891 0x1b38  NetPipeActivator - ok
11:54:02.0915 0x1b38  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
11:54:02.0968 0x1b38  netprofm - ok
11:54:02.0976 0x1b38  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:02.0991 0x1b38  NetTcpActivator - ok
11:54:02.0997 0x1b38  [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:54:03.0013 0x1b38  NetTcpPortSharing - ok
11:54:03.0053 0x1b38  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
11:54:03.0064 0x1b38  nfrd960 - ok
11:54:03.0187 0x1b38  [ 09BD195FCA242336BE4AC5C75CFD03F8, 6C6AB467A1652362E7B773D718CEDA8274C2C65AF83090F22E332D163DFC1685 ] NIDomainService C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
11:54:03.0202 0x1b38  NIDomainService - ok
11:54:03.0310 0x1b38  [ B17093B9A2C5F874975C732C1A8BA771, EAF5AF9A5CCBF982D0A4F8ACEDED25588E67981D938FE17A94F1C9B331709FAB ] NILM License Manager C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
11:54:03.0364 0x1b38  NILM License Manager - detected UnsignedFile.Multi.Generic ( 1 )
11:54:03.0364 0x1b38  Detect skipped due to KSN trusted
11:54:03.0364 0x1b38  NILM License Manager - ok
11:54:03.0370 0x1b38  niSvcLoc - ok
11:54:03.0420 0x1b38  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:54:03.0458 0x1b38  NlaSvc - ok
11:54:03.0481 0x1b38  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:54:03.0529 0x1b38  Npfs - ok
11:54:03.0560 0x1b38  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
11:54:03.0604 0x1b38  nsi - ok
11:54:03.0634 0x1b38  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:54:03.0678 0x1b38  nsiproxy - ok
11:54:03.0754 0x1b38  [ 978E7A2E4BF4E8E70D0776EF0D9E97FB, B6C82BB9B3025FD2D37B6AB6FA9C2944F8B3020CD4588BE464CE73A992B7FF00 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:54:03.0791 0x1b38  Ntfs - ok
11:54:03.0805 0x1b38  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
11:54:03.0828 0x1b38  Null - ok
11:54:04.0188 0x1b38  [ 854144A2DE8DED0569483F2BAC9C5DEB, B9B24D4522A60DC2BA47BF8316CD134C61858BE6A436C5E5C764BD2DA749063E ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:54:04.0443 0x1b38  nvlddmkm - ok
11:54:04.0570 0x1b38  [ 93C82F365F9C0A2058A211E305A5CCFA, 1B3FA9122377CF8C982EEE8719E2E295E3D118AC15646ACAB3A5BF78E1EE7E70 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
11:54:04.0617 0x1b38  NvNetworkService - ok
11:54:04.0646 0x1b38  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:54:04.0659 0x1b38  nvraid - ok
11:54:04.0678 0x1b38  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:54:04.0691 0x1b38  nvstor - ok
11:54:04.0745 0x1b38  [ C0C581843EC841439E06B39307E5A6AE, B08AC04CE38BEADF75BCAB033E0909BFE7D800844FFC5F73E90E70C9009A05CA ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
11:54:04.0753 0x1b38  NvStreamKms - ok
11:54:05.0419 0x1b38  [ 206084ADC8C7A0D723C65573219600E4, 085BA561DF4CF454FB0732B4F25623336932B3E99C6B5773B00325CED3EC1294 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
11:54:06.0155 0x1b38  NvStreamSvc - ok
11:54:06.0283 0x1b38  [ FB931D6633376412D6DEAD287D597F17, 1F94850B1793E77E0F1231E2B3D2DB8F88868CC540684B613B4B32AC7EE220D6 ] nvsvc           C:\Windows\system32\nvvsvc.exe
11:54:06.0309 0x1b38  nvsvc - ok
11:54:06.0345 0x1b38  [ 3EEDE5E218F0978D802CE3196E8B9028, CEC193159C3EC91A48365A4EF50FF9F6D270B36840234F8B0751EFC1946B1D8F ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad32v.sys
11:54:06.0353 0x1b38  nvvad_WaveExtensible - ok
11:54:06.0377 0x1b38  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:54:06.0389 0x1b38  nv_agp - ok
11:54:06.0451 0x1b38  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:54:06.0469 0x1b38  odserv - ok
11:54:06.0488 0x1b38  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:54:06.0522 0x1b38  ohci1394 - ok
11:54:06.0558 0x1b38  [ 4B46978A6C6793312E39E0A41496E75E, 1CB3BE287C0E5A424C077CEB314649DFB8F2235DA2490E8B8888D2CA2FE3FE65 ] OpcEnum         C:\Windows\system32\OPCEnum.exe
11:54:06.0570 0x1b38  OpcEnum - ok
11:54:06.0631 0x1b38  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:54:06.0646 0x1b38  ose - ok
11:54:06.0836 0x1b38  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:54:06.0968 0x1b38  osppsvc - ok
11:54:07.0021 0x1b38  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:54:07.0040 0x1b38  p2pimsvc - ok
11:54:07.0057 0x1b38  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:54:07.0096 0x1b38  p2psvc - ok
11:54:07.0129 0x1b38  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:54:07.0162 0x1b38  Parport - ok
11:54:07.0194 0x1b38  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:54:07.0204 0x1b38  partmgr - ok
11:54:07.0216 0x1b38  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
11:54:07.0246 0x1b38  Parvdm - ok
11:54:07.0278 0x1b38  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:54:07.0294 0x1b38  PcaSvc - ok
11:54:07.0325 0x1b38  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
11:54:07.0338 0x1b38  pci - ok
11:54:07.0360 0x1b38  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:54:07.0370 0x1b38  pciide - ok
11:54:07.0384 0x1b38  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:54:07.0398 0x1b38  pcmcia - ok
11:54:07.0411 0x1b38  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:54:07.0423 0x1b38  pcw - ok
11:54:07.0486 0x1b38  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:54:07.0529 0x1b38  PEAUTH - ok
11:54:07.0589 0x1b38  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
11:54:07.0626 0x1b38  PeerDistSvc - ok
11:54:07.0684 0x1b38  [ 76E1E107355D986842779BDE5FB35D5F, CC82B393AF54012F37D3E9A90E3B52166F0B3B19103BE231B6DACC68932509F1 ] Pei10Wdm        C:\Windows\system32\Drivers\Pei10Wdm.sys
11:54:07.0688 0x1b38  Pei10Wdm - detected UnsignedFile.Multi.Generic ( 1 )
11:54:07.0688 0x1b38  Detect skipped due to KSN trusted
11:54:07.0688 0x1b38  Pei10Wdm - ok
11:54:07.0743 0x1b38  [ 1035DAA6900F040FA087866421DA0E47, 3CF05E684C52C4716CCAA09BD18DB354A5C45BB5B07A9E1E87FE36910A33F91D ] Pei16Wdm        C:\Windows\system32\Drivers\Pei16Wdm.sys
11:54:07.0768 0x1b38  Pei16Wdm - detected UnsignedFile.Multi.Generic ( 1 )
11:54:07.0768 0x1b38  Detect skipped due to KSN trusted
11:54:07.0768 0x1b38  Pei16Wdm - ok
11:54:07.0854 0x1b38  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
11:54:07.0940 0x1b38  pla - ok
11:54:07.0983 0x1b38  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:54:08.0003 0x1b38  PlugPlay - ok
11:54:08.0056 0x1b38  [ 03E35F5345C80BD6C468D780688834A2, 77760ECE310BCBEC185A1B863AE59A42BE7EE4AC51E4CE1AA05FF5361091512A ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:54:08.0063 0x1b38  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
11:54:08.0063 0x1b38  Detect skipped due to KSN trusted
11:54:08.0063 0x1b38  Pml Driver HPZ12 - ok
11:54:08.0087 0x1b38  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:54:08.0124 0x1b38  PNRPAutoReg - ok
11:54:08.0157 0x1b38  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:54:08.0184 0x1b38  PNRPsvc - ok
11:54:08.0205 0x1b38  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:54:08.0249 0x1b38  PolicyAgent - ok
11:54:08.0292 0x1b38  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
11:54:08.0341 0x1b38  Power - ok
11:54:08.0380 0x1b38  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:54:08.0431 0x1b38  PptpMiniport - ok
11:54:08.0456 0x1b38  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
11:54:08.0468 0x1b38  Processor - ok
11:54:08.0522 0x1b38  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:54:08.0559 0x1b38  ProfSvc - ok
11:54:08.0585 0x1b38  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:54:08.0597 0x1b38  ProtectedStorage - ok
11:54:08.0612 0x1b38  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:54:08.0659 0x1b38  Psched - ok
11:54:08.0696 0x1b38  [ D970470F8F39470BDAE94D313A1CCDCE, C41B314F3A1CD6A747A4578C2A1F20373884C2AD96880A81255E66BA9D886EB4 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
11:54:08.0705 0x1b38  PxHelp20 - ok
11:54:08.0753 0x1b38  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
11:54:08.0794 0x1b38  ql2300 - ok
11:54:08.0819 0x1b38  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
11:54:08.0831 0x1b38  ql40xx - ok
11:54:08.0862 0x1b38  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
11:54:08.0906 0x1b38  QWAVE - ok
11:54:08.0932 0x1b38  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:54:08.0970 0x1b38  QWAVEdrv - ok
11:54:08.0997 0x1b38  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:54:09.0021 0x1b38  RasAcd - ok
11:54:09.0053 0x1b38  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:54:09.0093 0x1b38  RasAgileVpn - ok
11:54:09.0135 0x1b38  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
11:54:09.0162 0x1b38  RasAuto - ok
11:54:09.0189 0x1b38  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:54:09.0213 0x1b38  Rasl2tp - ok
11:54:09.0232 0x1b38  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
11:54:09.0285 0x1b38  RasMan - ok
11:54:09.0314 0x1b38  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:54:09.0340 0x1b38  RasPppoe - ok
11:54:09.0369 0x1b38  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:54:09.0392 0x1b38  RasSstp - ok
11:54:09.0455 0x1b38  [ B15D1178AD7AA2D4F32E88B68C7E2DA2, 0FC3137F28548B7A25F7F6837FC5984547BE49E9D92399B2B78D1919EC95FD73 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:54:09.0492 0x1b38  rdbss - ok
11:54:09.0531 0x1b38  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:54:09.0543 0x1b38  rdpbus - ok
11:54:09.0553 0x1b38  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:54:09.0574 0x1b38  RDPCDD - ok
11:54:09.0598 0x1b38  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
11:54:09.0633 0x1b38  RDPDR - ok
11:54:09.0669 0x1b38  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:54:09.0714 0x1b38  RDPENCDD - ok
11:54:09.0748 0x1b38  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:54:09.0769 0x1b38  RDPREFMP - ok
11:54:09.0823 0x1b38  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:54:09.0856 0x1b38  RDPWD - ok
11:54:09.0885 0x1b38  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:54:09.0899 0x1b38  rdyboost - ok
11:54:09.0939 0x1b38  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:54:09.0965 0x1b38  RemoteAccess - ok
11:54:09.0995 0x1b38  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:54:10.0054 0x1b38  RemoteRegistry - ok
11:54:10.0085 0x1b38  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:54:10.0139 0x1b38  RpcEptMapper - ok
11:54:10.0207 0x1b38  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
11:54:10.0250 0x1b38  RpcLocator - ok
11:54:10.0374 0x1b38  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] RpcSs           C:\Windows\system32\rpcss.dll
11:54:10.0395 0x1b38  RpcSs - ok
11:54:10.0450 0x1b38  [ 412FEE325FDC5054AE44CF7797692AF3, AF70081E16A1A90AA635079C8FB1259C7C6588CCC825BCD8374BF558E66D8FEC ] RsFx0153        C:\Windows\system32\DRIVERS\RsFx0153.sys
11:54:10.0467 0x1b38  RsFx0153 - ok
11:54:10.0502 0x1b38  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:54:10.0527 0x1b38  rspndr - ok
11:54:10.0668 0x1b38  [ 8A2D845B0F69D39A2AD9ED98D8F0B592, 8B2B3ED7B6892E4995A7615BF3358C569264D4170DCAADAD3CCEBEA6270DAD23 ] RtlWlanu        C:\Windows\system32\DRIVERS\rtwlanu.sys
11:54:10.0753 0x1b38  RtlWlanu - ok
11:54:10.0802 0x1b38  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
11:54:10.0813 0x1b38  s3cap - ok
11:54:10.0891 0x1b38  [ 1D02E122B60DDBB868A56A852BF58A91, 96E2151E8DF3C58B9DBB805FC033D1C360CA841A2E1A9E59F52D87012992185B ] s7hspsvx        C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe
11:54:10.0897 0x1b38  s7hspsvx - detected UnsignedFile.Multi.Generic ( 1 )
11:54:10.0897 0x1b38  Detect skipped due to KSN trusted
11:54:10.0897 0x1b38  s7hspsvx - ok
11:54:10.0929 0x1b38  [ 515E9D5A6BF42C493678885E86E2A3E5, 2CAF8278B231E1EE53A7DFCB8F7DB653C322E7B5613F8614C0598296B0F42600 ] S7odpx2x32      C:\Windows\system32\Drivers\S7odpx2x32.sys
11:54:10.0963 0x1b38  S7odpx2x32 - ok
11:54:11.0031 0x1b38  [ FB37CAF8E26BE5D28BBB0FE8E9C85EB2, DEFEC0C8176D1352C61F91431D68589D617AA16333A1A24CE779A41BAD1D3C94 ] s7oiehsx        C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe
11:54:11.0068 0x1b38  s7oiehsx - detected UnsignedFile.Multi.Generic ( 1 )
11:54:11.0068 0x1b38  Detect skipped due to KSN trusted
11:54:11.0068 0x1b38  s7oiehsx - ok
11:54:11.0096 0x1b38  [ 082313C2509B72F18179C0F8F737671D, A18C7AD206D959C523A7F3FF7816560FBE0461692BA72B0ECF4565A72232B1EB ] s7osmcax32      C:\Windows\system32\Drivers\s7osmcax32.sys
11:54:11.0123 0x1b38  s7osmcax32 - ok
11:54:11.0177 0x1b38  [ 079E29C80A51EEBCA3B0A52C151ABAA9, 6855C056D9977C15A169A2268C98C8692191AD86FF044807DC49880184256520 ] S7otranx32      C:\Windows\system32\Drivers\S7otranx32.sys
11:54:11.0214 0x1b38  S7otranx32 - ok
11:54:11.0245 0x1b38  [ EC96BDBC41C12A476EA1378BAC6A221A, C2E23699F2D80DA1946BE48D1217E95398497CF71DBEE56B3B6B3F25D202CC39 ] s7otsadx32      C:\Windows\system32\Drivers\s7otsadx32.sys
11:54:11.0272 0x1b38  s7otsadx32 - ok
11:54:11.0310 0x1b38  [ 2D635736D6E3E340A4D9D135C9B85220, ECDBEE80E63E3C41323B6011531E528AAC60E69ECCE735CD30E970E4ACF4F70C ] s7oupc2x        C:\Windows\system32\DRIVERS\s7oupc2x.sys
11:54:11.0340 0x1b38  s7oupc2x - ok
11:54:11.0394 0x1b38  [ 7A3A0432950D8A49B8A5568283263C08, E1C2AD8BD05F70944B19A8AD23B4C95FCDBF5EF6D6483B208F6FDF4FFA87BF16 ] s7ousbu32x      C:\Windows\system32\DRIVERS\s7ousbu32x.sys
11:54:11.0417 0x1b38  s7ousbu32x - ok
11:54:11.0438 0x1b38  [ F25735ED9017691F2DBCA8568882BDBA, 04E562068B4004DEA42228014E6A4DD435A08C165BAA33A4592D63CC6623F64A ] s7sn2srtx       C:\Windows\system32\DRIVERS\s7sn2srtx.sys
11:54:11.0443 0x1b38  s7sn2srtx - detected UnsignedFile.Multi.Generic ( 1 )
11:54:11.0443 0x1b38  Detect skipped due to KSN trusted
11:54:11.0443 0x1b38  s7sn2srtx - ok
11:54:11.0485 0x1b38  [ A40ACECF0B1317EF0F47D1F6AD21B2CE, 60215B4C369F5F3278B0F503CB6C564A09C44450D921A3481FF19ABADE421A05 ] S7TraceServiceX C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe
11:54:11.0523 0x1b38  S7TraceServiceX - detected UnsignedFile.Multi.Generic ( 1 )
11:54:11.0523 0x1b38  Detect skipped due to KSN trusted
11:54:11.0524 0x1b38  S7TraceServiceX - ok
11:54:11.0551 0x1b38  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] SamSs           C:\Windows\system32\lsass.exe
11:54:11.0564 0x1b38  SamSs - ok
11:54:11.0585 0x1b38  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:54:11.0598 0x1b38  sbp2port - ok
11:54:11.0624 0x1b38  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:54:11.0676 0x1b38  SCardSvr - ok
11:54:11.0715 0x1b38  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:54:11.0763 0x1b38  scfilter - ok
11:54:11.0835 0x1b38  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
11:54:11.0867 0x1b38  Schedule - ok
11:54:11.0901 0x1b38  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:54:11.0925 0x1b38  SCPolicySvc - ok
11:54:11.0951 0x1b38  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:54:11.0989 0x1b38  SDRSVC - ok
11:54:12.0017 0x1b38  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:54:12.0028 0x1b38  secdrv - ok
11:54:12.0077 0x1b38  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
11:54:12.0090 0x1b38  seclogon - ok
11:54:12.0101 0x1b38  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
11:54:12.0146 0x1b38  SENS - ok
11:54:12.0184 0x1b38  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:54:12.0197 0x1b38  SensrSvc - ok
11:54:12.0211 0x1b38  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:54:12.0223 0x1b38  Serenum - ok
11:54:12.0247 0x1b38  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:54:12.0282 0x1b38  Serial - ok
11:54:12.0312 0x1b38  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
11:54:12.0324 0x1b38  sermouse - ok
11:54:12.0362 0x1b38  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:54:12.0389 0x1b38  SessionEnv - ok
11:54:12.0418 0x1b38  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:54:12.0452 0x1b38  sffdisk - ok
11:54:12.0478 0x1b38  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:54:12.0491 0x1b38  sffp_mmc - ok
11:54:12.0504 0x1b38  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:54:12.0538 0x1b38  sffp_sd - ok
11:54:12.0559 0x1b38  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
11:54:12.0592 0x1b38  sfloppy - ok
11:54:12.0636 0x1b38  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:54:12.0688 0x1b38  SharedAccess - ok
11:54:12.0732 0x1b38  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:54:12.0764 0x1b38  ShellHWDetection - ok
11:54:12.0788 0x1b38  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
11:54:12.0799 0x1b38  sisagp - ok
11:54:12.0817 0x1b38  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
11:54:12.0828 0x1b38  SiSRaid2 - ok
11:54:12.0841 0x1b38  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:54:12.0853 0x1b38  SiSRaid4 - ok
11:54:12.0991 0x1b38  [ EDB28D1C30B647C6F7AA3414670FE82B, E9ADC49E25D28491FAD32782EDBF16DF068A4AFD5E2C3517E4253599CD6F1A55 ] smartserver     C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
11:54:13.0010 0x1b38  smartserver - ok
11:54:13.0029 0x1b38  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:54:13.0071 0x1b38  Smb - ok
11:54:13.0106 0x1b38  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:54:13.0119 0x1b38  SNMPTRAP - ok
11:54:13.0168 0x1b38  [ 8FF07AE426518C6A6B43FCFBF62C8EDE, 3FFA18994F4FE6C29826D855304E55668677F68FFCB25D6B172DC4C2A50C1506 ] SNTIE           C:\Windows\system32\DRIVERS\sntie.sys
11:54:13.0182 0x1b38  SNTIE - ok
11:54:13.0220 0x1b38  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:54:13.0230 0x1b38  spldr - ok
11:54:13.0254 0x1b38  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
11:54:13.0294 0x1b38  Spooler - ok
11:54:13.0425 0x1b38  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
11:54:13.0536 0x1b38  sppsvc - ok
11:54:13.0564 0x1b38  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:54:13.0592 0x1b38  sppuinotify - ok
11:54:13.0710 0x1b38  [ C04D8EFB3906A8B1718ABD7FD21B2918, 870E248B77C034D4FAB5E3572B5AEFCE34D696C2F927FA8D0A507A096AAD0DA3 ] SQLAgent$KNXETS4 C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\SQLAGENT.EXE
11:54:13.0731 0x1b38  SQLAgent$KNXETS4 - ok
11:54:13.0819 0x1b38  [ 7F37589E64A7C35AB67D0D8C8F53652B, D389FDF5CF7F4926BFDE966E2E92FAE3AFE5C0ACBDAB40E74A1B5D9F3525101E ] SQLBrowser      C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
11:54:13.0838 0x1b38  SQLBrowser - ok
11:54:13.0889 0x1b38  [ 8E6E5CFA06769A417B03FD6FAA29E010, CFF4FF34C2E0D9DFB502FCDB99DF4A21D0DBC335B6AD46805DAB069E789ECF9E ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
11:54:13.0901 0x1b38  SQLWriter - ok
11:54:13.0961 0x1b38  [ D86EA722F3337AA3F0253B6E359E6796, BA4C2DF629CBECFA1C1D589FFA6AEF8C5853C427B6B007793FD432B4AA8DA593 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:54:13.0978 0x1b38  srv - ok
11:54:14.0003 0x1b38  [ 1931823AC05967E5F79B791E9FFC2398, 255E6278F476F1D488199B0AD2004C3860CC74971AC3C0AB4B1DB4E42B329E94 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:54:14.0020 0x1b38  srv2 - ok
11:54:14.0034 0x1b38  [ 50A2FC7B0408F15B77E056076BBB6252, 801AD15B4CDFC09EE4909B7180A5CE562D54D4F08A9C0B7D9CA067ADC42A6C9D ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:54:14.0070 0x1b38  srvnet - ok
