Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 7, DVD wird bei Neuinstallation nicht erkannt

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 10.02.2017, 22:21   #1
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Hallo zusammen,

sitze seit einigen Tagen an einem Problem mit meinem PC, bin aber ehrlich gesagt nicht ganz so Sattelfest im tiefgründigen Umgang damit.

ich weiß nur: Viren und seeehr langsam.
Mir wurde empfohlen, Windows komplett neu drauf zu machen.

Leider hab ich die Windows CD nicht mehr.
Auf dem Ettikett hinten auf meinem 7 Jahre alten packard bell all in one kann ich erkennen, dass die vorinstallierte Windowsversion 7 Home Premium OA war. Aktuell sehe ich in den Eigenschaften Windows Ultimate stehen. Muss wohl mein Ex zwischenzeitlich drauf gemacht haben, könnte gecracked sein...

Ich hab mir im Internet eine iso-Datei gekauft. Windows 7 Home Premium 32 Bit mit neuem Lizenz Key. Hab diese mit CD Burner-XP auf eine DVD gebrannt.
Über die Wiederherstellung möchte ich nun Windows neu installieren. Der PC fährt sich runter, startet wieder, ich kann dann noch die Sprache auswählen und danach sagt er mir, dass keine Installationsdatei erkannt wird, obwohl die CD im Laufwerk steckt.

Was hab ich falsch gemacht oder nicht beachtet / vergessen etc.?
Kam es auch an der DVD liegen, z.B. wenn das Brennen nicht funktioniert hätte? Wie kann ich das prüfen?

Könnt ihr mir helfen? Wenn ihr weitere Daten von mir braucht, immer gerne!

Freue mich auf eure Nachrichten! Lieben Dank schon mal!!
Soumaya

Alt 11.02.2017, 03:27   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Hi,

vergiss erstmal die Windows-DVD oder CD. Wenn es nur Malware ist (und keine defekte Hardware!) können wir das in den allermeisten Fällen so bereinigen.


Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 11.02.2017, 09:56   #3
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 10-02-2017
durchgeführt von Laslek (Administrator) auf LASLEK-PC (11-02-2017 09:48:20)
Gestartet von C:\Users\Laslek\Desktop
Geladene Profile: Laslek (Verfügbare Profile: Laslek)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
(Hewlett-Packard Company) C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe
(iAnywhere Solutions, Inc.) C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 3\creator-ws.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [917576 2016-12-28] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [61896 2016-12-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2017-01-18] (Adobe Systems Inc.)
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: F - F:\sources\sperr32.exe x64
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: {57bf2a69-e854-11e4-b44b-c80aa97ddde5} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: {57bf2a71-e854-11e4-b44b-c80aa97ddde5} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: {8c3895fe-d742-11e5-a732-c80aa97ddde5} - G:\HiSuiteDownLoader.exe
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{8FE2BC3D-460C-4327-9EAF-AF3C616FBA71}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{C4BCAFB5-DB1C-4335-A0E7-D27E0E6F1F07}: [DhcpNameServer] 192.168.0.1 192.168.0.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: PDF Architect 3 Helper -> {06E08260-0695-4EC1-A74B-1310D8899D93} -> C:\Program Files\PDF Architect 3\creator-ie-helper.dll [2015-04-14] (pdfforge GmbH)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-26] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-11-01] (Microsoft Corporation)
BHO: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\Windows\system32\mscoree.dll [2010-11-20] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-26] (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2015-03-01] (DVDVideoSoft Ltd.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated)
Toolbar: HKLM - PDF Architect 3 Toolbar - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - C:\Program Files\PDF Architect 3\creator-ie-plugin.dll [2015-04-14] (pdfforge GmbH)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2015-09-30] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2547369665-2112981076-2713180307-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Keine Datei
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-11-18] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension
FF Extension: (PDF Architect 3 Creator) - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-04-21] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-01-31]
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-26] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-11-18] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-25] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-01-18] (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-07-29] (Adobe Systems)
FF Plugin: PDF Architect 3 -> C:\Program Files\PDF Architect 3\np-previewer.dll [2015-04-14] (pdfforge GmbH)

Chrome: 
=======
CHR Profile: C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default [2017-02-11]
CHR Extension: (Google Präsentationen) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-23]
CHR Extension: (Google Docs) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-23]
CHR Extension: (Google Drive) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-23]
CHR Extension: (YouTube) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-10]
CHR Extension: (Google Tabellen) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-23]
CHR Extension: (Avira Browserschutz) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-01-23]
CHR Extension: (Google Docs Offline) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-23]
CHR Extension: (Google Mail) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-23]
CHR Extension: (Chrome Media Router) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-10]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-01-19] (Adobe Systems, Incorporated)
S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [1089592 2016-12-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [476736 2016-12-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [476736 2016-12-28] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1490296 2016-12-28] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [372272 2016-12-29] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2042608 2016-12-12] (Microsoft Corporation)
R2 Haufe FabricHostService; C:\Program Files\Lexware\services\Haufe.FabricHostService.exe [14848 2013-10-10] (Haufe-Lexware GmbH & Co. KG) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 Lexware_Professional_Datenbank; C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe [141176 2012-06-01] (iAnywhere Solutions, Inc.)
R2 Lexware_Update_Service; C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe [49664 2013-10-08] (Haufe-Lexware GmbH & Co. KG) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
S3 PDF Architect 3; C:\Program Files\PDF Architect 3\ws.exe [2243288 2015-04-14] (pdfforge GmbH)
S3 PDF Architect 3 CrashHandler; C:\Program Files\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-14] (pdfforge GmbH)
R2 PDF Architect 3 Creator; C:\Program Files\PDF Architect 3\creator-ws.exe [740568 2015-04-14] (pdfforge GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-10-09] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119208 2016-12-28] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [140840 2016-12-28] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37896 2015-05-05] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [60088 2016-10-12] (Avira Operations GmbH & Co. KG)
S3 HPFXFAX; C:\Windows\System32\drivers\hppcfaxio.sys [21528 2010-08-25] (Hewlett Packard)
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-02-11 09:48 - 2017-02-11 09:49 - 00018485 _____ C:\Users\Laslek\Desktop\FRST.txt
2017-02-11 09:48 - 2017-02-11 09:48 - 00000000 ____D C:\FRST
2017-02-11 09:47 - 2017-02-11 09:47 - 01763328 _____ (Farbar) C:\Users\Laslek\Desktop\FRST.exe
2017-02-10 20:06 - 2017-02-10 20:06 - 00001936 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2017-02-10 20:06 - 2017-02-10 20:06 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\Canneverbe Limited
2017-02-10 20:06 - 2017-02-10 20:06 - 00000000 ____D C:\Program Files\CDBurnerXP
2017-02-10 20:04 - 2017-02-10 20:04 - 06232760 _____ (Canneverbe Limited ) C:\Users\Laslek\Downloads\cdbxp_setup_4.5.7.6521.exe
2017-02-10 20:03 - 2017-02-10 20:22 - 1143336599 _____ C:\Users\Laslek\Downloads\993df2-Win-7-Home-32-Bit-DE-X15-65740.iso
2017-02-10 19:28 - 2017-02-10 19:28 - 00570020 _____ C:\Users\Laslek\Downloads\Win7Download.pdf
2017-02-10 17:04 - 2017-02-10 17:05 - 2509058048 _____ C:\Users\Laslek\Downloads\Win7_HomePrem_SP1_German_x32.iso
2017-02-10 15:38 - 2017-02-10 15:39 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\UseNeXT
2017-02-09 18:58 - 2017-02-09 18:59 - 3268147200 _____ C:\Users\Laslek\Downloads\Win7_HomePrem_SP1_German_x64.iso
2017-02-08 20:51 - 2017-02-08 20:51 - 00624614 _____ (ISOImageBurner.com ) C:\Users\Laslek\Downloads\iso_image_burner_setup.exe
2017-02-08 19:59 - 2017-02-08 19:59 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\Macromedia
2017-02-08 19:50 - 2017-02-08 19:50 - 01496584 _____ C:\Users\Laslek\Downloads\Windows ISO Downloader - CHIP-Installer.exe
2017-01-31 12:48 - 2017-01-31 14:10 - 00000000 ____D C:\Users\Laslek\AppData\Local\Microsoft Games
2017-01-23 18:50 - 2017-01-23 18:50 - 00000000 ____D C:\Users\Laslek\AppData\Local\ElevatedDiagnostics
2017-01-23 18:38 - 2017-01-23 18:38 - 00002234 _____ C:\Users\Laslek\Desktop\Google Chrome.lnk
2017-01-15 09:18 - 2017-01-05 18:46 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-15 09:18 - 2017-01-05 18:46 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-15 09:18 - 2017-01-05 18:43 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-15 09:18 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-15 09:18 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-15 09:18 - 2017-01-05 18:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-15 09:18 - 2017-01-05 18:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-15 09:18 - 2017-01-05 18:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-15 09:18 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-15 09:18 - 2017-01-05 18:19 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-15 09:18 - 2017-01-05 18:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-15 09:00 - 2017-01-15 09:00 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2017-01-15 08:57 - 2016-05-15 05:00 - 00393728 _____ (CANON INC.) C:\Windows\system32\CNMLMDG.DLL

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-02-11 09:44 - 2009-07-14 05:34 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-11 09:44 - 2009-07-14 05:34 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-11 09:36 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-10 22:03 - 2015-01-26 20:51 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-10 17:39 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2017-02-10 15:53 - 2015-05-28 23:54 - 00000000 ____D C:\Users\Laslek\Documents\UseNeXT
2017-02-09 14:19 - 2011-04-12 02:30 - 00699014 _____ C:\Windows\system32\perfh007.dat
2017-02-09 14:19 - 2011-04-12 02:30 - 00149154 _____ C:\Windows\system32\perfc007.dat
2017-02-09 14:19 - 2010-11-20 22:01 - 01618960 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-09 14:19 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-02-08 20:52 - 2016-12-28 12:42 - 00000000 ____D C:\Users\Laslek\AppData\Local\Google
2017-02-08 20:15 - 2016-11-19 12:11 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\Adobe
2017-01-23 19:03 - 2015-01-25 18:15 - 00000000 ____D C:\Windows\system32\MRT
2017-01-23 18:59 - 2015-01-25 18:15 - 133456224 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-23 18:19 - 2015-05-25 21:50 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-01-15 09:40 - 2009-07-14 05:33 - 03850512 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-15 08:54 - 2015-01-26 20:51 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-01-15 08:54 - 2015-01-26 20:51 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-01-15 08:54 - 2015-01-26 20:51 - 00000000 ____D C:\Windows\system32\Macromed

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-02-10 17:31

==================== Ende vom FRST.txt ============================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 10-02-2017
durchgeführt von Laslek (11-02-2017 09:49:56)
Gestartet von C:\Users\Laslek\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2015-01-25 12:19:10)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2547369665-2112981076-2713180307-500 - Administrator - Disabled)
Gast (S-1-5-21-2547369665-2112981076-2713180307-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2547369665-2112981076-2713180307-1003 - Limited - Enabled)
Laslek (S-1-5-21-2547369665-2112981076-2713180307-1000 - Administrator - Enabled) => C:\Users\Laslek

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

32 Bit HP CIO Components Installer (Version: 7.1.4 - Hewlett-Packard) Hidden
Adobe Acrobat DC (HKLM\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated)
Adobe Flash Player 24 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Apple Application Support (32-Bit) (HKLM\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{538227C6-C74B-4A74-99E1-2C0B4F9DA5E1}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Connect (HKLM\...\{845380e2-f0b5-4584-bc40-cc54345b3c06}) (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG)
Avira Connect (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG) Hidden
bl (Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6521 - CDBurnerXP)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Deutsche Gesetze (HKLM\...\de.ramicro.flex.germanlaws) (Version: 13.12.202 - Jurasoft AG)
Deutsche Gesetze (Version: 13.12.202 - Jurasoft AG) Hidden
ElsterFormular (HKLM\...\ElsterFormular) (Version: 16.0.16151 - Landesfinanzdirektion Thüringen)
Fotogalerie (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
HP LaserJet Professional CM1410 Series (HKLM\...\{0EF0EA0D-F945-4958-85CC-60FF1E86D216}) (Version:  - Hewlett-Packard)
HP Support Solutions Framework (HKLM\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
iTunes (HKLM\...\{025E78AC-BD91-4E9E-B165-3C09D4084BA4}) (Version: 12.2.2.25 - Apple Inc.)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Lexware Elster (HKLM\...\{A4AAD5E5-1563-4A51-AFFC-F896AC979EAE}) (Version: 15.04.00.0028 - Haufe-Lexware GmbH & Co.KG)
Lexware financial office pro 2014 (HKLM\...\{5a4bb126-f8ba-438a-8c96-029352d5c3e6}) (Version: 14.0.0.106 - Haufe-Lexware GmbH & Co.KG)
Lexware financial office pro 2014 (Version: 14.51.00.0257 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware financial office pro 2014 Client (HKLM\...\{eb3027d7-fbde-4700-8606-17ef3df891d9}) (Version: 14.0.0.106 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (Version: 4.01.00.0077 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Installations Dienst (Version: 3.01.00.0011 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware online banking (HKLM\...\{7F603892-89C9-4EC4-9236-7AD4A798EA41}) (Version: 21.00.00.0039 - Haufe-Lexware GmbH & Co.KG)
Lexware professional Datenbank 2014 (Version: 14.25.00.0055 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Server Pro 2014 (Version: 14.0.0.55 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Services (Version: 2.00.00.0024 - Haufe-Lexware GmbH & Co.KG) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
PDF Architect 3 (HKLM\...\PDF Architect 3) (Version: 3.0.45.22485 - pdfforge GmbH)
PDF Architect 3 Create Module (Version: 3.0.12.22873 - pdfforge GmbH) Hidden
PDF Architect 3 Edit Module (Version: 3.0.12.22873 - pdfforge GmbH) Hidden
PDF Architect 3 View Module (Version: 3.0.12.22873 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.1 - pdfforge)
ph (Version: 1.0.0 - Your Company Name) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.10 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04628F74-B27D-4455-B7C2-8515DC739E86} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {171E2C94-9831-414B-8A9A-26D4C138880E} - System32\Tasks\{7B50C3C5-325D-4514-A4F7-C0E1BFBE87CA} => pcalua.exe -a "C:\Users\Laslek\Downloads\jre-8u31-windows-i586 (1).exe" -d C:\Users\Laslek\Downloads
Task: {2BDAE08C-1710-4DA6-9B8B-6C6F429B9F06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {355FFCAC-77DB-4492-AAE7-43CD5FC09048} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {414BADC7-1F2F-420C-AA8B-3CFAE19DE9F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {457B2728-46CD-4411-9E97-BD070215DBEE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {7D7D70C4-BF78-4AC2-BD23-08C31C9F180C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {A59D7382-399B-4FC4-A742-5A449A92C874} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-15] (Adobe Systems Incorporated)
Task: {B50D1F88-29F9-4543-955E-0E4E272ABFC4} - System32\Tasks\{69B327C3-C743-4FB2-999A-2CED2CA6499C} => pcalua.exe -a C:\Users\Laslek\Downloads\AdobeAIRInstaller.exe -d C:\Users\Laslek\Downloads
Task: {D24AE484-EA70-4EEC-83E2-8AB22154B38A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {D7FB80FE-6129-4B85-AFA1-D803CBE0C7A8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-03-17 00:34 - 2015-03-17 00:34 - 00010240 _____ () C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2015-05-15 15:27 - 2015-05-15 15:27 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 15:27 - 2015-05-15 15:27 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-05-25 21:50 - 2016-05-24 07:21 - 00089792 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2017-02-08 20:22 - 2017-02-01 10:01 - 01870168 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-08 20:22 - 2017-02-01 10:01 - 00085848 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Laslek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LexwareInfoService => C:\Program Files\Lexware\Update Manager\LxUpdateManager.exe /autostart

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{359E3505-5B47-4CFA-AFD1-57250BEB38B0}] => C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe
FirewallRules: [{18AE878F-4FF4-43AE-AFEC-B96981D9378B}] => C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe
FirewallRules: [{3EAC13DB-D592-4C08-A43C-A70CA683B212}] => C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{18F3B84C-E7DF-4AD9-AC11-BB21E2684699}] => C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{38118381-0A0D-4269-8C15-7EDFA22553F4}] => C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
FirewallRules: [{3FD06538-ED5D-41CF-A242-20F4B31851D3}] => C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
FirewallRules: [{DF241F50-6B85-4179-ACAF-E34DF58C9F18}] => C:\Program Files\Sybase\SQL Anywhere 9\win32\dbeng9.exe
FirewallRules: [{5D03DF03-7F1C-41CB-BB64-6398BD21BF7B}] => C:\Program Files\Sybase\SQL Anywhere 9\win32\dbeng9.exe
FirewallRules: [{4F84D304-5F26-4122-A0BF-30BAD9AABD7F}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AD919760-22BB-457C-9FB6-5037CD63A1A2}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{99789993-73B6-44D7-94E2-B1FE6CF0A75D}C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{3F67415D-4260-40D6-A7F4-CB8A603ED6B6}C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [{0C45F0ED-140F-4F5E-A099-13C6E365BF58}] => C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{F3E4D528-9AF6-4A90-8D87-E10A98A22225}] => C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{21091367-0275-44C8-8BD8-E6311714B941}] => LPort=7935
FirewallRules: [{E90B721C-FDC3-49CB-9F45-B53ABA19AFF6}] => C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{43335C07-8937-4CF6-AC44-E17721A53213}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{D9D308D0-5E21-4664-804C-316DA9CEEEAF}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{69D3D165-3127-4BFD-ADBD-8698493D65C0}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D301CD10-4DE2-4A23-95B1-07017BA4DF0B}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{CC5E50D1-8B96-42DD-9FE5-8CE880E08BEC}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{2996D5AF-77CC-417E-BA7F-CF2A7CC7E07C}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D5672D78-1BEB-483B-AEAC-DFB3DD5A3C35}] => LPort=2869
FirewallRules: [{AF18822D-EA06-47E1-B25D-EE6278CC256A}] => LPort=1900
FirewallRules: [{93A74787-5C4B-4F81-A34C-F18BCAD3765E}] => C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

23-01-2017 17:55:27 Windows Update
23-01-2017 18:59:14 Windows Update
08-02-2017 19:37:20 Windows-Sicherung

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Basissystemgerät
Description: Basissystemgerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: AVerMedia A336 MiniCard Hybrid DVB-T
Description: AVerMedia A336 MiniCard Hybrid DVB-T
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Basissystemgerät
Description: Basissystemgerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: AVerMedia A336 MiniCard Hybrid DVB-T
Description: AVerMedia A336 MiniCard Hybrid DVB-T
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/11/2017 09:37:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 09:00:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 04:31:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 04:16:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 04:06:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 04:03:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 02:52:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/09/2017 02:01:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/08/2017 07:15:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (01/31/2017 12:46:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.


Systemfehler:
=============
Error: (02/11/2017 09:36:43 AM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/11/2017 09:36:43 AM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/10/2017 09:00:06 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/10/2017 09:00:06 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/10/2017 04:31:20 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/10/2017 04:31:20 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/10/2017 04:15:40 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/10/2017 04:15:40 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/10/2017 04:06:06 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/10/2017 04:06:06 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter


==================== Memory info =========================== 

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Prozentuale Nutzung des RAM: 53%
Installierter physikalischer RAM: 2046.1 MB
Verfügbarer physikalischer RAM: 943.59 MB
Summe virtueller Speicher: 4092.2 MB
Verfügbarer virtueller Speicher: 2334.13 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:150 GB) (Free:46.79 GB) NTFS
Drive d: () (Fixed) (Total:90.04 GB) (Free:88.05 GB) NTFS
Drive e: (DATA) (Fixed) (Total:225.33 GB) (Free:75.66 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BC1604DA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=90 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=225.3 GB) - (Type=07 NTFS)

==================== Ende vom Addition.txt ============================
         
__________________

Alt 12.02.2017, 14:47   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 12.02.2017, 18:12   #5
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Hallo lieber Cosinus,

Danke für deine Mühe und dass du dich meines Problems annimmst ��

Hab alles von Avira jetzt deinstalliert.