11:54:14.0116 0x1b38  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:54:14.0168 0x1b38  SSDPSRV - ok
11:54:14.0199 0x1b38  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:54:14.0225 0x1b38  SstpSvc - ok
11:54:14.0342 0x1b38  [ 93783569ED386910F801535FB138EE01, 21CD659F5B87EB2D49AC0056D49CA78BCF16829211CB9DFEF8A340AEF938428A ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:54:14.0359 0x1b38  Stereo Service - ok
11:54:14.0380 0x1b38  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
11:54:14.0390 0x1b38  stexstor - ok
11:54:14.0419 0x1b38  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
11:54:14.0447 0x1b38  StiSvc - ok
11:54:14.0471 0x1b38  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
11:54:14.0482 0x1b38  storflt - ok
11:54:14.0513 0x1b38  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
11:54:14.0550 0x1b38  StorSvc - ok
11:54:14.0556 0x1b38  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
11:54:14.0566 0x1b38  storvsc - ok
11:54:14.0602 0x1b38  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:54:14.0612 0x1b38  swenum - ok
11:54:14.0656 0x1b38  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
11:54:14.0694 0x1b38  swprv - ok
11:54:14.0782 0x1b38  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
11:54:14.0824 0x1b38  SysMain - ok
11:54:14.0847 0x1b38  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
11:54:14.0892 0x1b38  TabletInputService - ok
11:54:14.0936 0x1b38  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:54:14.0991 0x1b38  TapiSrv - ok
11:54:15.0065 0x1b38  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:54:15.0105 0x1b38  Tcpip - ok
11:54:15.0144 0x1b38  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:54:15.0185 0x1b38  TCPIP6 - ok
11:54:15.0214 0x1b38  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:54:15.0243 0x1b38  tcpipreg - ok
11:54:15.0283 0x1b38  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:54:15.0315 0x1b38  TDPIPE - ok
11:54:15.0359 0x1b38  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:54:15.0370 0x1b38  TDTCP - ok
11:54:15.0448 0x1b38  [ BB8817D0508DD5EA69C770C8DEF5AB67, C55671524EEF6E16BBCC92556E83FD1D6457E707EA9330FC1CDD28FB11D99B77 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:54:15.0485 0x1b38  tdx - ok
11:54:15.0521 0x1b38  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:54:15.0533 0x1b38  TermDD - ok
11:54:15.0600 0x1b38  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
11:54:15.0625 0x1b38  TermService - ok
11:54:15.0655 0x1b38  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
11:54:15.0692 0x1b38  Themes - ok
11:54:15.0724 0x1b38  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
11:54:15.0749 0x1b38  THREADORDER - ok
11:54:15.0782 0x1b38  [ F0E99E1982E78251A564159EB1D22CBE, 33D893E0777B41F8F850FCB18D2344D5DFB41BCC725D2EA9E9BF276AD99DB9E4 ] TPM             C:\Windows\system32\drivers\tpm.sys
11:54:15.0795 0x1b38  TPM - ok
11:54:15.0820 0x1b38  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
11:54:15.0847 0x1b38  TrkWks - ok
11:54:15.0893 0x1b38  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:54:15.0944 0x1b38  TrustedInstaller - ok
11:54:15.0992 0x1b38  [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:54:16.0023 0x1b38  tssecsrv - ok
11:54:16.0051 0x1b38  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:54:16.0082 0x1b38  TsUsbFlt - ok
11:54:16.0107 0x1b38  [ 01246F0BAAD7B68EC0F472AA41E33282, 51F975AF029AD015576FFFA3E88F5DBB8B40C7CD30ECDEDE8AFABCB08C954199 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
11:54:16.0118 0x1b38  TsUsbGD - ok
11:54:16.0130 0x1b38  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:54:16.0154 0x1b38  tunnel - ok
11:54:16.0172 0x1b38  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
11:54:16.0183 0x1b38  uagp35 - ok
11:54:16.0202 0x1b38  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:54:16.0248 0x1b38  udfs - ok
11:54:16.0283 0x1b38  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:54:16.0298 0x1b38  UI0Detect - ok
11:54:16.0347 0x1b38  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:54:16.0359 0x1b38  uliagpkx - ok
11:54:16.0400 0x1b38  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:54:16.0412 0x1b38  umbus - ok
11:54:16.0428 0x1b38  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
11:54:16.0458 0x1b38  UmPass - ok
11:54:16.0494 0x1b38  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
11:54:16.0511 0x1b38  UmRdpService - ok
11:54:16.0617 0x1b38  [ D47E82866A6FF02DAE9CEDF127C4BEE0, 15F2F637470859672FE93EAE03062C966FFE72F38FADB586B9C0DBC0C635A797 ] UNS             C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
11:54:16.0671 0x1b38  UNS - ok
11:54:16.0707 0x1b38  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
11:54:16.0738 0x1b38  upnphost - ok
11:54:16.0765 0x1b38  [ A1977C315BF5691DA99235AA4A6907AF, 34B52FBA83F0E1C6B001D0AD1808B00152F731D18AAECC3C53B9918AA89BACEC ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:54:16.0777 0x1b38  usbaudio - ok
11:54:16.0805 0x1b38  [ 325A69967CC7B4BFB170F5636143A94A, E0341360827B9B3E244F24D0BC01D3B3C0CC97E232A361960849F799A16AD540 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:54:16.0818 0x1b38  usbccgp - ok
11:54:16.0852 0x1b38  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:54:16.0881 0x1b38  usbcir - ok
11:54:16.0915 0x1b38  [ 5D57798CAE5A0DD0B8F61C52B8E7C3D1, 5097997508E1406AD5B018C5006D82F8BFC7B157C6CAF1B4D80C7D6DB722A77A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
11:54:16.0926 0x1b38  usbehci - ok
11:54:16.0952 0x1b38  [ 3835ECC1E928042F92D7AA1963D40523, 60237CB8C3F935544006621255FFD53C9E09C0AF4741D0C50968CB4D647336D5 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
11:54:16.0968 0x1b38  usbhub - ok
11:54:17.0003 0x1b38  [ 81E1E90305A4C7A13BADC5DFA22ABA37, 9EF3F5CD2FCF22A5BCC668778C8340D8C80719E9B43FB6C4484BFC98280B8BD9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:54:17.0014 0x1b38  usbohci - ok
11:54:17.0046 0x1b38  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
11:54:17.0058 0x1b38  usbprint - ok
11:54:17.0080 0x1b38  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:54:17.0117 0x1b38  USBSTOR - ok
11:54:17.0148 0x1b38  [ B4A1789BE90403D9549EF9DBAD37A429, 1F590F8DE0081953B944A076FFEB5FF3BCF7E2BEE4ABD97236A29C00B9242163 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:54:17.0159 0x1b38  usbuhci - ok
11:54:17.0192 0x1b38  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
11:54:17.0231 0x1b38  usbvideo - ok
11:54:17.0271 0x1b38  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
11:54:17.0314 0x1b38  UxSms - ok
11:54:17.0342 0x1b38  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] VaultSvc        C:\Windows\system32\lsass.exe
11:54:17.0354 0x1b38  VaultSvc - ok
11:54:17.0377 0x1b38  [ B252DD05C8B1D64239EE8A93C4BC5AD4, 904CCA61863330C456A2BF32118A9BFF77F2A339530F611843FD4908F2AAAF0A ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
11:54:17.0404 0x1b38  VClone - ok
11:54:17.0433 0x1b38  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:54:17.0444 0x1b38  vdrvroot - ok
11:54:17.0484 0x1b38  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
11:54:17.0538 0x1b38  vds - ok
11:54:17.0565 0x1b38  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:54:17.0578 0x1b38  vga - ok
11:54:17.0592 0x1b38  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:54:17.0618 0x1b38  VgaSave - ok
11:54:17.0632 0x1b38  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:54:17.0646 0x1b38  vhdmp - ok
11:54:17.0674 0x1b38  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
11:54:17.0686 0x1b38  viaagp - ok
11:54:17.0692 0x1b38  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
11:54:17.0704 0x1b38  ViaC7 - ok
11:54:17.0730 0x1b38  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:54:17.0741 0x1b38  viaide - ok
11:54:17.0790 0x1b38  [ C740CC9D52EB278A86F42075DA96CB19, 596D9730819A888D07358BA12AC76F17E02186DACFDCDBDA58E8EF4BB7CA51F0 ] VMAuthdService  C:\Program Files\VMware\VMware Player\vmware-authd.exe
11:54:17.0800 0x1b38  VMAuthdService - ok
11:54:17.0830 0x1b38  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
11:54:17.0844 0x1b38  vmbus - ok
11:54:17.0866 0x1b38  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
11:54:17.0899 0x1b38  VMBusHID - ok
11:54:17.0935 0x1b38  [ 753BD0240B6586ABA0D67A70B3EF44A0, 8D891A6632F4241A1C21BF3C9F29D2599F371E2C953A67594417700641153CAB ] vmci            C:\Windows\system32\DRIVERS\vmci.sys
11:54:17.0944 0x1b38  vmci - ok
11:54:17.0958 0x1b38  [ 7D509B26A43D5A6A6896C8C9AD944147, 7480759AEE3BE04096A7BF270A5D2BD552FC10328BDF9CCB664910514C4CC93F ] vmkbd           C:\Windows\system32\drivers\VMkbd.sys
11:54:17.0968 0x1b38  vmkbd - ok
11:54:17.0977 0x1b38  [ A267D2321ED281359D301BFEB8202652, 63D76585733C79657106A057B97FD371AEDF0564BE5AD4BA50EB8DE096F4F73B ] VMnetAdapter    C:\Windows\system32\DRIVERS\vmnetadapter.sys
11:54:17.0985 0x1b38  VMnetAdapter - ok
11:54:17.0992 0x1b38  [ 7A4BB278D7860551A716D46349492692, 8974205C0E4453EAF4CCA167EA052702CC1A3446CA9C7172510BF5AAE9D79207 ] VMnetBridge     C:\Windows\system32\DRIVERS\vmnetbridge.sys
11:54:18.0001 0x1b38  VMnetBridge - ok
11:54:18.0037 0x1b38  [ 8285080A268210D8CE9BA96B210E2013, 6E22E81A690808E4E6187440BD887A8BF8A40B0A2957220827AE483553EF147B ] VMnetDHCP       C:\Windows\system32\vmnetdhcp.exe
11:54:18.0055 0x1b38  VMnetDHCP - ok
11:54:18.0077 0x1b38  [ 2CB5FFAFEB1BE2CDC5D13EF64583892B, A143971925E0E787104B23C99D2DBCB218A2F310A9FECA9040647A6A500BBECE ] VMnetuserif     C:\Windows\system32\drivers\vmnetuserif.sys
11:54:18.0086 0x1b38  VMnetuserif - ok
11:54:18.0111 0x1b38  [ 0724BFB49D0C93EBDA25785D46622766, B85F327F65061FFF90D1F3F0723E45C7A40FF9C179651F4AF4E56246FD3C6FFE ] VMparport       C:\Windows\system32\Drivers\VMparport.sys
11:54:18.0120 0x1b38  VMparport - ok
11:54:18.0160 0x1b38  [ 90B4CC5C515B52796E26F72F3EEAF643, 09FD0D3AEE1B4CACDFD178DC4E684B993AF3F9474BF578556EBED56B63253B51 ] VMUSBArbService C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
11:54:18.0183 0x1b38  VMUSBArbService - ok
11:54:18.0222 0x1b38  [ E3991000CCB56570294236D11A3C19BE, 07F3A9E765B8B4DD4BE9DE4E6D2A8A1FCF8773524053EE288CE533B1DB617122 ] VMware NAT Service C:\Windows\system32\vmnat.exe
11:54:18.0243 0x1b38  VMware NAT Service - ok
11:54:18.0277 0x1b38  [ D0DC0467CCFED1720E90D4476CA85E17, 911D0F7E67181C6797C5CD6C3B745E20361A075DBC306FEBFD749A512EBB9886 ] vmx86           C:\Windows\system32\Drivers\vmx86.sys
11:54:18.0287 0x1b38  vmx86 - ok
11:54:18.0314 0x1b38  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:54:18.0325 0x1b38  volmgr - ok
11:54:18.0344 0x1b38  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:54:18.0361 0x1b38  volmgrx - ok
11:54:18.0424 0x1b38  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:54:18.0440 0x1b38  volsnap - ok
11:54:18.0452 0x1b38  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:54:18.0465 0x1b38  vsmraid - ok
11:54:18.0501 0x1b38  [ CD9DDDCF41F53A64B7A6C7B44ED5F811, 6FB89CE82A8A8EC2B1085AAE37E8E2BD219F538CB8227EF63AEBF26F089F1960 ] vsnl2ada        C:\Windows\system32\DRIVERS\vsnl2ada32.sys
11:54:18.0530 0x1b38  vsnl2ada - ok
11:54:18.0563 0x1b38  [ 4B1B677FC0338C85E1C30BD6F1BFD584, 0048CEDA5C7017D43F15AD4AD387B4EE03CEB0F51BE56CCD4A8FA60D0B5219C2 ] vsock           C:\Windows\system32\drivers\vsock.sys
11:54:18.0571 0x1b38  vsock - ok
11:54:18.0625 0x1b38  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
11:54:18.0673 0x1b38  VSS - ok
11:54:18.0704 0x1b38  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:54:18.0717 0x1b38  vwifibus - ok
11:54:18.0734 0x1b38  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:54:18.0765 0x1b38  vwififlt - ok
11:54:18.0807 0x1b38  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
11:54:18.0863 0x1b38  W32Time - ok
11:54:18.0906 0x1b38  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
11:54:18.0917 0x1b38  WacomPen - ok
11:54:18.0933 0x1b38  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:54:18.0956 0x1b38  WANARP - ok
11:54:18.0961 0x1b38  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:54:18.0984 0x1b38  Wanarpv6 - ok
11:54:19.0045 0x1b38  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
11:54:19.0086 0x1b38  wbengine - ok
11:54:19.0103 0x1b38  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:54:19.0143 0x1b38  WbioSrvc - ok
11:54:19.0213 0x1b38  [ BB86A52B20C05B9F49840244D1F67C81, 8113A7C882E9089C42AA59AFAA6D22D3178ACFC3D8D172A7DD04FDC7AEF5A13D ] Wcd.Service     C:\Program Files\eXtis GmbH\WCD-Windows Control Daemon\Wcd.Service.exe
11:54:19.0236 0x1b38  Wcd.Service - detected UnsignedFile.Multi.Generic ( 1 )
11:54:19.0237 0x1b38  Wcd.Service ( UnsignedFile.Multi.Generic ) - warning
11:54:19.0450 0x1b38  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:54:19.0494 0x1b38  wcncsvc - ok
11:54:19.0520 0x1b38  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:54:19.0533 0x1b38  WcsPlugInService - ok
11:54:19.0557 0x1b38  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
11:54:19.0567 0x1b38  Wd - ok
11:54:19.0607 0x1b38  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:54:19.0632 0x1b38  Wdf01000 - ok
11:54:19.0686 0x1b38  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:54:19.0721 0x1b38  WdiServiceHost - ok
11:54:19.0726 0x1b38  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:54:19.0741 0x1b38  WdiSystemHost - ok
11:54:19.0785 0x1b38  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
11:54:19.0803 0x1b38  WebClient - ok
11:54:19.0833 0x1b38  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:54:19.0862 0x1b38  Wecsvc - ok
11:54:19.0880 0x1b38  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:54:19.0906 0x1b38  wercplsupport - ok
11:54:19.0920 0x1b38  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
11:54:19.0948 0x1b38  WerSvc - ok
11:54:19.0966 0x1b38  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:54:19.0989 0x1b38  WfpLwf - ok
11:54:20.0003 0x1b38  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:54:20.0013 0x1b38  WIMMount - ok
11:54:20.0077 0x1b38  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
11:54:20.0122 0x1b38  WinDefend - ok
11:54:20.0132 0x1b38  WinHttpAutoProxySvc - ok
11:54:20.0205 0x1b38  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:54:20.0256 0x1b38  Winmgmt - ok
11:54:20.0330 0x1b38  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:54:20.0371 0x1b38  WinRM - ok
11:54:20.0413 0x1b38  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
11:54:20.0430 0x1b38  WinUsb - ok
11:54:20.0474 0x1b38  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:54:20.0526 0x1b38  Wlansvc - ok
11:54:20.0658 0x1b38  [ 5E7C103F8475C4289847D15E129C20F7, C6325D3557545FA1DA26B0B1EA9A1C95AED1FA84A93BE29A771DAD9ECB00768B ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:54:20.0707 0x1b38  wlidsvc - ok
11:54:20.0742 0x1b38  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:54:20.0753 0x1b38  WmiAcpi - ok
11:54:20.0783 0x1b38  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:54:20.0796 0x1b38  wmiApSrv - ok
11:54:20.0871 0x1b38  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
11:54:20.0909 0x1b38  WMPNetworkSvc - ok
11:54:20.0939 0x1b38  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:54:20.0953 0x1b38  WPCSvc - ok
11:54:20.0962 0x1b38  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:54:20.0978 0x1b38  WPDBusEnum - ok
11:54:20.0988 0x1b38  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:54:21.0032 0x1b38  ws2ifsl - ok
11:54:21.0063 0x1b38  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
11:54:21.0081 0x1b38  wscsvc - ok
11:54:21.0086 0x1b38  WSearch - ok
11:54:21.0199 0x1b38  [ FAC7617DD8A8CCCBBB9D36C39AFA5ABE, 64BB658523F4610B6D092BD390D24307F0A545ABA5C78B5DB50B7AA9E65C6A51 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:54:21.0289 0x1b38  wuauserv - ok
11:54:21.0328 0x1b38  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:54:21.0358 0x1b38  WudfPf - ok
11:54:21.0385 0x1b38  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:54:21.0420 0x1b38  WUDFRd - ok
11:54:21.0445 0x1b38  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:54:21.0484 0x1b38  wudfsvc - ok
11:54:21.0528 0x1b38  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:54:21.0565 0x1b38  WwanSvc - ok
11:54:21.0583 0x1b38  ================ Scan global ===============================
11:54:21.0622 0x1b38  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
11:54:21.0674 0x1b38  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
11:54:21.0688 0x1b38  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
11:54:21.0717 0x1b38  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
11:54:21.0772 0x1b38  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
11:54:21.0779 0x1b38  [ Global ] - ok
11:54:21.0779 0x1b38  ================ Scan MBR ==================================
11:54:21.0786 0x1b38  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:54:22.0086 0x1b38  \Device\Harddisk0\DR0 - ok
11:54:22.0087 0x1b38  ================ Scan VBR ==================================
11:54:22.0094 0x1b38  [ 8E516A1526530D751B2C88716E665CA8 ] \Device\Harddisk0\DR0\Partition1
11:54:22.0096 0x1b38  \Device\Harddisk0\DR0\Partition1 - ok
11:54:22.0125 0x1b38  [ 664B5DE6A1A8062B275BFFBC01B57BB0 ] \Device\Harddisk0\DR0\Partition2
11:54:22.0126 0x1b38  \Device\Harddisk0\DR0\Partition2 - ok
11:54:22.0127 0x1b38  ================ Scan generic autorun ======================
11:54:22.0167 0x1b38  [ 606B4DD104477ED8AE0C4DCCA2A06F48, 21A5818822A0B2D52A068D1E3339ED4C767F4D83B081BF17B837E9B6E112EE61 ] C:\Windows\system32\igfxtray.exe
11:54:22.0178 0x1b38  IgfxTray - ok
11:54:22.0196 0x1b38  [ F975273537E5A6686C0C0118B1858086, CC053F4EC37728336BC7DE3227C20C59F7DEA9ED1FE632561838A52E5FA3C709 ] C:\Windows\system32\igfxpers.exe
11:54:22.0207 0x1b38  Persistence - ok
11:54:22.0285 0x1b38  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
11:54:22.0322 0x1b38  Sidebar - ok
11:54:22.0350 0x1b38  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
11:54:22.0367 0x1b38  mctadmin - ok
11:54:22.0398 0x1b38  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
11:54:22.0434 0x1b38  Sidebar - ok
11:54:22.0443 0x1b38  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
11:54:22.0467 0x1b38  mctadmin - ok
11:54:22.0572 0x1b38  Google Update - ok
11:54:22.0626 0x1b38  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
11:54:22.0661 0x1b38  Sidebar - ok
11:54:22.0684 0x1b38  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
11:54:22.0700 0x1b38  mctadmin - ok
11:54:22.0710 0x1b38  Win FW state via NFP2: enabled ( trusted )
11:54:22.0874 0x1b38  ============================================================
11:54:22.0874 0x1b38  Scan finished
11:54:22.0874 0x1b38  ============================================================
11:54:22.0884 0x1e74  Detected object count: 2
11:54:22.0884 0x1e74  Actual detected object count: 2
11:55:03.0025 0x1e74  gramblrclient ( UnsignedFile.Multi.Generic ) - skipped by user
11:55:03.0025 0x1e74  gramblrclient ( UnsignedFile.Multi.Generic ) - User select action: Skip 
11:55:03.0025 0x1e74  Wcd.Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:55:03.0025 0x1e74  Wcd.Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
         