Viele Grüße
Soumaya


Alt 12.02.2017, 22:46   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
--> Windows 7, DVD wird bei Neuinstallation nicht erkannt

Alt 13.02.2017, 16:24   #7
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Ergebnis mbar:
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.02.13.06
  rootkit: v2017.02.11.01

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.18537
Laslek :: LASLEK-PC [administrator]

13.02.2017 15:40:33
mbar-log-2017-02-13 (15-40-33).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 256348
Time elapsed: 13 minute(s), 43 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Ergebnis TDSSKiller:
Code:
ATTFilter
16:17:06.0367 0x04d4  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
16:19:20.0557 0x04d4  ============================================================
16:19:20.0557 0x04d4  Current date / time: 2017/02/13 16:19:20.0557
16:19:20.0557 0x04d4  SystemInfo:
16:19:20.0557 0x04d4  
16:19:20.0557 0x04d4  OS Version: 6.1.7601 ServicePack: 1.0
16:19:20.0557 0x04d4  Product type: Workstation
16:19:20.0557 0x04d4  ComputerName: LASLEK-PC
16:19:20.0557 0x04d4  UserName: Laslek
16:19:20.0557 0x04d4  Windows directory: C:\Windows
16:19:20.0557 0x04d4  System windows directory: C:\Windows
16:19:20.0558 0x04d4  Processor architecture: Intel x86
16:19:20.0558 0x04d4  Number of processors: 2
16:19:20.0558 0x04d4  Page size: 0x1000
16:19:20.0558 0x04d4  Boot type: Normal boot
16:19:20.0558 0x04d4  CodeIntegrityOptions = 0x00000000
16:19:20.0558 0x04d4  ============================================================
16:19:22.0041 0x04d4  KLMD registered as C:\Windows\system32\drivers\96555951.sys
16:19:22.0042 0x04d4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x0
16:19:22.0188 0x04d4  System UUID: {3D73D34F-684E-E434-1F02-510EFE7B1244}
16:19:22.0693 0x04d4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:19:22.0696 0x04d4  ============================================================
16:19:22.0696 0x04d4  \Device\Harddisk0\DR0:
16:19:22.0696 0x04d4  MBR partitions:
16:19:22.0696 0x04d4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:19:22.0696 0x04d4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x12BFF000
16:19:22.0697 0x04d4  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x12C31800, BlocksNum 0xB414000
16:19:22.0697 0x04d4  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1E0DB800, BlocksNum 0x1C2AA000
16:19:22.0697 0x04d4  ============================================================
16:19:22.0720 0x04d4  C: <-> \Device\Harddisk0\DR0\Partition2
16:19:22.0753 0x04d4  D: <-> \Device\Harddisk0\DR0\Partition3
16:19:22.0795 0x04d4  E: <-> \Device\Harddisk0\DR0\Partition4
16:19:22.0810 0x04d4  ============================================================
16:19:22.0810 0x04d4  Initialize success
16:19:22.0810 0x04d4  ============================================================
16:19:42.0220 0x1678  ============================================================
16:19:42.0220 0x1678  Scan started
16:19:42.0220 0x1678  Mode: Manual; 
16:19:42.0220 0x1678  ============================================================
16:19:42.0220 0x1678  KSN ping started
16:19:53.0377 0x1678  KSN ping finished: true
16:19:54.0226 0x1678  ================ Scan system memory ========================
16:19:54.0227 0x1678  System memory - ok
16:19:54.0227 0x1678  ================ Scan services =============================
16:19:54.0393 0x1678  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:19:54.0401 0x1678  1394ohci - ok
16:19:54.0440 0x1678  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:19:54.0447 0x1678  ACPI - ok
16:19:54.0463 0x1678  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:19:54.0464 0x1678  AcpiPmi - ok
16:19:54.0569 0x1678  [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:19:54.0570 0x1678  AdobeARMservice - ok
16:19:54.0613 0x1678  [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:19:54.0618 0x1678  AdobeFlashPlayerUpdateSvc - ok
16:19:54.0643 0x1678  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:19:54.0653 0x1678  adp94xx - ok
16:19:54.0693 0x1678  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:19:54.0700 0x1678  adpahci - ok
16:19:54.0713 0x1678  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:19:54.0716 0x1678  adpu320 - ok
16:19:54.0743 0x1678  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:19:54.0745 0x1678  AeLookupSvc - ok
16:19:54.0780 0x1678  [ 93B49FA857F7036A4EFF32371F6E7391, B9B2867D9A80E7F028E9D7C6ABCB9EC5198ACE28CEE101C5A846666B356B2843 ] AFD             C:\Windows\system32\drivers\afd.sys
16:19:54.0787 0x1678  AFD - ok
16:19:54.0800 0x1678  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
16:19:54.0801 0x1678  agp440 - ok
16:19:54.0898 0x1678  [ F2EB8EB5FC46FB849498BBEF2AD6539D, 6BC9938B3E432963FFAB6A13E9237DA7888A3595522BBE99F2AA556ED06F5651 ] AGSService      C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
16:19:54.0946 0x1678  AGSService - ok
16:19:54.0962 0x1678  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
16:19:54.0964 0x1678  aic78xx - ok
16:19:55.0004 0x1678  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
16:19:55.0007 0x1678  ALG - ok
16:19:55.0026 0x1678  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:19:55.0027 0x1678  aliide - ok
16:19:55.0068 0x1678  [ B19505648F033393E907E2E419FDE8B3, BEF76AAD61FE0CA1F2B91C491FD94DE1BE67E776BBB7972D57ADFBE0333E9615 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:19:55.0076 0x1678  AMD External Events Utility - ok
16:19:55.0097 0x1678  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:19:55.0099 0x1678  amdagp - ok
16:19:55.0117 0x1678  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:19:55.0119 0x1678  amdide - ok
16:19:55.0134 0x1678  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:19:55.0136 0x1678  AmdK8 - ok
16:19:55.0147 0x1678  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:19:55.0149 0x1678  AmdPPM - ok
16:19:55.0180 0x1678  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:19:55.0182 0x1678  amdsata - ok
16:19:55.0195 0x1678  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:19:55.0198 0x1678  amdsbs - ok
16:19:55.0216 0x1678  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:19:55.0218 0x1678  amdxata - ok
16:19:55.0238 0x1678  [ 873F0162D10893E3DF34FA2AC604E6EA, 79655CDB125DBA14DDA01E45A2F8E185788081A3DF8D9E7A6A167C9F0D5C3F62 ] AppID           C:\Windows\system32\drivers\appid.sys
16:19:55.0240 0x1678  AppID - ok
16:19:55.0262 0x1678  [ E10F22695EAC1689DED6A9A45D6C352A, 15B10D2E4AB88DE729905E9E4DD24E812163AD45806713E3883E701723D44E3A ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:19:55.0263 0x1678  AppIDSvc - ok
16:19:55.0279 0x1678  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
16:19:55.0281 0x1678  Appinfo - ok
16:19:55.0335 0x1678  [ 2F2BD5EFFA8E91295F4DB493D85534B5, FF6758DC06751028960C9A165767EDAD78B2868599D1A01CAC8108E1699A92DE ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:19:55.0338 0x1678  Apple Mobile Device - ok
16:19:55.0385 0x1678  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:19:55.0392 0x1678  AppMgmt - ok
16:19:55.0412 0x1678  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
16:19:55.0415 0x1678  arc - ok
16:19:55.0425 0x1678  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:19:55.0428 0x1678  arcsas - ok
16:19:55.0522 0x1678  [ 1AC730FBADC2EC955EAF31FD38B5F6D1, BD020703649D73C5E016539AA47C66ED44F97DB04DC16CB76F4308593FF0DC6C ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:19:55.0525 0x1678  aspnet_state - ok
16:19:55.0537 0x1678  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:19:55.0538 0x1678  AsyncMac - ok
16:19:55.0559 0x1678  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:19:55.0561 0x1678  atapi - ok
16:19:55.0752 0x1678  [ 04F09923A393E4E0E8453A8F78361E73, B5C0B9D1195B87AF823887AD9355CD2B4C4F4DDF34103891EE48EA86F0F544E7 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:19:55.0910 0x1678  atikmdag - ok
16:19:55.0926 0x1678  Scan was interrupted by user!
16:19:55.0926 0x1678  Waiting for KSN requests completion. In queue: 7
16:19:56.0994 0x1678  Win FW state via NFP2: enabled ( trusted )
16:19:57.0128 0x1678  ============================================================
16:19:57.0128 0x1678  Scan finished
16:19:57.0128 0x1678  ============================================================
16:19:57.0151 0x0fc0  Detected object count: 0
16:19:57.0151 0x0fc0  Actual detected object count: 0
16:20:13.0930 0x12a0  ============================================================
16:20:13.0930 0x12a0  Scan started
16:20:13.0930 0x12a0  Mode: Manual; SigCheck; TDLFS; 
16:20:13.0930 0x12a0  ============================================================
16:20:13.0930 0x12a0  KSN ping started
16:20:14.0005 0x12a0  KSN ping finished: true
16:20:14.0392 0x12a0  ================ Scan system memory ========================
16:20:14.0392 0x12a0  System memory - ok
16:20:14.0392 0x12a0  ================ Scan services =============================
16:20:14.0539 0x12a0  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:20:14.0643 0x12a0  1394ohci - ok
16:20:14.0677 0x12a0  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:20:14.0695 0x12a0  ACPI - ok
16:20:14.0708 0x12a0  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:20:14.0738 0x12a0  AcpiPmi - ok
16:20:14.0849 0x12a0  [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:20:14.0867 0x12a0  AdobeARMservice - ok
16:20:14.0929 0x12a0  [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:20:14.0954 0x12a0  AdobeFlashPlayerUpdateSvc - ok
16:20:14.0980 0x12a0  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:20:15.0002 0x12a0  adp94xx - ok
16:20:15.0038 0x12a0  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:20:15.0055 0x12a0  adpahci - ok
16:20:15.0074 0x12a0  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:20:15.0088 0x12a0  adpu320 - ok