Alt 17.01.2017, 12:05   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.01.2017, 18:34   #10
volkan123
 
ungültiges bild - Standard

ungültiges bild



adw cleaner
Code:
ATTFilter
# AdwCleaner v6.042 - Bericht erstellt am 17/01/2017 um 12:20:57
# Aktualisiert am 06/01/2017 von Malwarebytes
# Datenbank : 2017-01-17.1 [Lokal]
# Betriebssystem : Windows 7 Professional Service Pack 1 (X86)
# Benutzername : admin - BILDUNG
# Gestartet von : C:\Users\admin\Desktop\AdwCleaner_6.042.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\extensions\_frMembers_@free.testforspeed.com
[-] Ordner gelöscht: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\extensions\_fsMembers_@free.pdfconverterhq.com
[-] Ordner gelöscht: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\TestForSpeed_fr
[-] Ordner gelöscht: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\PDFConverterHQ_fs


***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}


***** [ Browser ] *****

[-] Firefox Einstellungen bereinigt: "browser.startup.homepage" -  "hxxp://hp.myway.com/testforspeed/LMDEDE/index.html?coId=7baa95768b5a4f19b99ff9508b351627&subId=29835132866&ln=de&n=78392799&ptb=C69575CE-2299-4ED2-AFE3-4A6E510E04B2&st=tab&p2=%5ECAL%5Exdm114%5ELMDEDE%5Ede&si=29835132866"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.BUTTON_STRUCTURE" -  "[{\"b\":232847713,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":232847714,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0\"},{\"b\":232847716,\"c\":\"mindspark.full\",\"p\":\"L.0.1\"},{\"b\":232847720,\"c\":\"mindspark.imagesearch\",\"p\":\"L.0.2\"},{\"b\":232847723,\"c\":\"mindspark.advanced\",\"p\":\"L.0.3\"},{\"b\":232847726,\"c\":\"mindspark.directorysearch\",\"p\":\"L.0.4\"},{\"b\":232847628,\"c\":\"mindspark.search\",\"p\":\"L.1\"},{\"b\":232847640,\"c\":\"mindspark.tipstoboostspeed\",\"p\":\"L.2\"},{\"b\":232847641,\"c\":\"mindspark.ehow\",\"p\":\"L.2.0\"},{\"b\":232847642,\"c\":\"mindspark.wikihow\",\"p\":\"L.2.1\"},{\"b\":232847643,\"c\":\"mindspark.digitalunite\",\"p\":\"L.2.2\"},{\"b\":232847644,\"c\":\"mindspark.frontiercommunications\",\"p\":\"L.2.3\"},{\"b\":232847645,\"c\":\"mindspark.auslogics\",\"p\":\"L.2.4\"},{\"b\":232847646,\"c\":\"mindspark.speedmatters\",\"p\":\"L.2.5\"},{\"b\":232847647,\"c\":\"mindspark.emailmenu\",\"p\":\"L.3\"},{\"b\":232847648,\"c\":\"mindspark.gmail\",\"p\":\"L.3.0\"},{\"b\":232847649,\"c\":\"mindspark.yahoomail\",\"p\":\"L.3.1\"},{\"b\":232847650,\"c\":\"mindspark.aolmail\",\"p\":\"L.3.2\"},{\"b\":232847651,\"c\":\"mindspark.outlook\",\"p\":\"L.3.3\"},{\"b\":232847652,\"c\":\"mindspark.watchmovies\",\"p\":\"L.4\"},{\"b\":232847653,\"c\":\"mindspark.hulu\",\"p\":\"L.4.0\"},{\"b\":232847654,\"c\":\"mindspark.youtube\",\"p\":\"L.4.1\"},{\"b\":232847655,\"c\":\"mindspark.amazoninstantvideo\",\"p\":\"L.4.2\"},{\"b\":232847656,\"c\":\"mindspark.netflix\",\"p\":\"L.4.3\"},{\"b\":232847657,\"c\":\"mindspark.snagfilms\",\"p\":\"L.4.4\"},{\"b\":232847658,\"c\":\"mindspark.networks\",\"p\":\"L.4.5\"},{\"b\":232847659,\"c\":\"mindspark.abc\",\"p\":\"L.4.5.0\"},{\"b\":232847660,\"c\":\"mindspark.cbs\",\"p\":\"L.4.5.1\"},{\"b\":232847661,\"c\":\"mindspark.nbc\",\"p\":\"L.4.5.2\"},{\"b\":232847662,\"c\":\"mindspark.fox\",\"p\":\"L.4.5.3\"},{\"b\":232847663,\"c\":\"mindspark.crackle\",\"p\":\"L.4.5.4\"},{\"b\":232847664,\"c\":\"mindspark.ustream\",\"p\":\"L.4.5.5\"},{\"b\":232847665,\"c\":\"mindspark.tvlistings\",\"p\":\"L.4.6\"},{\"b\":232847666,\"c\":\"mindspark.gamesmenu\",\"p\":\"L.5\"},{\"b\":232847667,\"c\":\"mindspark.gwlcuttherope\",\"p\":\"L.5.0\"},{\"b\":232847668,\"c\":\"mindspark.gwlbubbleshooter\",\"p\":\"L.5.1\"},{\"b\":232847669,\"c\":\"mindspark.gwlcandyrain2\",\"p\":\"L.5.2\"},{\"b\":232847670,\"c\":\"mindspark.gwlancientjewels\",\"p\":\"L.5.3\"},{\"b\":232847671,\"c\":\"mindspark.gtmmogamesdropdown\",\"p\":\"L.5.4\"},{\"b\":232847672,\"c\":\"mindspark.gwlbattlestargalacticaonline\",\"p\":\"L.5.4.0\"},{\"b\":232847673,\"c\":\"mindspark.gwlzoomumba\",\"p\":\"L.5.4.1\"},{\"b\":232847674,\"c\":\"mindspark.gwlgoodgameempire\",\"p\":\"L.5.4.2\"},{\"b\":232847675,\"c\":\"mindspark.gwlpiratestorm\",\"p\":\"L.5.4.3\"},{\"b\":232847676,\"c\":\"mindspark.gwlbigfarm\",\"p\":\"L.5.4.4\"},{\"b\":232847677,\"c\":\"mindspark.gtmoremmogames\",\"p\":\"L.5.4.5\"},{\"b\":232847678,\"c\":\"mindspark.gwlpuzzlesandarcade\",\"p\":\"L.5.5\"},{\"b\":232847679,\"c\":\"mindspark.gwlcardandboard\",\"p\":\"L.5.6\"},{\"b\":232847680,\"c\":\"mindspark.gwlsportsandaction\",\"p\":\"L.5.7\"},{\"b\":232847681,\"c\":\"mindspark.gwlfreecasino\",\"p\":\"L.5.8\"},{\"b\":232847682,\"c\":\"mindspark.gwlallgames\",\"p\":\"L.5.9\"},{\"b\":232847683,\"c\":\"mindspark.radio\",\"v\":\"1.1.4\",\"p\":\"L.6\"},{\"b\":232847730,\"c\":\"mindspark.wrench\",\"p\":\"R.0\"}]"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.browser.startup.homepage.prev" -  "hxxp://hp.myway.com/pdfconverterhq/ttab02/index.html?coId=d0dcc726f1e149ceb993595693c5b257&subId=27510808084&ln=de&n=782b49f8&ptb=14B66BC6-1E91-4B35-B962-AA5AEB2B4C4E&st=tab&p2=%5ECAM%5Exdm110%5ETTAB02%5Ede&si=27510808084"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.browser.startup.homepage.savedPrev" -  "true"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.browser.startup.homepage.tb" -  "hxxp://hp.myway.com/testforspeed/LMDEDE/index.html?coId=7baa95768b5a4f19b99ff9508b351627&subId=29835132866&ln=de&n=78392799&ptb=C69575CE-2299-4ED2-AFE3-4A6E510E04B2&st=tab&p2=%5ECAL%5Exdm114%5ELMDEDE%5Ede&si=29835132866"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.browser.startup.page.savedPrev" -  1
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.browser.startup.page.tb" -  1
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.browser.version.last" -  "50.0"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.coId" -  "7baa95768b5a4f19b99ff9508b351627"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.firstKnownVersion" -  "7.102.10.25955"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.homepage" -  "hxxp://hp.myway.com/testforspeed/LMDEDE/index.html?coId=7baa95768b5a4f19b99ff9508b351627&subId=29835132866&ln=de&n=78392799&ptb=C69575CE-2299-4ED2-AFE3-4A6E510E04B2&st=tab&p2=%5ECAL%5Exdm114%5ELMDEDE%5Ede&si=29835132866"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.hp.enabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.hp.guardType" -  "HPR"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.hp.user.defined" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.initialized" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installType" -  "XPI"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.dlpCountryCode" -  "DE"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.installDate" -  "2017011609"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.partnerId" -  "^CAL^xdm114^LMDEDE^de"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.partnerSubId" -  "29835132866"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.pixelUrl" -  "hxxp://free.testforspeed.com/install_pixels.jhtml?partner=^CAL^xdm114^LMDEDE^de&sub_id=29835132866&coId=7baa95768b5a4f19b99ff9508b351627&tbGuid=C69575CE-2299-4ED2-AFE3-4A6E510E04B2&offer_id=1685"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.success" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.installation.toolbarId" -  "C69575CE-2299-4ED2-AFE3-4A6E510E04B2"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.lastActivePing" -  "1484641142544"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.lastKnownVersion" -  "7.102.10.25955"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.lssState" -  "{\"previousLocales\":[\"de\",\"en-US\",\"en\"],\"supportedLocales\":[\"de\",\"es\",\"pt\",\"ja\",\"en\"],\"defaultLocale\":\"en\",\"supportedLocale\":\"de\",\"previousLocale\":\"de\"}"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.options.defaultSearch" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.options.homePageEnabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.options.keywordEnabled" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.options.tabEnabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.partnerPixelFired" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.productDeliveryOption.language" -  "de"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.productDeliveryOption.newTabURL" -  "hxxp://hp.myway.com/testforspeed/LMDEDE/index.html?p2=${partnerID}&n=${installDateHex}&st=tab&ptb=${toolbarID}&si=${partnerSubID}"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.productDeliveryOption.type" -  "ToolTab"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.successUrl" -  "hxxp://free.testforspeed.com/installComplete.jhtml"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.toolbarCollapsed" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.uninstallSurveyUrl" -  "hxxp://testforspeed.dl.myway.com/uninstall.jhtml?surveyUrl=hxxp%3A%2F%2Fwww.research.net%2Fr%2FHYSCVNM%3Fc%3D<!--toolbarID-->%26ptb%3D<!--partnerID-->"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._frMembers_.uninstallTasks" -  "{\"prefBranchesToDelete\":[\"extensions.toolbar.mindspark._frMembers_.\"],\"filesToDelete\":[\"C:\\\\Users\\\\admin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6qrh4sxw.default\\\\TestForSpeed_fr\\\\C69575CE-2299-4ED2-AFE3-4A6E510E04B2.sqlite\",\"C:\\\\Users\\\\admin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6qrh4sxw.default\\\\TestForSpeed_fr\"]}"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.BUTTON_STRUCTURE" -  "[{\"b\":226334762,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":226334763,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0\"},{\"b\":226334765,\"c\":\"mindspark.full\",\"p\":\"L.0.1\"},{\"b\":226334769,\"c\":\"mindspark.imagesearch\",\"p\":\"L.0.2\"},{\"b\":226334772,\"c\":\"mindspark.advanced\",\"p\":\"L.0.3\"},{\"b\":226334775,\"c\":\"mindspark.directorysearch\",\"p\":\"L.0.4\"},{\"b\":226334676,\"c\":\"mindspark.search\",\"p\":\"L.1\"},{\"b\":226334711,\"c\":\"mindspark.converttodoc\",\"v\":\"1.2.9\",\"p\":\"L.2\"},{\"b\":226334712,\"c\":\"mindspark.converttopdf\",\"v\":\"1.2.9\",\"p\":\"L.3\"},{\"b\":226334713,\"c\":\"mindspark.emailmenu\",\"p\":\"L.4\"},{\"b\":226334714,\"c\":\"mindspark.gmail\",\"p\":\"L.4.0\"},{\"b\":226334715,\"c\":\"mindspark.yahoomail\",\"p\":\"L.4.1\"},{\"b\":226334716,\"c\":\"mindspark.aolmail\",\"p\":\"L.4.2\"},{\"b\":226334717,\"c\":\"mindspark.outlook\",\"p\":\"L.4.3\"},{\"b\":226334718,\"c\":\"mindspark.todolist\",\"v\":\"1.2.0\",\"p\":\"L.5\"},{\"b\":226334719,\"c\":\"mindspark.translate\",\"v\":\"1.1.1\",\"p\":\"L.6\"},{\"b\":226765086,\"c\":\"mindspark.planningtools\",\"p\":\"L.7\"},{\"b\":226827528,\"c\":\"mindspark.mapsearch\",\"v\":\"1.5.3\",\"p\":\"L.7.0\"},{\"b\":226765088,\"c\":\"mindspark.calendar\",\"v\":\"1.1.1\",\"p\":\"L.7.1\"},{\"b\":226765089,\"c\":\"mindspark.worldclock\",\"v\":\"1.1.4\",\"p\":\"L.7.2\"},{\"b\":226765090,\"c\":\"mindspark.urlshortener\",\"v\":\"1.2.3\",\"p\":\"L.7.3\"},{\"b\":226765091,\"c\":\"mindspark.gasprices\",\"p\":\"L.7.4\"},{\"b\":226765092,\"c\":\"mindspark.stopwatchtimer\",\"p\":\"L.7.5\"},{\"b\":226765093,\"c\":\"mindspark.recipesearch\",\"p\":\"L.7.6\"},{\"b\":226765094,\"c\":\"mindspark.zipcodelookup\",\"v\":\"1.1.1\",\"p\":\"L.7.7\"},{\"b\":226334779,\"c\":\"mindspark.wrench\",\"p\":\"R.0\"}]"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.browser.startup.homepage.savedPrev" -  "true"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.browser.startup.homepage.tb" -  "hxxp://hp.myway.com/pdfconverterhq/ttab02/index.html?coId=d0dcc726f1e149ceb993595693c5b257&subId=27510808084&ln=de&n=782b49f8&ptb=14B66BC6-1E91-4B35-B962-AA5AEB2B4C4E&st=tab&p2=%5ECAM%5Exdm110%5ETTAB02%5Ede&si=27510808084"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.browser.startup.page.savedPrev" -  1
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.browser.startup.page.tb" -  1
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.browser.version.last" -  "50.0"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.coId" -  "d0dcc726f1e149ceb993595693c5b257"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.firstKnownVersion" -  "7.102.10.4849"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.homepage" -  "hxxp://hp.myway.com/pdfconverterhq/ttab02/index.html?coId=d0dcc726f1e149ceb993595693c5b257&subId=27510808084&ln=de&n=782b49f8&ptb=14B66BC6-1E91-4B35-B962-AA5AEB2B4C4E&st=tab&p2=%5ECAM%5Exdm110%5ETTAB02%5Ede&si=27510808084"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.hp.enabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.hp.guardType" -  "HPR"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.hp.user.defined" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.initialized" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installType" -  "XPI"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.dlpCountryCode" -  "DE"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.installDate" -  "2016102904"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.partnerId" -  "^CAM^xdm110^TTAB02^de"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.partnerSubId" -  "27510808084"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.pixelUrl" -  "hxxp://free.pdfconverterhq.com/install_pixels.jhtml?partner=^CAM^xdm110^TTAB02^de&sub_id=27510808084&coId=d0dcc726f1e149ceb993595693c5b257&tbGuid=14B66BC6-1E91-4B35-B962-AA5AEB2B4C4E&offer_id=1673&cake_id=8ELAqiamVT2HWb2V-zwt_qPsYgOIs_TKTaq-SGK2fmzi2U82K5Qj33JmQ6Ii1Ji1JyTh_4vlp1Y5bNBLamAFgwElgpdYsgNt6mxeG7UVPabC0m35Y14p_mkDJUVCKNY6U4DfITzAWrlmxg9bXM7U7qoTauNbfEZtZynH-9yX5LywqV4-Gm3qeK_BY3wlYj5BXss7P1mGdj0FrF7w-QzeCJ1BgTJUviMRX4qbq4SL5Jp_qhQ0ib8_xVK7IlmtNPPcWnRW0P8lIAY4H1OQJLisuQ"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.success" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.installation.toolbarId" -  "14B66BC6-1E91-4B35-B962-AA5AEB2B4C4E"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.lastActivePing" -  "1484639942391"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.lastKnownVersion" -  "7.102.10.4849"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.lssState" -  "{\"previousLocales\":[\"de\",\"en-US\",\"en\"],\"supportedLocales\":[\"de\",\"es\",\"pt\",\"ja\",\"en\"],\"defaultLocale\":\"en\",\"supportedLocale\":\"de\",\"previousLocale\":\"de\"}"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.options.defaultSearch" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.options.homePageEnabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.options.keywordEnabled" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.options.tabEnabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.partnerPixelFired" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.productDeliveryOption.language" -  "de"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.productDeliveryOption.newTabURL" -  "hxxp://hp.myway.com/pdfconverterhq/ttab02/index.html?p2=${partnerID}&n=${installDateHex}&st=tab&ptb=${toolbarID}&si=${partnerSubID}"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.productDeliveryOption.type" -  "ToolTab"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.successUrl" -  "hxxp://free.pdfconverterhq.com/installComplete.jhtml"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.toolbar.versionChanged" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.toolbarCollapsed" -  false
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.uninstallSurveyUrl" -  "hxxp://www.research.net/r/HYSCVNM?CBID=<!--cobrandID-->&c=<!--toolbarID-->"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark._fsMembers_.uninstallTasks" -  "{\"prefBranchesToDelete\":[\"extensions.toolbar.mindspark._fsMembers_.\"],\"filesToDelete\":[\"C:\\\\Users\\\\admin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6qrh4sxw.default\\\\PDFConverterHQ_fs\\\\14B66BC6-1E91-4B35-B962-AA5AEB2B4C4E.sqlite\",\"C:\\\\Users\\\\admin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\6qrh4sxw.default\\\\PDFConverterHQ_fs\"]}"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark.hp.enabled" -  true
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark.hp.enabled.guid" -  "pdfconverterhq@mindspark.com"
[-] Firefox Einstellungen bereinigt: "extensions.toolbar.mindspark.lastInstalled" -  "testforspeed@mindspark.com"


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [19232 Bytes] - [17/01/2017 12:20:57]
C:\AdwCleaner\AdwCleaner[S0].txt - [17095 Bytes] - [17/01/2017 12:13:04]
C:\AdwCleaner\AdwCleaner[S1].txt - [17168 Bytes] - [17/01/2017 12:20:19]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [19454 Bytes] ##########
         
jrt

Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 7 Professional x86 
Ran by admin (Administrator) on 17.01.2017 at 12:31:04,16
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 33 

Successfully deleted: C:\ProgramData\mntemp (File) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1BXKUI7T (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2IT9SOJH (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4X75J6FF (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BJK6DHNR (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CQ79RSG4 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DCUNZR2Q (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FT029NJM (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GQTELWSI (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HHFY2NXA (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IF9U00VA (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MJY8GG94 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P1L7MDNH (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SJVRQUE4 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V2Z1HYNN (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YY2JOLXT (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZW9T61FP (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1BXKUI7T (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2IT9SOJH (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4X75J6FF (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BJK6DHNR (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CQ79RSG4 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DCUNZR2Q (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FT029NJM (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GQTELWSI (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HHFY2NXA (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IF9U00VA (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MJY8GG94 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\P1L7MDNH (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SJVRQUE4 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V2Z1HYNN (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YY2JOLXT (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZW9T61FP (Temporary Internet Files Folder) 



Registry: 1 

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.01.2017 at 12:33:14,97
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
Könntest du mir bitte weitere anweisungen geben

Alt 17.01.2017, 21:59   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.01.2017, 23:05   #12
volkan123
 
ungültiges bild - Standard

ungültiges bild



frst
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 15-01-2017
durchgeführt von admin (Administrator) auf BILDUNG (17-01-2017 23:02:48)
Gestartet von C:\Users\admin\Downloads
Geladene Profile: admin (Verfügbare Profile: admin & Schueler & Simatic & Administrator)
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
(Siemens AG) C:\Program Files\Common Files\Siemens\AlmPanelPlugin\ALMPanelPlugin.exe
(Chip Digital GmbH) C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files\Gramblr\gramblr.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(National Instruments, Inc.) C:\Windows\System32\lkcitdl.exe
(National Instruments Corporation) C:\Windows\System32\lkads.exe
(National Instruments Corporation) C:\Windows\System32\lktsrv.exe
(Intel Corporation) C:\Program Files\Intel\AMT\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
() C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
( ) C:\Program Files\Autodesk\Inventor 2013\Moldflow\bin\mitsijm.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(National Instruments Corporation) C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation) C:\Windows\System32\nisvcloc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(SIEMENS AG) C:\Program Files\Siemens\Step7\S7BIN\s7hspsvx.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe
(Siemens AG) C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\SimNetCom\pniomgr.exe
(FLB SOFTWARE) C:\Program Files\eXtis GmbH\WCD-Windows Control Daemon\Wcd.Service.exe
(SIEMENS AG) C:\Program Files\Common Files\Siemens\SimNetCom\pniopcac.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(VMware, Inc.) C:\Program Files\VMware\VMware Player\vmware-authd.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Wondershare) C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
() C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
() C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [NI Background Service] => C:\Program Files\National Instruments\Shared\Update Service\BackgroundService.exe [77824 2009-08-25] (National Instruments)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-08-18] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2384984 2016-12-09] (Adobe Systems Incorporated)
HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\...\MountPoints2: {e114c846-8877-11e6-ab2b-005056c00008} - F:\HiSuiteDownLoader.exe
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [Symbol-Overlay-Steuerprogramm für AutoCAD Digitale Signaturen] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-07] (Autodesk, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK-Konfigurationstool.lnk [2016-09-29]
ShortcutTarget: TP-LINK-Konfigurationstool.lnk -> C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe ()