16:20:15.0121 0x12a0  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:20:15.0166 0x12a0  AeLookupSvc - ok
16:20:15.0200 0x12a0  [ 93B49FA857F7036A4EFF32371F6E7391, B9B2867D9A80E7F028E9D7C6ABCB9EC5198ACE28CEE101C5A846666B356B2843 ] AFD             C:\Windows\system32\drivers\afd.sys
16:20:15.0242 0x12a0  AFD - ok
16:20:15.0253 0x12a0  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
16:20:15.0266 0x12a0  agp440 - ok
16:20:15.0361 0x12a0  [ F2EB8EB5FC46FB849498BBEF2AD6539D, 6BC9938B3E432963FFAB6A13E9237DA7888A3595522BBE99F2AA556ED06F5651 ] AGSService      C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
16:20:15.0424 0x12a0  AGSService - ok
16:20:15.0449 0x12a0  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
16:20:15.0461 0x12a0  aic78xx - ok
16:20:15.0498 0x12a0  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
16:20:15.0529 0x12a0  ALG - ok
16:20:15.0554 0x12a0  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:20:15.0565 0x12a0  aliide - ok
16:20:15.0602 0x12a0  [ B19505648F033393E907E2E419FDE8B3, BEF76AAD61FE0CA1F2B91C491FD94DE1BE67E776BBB7972D57ADFBE0333E9615 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:20:15.0638 0x12a0  AMD External Events Utility - ok
16:20:15.0658 0x12a0  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:20:15.0671 0x12a0  amdagp - ok
16:20:15.0687 0x12a0  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:20:15.0699 0x12a0  amdide - ok
16:20:15.0720 0x12a0  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:20:15.0745 0x12a0  AmdK8 - ok
16:20:15.0767 0x12a0  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:20:15.0791 0x12a0  AmdPPM - ok
16:20:15.0824 0x12a0  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:20:15.0837 0x12a0  amdsata - ok
16:20:15.0856 0x12a0  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:20:15.0870 0x12a0  amdsbs - ok
16:20:15.0887 0x12a0  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:20:15.0898 0x12a0  amdxata - ok
16:20:15.0925 0x12a0  [ 873F0162D10893E3DF34FA2AC604E6EA, 79655CDB125DBA14DDA01E45A2F8E185788081A3DF8D9E7A6A167C9F0D5C3F62 ] AppID           C:\Windows\system32\drivers\appid.sys
16:20:15.0953 0x12a0  AppID - ok
16:20:15.0973 0x12a0  [ E10F22695EAC1689DED6A9A45D6C352A, 15B10D2E4AB88DE729905E9E4DD24E812163AD45806713E3883E701723D44E3A ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:20:15.0986 0x12a0  AppIDSvc - ok
16:20:15.0999 0x12a0  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
16:20:16.0028 0x12a0  Appinfo - ok
16:20:16.0070 0x12a0  [ 2F2BD5EFFA8E91295F4DB493D85534B5, FF6758DC06751028960C9A165767EDAD78B2868599D1A01CAC8108E1699A92DE ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:20:16.0084 0x12a0  Apple Mobile Device - ok
16:20:16.0119 0x12a0  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:20:16.0149 0x12a0  AppMgmt - ok
16:20:16.0180 0x12a0  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
16:20:16.0193 0x12a0  arc - ok
16:20:16.0203 0x12a0  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:20:16.0216 0x12a0  arcsas - ok
16:20:16.0308 0x12a0  [ 1AC730FBADC2EC955EAF31FD38B5F6D1, BD020703649D73C5E016539AA47C66ED44F97DB04DC16CB76F4308593FF0DC6C ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
16:20:16.0333 0x12a0  aspnet_state - ok
16:20:16.0348 0x12a0  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:20:16.0374 0x12a0  AsyncMac - ok
16:20:16.0387 0x12a0  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:20:16.0398 0x12a0  atapi - ok
16:20:16.0581 0x12a0  [ 04F09923A393E4E0E8453A8F78361E73, B5C0B9D1195B87AF823887AD9355CD2B4C4F4DDF34103891EE48EA86F0F544E7 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:20:16.0722 0x12a0  atikmdag - ok
16:20:16.0770 0x12a0  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:20:16.0815 0x12a0  AudioEndpointBuilder - ok
16:20:16.0833 0x12a0  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:20:16.0857 0x12a0  Audiosrv - ok
16:20:16.0894 0x12a0  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:20:16.0911 0x12a0  AxInstSV - ok
16:20:16.0965 0x12a0  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
16:20:17.0029 0x12a0  b06bdrv - ok
16:20:17.0053 0x12a0  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
16:20:17.0086 0x12a0  b57nd60x - ok
16:20:17.0115 0x12a0  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
16:20:17.0146 0x12a0  BDESVC - ok
16:20:17.0161 0x12a0  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:20:17.0187 0x12a0  Beep - ok
16:20:17.0215 0x12a0  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
16:20:17.0243 0x12a0  BFE - ok
16:20:17.0290 0x12a0  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
16:20:17.0349 0x12a0  BITS - ok
16:20:17.0371 0x12a0  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:20:17.0396 0x12a0  blbdrive - ok
16:20:17.0443 0x12a0  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:20:17.0460 0x12a0  Bonjour Service - ok
16:20:17.0494 0x12a0  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:20:17.0522 0x12a0  bowser - ok
16:20:17.0552 0x12a0  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:20:17.0566 0x12a0  BrFiltLo - ok
16:20:17.0599 0x12a0  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:20:17.0613 0x12a0  BrFiltUp - ok
16:20:17.0643 0x12a0  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
16:20:17.0659 0x12a0  Browser - ok
16:20:17.0681 0x12a0  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:20:17.0711 0x12a0  Brserid - ok
16:20:17.0730 0x12a0  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:20:17.0754 0x12a0  BrSerWdm - ok
16:20:17.0775 0x12a0  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:20:17.0812 0x12a0  BrUsbMdm - ok
16:20:17.0833 0x12a0  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:20:17.0856 0x12a0  BrUsbSer - ok
16:20:17.0879 0x12a0  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:20:17.0895 0x12a0  BTHMODEM - ok
16:20:17.0927 0x12a0  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
16:20:17.0955 0x12a0  bthserv - ok
16:20:17.0970 0x12a0  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:20:17.0998 0x12a0  cdfs - ok
16:20:18.0011 0x12a0  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:20:18.0028 0x12a0  cdrom - ok
16:20:18.0071 0x12a0  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:20:18.0127 0x12a0  CertPropSvc - ok
16:20:18.0148 0x12a0  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
16:20:18.0163 0x12a0  circlass - ok
16:20:18.0196 0x12a0  [ 1136E4A71849BCFCB057140AD03AAEE6, 9A9615F33E475039382E452052040C21EFA9C6669FB4E95D466C014FCAEF4D74 ] CLFS            C:\Windows\system32\CLFS.sys
16:20:18.0213 0x12a0  CLFS - ok
16:20:18.0347 0x12a0  [ 3B1C96EFC314A24D1B2AA0CC9B771ACE, 0D7F467FEDCAB69CBBEA2FA731F5E67F714B0E51B4A84729CF1482951FD8E400 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe
16:20:18.0409 0x12a0  ClickToRunSvc - ok
16:20:18.0478 0x12a0  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:20:18.0498 0x12a0  clr_optimization_v2.0.50727_32 - ok
16:20:18.0522 0x12a0  [ 40554ADA608F31A73BC002041BFBCED4, 8A4FB3B824EC49392A206BF14381AAE389C0E683B4ED0E89F5362746222E1FBA ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:20:18.0540 0x12a0  clr_optimization_v4.0.30319_32 - ok
16:20:18.0559 0x12a0  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
16:20:18.0572 0x12a0  CmBatt - ok
16:20:18.0606 0x12a0  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:20:18.0617 0x12a0  cmdide - ok
16:20:18.0644 0x12a0  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
16:20:18.0674 0x12a0  CNG - ok
16:20:18.0688 0x12a0  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:20:18.0700 0x12a0  Compbatt - ok
16:20:18.0717 0x12a0  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:20:18.0735 0x12a0  CompositeBus - ok
16:20:18.0742 0x12a0  COMSysApp - ok
16:20:18.0761 0x12a0  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:20:18.0773 0x12a0  crcdisk - ok
16:20:18.0795 0x12a0  [ 348B3A4DD922F590EB39DB231F7AEE4D, 62341BBB263E8E72436FE008E2645692712C2143964D67CE38D58F47F5DEA8B1 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:20:18.0827 0x12a0  CryptSvc - ok
16:20:18.0865 0x12a0  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
16:20:18.0907 0x12a0  CSC - ok
16:20:18.0950 0x12a0  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
16:20:18.0977 0x12a0  CscService - ok
16:20:19.0012 0x12a0  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:20:19.0035 0x12a0  DcomLaunch - ok
16:20:19.0070 0x12a0  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
16:20:19.0119 0x12a0  defragsvc - ok
16:20:19.0152 0x12a0  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:20:19.0178 0x12a0  DfsC - ok
16:20:19.0204 0x12a0  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:20:19.0224 0x12a0  Dhcp - ok
16:20:19.0273 0x12a0  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
16:20:19.0312 0x12a0  DiagTrack - ok
16:20:19.0348 0x12a0  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
16:20:19.0404 0x12a0  discache - ok
16:20:19.0439 0x12a0  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
16:20:19.0453 0x12a0  Disk - ok
16:20:19.0485 0x12a0  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:20:19.0499 0x12a0  dmvsc - ok
16:20:19.0533 0x12a0  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:20:19.0559 0x12a0  Dnscache - ok
16:20:19.0597 0x12a0  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:20:19.0637 0x12a0  dot3svc - ok
16:20:19.0653 0x12a0  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
16:20:19.0697 0x12a0  DPS - ok
16:20:19.0720 0x12a0  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:20:19.0757 0x12a0  drmkaud - ok
16:20:19.0801 0x12a0  [ 4B21D102E49E9D44C478D6766A7FCBE5, 7CEEBCF81EE23876F039ED1222020D6F45FE6B3A5CE3BB93DDA3B8BBEAA15E47 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:20:19.0833 0x12a0  DXGKrnl - ok