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{DF220607-2E7A-41EA-B1CF-19D4CCD352C0}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{EE4B481D-51C5-46AC-BA6B-1E7056BD17CC}: [DhcpNameServer] 10.1.0.2

Internet Explorer:
==================
HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10] (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-23] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-23] (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10] (Adobe Systems Incorporated.)
IE Session Restore: HKU\S-1-5-21-2562889154-1593366337-4015798880-1012 -> ist aktiviert.
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-08-16] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default [2017-01-17]
FF Extension: (Fireforce) - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\6qrh4sxw.default\Extensions\fireforce@scrt.ch.xpi [2016-12-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-03-04] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-23] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-23] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-17] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-17] (NVIDIA Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-06-07] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-05] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-12-09] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv86win32.dll [2008-12-10] (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv90win32.dll [2009-10-07] (National Instruments)

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [284016 2008-08-15] (Adobe Systems Incorporated)
R2 AdobeUpdateService; C:\Program Files\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [753240 2016-12-09] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated)
R2 almservice; C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe [1138312 2011-12-11] (SIEMENS AG) [Datei ist nicht signiert]
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
R2 chip1click; C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe [91136 2016-10-27] (Chip Digital GmbH) [Datei ist nicht signiert]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2013-10-30] (Flexera Software, Inc.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [915600 2015-08-18] (NVIDIA Corporation)
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [7727696 2017-01-07] () [Datei ist nicht signiert]
R2 hasplms; C:\Windows\system32\hasplms.exe [4609928 2013-08-01] (SafeNet Inc.)
R2 LkCitadelServer; C:\Windows\system32\lkcitdl.exe [695136 2010-03-05] (National Instruments, Inc.)
R2 lkClassAds; C:\Windows\system32\lkads.exe [45168 2010-09-29] (National Instruments Corporation)
R2 lkTimeSync; C:\Windows\system32\lktsrv.exe [55928 2010-09-29] (National Instruments Corporation)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [Datei ist nicht signiert]
R2 mi-raysat_3dsmax2013_32; C:\Programme\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe [86016 2011-09-15] () [Datei ist nicht signiert]
R2 mitsijm2013; C:\Programme\Autodesk\Inventor 2013\Moldflow\bin\mitsijm.exe [257344 2012-01-31] ( )
R2 MSSQL$KNXETS4; C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\sqlservr.exe [43130032 2015-03-29] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R2 MSSQL$WINCCFLEXEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S4 msvsmon90; C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe [3004416 2007-11-07] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NIDomainService; C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe [361080 2010-09-29] (National Instruments Corporation)
S4 NILM License Manager; C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe [1007616 2009-09-18] (Macrovision Corporation) [Datei ist nicht signiert]
R2 niSvcLoc; C:\Windows\system32\nisvcloc.exe [13896 2009-06-04] (National Instruments Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-08-18] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19775632 2015-08-18] (NVIDIA Corporation)
S3 OpcEnum; C:\Windows\system32\OPCEnum.exe [139488 2009-02-05] (OPC Foundation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2014-11-17] (Hewlett-Packard) [Datei ist nicht signiert]
R2 s7hspsvx; C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe [61493 2011-05-30] (SIEMENS AG) [Datei ist nicht signiert]
R2 s7oiehsx; C:\Program Files\Common Files\Siemens\S7IEPG\s7oiehsx.exe [412808 2011-11-04] (SIEMENS AG) [Datei ist nicht signiert]
R2 S7TraceServiceX; C:\Program Files\Common Files\Siemens\Automation\TraceEngine\bin\S7TraceServiceX.exe [556168 2011-11-04] (SIEMENS AG) [Datei ist nicht signiert]
U2 smartserver; C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe [558416 2011-12-06] (Siemens AG)
S4 SQLAgent$KNXETS4; C:\Program Files\Microsoft SQL Server\MSSQL10_50.KNXETS4\MSSQL\Binn\SQLAGENT.EXE [381104 2015-03-29] (Microsoft Corporation)
R2 UNS; C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2066968 2009-07-21] (Intel Corporation)
R2 VMAuthdService; C:\Program Files\VMware\VMware Player\vmware-authd.exe [87120 2013-02-26] (VMware, Inc.)
S4 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [357456 2013-02-26] (VMware, Inc.)
R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [721048 2012-10-11] (VMware, Inc.)
S4 VMware NAT Service; C:\Windows\system32\vmnat.exe [436304 2013-02-26] (VMware, Inc.)
U2 Wcd.Service; C:\Program Files\eXtis GmbH\WCD-Windows Control Daemon\Wcd.Service.exe [20480 2012-11-09] (FLB SOFTWARE) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [376200 2013-08-01] (SafeNet Inc.)
R2 cvintdrv; C:\Windows\system32\Drivers\cvintdrv.sys [4096 2009-05-29] () [Datei ist nicht signiert]
R1 dpmconv; C:\Windows\System32\DRIVERS\dpmconv32.sys [288256 2011-04-19] (SIEMENS AG)
S3 dpmcslv; C:\Windows\system32\Drivers\dpmcslv.sys [68280 2005-07-04] (Siemens AG) [Datei ist nicht signiert]
R1 DPMTRCDD; C:\Windows\System32\DRIVERS\DPMTRCDD32.sys [72248 2010-03-22] (SIEMENS AG)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
R3 fwkbdrtm; C:\Windows\system32\drivers\fwkbdrtm.sys [21464 2011-12-06] (Windows (R) Win 7 DDK provider)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [608648 2013-08-01] (SafeNet Inc.)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41496 2012-10-11] (VMware, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [32912 2015-08-18] (NVIDIA Corporation)
R3 Pei10Wdm; C:\Windows\System32\Drivers\Pei10Wdm.sys [35547 2012-05-23] (EIBA s.c.) [Datei ist nicht signiert]
R3 Pei16Wdm; C:\Windows\System32\Drivers\Pei16Wdm.sys [34683 2012-05-23] (EIBA s.c.) [Datei ist nicht signiert]
S4 RsFx0153; C:\Windows\System32\DRIVERS\RsFx0153.sys [250152 2015-03-29] (Microsoft Corporation)
R3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3200264 2015-06-19] (Realtek Semiconductor Corporation                           )
R3 S7odpx2x32; C:\Windows\System32\Drivers\S7odpx2x32.sys [87552 2011-05-06] (SIEMENS AG)
R3 s7osmcax32; C:\Windows\System32\Drivers\s7osmcax32.sys [186368 2011-09-29] (SIEMENS AG)
R3 S7otranx32; C:\Windows\System32\Drivers\S7otranx32.sys [521216 2011-05-06] (SIEMENS AG)
R3 s7otsadx32; C:\Windows\System32\Drivers\s7otsadx32.sys [182784 2011-09-29] (SIEMENS AG)
S3 s7oupc2x; C:\Windows\System32\DRIVERS\s7oupc2x.sys [24576 2011-05-06] (SIEMENS AG)
R2 s7ousbu32x; C:\Windows\System32\DRIVERS\s7ousbu32x.sys [641280 2011-09-29] (SIEMENS AG)
R2 s7sn2srtx; C:\Windows\System32\DRIVERS\s7sn2srtx.sys [63104 2011-06-16] (SIEMENS AG) [Datei ist nicht signiert]
R2 SNTIE; C:\Windows\System32\DRIVERS\sntie.sys [343888 2011-10-11] (SIEMENS AG)
R3 vmkbd; C:\Windows\system32\drivers\VMkbd.sys [26064 2013-02-26] (VMware, Inc.)
R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [16664 2013-02-26] (VMware, Inc.)
R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37016 2013-02-26] (VMware, Inc.)
R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26192 2013-02-26] (VMware, Inc.)
R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [24272 2013-02-26] (VMware, Inc.)
R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [62416 2013-02-26] (VMware, Inc.)
R1 vsnl2ada; C:\Windows\System32\DRIVERS\vsnl2ada32.sys [140288 2011-04-19] (SIEMENS AG)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [61464 2012-10-24] (VMware, Inc.)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-17 23:00 - 2017-01-17 23:00 - 00004510 _____ C:\TDSSKiller.3.1.0.12_17.01.2017_23.00.33_log.txt
2017-01-17 12:33 - 2017-01-17 12:33 - 00005988 _____ C:\Users\admin\Desktop\JRT.txt
2017-01-17 12:28 - 2017-01-17 12:29 - 01663040 _____ (Malwarebytes) C:\Users\admin\Desktop\JRT.exe
2017-01-17 12:09 - 2017-01-17 12:20 - 00000000 ____D C:\AdwCleaner
2017-01-17 12:06 - 2017-01-17 12:06 - 03988944 _____ C:\Users\admin\Desktop\AdwCleaner_6.042.exe
2017-01-17 11:49 - 2017-01-17 12:04 - 00445608 _____ C:\TDSSKiller.3.1.0.12_17.01.2017_11.49.14_log.txt
2017-01-17 10:50 - 2017-01-17 10:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-17 10:49 - 2017-01-17 11:46 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-01-17 10:49 - 2017-01-17 10:49 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-01-17 10:47 - 2017-01-17 11:46 - 00000000 ____D C:\Users\admin\Desktop\mbar
2017-01-17 10:47 - 2017-01-17 10:47 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-01-17 10:46 - 2017-01-17 10:47 - 04747704 _____ (AO Kaspersky Lab) C:\Users\admin\Desktop\tdsskiller.exe
2017-01-17 10:44 - 2017-01-17 10:45 - 16563352 _____ (Malwarebytes Corp.) C:\Users\admin\Downloads\mbar-1.09.3.1001.exe
2017-01-17 10:15 - 2017-01-17 10:15 - 00000000 ____D C:\sw_installing
2017-01-16 21:30 - 2017-01-16 21:30 - 00001197 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2017-01-16 21:30 - 2017-01-16 21:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2017-01-16 21:30 - 2017-01-16 21:30 - 00000000 ____D C:\Program Files\VS Revo Group
2017-01-16 21:26 - 2017-01-16 21:29 - 07097928 _____ (VS Revo Group ) C:\Users\admin\Downloads\revo202setup.exe
2017-01-16 21:22 - 2017-01-17 08:11 - 00056677 _____ C:\Users\admin\Downloads\Addition.txt
2017-01-16 21:21 - 2017-01-17 23:03 - 00021912 _____ C:\Users\admin\Downloads\FRST.txt
2017-01-16 21:20 - 2017-01-17 23:02 - 00000000 ____D C:\FRST
2017-01-16 21:19 - 2017-01-16 21:20 - 01761280 _____ (Farbar) C:\Users\admin\Downloads\FRST.exe
2017-01-16 19:59 - 2017-01-16 19:59 - 00001266 _____ C:\Users\admin\Desktop\Adobe Photoshop CC 2017 (32 Bit).lnk
2017-01-16 14:23 - 2017-01-17 21:32 - 00000000 ___RD C:\Users\admin\Creative Cloud Files
2017-01-16 14:23 - 2017-01-17 21:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-01-16 14:21 - 2017-01-16 14:21 - 00000000 ____D C:\Users\admin\AppData\Local\CEF
2017-01-16 14:17 - 2017-01-16 14:17 - 00001201 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-01-16 14:17 - 2017-01-16 14:17 - 00001189 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2017-01-16 13:39 - 2017-01-16 13:39 - 00804440 _____ (Adobe Systems Incorporated) C:\Users\admin\Desktop\CreativeCloudSet-Up.exe
2017-01-11 19:55 - 2017-01-05 18:43 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 19:54 - 2017-01-05 18:46 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 19:54 - 2017-01-05 18:46 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 19:54 - 2017-01-05 18:43 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 19:54 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 19:54 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 19:54 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 19:54 - 2017-01-05 18:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 19:54 - 2017-01-05 18:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 19:54 - 2017-01-05 18:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 19:54 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 19:54 - 2017-01-05 18:19 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 19:54 - 2017-01-05 18:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-08 21:05 - 2017-01-08 21:05 - 00001409 _____ C:\Users\admin\.youtube-upload-credentials.json
2017-01-08 20:47 - 2017-01-08 20:47 - 00000000 ____D C:\ProgramData\Wondershare
2017-01-08 20:46 - 2017-01-08 20:50 - 00013640 _____ C:\Users\admin\Documents\starburn.txt
2017-01-08 20:46 - 2017-01-08 20:46 - 00001267 _____ C:\Users\Public\Desktop\Wondershare Filmora.lnk
2017-01-08 20:46 - 2017-01-08 20:46 - 00000000 ____D C:\Users\admin\AppData\Local\Wondershare
2017-01-08 20:46 - 2017-01-08 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-01-08 20:46 - 2017-01-08 20:46 - 00000000 ____D C:\Program Files\Common Files\Wondershare
2017-01-08 20:44 - 2017-01-08 21:01 - 00000000 ____D C:\Users\admin\Documents\Wondershare Filmora
2017-01-08 20:44 - 2017-01-08 20:44 - 00000000 ____D C:\ProgramData\Wondershare Video Editor
2017-01-08 20:44 - 2017-01-08 20:44 - 00000000 ____D C:\Program Files\Wondershare
2017-01-08 20:40 - 2015-08-17 22:28 - 00606896 _____ (NVIDIA Corporation) C:\Windows\system32\nvStreaming.exe
2017-01-08 20:33 - 2017-01-08 20:33 - 00000000 ____D C:\Users\admin\CD95F661A5C444F5A6AAECDD91C24104.TMP
2017-01-08 20:30 - 2017-01-08 20:44 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2017-01-08 20:30 - 2017-01-08 20:30 - 01284240 _____ C:\Users\admin\Downloads\video-editor_setup_full1080.exe
2017-01-07 00:56 - 2017-01-16 22:07 - 00000000 ____D C:\Users\admin\Documents\Visual Studio 2008
2017-01-07 00:54 - 2017-01-07 00:54 - 00038757 _____ C:\Users\admin\Downloads\butt-ass-tattoo-sexy-2317121
2017-01-07 00:51 - 2017-01-17 23:03 - 00000000 ____D C:\ProgramData\Gramblr
2017-01-07 00:51 - 2017-01-07 00:52 - 00000000 ____D C:\Program Files\Gramblr
2017-01-07 00:51 - 2017-01-07 00:51 - 00000961 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gramblr.lnk
2016-12-28 22:58 - 2016-12-28 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2016-12-28 22:58 - 2016-12-28 22:58 - 00000000 ____D C:\Program Files\Microsoft
2016-12-28 00:06 - 2016-12-28 00:06 - 01378498 _____ C:\Users\admin\Desktop\2016-03-01_56d5c065b3241_KungFuPanda32016R0CustomDVDCover.jpg
2016-12-28 00:06 - 2016-12-28 00:06 - 00000000 ____D C:\Users\admin\AppData\Local\VideoEditor
2016-12-28 00:06 - 2016-12-28 00:06 - 00000000 ____D C:\Users\admin\AppData\Local\Movavi
2016-12-28 00:05 - 2016-12-28 00:05 - 00001088 _____ C:\Users\Public\Desktop\Movavi Video Editor 12.lnk
2016-12-28 00:05 - 2016-12-28 00:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movavi Video Editor 12
2016-12-28 00:04 - 2016-12-28 00:05 - 00000000 ____D C:\Program Files\Movavi Video Editor 12
2016-12-28 00:04 - 2016-12-28 00:04 - 00005051 _____ C:\ProgramData\czchsjpj.srw
2016-12-28 00:04 - 2016-12-28 00:04 - 00000000 ____D C:\ProgramData\Movavi Video Editor 12
2016-12-27 23:59 - 2016-12-28 00:03 - 52850208 _____ (Movavi) C:\Users\admin\Downloads\MovaviVideoEditorSetupF.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-17 22:58 - 2016-11-16 15:37 - 00000000 ____D C:\Users\admin\AppData\LocalLow\Mozilla
2017-01-17 22:33 - 2009-07-14 05:34 - 00023328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-17 22:33 - 2009-07-14 05:34 - 00023328 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-17 21:31 - 2014-05-23 13:28 - 00000000 ____D C:\Users\admin\AppData\Local\Adobe
2017-01-17 21:23 - 2015-09-22 11:17 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-17 21:23 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-17 12:20 - 2014-05-19 13:30 - 00000008 __RSH C:\Users\admin\ntuser.pol
2017-01-17 12:20 - 2014-05-19 13:30 - 00000000 ____D C:\Users\admin
2017-01-17 12:20 - 2013-10-29 13:31 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-01-17 10:12 - 2013-10-30 15:00 - 00000000 ____D C:\ProgramData\Avira
2017-01-16 19:59 - 2016-10-01 17:23 - 00000000 ____D C:\Users\admin\Documents\Adobe
2017-01-16 19:59 - 2014-05-19 13:30 - 00000000 ____D C:\Users\admin\AppData\Roaming\Adobe
2017-01-16 19:59 - 2013-10-30 09:35 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-01-16 14:53 - 2013-10-30 09:34 - 00000000 ____D C:\ProgramData\Adobe
2017-01-16 14:24 - 2013-10-30 09:35 - 00000000 ____D C:\Program Files\Adobe
2017-01-16 14:16 - 2014-05-16 11:36 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-14 19:07 - 2016-10-07 05:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-01-14 19:03 - 2016-10-01 16:27 - 00000000 ____D C:\Users\admin\AppData\Roaming\vlc
2017-01-12 19:50 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2017-01-11 21:14 - 2013-10-29 15:52 - 00000000 ____D C:\Windows\system32\MRT
2017-01-11 21:09 - 2013-10-29 15:52 - 133456224 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-11 19:32 - 2009-07-14 05:33 - 02563880 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-08 20:47 - 2014-05-19 13:30 - 00194736 _____ C:\Users\admin\AppData\Local\GDIPFONTCACHEV1.DAT
2017-01-08 20:44 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-01-08 20:41 - 2015-09-22 11:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-08 20:41 - 2013-10-30 13:29 - 00000000 ____D C:\Temp
2016-12-30 05:32 - 2016-05-13 08:46 - 00042496 ___SH C:\Users\sasshein\ntuser.dat.LOG1
2016-12-30 05:32 - 2016-02-15 10:02 - 00262144 ___SH C:\Users\biebmatt\ntuser.dat.LOG1
2016-12-30 05:32 - 2016-01-27 13:40 - 00262144 ___SH C:\Users\lorecoli\ntuser.dat.LOG1
2016-12-30 05:32 - 2015-03-06 10:20 - 00230400 ___SH C:\Users\philandr\ntuser.dat.LOG1
2016-12-30 05:32 - 2013-10-29 13:07 - 00262144 ___SH C:\Users\Administrator\ntuser.dat.LOG1
2016-12-25 19:36 - 2009-07-14 05:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-12-23 15:15 - 2016-11-06 00:41 - 00000000 ____D C:\Users\admin\Desktop\Neuer Ordner (3)
2016-12-18 09:42 - 2016-11-16 04:03 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-12-18 09:42 - 2013-10-30 09:23 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-05-12 13:46 - 2014-05-12 13:46 - 0001153 _____ () C:\Program Files\OneLoupe - Verknüpfung.lnk
2014-05-12 13:46 - 2009-03-30 17:34 - 0025088 _____ (Nenad Hrg) C:\Program Files\OneLoupe.exe
2014-05-12 13:46 - 2014-05-12 13:47 - 0000053 _____ () C:\Program Files\OneLoupe.ini
2014-05-12 13:15 - 2014-05-12 13:42 - 0001764 _____ () C:\ProgramData\CADdy++1000.ini
2014-05-12 13:15 - 2014-05-12 13:42 - 0001764 _____ () C:\ProgramData\CADdy++1010.ini
2014-05-12 13:15 - 2014-05-12 13:42 - 0001764 _____ () C:\ProgramData\CADdy++1100.ini
2014-05-12 13:15 - 2014-05-12 13:15 - 0005784 _____ () C:\ProgramData\CAEManager.lcs
2016-12-28 00:04 - 2016-12-28 00:04 - 0005051 _____ () C:\ProgramData\czchsjpj.srw
2013-10-30 13:25 - 2013-10-30 13:25 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc

Einige Dateien in TEMP:
====================
C:\Users\admin\AppData\Local\Temp\AcDeltree.exe
C:\Users\admin\AppData\Local\Temp\avgnt.exe
C:\Users\admin\AppData\Local\Temp\callhelp.exe
C:\Users\admin\AppData\Local\Temp\FNP_ACT_InstallerCA.dll
C:\Users\admin\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\admin\AppData\Local\Temp\nvStInst.exe
C:\Users\Administrator\AppData\Local\Temp\AcDeltree.exe
C:\Users\Administrator\AppData\Local\Temp\avgnt.exe
C:\Users\Administrator\AppData\Local\Temp\exie.exe
C:\Users\Administrator\AppData\Local\Temp\expb.exe
C:\Users\Administrator\AppData\Local\Temp\FP_AX_MSI_INSTALLER.exe
C:\Users\Administrator\AppData\Local\Temp\FP_PL_MSI_INSTALLER.exe
C:\Users\Administrator\AppData\Local\Temp\ose00000.exe
C:\Users\Administrator\AppData\Local\Temp\ose00001.exe
C:\Users\Administrator\AppData\Local\Temp\ose00002.exe
C:\Users\Administrator\AppData\Local\Temp\simaticn.exe
C:\Users\biebmatt\AppData\Local\Temp\avgnt.exe
C:\Users\brokar.ESB-HAMM\AppData\Local\Temp\avgnt.exe
C:\Users\lorecoli\AppData\Local\Temp\avgnt.exe
C:\Users\mascmarc\AppData\Local\Temp\avgnt.exe
C:\Users\rosephil\AppData\Local\Temp\avgnt.exe
C:\Users\sasshein\AppData\Local\Temp\avgnt.exe
C:\Users\Schueler\AppData\Local\Temp\avgnt.exe
C:\Users\Simatic\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-01-14 21:30

==================== Ende vom FRST.txt ============================
         
addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 15-01-2017
durchgeführt von admin (17-01-2017 23:03:45)
Gestartet von C:\Users\admin\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) (2013-10-29 11:46:19)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

admin (S-1-5-21-2562889154-1593366337-4015798880-1012 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-2562889154-1593366337-4015798880-500 - Administrator - Enabled) => C:\Users\Administrator
Gast (S-1-5-21-2562889154-1593366337-4015798880-501 - Limited - Disabled)
Schueler (S-1-5-21-2562889154-1593366337-4015798880-1013 - Limited - Enabled) => C:\Users\Schueler
Simatic (S-1-5-21-2562889154-1593366337-4015798880-1015 - Limited - Enabled) => C:\Users\Simatic

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

32 Bit HP CIO Components Installer (Version: 18.1.4 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.2.443 - Adobe Systems Incorporated)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Master Collection (HKLM\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM\...\{3A6829EF-0791-4FDD-9382-C690DD0821B9}) (Version: 10.0.2.54 - Adobe Systems, Inc.)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (32 Bit) (HKLM\...\PHSP_18_0_1_32) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.04) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.04 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)
AutoCAD Architecture 2013 - Deutsch (German) (HKLM\...\AutoCAD Architecture 2013 - Deutsch (German)) (Version: 7.0.50.0 - Autodesk)
AutoCAD Architecture 2013 - Deutsch (German) (Version: 7.0.50.0 - Autodesk) Hidden
AutoCAD Architecture 2013 Language Pack - Deutsch (Version: 7.0.50.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 - Deutsch (German) (HKLM\...\AutoCAD Civil 3D 2013 - Deutsch (German)) (Version: 10.0.1111.0 - Autodesk)
AutoCAD Civil 3D 2013 - Deutsch (German) (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Civil 3D 2013 Language Pack - Deutsch (German) (Version: 10.0.1111.0 - Autodesk) Hidden
AutoCAD Mechanical 2013 - Deutsch (German) (HKLM\...\AutoCAD Mechanical 2013 - Deutsch (German)) (Version: 17.0.48.0 - Autodesk)
AutoCAD Mechanical 2013 - Deutsch (German) (Version: 17.0.48.0 - Autodesk) Hidden
AutoCAD Mechanical 2013 Language Pack - Deutsch (German) (Version: 17.0.48.0 - Autodesk) Hidden
Autodesk 3ds Max Design 2013 32-bit (HKLM\...\Autodesk 3ds Max Design 2013 32-bit) (Version: 15.0.0.347 - Autodesk)
Autodesk 3ds Max Design 2013 32-bit (Version: 15.0.0.347 - Autodesk) Hidden
Autodesk Backburner 2013.0.0 (HKLM\...\{3D347E6D-5A03-4342-B5BA-6A771885F379}) (Version: 2013.0.0 - Autodesk, Inc.)
Autodesk Civil View for 3ds Max Design 2013 (HKLM\...\{FE6DCC8D-427F-405C-A779-C93B6D9F77A5}) (Version: 1.0.0.2 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)
Autodesk Content Service (Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.0.84.0 - Autodesk) Hidden
Autodesk Design Review 2013 (HKLM\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)
Autodesk Design Review 2013 (Version: 13.0.0.82 - Autodesk, Inc.) Hidden
Autodesk DirectConnect 2013 32-bit (HKLM\...\Autodesk DirectConnect 2013 32-bit) (Version: 7.0.28.0 - Autodesk)
Autodesk DirectConnect 2013 32-bit (Version: 7.0.28.0 - Autodesk) Hidden
Autodesk Essential Skills Movies for 3ds Max Design 2013 32-bit (HKLM\...\{7FD5D1E2-EF17-4045-8D83-BB8E88C0D672}) (Version: 1.0.0.1 - Autodesk)
Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 (HKLM\...\Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013) (Version:  - Autodesk)
Autodesk Inventor Content Center Libraries 2013 (Desktop Content) (HKLM\...\{B46DECD1-1732-4EF1-0000-22D71E81877C}) (Version: 17.0.13800.0000 - Autodesk)
Autodesk Inventor Fusion 2013 (HKLM\...\Autodesk Inventor Fusion 2013) (Version: 2.0.0.206 - Autodesk, Inc.)
Autodesk Inventor Fusion 2013 (Version: 2.0.0.206 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Autodesk Inventor Fusion Plugin for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)
Autodesk Inventor Fusion Plugin for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Fusion Plugin Language Pack for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden
Autodesk Inventor Professional 2013 (Version: 17.0.13800.0000 - Autodesk) Hidden
Autodesk Inventor Professional 2013 Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2013) (Version: 17.0.13800.0000 - Autodesk)
Autodesk Inventor Professional 2013 Language Pack - Deutsch (German) (Version: 17.0.13800.0000 - Autodesk) Hidden
Autodesk Inventor Server Engine for 3ds Max Design 2013 32-bit (HKLM\...\{BC66B242-DF13-1632-851B-00123612ED98}) (Version: 15.0 - Autodesk)
Autodesk Inventor View 2013 (Version: 17.0.12600.0000 - Autodesk) Hidden
Autodesk Inventor View 2013 Deutsch (German) (HKLM\...\Autodesk Inventor View 2013) (Version: 17.0.12600.0000 - Autodesk)
Autodesk Inventor View 2013 Language Pack - Deutsch (German) (Version: 17.0.12600.0000 - Autodesk) Hidden
Autodesk Material Library 2013 (HKLM\...\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2013 (HKLM\...\{606E12B9-641F-4644-A22A-FF38AE980AFD}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2013 (HKLM\...\{27C6C0A2-2EC9-4FEA-BE2B-659EAAC2C68C}) (Version: 3.0.13 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2013 (HKLM\...\{58760EEC-8B6A-43F4-81AA-696E381DFADD}) (Version: 3.0.13 - Autodesk)
Autodesk Revit Architecture 2013 (HKLM\...\Autodesk Revit Architecture 2013) (Version: 12.02.21203 - Autodesk)
Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 32-bit (HKLM\...\{06E18300-BB64-1632-8E6A-2593FC67BB74}) (Version: 1.0.0.1 - Autodesk)
Autodesk SketchBook Designer 2013 (HKLM\...\Autodesk SketchBook Designer 2013) (Version: 3.00.0000 - Autodesk)
Autodesk SketchBook Designer 2013 (Version: 3.00.0000 - Autodesk) Hidden
Autodesk SketchBook Designer for AutoCAD 2013 (HKLM\...\Autodesk SketchBook Designer for AutoCAD 2013) (Version: 3.00.0000 - Autodesk)
Autodesk SketchBook Designer for AutoCAD 2013 (Version: 3.00.0000 - Autodesk) Hidden
Autodesk Sync (HKLM\...\{EE5F74BC-5CD5-4EF2-86BA-81E6CF46A18F}) (Version: 3.5.24.0 - Autodesk, Inc.)
Autodesk Vault Basic 2013 (Client) (HKLM\...\Autodesk Vault Basic 2013 (Client)) (Version: 17.0.61.0 - Autodesk)
Autodesk Vault Basic 2013 (Client) (Version: 17.0.61.0 - Autodesk) Hidden
Autodesk Vault Basic 2013 (Client) German Language Pack (Version: 17.0.61.0 - Autodesk) Hidden
Autodesk Workflows 2013 (HKLM\...\{06388E0D-A386-478B-8E40-7D76142A8DF1}) (Version: 3.0.10.0 - Autodesk)
chip 1-click download service (HKLM\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
Composite 2013 (HKLM\...\{92203FA0-7C43-429F-857C-0AE197D8199C}) (Version: 8.0.0 - Autodesk)
Connect (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Crystal Reports Basic for Visual Studio 2008 (HKLM\...\{AA467959-A1D6-4F45-90CD-11DC57733F32}) (Version: 10.5.0.0 - Business Objects)
Crystal Reports Basic German Language Pack for Visual Studio 2008 (HKLM\...\{3924C3E7-C440-4B23-9740-9A9EC0545F21}) (Version: 10.5.0.0 - Business Objects)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DASYLab 12.0.0 (HKLM\...\DLAB.{5B0CB826-E499-4E6B-94F0-75B6327ED934}) (Version: 12.0.0 - National Instruments)
DASYLab 12.0.0 OEM ARP (Version: 12.0.0287 - National Instruments) Hidden
DigitalSimulatorV5.57 (remove only) (HKLM\...\DigitalSimulatorV5.57) (Version:  - )
dso-220 usb(V5.0.0.1) (HKLM\...\dso-220 usb(V5.0.0.1)) (Version: 5.0.0.1 - oem)
DWG TrueView 2013 (HKLM\...\DWG TrueView 2013) (Version: 19.0.55.0 - Autodesk)
DWG TrueView 2013 (Version: 19.0.55.0 - Autodesk) Hidden
easy Whiteboard (HKLM\...\easy Whiteboard) (Version:  - FinanzPortal24 GmbH)
Eco Materials Adviser for Autodesk Inventor 2013 (HKLM\...\{39FF4C41-0C7E-498D-ABAA-3CC74830BA53}) (Version: 3.9.12.0 - Granta Design Limited)
FileZilla Client 3.7.1.1 (HKLM\...\FileZilla Client) (Version: 3.7.1.1 - Tim Kosse)
Fotogalerie (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GDR 4042 für SQL Server 2008 R2 (KB3045313) (HKLM\...\KB3045313) (Version: 10.52.4042.0 - Microsoft Corporation)
Gramblr (HKLM\...\Gramblr) (Version: 2.8.0 - Gramblr Team)
HI-TECH C51-lite V9.60PL0 (HKLM\...\HC51 9.60PL0) (Version: 9.60 - HI-TECH Software)
HI-TECH PICC lite V9.60PL0 (HKLM\...\PICC 9.60PL0) (Version: 9.60 - HI-TECH Software)
Hotfix für Microsoft Visual Studio 2008 Professional Edition - DEU (KBKB971091) (HKLM\...\{445174EA-3D3A-308E-84AD-446127E71441}.KB971091) (Version: 1 - Microsoft Corporation)
Hotfix für Microsoft Visual Studio 2008 Professional Edition - DEU (KBKB973674) (HKLM\...\{445174EA-3D3A-308E-84AD-446127E71441}.KB973674) (Version: 1 - Microsoft Corporation)
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2104 - Intel Corporation)
Intel(R) Management Engine Interface (HKLM\...\HECI) (Version:  - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 14.8 - Intel)
Intel® Active-Management-Technologie (HKLM\...\MESOL) (Version:  - Intel Corporation)
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java SE Development Kit 8 Update 45 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180450}) (Version: 8.0.450.14 - Oracle Corporation)
Keil µVision3 (HKLM\...\Keil µVision3) (Version:  - )
KNX eteC Falcon Runtime v2.1 (Version: 2.1.5213.27900 - KNX Association cvba) Hidden
KNX ETS4 (HKLM\...\KNX ETS4) (Version: 4.1.3246.36180 - KNX Association cvba)
KNX ETS4 (Version: 4.1.3246.36180 - KNX Association cvba) Hidden
KNX ETS4 Additional Runtime (Version: 4.0.0.0 - KNX Association cvba) Hidden
kuler (Version: 2.0 - Adobe Systems Incorporated) Hidden
LOGO!Soft Comfort V7.0  (HKLM\...\LOGO!Soft Comfort V7.0 ) (Version: 7.0.0.0 - Siemens AG)
Microsoft .NET Compact Framework 2.0 SP2 (HKLM\...\{B1060346-9388-4C5B-AA52-176C39819E43}) (Version: 2.0.7045 - Microsoft Corporation)
Microsoft .NET Compact Framework 3.5 (HKLM\...\{72CCBEA1-8D57-4981-A337-81019F28C5BA}) (Version: 3.5.7283 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Device Emulator Version 3.0 - DEU (HKLM\...\{4E3A817A-8033-3D7E-BCA9-102EFF3FD9CA}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Document Explorer 2008 Language Pack - DEU (HKLM\...\Microsoft Document Explorer 2008 Language Pack - DEU) (Version:  - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM\...\Microsoft SQL Server 2008 R2) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{8E0BF061-4331-4459-BB6C-C20F237B53DB}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM\...\{EFECC55D-7B0A-4D05-8487-CC2FD7C618A3}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 Design Tools DEU (HKLM\...\{E32260E7-0B10-43C7-9B77-AB9F4184676D}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 DEU (HKLM\...\{159098AF-4EB8-4C10-B0C6-24CDA32B45F9}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 for Devices DEU (HKLM\...\{1C3ADB5F-750E-4453-AC98-B75C5323845C}) (Version: 3.5.5386.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{47BE41E6-2F0F-4D17-9C2D-3850FFD9D405}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft Visio Professional 2013 (HKLM\...\Office15.VISPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual Basic PowerPacks 10.0 (HKLM\...\{2D9F8079-7D50-3EFD-B3BD-ED642E4EE756}) (Version: 10.0.20911 - Microsoft)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack (HKLM\...\Microsoft Visual Studio 2005 Tools for Office Runtime Language Pack) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Professional Edition - DEU (HKLM\...\Microsoft Visual Studio 2008 Professional Edition - DEU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Web Authoring Component (HKLM\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{99F0C3CC-8DF0-3611-B190-CF4D1AF0E053}) (Version: 3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{842FAF7C-50EF-4463-9B8F-6222E1384D7D}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{64c5b887-b5ee-42b8-8596-78905a6b5f1f}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{B268E9A1-04A9-40D0-9866-846BE2B74BA7}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Movavi Video Editor 12 (HKLM\...\Movavi Video Editor 12) (Version: 12.1.0 - Movavi)
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 50.1.0 (x86 de) (HKLM\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
National Instruments - Software (HKLM\...\NI Uninstaller) (Version:  - National Instruments)
NI Circuit Design Suite 11.0 Core (Version: 11.0.278 - National Instruments) Hidden
NI Circuit Design Suite 11.0 Edu Licenses (Version: 11.0.278 - National Instruments) Hidden
NI Circuit Design Suite 11.0 Education (Version: 11.0.278 - National Instruments) Hidden
NI DASYLab 12.0.0 (Version: 12.0.0287 - National Instruments) Hidden
NI DataSocket 4.8 (Version: 4.8.21.0 - National Instruments) Hidden
NI DN 2.0 installer (Version: 2.00.49154 - National Instruments) Hidden
NI EULA Depot (Version: 2.80.304 - National Instruments) Hidden
NI Example Finder 9.0 (Version: 9.0.136.0 - National Instruments) Hidden
NI Help Assistant (Version: 1.0.10 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (Version: 8.6.348.0 - National Instruments) Hidden
NI LabVIEW Real-Time NBFifo (Version: 9.0.222.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 2009 (Version: 9.0.315.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.6.1 (Version: 8.6.426.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Interop 2009 (Version: 9.0.78.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine Web Services (Version: 9.0.197.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (Version: 8.6.41.0 - National Instruments) Hidden
NI LabVIEW Web Server for Run-Time Engine (Version: 9.0.185.0 - National Instruments) Hidden