16:20:19.0844 0x12a0  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
16:20:19.0888 0x12a0  EapHost - ok
16:20:20.0020 0x12a0  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
16:20:20.0154 0x12a0  ebdrv - ok
16:20:20.0194 0x12a0  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] EFS             C:\Windows\System32\lsass.exe
16:20:20.0216 0x12a0  EFS - ok
16:20:20.0297 0x12a0  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:20:20.0356 0x12a0  ehRecvr - ok
16:20:20.0383 0x12a0  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
16:20:20.0425 0x12a0  ehSched - ok
16:20:20.0481 0x12a0  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:20:20.0509 0x12a0  elxstor - ok
16:20:20.0526 0x12a0  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:20:20.0555 0x12a0  ErrDev - ok
16:20:20.0601 0x12a0  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
16:20:20.0647 0x12a0  EventSystem - ok
16:20:20.0669 0x12a0  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:20:20.0699 0x12a0  exfat - ok
16:20:20.0722 0x12a0  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:20:20.0753 0x12a0  fastfat - ok
16:20:20.0780 0x12a0  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
16:20:20.0822 0x12a0  Fax - ok
16:20:20.0843 0x12a0  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
16:20:20.0856 0x12a0  fdc - ok
16:20:20.0874 0x12a0  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
16:20:20.0900 0x12a0  fdPHost - ok
16:20:20.0912 0x12a0  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:20:20.0938 0x12a0  FDResPub - ok
16:20:20.0949 0x12a0  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:20:20.0961 0x12a0  FileInfo - ok
16:20:20.0971 0x12a0  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:20:20.0997 0x12a0  Filetrace - ok
16:20:21.0015 0x12a0  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:20:21.0028 0x12a0  flpydisk - ok
16:20:21.0049 0x12a0  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:20:21.0064 0x12a0  FltMgr - ok
16:20:21.0265 0x12a0  [ DF15E8426D02C15422EBFF28BA83F03A, 51BEB315B0E5114906684FB3F460FA7BEA326C1B589C5C35D29795A7C13AB4FB ] FontCache       C:\Windows\system32\FntCache.dll
16:20:21.0339 0x12a0  FontCache - ok
16:20:21.0418 0x12a0  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:20:21.0437 0x12a0  FontCache3.0.0.0 - ok
16:20:21.0484 0x12a0  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:20:21.0506 0x12a0  FsDepends - ok
16:20:21.0539 0x12a0  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:20:21.0559 0x12a0  Fs_Rec - ok
16:20:21.0577 0x12a0  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:20:21.0595 0x12a0  fvevol - ok
16:20:21.0610 0x12a0  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:20:21.0623 0x12a0  gagp30kx - ok
16:20:21.0660 0x12a0  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:20:21.0691 0x12a0  gpsvc - ok
16:20:21.0763 0x12a0  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
16:20:21.0776 0x12a0  gupdate - ok
16:20:21.0785 0x12a0  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
16:20:21.0797 0x12a0  gupdatem - ok
16:20:21.0847 0x12a0  [ D43F6708A90772B6F459AC770702B3B3, 38ECAFA7452D8CEE039B5F9F8D45111826680A83BD4D1F0737AB96261205836F ] Haufe FabricHostService C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
16:20:21.0855 0x12a0  Haufe FabricHostService - detected UnsignedFile.Multi.Generic ( 1 )
16:20:22.0055 0x12a0  Detect skipped due to KSN trusted
16:20:22.0055 0x12a0  Haufe FabricHostService - ok
16:20:22.0069 0x12a0  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:20:22.0104 0x12a0  hcw85cir - ok
16:20:22.0142 0x12a0  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:20:22.0177 0x12a0  HdAudAddService - ok
16:20:22.0196 0x12a0  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:20:22.0225 0x12a0  HDAudBus - ok
16:20:22.0244 0x12a0  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:20:22.0279 0x12a0  HidBatt - ok
16:20:22.0301 0x12a0  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:20:22.0332 0x12a0  HidBth - ok
16:20:22.0349 0x12a0  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:20:22.0365 0x12a0  HidIr - ok
16:20:22.0404 0x12a0  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
16:20:22.0431 0x12a0  hidserv - ok
16:20:22.0446 0x12a0  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:20:22.0490 0x12a0  HidUsb - ok
16:20:22.0505 0x12a0  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:20:22.0532 0x12a0  hkmsvc - ok
16:20:22.0548 0x12a0  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:20:22.0566 0x12a0  HomeGroupListener - ok
16:20:22.0601 0x12a0  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:20:22.0618 0x12a0  HomeGroupProvider - ok
16:20:22.0657 0x12a0  [ 7F854BD9C113B4569CE6579EA3847A2A, 5C9AE7588EBC1C14C948FD4EC117C8E6CB3C421282AF27281659F76C1FD8832D ] HPFXFAX         C:\Windows\system32\drivers\hppcfaxio.sys
16:20:22.0682 0x12a0  HPFXFAX - ok
16:20:22.0718 0x12a0  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:20:22.0731 0x12a0  HpSAMD - ok
16:20:22.0795 0x12a0  [ 1878A79551F2EDAE7EBD110AAE6D33AD, 1F409360B44AEB3A6023E953EAB350FFB3EB8322F589E2422AB312288B33A2DA ] HPSupportSolutionsFrameworkService C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe
16:20:22.0807 0x12a0  HPSupportSolutionsFrameworkService - ok
16:20:22.0851 0x12a0  [ 487569E5DA56A5A432FF8AF6D3599CF9, 7C974D8379C60B4F69A20B01876C49181B0A63AC318C4BD0A21DABFF27A15C9D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:20:22.0887 0x12a0  HTTP - ok
16:20:22.0904 0x12a0  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:20:22.0916 0x12a0  hwpolicy - ok
16:20:22.0939 0x12a0  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:20:22.0954 0x12a0  i8042prt - ok
16:20:23.0000 0x12a0  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:20:23.0022 0x12a0  iaStorV - ok
16:20:23.0085 0x12a0  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:20:23.0121 0x12a0  idsvc - ok
16:20:23.0129 0x12a0  IEEtwCollectorService - ok
16:20:23.0143 0x12a0  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:20:23.0155 0x12a0  iirsp - ok
16:20:23.0217 0x12a0  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
16:20:23.0262 0x12a0  IKEEXT - ok
16:20:23.0287 0x12a0  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:20:23.0299 0x12a0  intelide - ok
16:20:23.0318 0x12a0  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:20:23.0343 0x12a0  intelppm - ok
16:20:23.0376 0x12a0  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:20:23.0415 0x12a0  IPBusEnum - ok
16:20:23.0438 0x12a0  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:20:23.0464 0x12a0  IpFilterDriver - ok
16:20:23.0510 0x12a0  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:20:23.0536 0x12a0  iphlpsvc - ok
16:20:23.0556 0x12a0  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:20:23.0571 0x12a0  IPMIDRV - ok
16:20:23.0586 0x12a0  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:20:23.0615 0x12a0  IPNAT - ok
16:20:23.0647 0x12a0  [ 1AA479D2A100ACFDE3A7B7B2D6E53DC0, 487714C233A93F2DCE7AD443CEA61B60B35D6131C79DE0A9C1A614BCB3B97391 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:20:23.0671 0x12a0  iPod Service - ok
16:20:23.0685 0x12a0  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:20:23.0717 0x12a0  IRENUM - ok
16:20:23.0742 0x12a0  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:20:23.0755 0x12a0  isapnp - ok
16:20:23.0792 0x12a0  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:20:23.0810 0x12a0  iScsiPrt - ok
16:20:23.0825 0x12a0  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:20:23.0837 0x12a0  kbdclass - ok
16:20:23.0843 0x12a0  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:20:23.0856 0x12a0  kbdhid - ok
16:20:23.0866 0x12a0  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] KeyIso          C:\Windows\system32\lsass.exe
16:20:23.0878 0x12a0  KeyIso - ok
16:20:23.0905 0x12a0  [ EF7A3616C7902A232FEDAAB886AA07C2, B739EA5840E09E32AEF23A414F1E74B33785189BC0F43E156F6321CC0FA5BC35 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:20:23.0918 0x12a0  KSecDD - ok
16:20:23.0938 0x12a0  [ 78EF4037997534DD08545416EF4438E2, ABB739F1BA59A1D88F94C0F6569E92DBCFA73109A4AD7678C2CAB14AEEDEDDCD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:20:23.0954 0x12a0  KSecPkg - ok
16:20:23.0997 0x12a0  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:20:24.0033 0x12a0  KtmRm - ok
16:20:24.0085 0x12a0  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:20:24.0129 0x12a0  LanmanServer - ok
16:20:24.0169 0x12a0  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:20:24.0198 0x12a0  LanmanWorkstation - ok
16:20:24.0229 0x12a0  Lexware_Professional_Datenbank - ok
16:20:24.0261 0x12a0  [ E6DA531F2C86A230AF5D73354D161D3C, 96A0A443B16F44DF8BB2EFD0AEA56E5B2AC323E99CDF4BA29EA379B62B8EB039 ] Lexware_Update_Service C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
16:20:24.0279 0x12a0  Lexware_Update_Service - detected UnsignedFile.Multi.Generic ( 1 )
16:20:24.0607 0x12a0  Detect skipped due to KSN trusted
16:20:24.0607 0x12a0  Lexware_Update_Service - ok
16:20:24.0647 0x12a0  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:20:24.0700 0x12a0  lltdio - ok
16:20:24.0735 0x12a0  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:20:24.0782 0x12a0  lltdsvc - ok
16:20:24.0798 0x12a0  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:20:24.0834 0x12a0  lmhosts - ok
16:20:24.0854 0x12a0  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:20:24.0868 0x12a0  LSI_FC - ok
16:20:24.0878 0x12a0  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:20:24.0891 0x12a0  LSI_SAS - ok
16:20:24.0908 0x12a0  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:20:24.0921 0x12a0  LSI_SAS2 - ok
16:20:24.0929 0x12a0  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:20:24.0943 0x12a0  LSI_SCSI - ok
16:20:24.0959 0x12a0  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:20:24.0987 0x12a0  luafv - ok
16:20:25.0026 0x12a0  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:20:25.0055 0x12a0  Mcx2Svc - ok
16:20:25.0071 0x12a0  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:20:25.0083 0x12a0  megasas - ok
16:20:25.0105 0x12a0  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:20:25.0122 0x12a0  MegaSR - ok
16:20:25.0197 0x12a0  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
16:20:25.0216 0x12a0  Microsoft Office Groove Audit Service - ok
16:20:25.0256 0x12a0  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
16:20:25.0301 0x12a0  MMCSS - ok
16:20:25.0308 0x12a0  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
16:20:25.0347 0x12a0  Modem - ok
16:20:25.0379 0x12a0  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:20:25.0407 0x12a0  monitor - ok
16:20:25.0425 0x12a0  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:20:25.0437 0x12a0  mouclass - ok
16:20:25.0450 0x12a0  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:20:25.0463 0x12a0  mouhid - ok
16:20:25.0487 0x12a0  [ D1BDF813C9FE5ED53134EDF360927735, 0FC422513A9C98C32A90C7C5B2635DA6104C6425A2E2A8746B110A07AFB1B539 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:20:25.0500 0x12a0  mountmgr - ok
16:20:25.0518 0x12a0  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:20:25.0532 0x12a0  mpio - ok
16:20:25.0548 0x12a0  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:20:25.0574 0x12a0  mpsdrv - ok
16:20:25.0623 0x12a0  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:20:25.0663 0x12a0  MpsSvc - ok
16:20:25.0680 0x12a0  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:20:25.0706 0x12a0  MRxDAV - ok
16:20:25.0724 0x12a0  [ 6284D46BAA301BEDB9AB7FA7672B2410, F998D17FEE497491CC3CF4711FB37E507D1A5B2E9B2E4D6001152EDB968A2D98 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:20:25.0741 0x12a0  mrxsmb - ok
16:20:25.0775 0x12a0  [ 78AD95493F015FA9941869A009C00286, EC075C44FE78249CA58B338EBC3905A020762571A27DBEDF32A41B2A84FDEAFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:20:25.0805 0x12a0  mrxsmb10 - ok
16:20:25.0834 0x12a0  [ D7C3ED1FD46FAC7083473D9B1718255E, BC4BFFDB4B044205A4A658701B7F0E9680C139A6A0141E333BE6D590F99D9D65 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:20:25.0849 0x12a0  mrxsmb20 - ok
16:20:25.0885 0x12a0  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:20:25.0896 0x12a0  msahci - ok
16:20:25.0913 0x12a0  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:20:25.0928 0x12a0  msdsm - ok
16:20:25.0941 0x12a0  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
16:20:25.0959 0x12a0  MSDTC - ok
16:20:25.0977 0x12a0  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:20:26.0003 0x12a0  Msfs - ok
16:20:26.0014 0x12a0  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:20:26.0040 0x12a0  mshidkmdf - ok
16:20:26.0053 0x12a0  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:20:26.0065 0x12a0  msisadrv - ok
16:20:26.0097 0x12a0  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:20:26.0154 0x12a0  MSiSCSI - ok
16:20:26.0162 0x12a0  msiserver - ok
16:20:26.0185 0x12a0  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:20:26.0228 0x12a0  MSKSSRV - ok
16:20:26.0245 0x12a0  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:20:26.0286 0x12a0  MSPCLOCK - ok
16:20:26.0304 0x12a0  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:20:26.0331 0x12a0  MSPQM - ok
16:20:26.0346 0x12a0  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:20:26.0361 0x12a0  MsRPC - ok
16:20:26.0379 0x12a0  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:20:26.0390 0x12a0  mssmbios - ok
16:20:26.0404 0x12a0  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:20:26.0429 0x12a0  MSTEE - ok
16:20:26.0443 0x12a0  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:20:26.0455 0x12a0  MTConfig - ok
16:20:26.0473 0x12a0  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:20:26.0486 0x12a0  Mup - ok
16:20:26.0531 0x12a0  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
16:20:26.0580 0x12a0  napagent - ok
16:20:26.0608 0x12a0  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:20:26.0630 0x12a0  NativeWifiP - ok
16:20:26.0679 0x12a0  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:20:26.0713 0x12a0  NDIS - ok
16:20:26.0731 0x12a0  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:20:26.0757 0x12a0  NdisCap - ok
16:20:26.0774 0x12a0  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:20:26.0798 0x12a0  NdisTapi - ok
16:20:26.0814 0x12a0  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:20:26.0854 0x12a0  Ndisuio - ok
16:20:26.0873 0x12a0  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:20:26.0914 0x12a0  NdisWan - ok
16:20:26.0937 0x12a0  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:20:26.0962 0x12a0  NDProxy - ok
16:20:26.0995 0x12a0  [ 80B7A96F908DA13617E7E6832C5C6A64, 08B81AFE120B8064B6E001BDF424168305D55F38AE2071300F57C8EA32BEAE56 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
16:20:27.0002 0x12a0  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
16:20:27.0302 0x12a0  Detect skipped due to KSN trusted
16:20:27.0302 0x12a0  Net Driver HPZ12 - ok
16:20:27.0319 0x12a0  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:20:27.0369 0x12a0  NetBIOS - ok
16:20:27.0404 0x12a0  [ A00996C9BFEF29A93B9F21DBE1DC502D, A97982CBBC2E240B0CD884ED3ED5D11B207DA8E7BEF73DCEA44E16E1CD84222F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:20:27.0435 0x12a0  NetBT - ok
16:20:27.0462 0x12a0  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] Netlogon        C:\Windows\system32\lsass.exe
16:20:27.0474 0x12a0  Netlogon - ok
16:20:27.0511 0x12a0  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
16:20:27.0546 0x12a0  Netman - ok
16:20:27.0575 0x12a0  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:20:27.0591 0x12a0  NetMsmqActivator - ok
16:20:27.0599 0x12a0  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:20:27.0615 0x12a0  NetPipeActivator - ok
16:20:27.0629 0x12a0  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
16:20:27.0666 0x12a0  netprofm - ok
16:20:27.0714 0x12a0  [ 652881F65B35564575255A0E05E23C55, 6F77B2BD9362D7593B5B2A8AEAE834463CB32B006ABE2188A5A36C9469896960 ] netr28          C:\Windows\system32\DRIVERS\netr28.sys
16:20:27.0742 0x12a0  netr28 - ok
16:20:27.0752 0x12a0  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:20:27.0768 0x12a0  NetTcpActivator - ok
16:20:27.0776 0x12a0  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
16:20:27.0792 0x12a0  NetTcpPortSharing - ok
16:20:27.0823 0x12a0  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:20:27.0835 0x12a0  nfrd960 - ok
16:20:27.0870 0x12a0  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:20:27.0890 0x12a0  NlaSvc - ok
16:20:27.0902 0x12a0  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:20:27.0938 0x12a0  Npfs - ok
16:20:27.0959 0x12a0  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
16:20:28.0002 0x12a0  nsi - ok
16:20:28.0021 0x12a0  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:20:28.0048 0x12a0  nsiproxy - ok
16:20:28.0101 0x12a0  [ 978E7A2E4BF4E8E70D0776EF0D9E97FB, B6C82BB9B3025FD2D37B6AB6FA9C2944F8B3020CD4588BE464CE73A992B7FF00 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:20:28.0161 0x12a0  Ntfs - ok
16:20:28.0175 0x12a0  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
16:20:28.0200 0x12a0  Null - ok
16:20:28.0245 0x12a0  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:20:28.0270 0x12a0  nvraid - ok
16:20:28.0288 0x12a0  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:20:28.0305 0x12a0  nvstor - ok
16:20:28.0318 0x12a0  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:20:28.0331 0x12a0  nv_agp - ok
16:20:28.0425 0x12a0  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:20:28.0453 0x12a0  odserv - ok
16:20:28.0471 0x12a0  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:20:28.0495 0x12a0  ohci1394 - ok
16:20:28.0531 0x12a0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:20:28.0558 0x12a0  ose - ok
16:20:28.0743 0x12a0  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:20:28.0939 0x12a0  osppsvc - ok
16:20:28.0999 0x12a0  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:20:29.0032 0x12a0  p2pimsvc - ok
16:20:29.0057 0x12a0  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:20:29.0080 0x12a0  p2psvc - ok
16:20:29.0115 0x12a0  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\drivers\parport.sys
16:20:29.0144 0x12a0  Parport - ok
16:20:29.0164 0x12a0  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:20:29.0177 0x12a0  partmgr - ok
16:20:29.0196 0x12a0  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
16:20:29.0209 0x12a0  Parvdm - ok
16:20:29.0228 0x12a0  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:20:29.0257 0x12a0  PcaSvc - ok
16:20:29.0279 0x12a0  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
16:20:29.0294 0x12a0  pci - ok
16:20:29.0311 0x12a0  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:20:29.0323 0x12a0  pciide - ok
16:20:29.0342 0x12a0  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:20:29.0358 0x12a0  pcmcia - ok
16:20:29.0372 0x12a0  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:20:29.0384 0x12a0  pcw - ok
16:20:29.0504 0x12a0  [ 9C63D4C4F00A6C20DB51515ABD8BD0A0, 8E1E87C5A6AC770529341F3BB53EAFFF0948C20FC605F9C482B6FB5E57BEED1B ] PDF Architect 3 C:\Program Files\PDF Architect 3\ws.exe
16:20:29.0596 0x12a0  PDF Architect 3 - ok
16:20:29.0634 0x12a0  [ 8510198FCE40F07D5ED7F8BD5CF05A93, 7DC420519851C3A9724F0406B280860E645CBFFDC6D6BF6679A79ED2FDD9C6BF ] PDF Architect 3 CrashHandler C:\Program Files\PDF Architect 3\crash-handler-ws.exe
16:20:29.0667 0x12a0  PDF Architect 3 CrashHandler - ok
16:20:29.0704 0x12a0  [ 10B6DFA227FDDC0AA533778B0BF52460, D04442CE945E19B40920112B9AED6EE492302D962DBF133F58FF466072CFD5E3 ] PDF Architect 3 Creator C:\Program Files\PDF Architect 3\creator-ws.exe