NI LabVIEW Web Services Runtime (Version: 8.6.48.0 - National Instruments) Hidden
NI LabWindows/CVI 2010 Analysis Library (Version: 10.0.0360 - National Instruments) Hidden
NI LabWindows/CVI 9.0.1 Run-Time Engine (Version: 9.0.1376 - National Instruments) Hidden
NI License Manager (Version: 3.4.28 - National Instruments) Hidden
NI Logos 5.2.1 (Version: 5.2.28.0 - National Instruments) Hidden
NI Logos XT Support (Version: 5.2.24.0 - National Instruments) Hidden
NI Math Kernel Libraries (Version: 1.0.25.0 - National Instruments) Hidden
NI Math Kernel Libraries (Version: 1.0.28.0 - National Instruments) Hidden
NI Math Kernel Libraries (Version: 1.0.861.0 - National Instruments) Hidden
NI MDF Support (Version: 2.80.304 - National Instruments) Hidden
NI MetaSuite Installer (Version: 2.70.346 - National Instruments) Hidden
NI Service Locator (Version: 9.0.260.0 - National Instruments) Hidden
NI TDMS (Version: 2.0.171.0 - National Instruments) Hidden
NI Trace Engine (Version: 9.0.146.0 - National Instruments) Hidden
NI Uninstaller (Version: 2.80.304 - National Instruments) Hidden
NI Update Service 1.0 (Version: 1.1.6.0 - National Instruments) Hidden
NI Update Service Extras 1.0 (Version: 1.1.6.0 - National Instruments) Hidden
NI USI 1.7.0 (Version: 1.7.03805 - National Instruments) Hidden
NI VC2005MSMs x86 (Version: 8.01.5 - National Instruments) Hidden
NI VC2008MSMs x86 (Version: 9.0.301 - National Instruments) Hidden
NI Web Pipeline 2.0.1 (Version: 2.0.128.0 - National Instruments) Hidden
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.81 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.81 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OPC Core Components Redistributable (x86) 101.2 (HKLM\...\{AD9F5DB5-ACE0-4538-A272-88B10A6C93C8}) (Version: 3.00.10102 - OPC Foundation)
OpenOffice 4.1.0 (HKLM\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OSSClientInstall (HKLM\...\{29AD022D-8F50-469D-AA66-C1F79D21C2FA}) (Version: 1.0.0 - eXtis GmbH)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Settings CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.0.2 - pdfforge)
Photoshop Camera Raw (Version: 5.0 - Adobe Systems Incorporated) Hidden
Pixel Bender Toolkit (Version: 1.0 - Adobe Systems Incorporated) Hidden
PKZIP Server for Windows 12.40.0008 (HKLM\...\{134A51EB-1BBB-4249-BAF5-494C3D186A06}) (Version: 12.40.0008 - PKWARE, Inc)
QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
Revit Architecture 2013 (Version: 12.02.21203 - Autodesk) Hidden
Revit Architecture 2013 Language Pack - Deutsch (Version: 12.02.21203 - Autodesk) Hidden
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
Schnell-Deinstallations-Tool für Autodesk Inventor 2013 (HKLM\...\{D25FF5C1-1732-469A-9794-69309387C193}) (Version: 17.0.13800.0000 - Autodesk)
SEE Electrical Building School V2 (HKLM\...\{57689281-9E59-44AC-95FD-86D2897A36FF}) (Version: 2.20.3340 - IGE+XAO)
SEE Electrical Schulversion V5R1 (HKLM\...\SEE Electrical Schulversion V5R1) (Version:  - )
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{91150000-0051-0000-0000-0000000FF1CE}_Office15.VISPROR_{8D2E04ED-3350-4ECE-9D6E-3BC9A9A93A47}) (Version:  - Microsoft)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden
Siemens Automation License Manager (Version: 05.01.0103 - Siemens AG) Hidden
Siemens Automation License Manager V5.1 + SP1 + Upd3   (HKLM\...\{588DC473-0F95-42C4-BBF0-92CCE9FD6D27}LicenseManager) (Version: 05.01.0103 - Siemens AG)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM\...\SLABCOMM&10C4&EA60) (Version:  - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM\...\{9988E238-A304-41E3-9DAC-2D6F0A24F8C4}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
SIMATIC  STEP 7 (Version: 05.05.0100 - Siemens AG) Hidden
SIMATIC  STEP 7 V5.5 + SP1   (HKLM\...\{5D59B9B7-D9D4-4CA4-9594-305EBAF2B238}STEP7) (Version: 05.05.0100 - Siemens AG)
SIMATIC Device Drivers (Version: 08.02.0200 - Siemens AG) Hidden
SIMATIC HMI Symbol Library (Version: 11.00.0200 - Siemens AG) Hidden
SIMATIC Prosave (Version: 09.00.0300 - Siemens AG) Hidden
SIMATIC Prosave V9.0 incl. SP3   (HKLM\...\{AE533A06-4655-41E8-88BB-48293AAF1FA0}Prosave) (Version: 09.00.0300 - Siemens AG)
SIMATIC S7-PLCSIM (Version: 5.4.0500 - Siemens AG) Hidden
SIMATIC S7-PLCSIM V5.4 + SP5 Professional 2010   (HKLM\...\{FEF6402C-4209-45F6-BDC5-680B06C6D024}PLCSim) (Version: 5.4.0500 - Siemens AG)
SIMATIC WinCC flexible 2008 SP3 (HKLM\...\InstallShield_{4859C171-B826-4B74-ABCE-501B4C725EA2}) (Version: 01.04.0000 - Siemens AG)
SIMATIC WinCC flexible OCX (Version: 01.04.0000 - Siemens AG) Hidden
SIMATIC WinCC flexible Runtime (Version: 01.04.0000 - Siemens AG) Hidden
SIMATIC WinCC flexible Runtime 2008 SP3   (HKLM\...\{BA076DAD-B2E9-4DE6-8DC3-A12C0E569EAC}HmiRTm) (Version: 01.04.0000 - Siemens AG)
SIMATIC WinCC flexible Simulator (Version: 01.08.0300 - Siemens AG) Hidden
SIMATIC WinCC flexible Tag Simulator (Version: 01.04.0000 - Siemens AG) Hidden
SPS-VISU V4.78a (HKLM\...\SPS-VISU V4.78a) (Version:  - )
SQL Server 2008 R2 SP2 Common Files (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Suite Shared Configuration CS4 (Version: 1.0 - Adobe Systems Incorporated) Hidden
TL-WN725N_WN723N Treiber (HKLM\...\{3C3F9CEB-2C5A-4A47-8EAA-DA76037546BA}) (Version: 1.3.1 - TP-LINK)
TP-LINK-Konfigurationstool (HKLM\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (HKLM\...\{07629207-FAA0-4F1A-8092-BF5085BE511F}) (Version: 9.00.5000.00 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0021-0000-0000-0000000FF1CE}_VisualWebDeveloper_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_PROPLUS_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUS_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_PROPLUS_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_PROPLUS_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update für Microsoft Visual Studio 2008 Professional Edition - DEU (KBKB972221) (HKLM\...\{445174EA-3D3A-308E-84AD-446127E71441}.KB972221) (Version: 1 - Microsoft Corporation)
VBA (2627.01) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VBA (2701.01) (Version: 6.03.00.9402 - Microsoft Corporation) Hidden
VC Runtimes MSI (Version: 9.0.21022 - Microsoft) Hidden
Vectorworks 2012 Hilfe (HKLM\...\eu.computerworks.vectorworks.2012.help.deu.07222458214E034A0B494E83FAD6744C17D2B914.1) (Version: 1.0 - UNKNOWN)
Vectorworks 2012 Hilfe (Version: 1.0 - UNKNOWN) Hidden
VirtualCloneDrive (HKLM\...\VirtualCloneDrive) (Version:  - Elaborate Bytes)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio-Tools für Office System 3.0 Runtime Language Pack - DEU (HKLM\...\Visual Studio Tools for the Office system 3.0 Runtime Language Pack - DEU) (Version:  - Microsoft Corporation)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VMware Player (HKLM\...\VMware_Player) (Version: 5.0.2 - VMware, Inc)
VMware Player (Version: 5.0.2 - VMware, Inc.) Hidden
VMware vSphere Client 4.1 (HKLM\...\{A0B433B1-941D-46F5-AE59-286263534232}) (Version: 4.1.0.32733 - VMware, Inc.)
WCD-Windows Control Daemon (HKLM\...\{C4BFC114-7461-4E20-B25E-8B531D211E70}) (Version: 1.1.0 - eXtis GmbH)
WinCC flexible (Version: 01.04.0000 - Siemens AG) Hidden
WinCC flexible Graphics (Version: 1.04.0000 - Siemens AG) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Pocket PC (HKLM\...\{721B5CF0-D220-4955-BB6F-EBCFB1096DE7}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Smartphone (HKLM\...\{DA7F48EF-5F56-45FE-9169-3B8159A7A323}) (Version: 5.00.1700.5.14343.06 - Microsoft Corporation)
WinFACT 8 (HKLM\...\{0F00C986-561C-4536-B62B-0EDE3475312A}) (Version: 8.1.1 - Ingenieurbüro Dr. Kahlert)
WinRAR 5.40 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Filmora(Build 7.8.9) (HKLM\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2562889154-1593366337-4015798880-1012_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {13EDA03C-018B-4023-8A8B-5844EC7A382B} - System32\Tasks\{17397CD6-C9E1-41D7-BDC9-B1A83AED3CEC} => pcalua.exe -a D:\Simatic_EKB_Install_2012_03_08\Simatic_EKB_Install_2012_03_08\Simatic_EKB_Install_2012_03_08.exe -d D:\Simatic_EKB_Install_2012_03_08\Simatic_EKB_Install_2012_03_08
Task: {45061C0A-5505-4FB2-9F07-154785A9FD16} - System32\Tasks\{B115C516-614A-44DC-BC5B-C71C13EAED48} => pcalua.exe -a C:\Users\admin\Downloads\jxpiinstall(1).exe -d C:\Users\admin\Downloads
Task: {7CBF1E11-5229-4CFD-A8B3-C9D810709AF2} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2562889154-1593366337-4015798880-1012
Task: {A7ACC0C6-29BE-4711-B99A-515F20844B88} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {B5BEC2A9-1551-4E8C-A964-3394D452E3C9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {C8B8AB17-B071-4C36-B2FA-1B0EA7D50DBB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-22 11:17 - 2015-08-18 00:28 - 00106800 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2014-05-23 13:39 - 2001-07-31 09:17 - 00094274 _____ () C:\Windows\System32\HPBHealr.dll
2011-03-07 16:08 - 2011-03-07 16:08 - 00869376 _____ () C:\Program Files\Common Files\Siemens\SWS\PlugIns\SCP\Scpwin32.dll
2017-01-07 00:51 - 2017-01-07 00:52 - 07727696 _____ () C:\Program Files\Gramblr\gramblr.exe
2011-09-15 05:19 - 2011-09-15 05:19 - 00086016 _____ () C:\Programme\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
2011-06-14 17:20 - 2011-06-14 17:20 - 00405504 _____ () C:\Windows\system32\sn_regbase.dll
2011-12-06 21:11 - 2011-12-06 21:11 - 00061776 _____ () C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\zlib.dll
2013-10-30 10:21 - 2009-07-16 09:20 - 00077824 _____ () C:\Program Files\Common Files\Intel\Privacy Icon\UNS\DTMessageLib.dll
2013-02-26 02:28 - 2013-02-26 02:28 - 01260624 _____ () C:\Program Files\VMware\VMware Player\libxml2.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 00407216 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll
2013-06-27 21:12 - 2013-06-27 21:12 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2017-01-08 20:46 - 2016-10-08 16:48 - 01506304 _____ () C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2017-01-08 20:46 - 2016-07-21 10:54 - 00137728 _____ () C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-12-09 15:09 - 2016-12-09 15:09 - 52051544 _____ () C:\Program Files\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-09-29 18:19 - 2015-03-20 15:23 - 02206208 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\TWCU.exe
2016-09-29 18:19 - 2015-03-20 16:42 - 01401856 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\nicLan.dll
2016-09-29 18:19 - 2015-03-20 15:16 - 00192000 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\DC_WFF.dll
2016-09-29 18:19 - 2015-03-20 15:36 - 01693696 _____ () C:\Program Files\TP-LINK\TP-LINK-Konfigurationstool\WJRtl.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 31723696 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-12-02 01:54 - 2016-12-02 01:54 - 00118272 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00223232 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00117248 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 01:54 - 2016-12-02 01:54 - 00124928 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 15:09 - 2016-12-09 15:09 - 00110680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-12-02 01:54 - 2016-12-02 01:54 - 00086528 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00118272 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00117760 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2016-10-10 23:15 - 2016-10-10 23:15 - 00125440 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-10-10 23:17 - 2016-10-10 23:17 - 00223232 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-09 15:02 - 2016-12-09 15:02 - 00110680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-10-10 23:14 - 2016-10-10 23:14 - 00121856 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2016-10-10 23:14 - 2016-10-10 23:14 - 00166400 _____ () \\?\C:\Program Files\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2562889154-1593366337-4015798880-1012\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeCS4ServiceManager => "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Adobe_ID0ENQBO => C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: InstallValidator.exe.FA87EC44_C38F_4148_93A1_FF4A64A2B707 => C:\Program Files\National Instruments\Shared\NIUninstaller\InstallValidator.exe -s
MSCONFIG\startupreg: PDFPrint => C:\Program Files\PDF24\pdf24.exe
MSCONFIG\startupreg: picon => "C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe" -startup
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: S7UB Start => "C:\Program Files\Common Files\Siemens\S7ubtoox\s7ubtstx.exe" -StartDB
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
MSCONFIG\startupreg: WinCC flexible Smart Start => "C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiSmartStart.exe" /startup