16:20:29.0730 0x12a0  PDF Architect 3 Creator - ok
16:20:29.0766 0x12a0  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:20:29.0796 0x12a0  PEAUTH - ok
16:20:29.0853 0x12a0  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:20:29.0894 0x12a0  PeerDistSvc - ok
16:20:29.0991 0x12a0  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
16:20:30.0073 0x12a0  pla - ok
16:20:30.0124 0x12a0  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:20:30.0144 0x12a0  PlugPlay - ok
16:20:30.0189 0x12a0  [ 0C155C5D8942B3CBCF9506A9D376B9AD, 37F4878548DD7063CA31FB21D6955A45C25F648C332A736DA84DEA5AAE7486AF ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
16:20:30.0200 0x12a0  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
16:20:30.0545 0x12a0  Detect skipped due to KSN trusted
16:20:30.0545 0x12a0  Pml Driver HPZ12 - ok
16:20:30.0564 0x12a0  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:20:30.0594 0x12a0  PNRPAutoReg - ok
16:20:30.0622 0x12a0  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:20:30.0641 0x12a0  PNRPsvc - ok
16:20:30.0669 0x12a0  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:20:30.0692 0x12a0  PolicyAgent - ok
16:20:30.0736 0x12a0  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
16:20:30.0776 0x12a0  Power - ok
16:20:30.0807 0x12a0  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:20:30.0834 0x12a0  PptpMiniport - ok
16:20:30.0867 0x12a0  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
16:20:30.0900 0x12a0  Processor - ok
16:20:30.0935 0x12a0  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:20:30.0952 0x12a0  ProfSvc - ok
16:20:30.0966 0x12a0  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:20:30.0979 0x12a0  ProtectedStorage - ok
16:20:30.0996 0x12a0  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:20:31.0023 0x12a0  Psched - ok
16:20:31.0045 0x12a0  [ 053A608BCFEB5A4D0CECDDA703B08C83, 58DA926B0F885A31CACA55E2D9F9CA014B19A7C5374B861CE3E4A11C55F4EB5C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
16:20:31.0055 0x12a0  PxHelp20 - ok
16:20:31.0111 0x12a0  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:20:31.0170 0x12a0  ql2300 - ok
16:20:31.0213 0x12a0  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:20:31.0227 0x12a0  ql40xx - ok
16:20:31.0283 0x12a0  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
16:20:31.0401 0x12a0  QWAVE - ok
16:20:31.0436 0x12a0  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:20:31.0495 0x12a0  QWAVEdrv - ok
16:20:31.0512 0x12a0  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:20:31.0538 0x12a0  RasAcd - ok
16:20:31.0570 0x12a0  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:20:31.0594 0x12a0  RasAgileVpn - ok
16:20:31.0612 0x12a0  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
16:20:31.0641 0x12a0  RasAuto - ok
16:20:31.0652 0x12a0  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:20:31.0696 0x12a0  Rasl2tp - ok
16:20:31.0726 0x12a0  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
16:20:31.0768 0x12a0  RasMan - ok
16:20:31.0785 0x12a0  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:20:31.0825 0x12a0  RasPppoe - ok
16:20:31.0846 0x12a0  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:20:31.0888 0x12a0  RasSstp - ok
16:20:31.0917 0x12a0  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:20:31.0958 0x12a0  rdbss - ok
16:20:31.0977 0x12a0  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:20:32.0001 0x12a0  rdpbus - ok
16:20:32.0020 0x12a0  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:20:32.0056 0x12a0  RDPCDD - ok
16:20:32.0090 0x12a0  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:20:32.0105 0x12a0  RDPDR - ok
16:20:32.0117 0x12a0  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:20:32.0141 0x12a0  RDPENCDD - ok
16:20:32.0156 0x12a0  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:20:32.0179 0x12a0  RDPREFMP - ok
16:20:32.0250 0x12a0  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:20:32.0288 0x12a0  RdpVideoMiniport - ok
16:20:32.0326 0x12a0  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:20:32.0343 0x12a0  RDPWD - ok
16:20:32.0368 0x12a0  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:20:32.0383 0x12a0  rdyboost - ok
16:20:32.0441 0x12a0  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:20:32.0477 0x12a0  RemoteAccess - ok
16:20:32.0511 0x12a0  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:20:32.0541 0x12a0  RemoteRegistry - ok
16:20:32.0579 0x12a0  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:20:32.0620 0x12a0  RpcEptMapper - ok
16:20:32.0634 0x12a0  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
16:20:32.0648 0x12a0  RpcLocator - ok
16:20:32.0673 0x12a0  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] RpcSs           C:\Windows\system32\rpcss.dll
16:20:32.0695 0x12a0  RpcSs - ok
16:20:32.0723 0x12a0  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:20:32.0774 0x12a0  rspndr - ok
16:20:32.0814 0x12a0  [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
16:20:32.0835 0x12a0  RTL8167 - ok
16:20:32.0874 0x12a0  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:20:32.0906 0x12a0  s3cap - ok
16:20:32.0931 0x12a0  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] SamSs           C:\Windows\system32\lsass.exe
16:20:32.0943 0x12a0  SamSs - ok
16:20:32.0953 0x12a0  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:20:32.0967 0x12a0  sbp2port - ok
16:20:33.0009 0x12a0  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:20:33.0047 0x12a0  SCardSvr - ok
16:20:33.0054 0x12a0  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:20:33.0078 0x12a0  scfilter - ok
16:20:33.0122 0x12a0  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
16:20:33.0156 0x12a0  Schedule - ok
16:20:33.0171 0x12a0  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:20:33.0196 0x12a0  SCPolicySvc - ok
16:20:33.0230 0x12a0  [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
16:20:33.0262 0x12a0  sdbus - ok
16:20:33.0282 0x12a0  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:20:33.0309 0x12a0  SDRSVC - ok
16:20:33.0332 0x12a0  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:20:33.0345 0x12a0  secdrv - ok
16:20:33.0366 0x12a0  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
16:20:33.0380 0x12a0  seclogon - ok
16:20:33.0392 0x12a0  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
16:20:33.0420 0x12a0  SENS - ok
16:20:33.0453 0x12a0  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:20:33.0478 0x12a0  SensrSvc - ok
16:20:33.0493 0x12a0  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:20:33.0505 0x12a0  Serenum - ok
16:20:33.0525 0x12a0  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\drivers\serial.sys
16:20:33.0552 0x12a0  Serial - ok
16:20:33.0574 0x12a0  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:20:33.0587 0x12a0  sermouse - ok
16:20:33.0640 0x12a0  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:20:33.0685 0x12a0  SessionEnv - ok
16:20:33.0696 0x12a0  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
16:20:33.0710 0x12a0  sffdisk - ok
16:20:33.0725 0x12a0  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:20:33.0748 0x12a0  sffp_mmc - ok
16:20:33.0769 0x12a0  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
16:20:33.0783 0x12a0  sffp_sd - ok
16:20:33.0789 0x12a0  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:20:33.0801 0x12a0  sfloppy - ok
16:20:33.0856 0x12a0  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:20:33.0915 0x12a0  SharedAccess - ok
16:20:33.0943 0x12a0  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:20:33.0978 0x12a0  ShellHWDetection - ok
16:20:33.0997 0x12a0  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
16:20:34.0010 0x12a0  sisagp - ok
16:20:34.0043 0x12a0  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:20:34.0055 0x12a0  SiSRaid2 - ok
16:20:34.0070 0x12a0  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:20:34.0083 0x12a0  SiSRaid4 - ok
16:20:34.0101 0x12a0  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:20:34.0138 0x12a0  Smb - ok
16:20:34.0159 0x12a0  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:20:34.0174 0x12a0  SNMPTRAP - ok
16:20:34.0183 0x12a0  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:20:34.0195 0x12a0  spldr - ok
16:20:34.0233 0x12a0  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
16:20:34.0255 0x12a0  Spooler - ok
16:20:34.0357 0x12a0  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
16:20:34.0483 0x12a0  sppsvc - ok
16:20:34.0508 0x12a0  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:20:34.0535 0x12a0  sppuinotify - ok
16:20:34.0561 0x12a0  [ D86EA722F3337AA3F0253B6E359E6796, BA4C2DF629CBECFA1C1D589FFA6AEF8C5853C427B6B007793FD432B4AA8DA593 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:20:34.0609 0x12a0  srv - ok
16:20:34.0629 0x12a0  [ 1931823AC05967E5F79B791E9FFC2398, 255E6278F476F1D488199B0AD2004C3860CC74971AC3C0AB4B1DB4E42B329E94 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:20:34.0649 0x12a0  srv2 - ok
16:20:34.0674 0x12a0  [ 50A2FC7B0408F15B77E056076BBB6252, 801AD15B4CDFC09EE4909B7180A5CE562D54D4F08A9C0B7D9CA067ADC42A6C9D ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:20:34.0705 0x12a0  srvnet - ok
16:20:34.0734 0x12a0  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:20:34.0765 0x12a0  SSDPSRV - ok
16:20:34.0783 0x12a0  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:20:34.0810 0x12a0  SstpSvc - ok
16:20:34.0841 0x12a0  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:20:34.0852 0x12a0  stexstor - ok
16:20:34.0895 0x12a0  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
16:20:34.0925 0x12a0  StiSvc - ok
16:20:34.0963 0x12a0  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:20:34.0975 0x12a0  storflt - ok