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{0D337887-6D30-453D-8C9D-93EE2A34D45E}] => c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{6A9C5700-F676-4047-85B5-A67389AB20AE}] => LPort=1969
FirewallRules: [{F655E490-0883-4BEF-8FC1-B74711C04477}] => LPort=5353
FirewallRules: [{07F306EF-B5AD-4EA5-A03D-FCE0145B9A7A}] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{4ED96CA3-1644-4526-9BD6-C983575F9803}] => C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
FirewallRules: [{7FEDF833-08BA-437D-B281-785C814FD754}] => LPort=3703
FirewallRules: [{145DECB3-9D20-49A0-84B8-BF711839577D}] => LPort=3704
FirewallRules: [{00E01D54-8F3D-4D89-8B7B-8D47274154B9}] => LPort=51000
FirewallRules: [{E98072A3-E87D-4667-97DD-94358757CF3F}] => LPort=51001
FirewallRules: [{E391AA31-1328-48CA-9950-EC5C05F4031A}] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
FirewallRules: [{58FC4590-B418-4A41-9A39-11C060253444}] => C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
FirewallRules: [{59AE9B1E-6933-42DF-89A3-DC977363A2AA}] => C:\Program Files\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{FE561AA8-229C-4F81-B4BD-B03DA17D65C7}] => C:\Program Files\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{EAD8637B-5349-4264-B83B-B9BE73D162E1}] => C:\Windows\System32\hasplms.exe
FirewallRules: [{B516B0C9-D9DB-404B-B9EE-32C0B3EF8C9A}] => C:\Windows\System32\hasplms.exe
FirewallRules: [{057CC0F5-EC2B-4E85-8339-A119CAF0F0D5}] => LPort=50248
FirewallRules: [{6051A0CA-9729-4827-A1DD-F9D8E97317D1}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
FirewallRules: [{0E4EEDBE-54FC-4957-9E0C-462C240D4D48}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32server.exe
FirewallRules: [{FCB5A28D-F52D-4868-B637-0DEED83E381D}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32.exe
FirewallRules: [{EA639BCF-D184-4FD3-8F7B-E79008266D4E}] => C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_32.exe
FirewallRules: [{3254F1A0-9287-4836-BEDD-57DDEEC58AC3}] => C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe
FirewallRules: [{995FDB54-9260-4D79-9746-51036CC2A518}] => C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe
FirewallRules: [{12C6C47A-D095-4B8C-BD9F-440FCC40C41B}] => C:\Program Files\Autodesk\Backburner\monitor.exe
FirewallRules: [{F8FAD4C5-5DDE-49EE-9A2D-9EC4E548F203}] => C:\Program Files\Autodesk\Backburner\monitor.exe
FirewallRules: [{5DFD22C3-D908-4230-9B75-3825C7A66C47}] => C:\Program Files\Autodesk\Backburner\manager.exe
FirewallRules: [{10061E4C-C273-46A7-A43A-2F6C36B004BA}] => C:\Program Files\Autodesk\Backburner\manager.exe
FirewallRules: [{0C92AA09-F5EF-4843-8F69-C1CD326A4685}] => C:\Program Files\Autodesk\Backburner\server.exe
FirewallRules: [{D9A3FDBE-EF01-46EE-A099-EEF8664A7CBE}] => C:\Program Files\Autodesk\Backburner\server.exe
FirewallRules: [{6BE9D963-7730-4338-A932-7457FEF51608}] => C:\Program Files\Common Files\Siemens\SQLANY\Dbsrv9.exe
FirewallRules: [{53B6E02D-7EF8-4011-9C8C-D6379293D752}] => C:\Program Files\Common Files\Siemens\SQLANY\Dbeng9.exe
FirewallRules: [{81E241C5-F98D-4AC3-84EA-3F3FAD2A93E7}] => C:\Windows\system32\S7otbxsx.exe
FirewallRules: [{34FB6421-A9DB-4A2E-A649-7FD5D5A687BC}] => C:\Program Files\Siemens\Step7\S7INF\S7usiapx.exe
FirewallRules: [{55843360-F188-40BF-9596-C4B71780FF9D}] => C:\Program Files\Siemens\Step7\S7BIN\S7tgtopx.exe
FirewallRules: [{314BB665-76DF-47F2-AC7F-1F1DB4E4AD17}] => C:\Program Files\Common Files\Siemens\sws\almsrv\almsrvx.exe
FirewallRules: [{2C1E9840-D18E-4333-A2F4-3B1995DAA629}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\HmiES.exe
FirewallRules: [{18B94566-3333-484F-ABE2-F626FE47943E}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008\TraceServer.exe
FirewallRules: [{02FF865A-8671-4589-ADDC-1465AE94C7B2}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\MiniWeb.exe
FirewallRules: [{0808A7EA-AC86-4C74-912D-AF492689BE0C}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\SmartServer.exe
FirewallRules: [{A3F3065C-5625-45AC-96CC-A5E3229873E3}] => C:\Program Files\Siemens\SIMATIC WinCC flexible\WinCC flexible 2008 Runtime\HmiLoad.exe
FirewallRules: [{348C0100-0C22-40B8-BF9B-35B1ADADB996}] => C:\Windows\system32\hasplms.exe
FirewallRules: [{4CCFE9AA-486B-40C0-BF91-5F138CEF32B3}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{115508B0-59B4-4526-B066-D65332FC62C8}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{ED7BEAE1-A0E8-41E6-9166-F5CE589B7D34}] => C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{AEC04D0C-1BEB-4A6F-BF07-2D53FE81C8C4}] => C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{69FAD0E5-D1A9-40ED-9EF2-CC7F36C3CCA7}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D6BDCC19-64C5-4B0D-99C3-57F30F69432C}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{267E5EEA-5D4F-407E-9F84-4F37F52D16FC}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{088BA12A-E891-42AD-8DC4-BDCDE294EB44}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F24225C6-E706-493A-A9FE-4A8C67F2C829}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{10685141-0B16-4F7C-8725-5669BC2D528A}] => LPort=2869
FirewallRules: [{9B599CA2-B62A-4CB9-A59E-94912A03F63A}] => LPort=1900

==================== Wiederherstellungspunkte =========================

16-01-2017 14:14:45 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
16-01-2017 14:15:42 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
16-01-2017 14:16:25 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918
16-01-2017 21:37:21 Revo Uninstaller's restore point - Adobe Reader XI (11.0.04) - Deutsch
17-01-2017 10:10:39 Revo Uninstaller's restore point - Avira Professional Security
17-01-2017 12:31:06 JRT Pre-Junkware Removal

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/17/2017 09:25:20 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 06:13:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 02:46:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Photoshop.exe, Version: 18.0.1.29, Zeitstempel: 0x583e8eea
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.23392, Zeitstempel: 0x56eb2fb9
Ausnahmecode: 0xc06d007e
Fehleroffset: 0x0000845d
ID des fehlerhaften Prozesses: 0x1f54
Startzeit der fehlerhaften Anwendung: 0x01d270c822a8a99a
Pfad der fehlerhaften Anwendung: C:\Program Files\Adobe\Adobe Photoshop CC 2017 (32 Bit)\Photoshop.exe
Pfad des fehlerhaften Moduls: C:\Windows\system32\KERNELBASE.dll
Berichtskennung: 62a7c858-dcbb-11e6-8aee-005056c00008

Error: (01/17/2017 02:39:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 12:24:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 10:16:35 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/17/2017 10:10:37 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.


Vorgang:
   Generatordaten werden gesammelt

Kontext:
   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
   Generatorname: System Writer
   Generatorinstanz-ID: {87b76298-0e6c-448e-8fdf-231a285c9dbd}

Error: (01/17/2017 09:12:10 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Event-ID 4129

Error: (01/17/2017 08:25:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Photoshop.exe, Version: 18.0.1.29, Zeitstempel: 0x583e8eea
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.23392, Zeitstempel: 0x56eb2fb9
Ausnahmecode: 0xc06d007e
Fehleroffset: 0x0000845d
ID des fehlerhaften Prozesses: 0x21bc
Startzeit der fehlerhaften Anwendung: 0x01d27092e255877f
Pfad der fehlerhaften Anwendung: C:\Program Files\Adobe\Adobe Photoshop CC 2017 (32 Bit)\Photoshop.exe
Pfad des fehlerhaften Moduls: C:\Windows\system32\KERNELBASE.dll
Berichtskennung: 24b97a36-dc86-11e6-8fce-005056c00008

Error: (01/17/2017 08:12:09 AM) (Source: Avira Antivirus) (EventID: 4129) (User: NT-AUTORITÄT)
Description: Event-ID 4129


Systemfehler:
=============
Error: (01/17/2017 09:26:22 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "WcdService" wurde nicht richtig gestartet.

Error: (01/17/2017 09:24:02 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (01/17/2017 09:24:02 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (01/17/2017 09:23:49 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (01/17/2017 06:14:22 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "WcdService" wurde nicht richtig gestartet.

Error: (01/17/2017 06:11:48 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (01/17/2017 06:11:47 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (01/17/2017 06:11:37 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (01/17/2017 02:40:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "WcdService" wurde nicht richtig gestartet.

Error: (01/17/2017 02:38:11 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0


==================== Memory info =========================== 

Processor: Pentium(R) Dual-Core CPU E5200 @ 2.50GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 3070.23 MB
Verfügbarer physikalischer RAM: 1553.84 MB
Summe virtueller Speicher: 6138.79 MB
Verfügbarer virtueller Speicher: 4284.95 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:100 GB) (Free:2.63 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: () (Fixed) (Total:49.05 GB) (Free:48.96 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: BE8CBE8C)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=49 GB) - (Type=07 NTFS)

==================== Ende vom Addition.txt ============================
         

Alt 18.01.2017, 11:58   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



Lade Dir bitte von hier Revo Uninstaller Download Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
  • Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
  • Klicke auf Optionen und wähle als Sprache Deutsch.
  • Suche im Uninstallerfeld nach den Programmen:

    chip 1-click download service

  • Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
  • Wähle anschließend den Modus "Moderat" aus.
  • Reste löschen:
    Klicke auf dann auf und dann auf .

 

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 18.01.2017, 21:17   #14
volkan123
 
ungültiges bild - Standard

ungültiges bild



erledigt
allerdings stand am ende nach dem ich moderat geklickt und untersucht habe revo uninstaller hat keine verbliebenen programme gefunder oder so ähnlich stand das da

Alt 18.01.2017, 21:29   #15
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
ungültiges bild - Standard

ungültiges bild



Kontrollscans mit (1) MBAM, (2) ESET und (3) SecurityCheck bitte:


1. Schritt: MBAM

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




2. Schritt: ESET

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset




3. Schritt: SecurityCheck

Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.
__________________
Logfiles bitte immer in CODE-Tags posten

Thema geschlossen

Themen zu ungültiges bild
abend, adobe, ahnung, ausführung, bild, enthält, entweder, erhalte, erneut, fenster, files, guten, hoffe, installiere, installieren, keine ahnung, node.js, photoshop, problem, programm, schonmal, titel, ungültiges bild, unterstützung, windows, öffnen




Ähnliche Themen: ungültiges bild


  1. ungültiges Bild
    Plagegeister aller Art und deren Bekämpfung - 12.10.2016 (1)
  2. AcroRD32.exe - Ungültiges Bild
    Log-Analyse und Auswertung - 27.07.2016 (33)
  3. AcroRD32.exe - Ungültiges Bild
    Log-Analyse und Auswertung - 16.02.2016 (28)
  4. Firefox - Ungültiges Bild: mozglue.dll
    Plagegeister aller Art und deren Bekämpfung - 21.01.2016 (21)
  5. CCC.exe Ungültiges Bild
    Plagegeister aller Art und deren Bekämpfung - 18.10.2015 (17)
  6. NvBackend.exe Ungültiges Bild
    Plagegeister aller Art und deren Bekämpfung - 01.07.2015 (28)
  7. ... .exe - Ungültiges Bild
    Log-Analyse und Auswertung - 25.04.2015 (3)
  8. WIN 7: NvBackend.exe - Ungültiges Bild
    Log-Analyse und Auswertung - 14.04.2015 (6)
  9. Meldung ...EXE - Ungültiges Bild
    Log-Analyse und Auswertung - 31.03.2015 (4)
  10. Windows 7: .exe ungültiges Bild
    Log-Analyse und Auswertung - 31.03.2015 (9)
  11. .exe - ungültiges Bild
    Plagegeister aller Art und deren Bekämpfung - 30.03.2015 (20)
  12. xxx.exe ungültiges Bild
    Plagegeister aller Art und deren Bekämpfung - 03.02.2015 (9)
  13. Ungültiges Bild (Fehlermeldung)
    Log-Analyse und Auswertung - 03.02.2015 (1)
  14. Ungültiges Bild
    Log-Analyse und Auswertung - 24.12.2014 (3)
  15. Ungültiges Bild - Win7
    Plagegeister aller Art und deren Bekämpfung - 09.08.2013 (23)
  16. Ungültiges Bild - Windows 7
    Plagegeister aller Art und deren Bekämpfung - 16.02.2013 (12)
  17. ISUSPM.exe-Ungültiges Bild - Trojaner?
    Log-Analyse und Auswertung - 03.04.2011 (1)

Zum Thema ungültiges bild - Guten Abend, ich habe das problem das wenn ich ein Programm öffnen möchte z. B. Photoshop ein fenster aufploppt mit dem titel "Ungültiges Bild" C:\Program Files\Adobe\Adobe Photoshop CC2017 (32 Bit)\amtlib.dll - ungültiges bild...
Archiv
Du betrachtest: ungültiges bild auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.