16:20:34.0986 0x12a0  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:20:34.0997 0x12a0  storvsc - ok
16:20:35.0014 0x12a0  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:20:35.0025 0x12a0  swenum - ok
16:20:35.0060 0x12a0  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
16:20:35.0096 0x12a0  swprv - ok
16:20:35.0132 0x12a0  [ F2AD8960812FD111E20E84659EF19D43, FAC91E940D3735738908447E58792C32E6F86427612114A624041B7213831105 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
16:20:35.0155 0x12a0  Synth3dVsc - ok
16:20:35.0233 0x12a0  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
16:20:35.0306 0x12a0  SysMain - ok
16:20:35.0333 0x12a0  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
16:20:35.0352 0x12a0  TabletInputService - ok
16:20:35.0378 0x12a0  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:20:35.0410 0x12a0  TapiSrv - ok
16:20:35.0470 0x12a0  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:20:35.0529 0x12a0  Tcpip - ok
16:20:35.0586 0x12a0  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:20:35.0628 0x12a0  TCPIP6 - ok
16:20:35.0660 0x12a0  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:20:35.0689 0x12a0  tcpipreg - ok
16:20:35.0720 0x12a0  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:20:35.0747 0x12a0  TDPIPE - ok
16:20:35.0782 0x12a0  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:20:35.0804 0x12a0  TDTCP - ok
16:20:35.0829 0x12a0  [ BB8817D0508DD5EA69C770C8DEF5AB67, C55671524EEF6E16BBCC92556E83FD1D6457E707EA9330FC1CDD28FB11D99B77 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:20:35.0866 0x12a0  tdx - ok
16:20:35.0893 0x12a0  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:20:35.0914 0x12a0  TermDD - ok
16:20:35.0929 0x12a0  [ E951866BAC5A23403F62A349EDBB6EEB, BE6FB3C09D1CF8952B4D041F45B4DEE53D78EE7D27A5135012BC92B2F7CFBEA3 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
16:20:35.0941 0x12a0  terminpt - ok
16:20:35.0990 0x12a0  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
16:20:36.0019 0x12a0  TermService - ok
16:20:36.0060 0x12a0  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
16:20:36.0091 0x12a0  Themes - ok
16:20:36.0102 0x12a0  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
16:20:36.0129 0x12a0  THREADORDER - ok
16:20:36.0157 0x12a0  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
16:20:36.0203 0x12a0  TrkWks - ok
16:20:36.0265 0x12a0  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:20:36.0313 0x12a0  TrustedInstaller - ok
16:20:36.0344 0x12a0  [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:20:36.0357 0x12a0  tssecsrv - ok
16:20:36.0405 0x12a0  [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:20:36.0436 0x12a0  TsUsbFlt - ok
16:20:36.0454 0x12a0  [ 57C527AF84748B5C2F5178C499C0B81F, 2FF1F25BA16F8984E9F2CE4DE663F261BAF267EDF10D466A52BB211C567F763C ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:20:36.0471 0x12a0  TsUsbGD - ok
16:20:36.0537 0x12a0  [ 045ACB987C650D8186C6B4A692223860, C1CDDF7DABAE531C53290C7C70F35DD65751B399D269711865AD65F9E4E43B0B ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
16:20:36.0614 0x12a0  tsusbhub - ok
16:20:36.0672 0x12a0  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:20:36.0707 0x12a0  tunnel - ok
16:20:36.0724 0x12a0  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:20:36.0737 0x12a0  uagp35 - ok
16:20:36.0757 0x12a0  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:20:36.0803 0x12a0  udfs - ok
16:20:36.0846 0x12a0  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:20:36.0861 0x12a0  UI0Detect - ok
16:20:36.0877 0x12a0  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:20:36.0891 0x12a0  uliagpkx - ok
16:20:36.0908 0x12a0  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:20:36.0922 0x12a0  umbus - ok
16:20:36.0941 0x12a0  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:20:36.0954 0x12a0  UmPass - ok
16:20:36.0985 0x12a0  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:20:37.0017 0x12a0  UmRdpService - ok
16:20:37.0045 0x12a0  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
16:20:37.0090 0x12a0  upnphost - ok
16:20:37.0108 0x12a0  [ A176718F0DF45F60F545CF3E14F4D108, 5E767CB0B51B3BA05B6F99A7E46BEC275489DCFE874343C9B992843AA1F2334E ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
16:20:37.0154 0x12a0  USBAAPL - ok
16:20:37.0188 0x12a0  [ 325A69967CC7B4BFB170F5636143A94A, E0341360827B9B3E244F24D0BC01D3B3C0CC97E232A361960849F799A16AD540 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:20:37.0215 0x12a0  usbccgp - ok
16:20:37.0246 0x12a0  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:20:37.0281 0x12a0  usbcir - ok
16:20:37.0293 0x12a0  [ 5D57798CAE5A0DD0B8F61C52B8E7C3D1, 5097997508E1406AD5B018C5006D82F8BFC7B157C6CAF1B4D80C7D6DB722A77A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:20:37.0307 0x12a0  usbehci - ok
16:20:37.0339 0x12a0  [ 3835ECC1E928042F92D7AA1963D40523, 60237CB8C3F935544006621255FFD53C9E09C0AF4741D0C50968CB4D647336D5 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
16:20:37.0357 0x12a0  usbhub - ok
16:20:37.0382 0x12a0  [ DCDF9855145A14DFCA0AB32308871961, 9A21013AD032195D54CE655DE5363E78BB74CC55C40B889520B478892F4BA40A ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:20:37.0406 0x12a0  usbohci - ok
16:20:37.0440 0x12a0  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:20:37.0474 0x12a0  usbprint - ok
16:20:37.0498 0x12a0  [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:20:37.0523 0x12a0  usbscan - ok
16:20:37.0544 0x12a0  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:20:37.0570 0x12a0  USBSTOR - ok
16:20:37.0597 0x12a0  [ B4A1789BE90403D9549EF9DBAD37A429, 1F590F8DE0081953B944A076FFEB5FF3BCF7E2BEE4ABD97236A29C00B9242163 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:20:37.0609 0x12a0  usbuhci - ok
16:20:37.0645 0x12a0  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
16:20:37.0676 0x12a0  usbvideo - ok
16:20:37.0712 0x12a0  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
16:20:37.0751 0x12a0  UxSms - ok
16:20:37.0759 0x12a0  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] VaultSvc        C:\Windows\system32\lsass.exe
16:20:37.0771 0x12a0  VaultSvc - ok
16:20:37.0815 0x12a0  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:20:37.0827 0x12a0  vdrvroot - ok
16:20:37.0855 0x12a0  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
16:20:37.0890 0x12a0  vds - ok
16:20:37.0904 0x12a0  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:20:37.0930 0x12a0  vga - ok
16:20:37.0952 0x12a0  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:20:37.0991 0x12a0  VgaSave - ok
16:20:37.0996 0x12a0  VGPU - ok
16:20:38.0019 0x12a0  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:20:38.0034 0x12a0  vhdmp - ok
16:20:38.0053 0x12a0  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
16:20:38.0065 0x12a0  viaagp - ok
16:20:38.0074 0x12a0  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
16:20:38.0088 0x12a0  ViaC7 - ok
16:20:38.0106 0x12a0  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:20:38.0118 0x12a0  viaide - ok
16:20:38.0153 0x12a0  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:20:38.0168 0x12a0  vmbus - ok
16:20:38.0187 0x12a0  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:20:38.0199 0x12a0  VMBusHID - ok
16:20:38.0220 0x12a0  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:20:38.0233 0x12a0  volmgr - ok
16:20:38.0249 0x12a0  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:20:38.0267 0x12a0  volmgrx - ok
16:20:38.0283 0x12a0  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:20:38.0299 0x12a0  volsnap - ok
16:20:38.0320 0x12a0  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:20:38.0335 0x12a0  vsmraid - ok
16:20:38.0409 0x12a0  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
16:20:38.0469 0x12a0  VSS - ok
16:20:38.0486 0x12a0  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:20:38.0515 0x12a0  vwifibus - ok
16:20:38.0536 0x12a0  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:20:38.0576 0x12a0  vwififlt - ok
16:20:38.0594 0x12a0  [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:20:38.0609 0x12a0  vwifimp - ok
16:20:38.0625 0x12a0  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
16:20:38.0671 0x12a0  W32Time - ok
16:20:38.0697 0x12a0  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:20:38.0710 0x12a0  WacomPen - ok
16:20:38.0723 0x12a0  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:20:38.0747 0x12a0  WANARP - ok
16:20:38.0753 0x12a0  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:20:38.0777 0x12a0  Wanarpv6 - ok
16:20:38.0835 0x12a0  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
16:20:38.0894 0x12a0  wbengine - ok
16:20:38.0915 0x12a0  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:20:38.0951 0x12a0  WbioSrvc - ok
16:20:38.0979 0x12a0  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:20:39.0015 0x12a0  wcncsvc - ok
16:20:39.0036 0x12a0  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:20:39.0050 0x12a0  WcsPlugInService - ok
16:20:39.0070 0x12a0  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
16:20:39.0081 0x12a0  Wd - ok
16:20:39.0121 0x12a0  [ CF68C54937BACCC0DA9A056FFA2A3988, 4D1FD6CEDA7A00D8F496916F6EE127B41C8875585C9AECAEBB0FC1B6F5E1312F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:20:39.0148 0x12a0  Wdf01000 - ok
16:20:39.0190 0x12a0  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:20:39.0216 0x12a0  WdiServiceHost - ok
16:20:39.0221 0x12a0  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:20:39.0236 0x12a0  WdiSystemHost - ok
16:20:39.0266 0x12a0  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
16:20:39.0286 0x12a0  WebClient - ok
16:20:39.0299 0x12a0  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:20:39.0331 0x12a0  Wecsvc - ok
16:20:39.0346 0x12a0  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:20:39.0386 0x12a0  wercplsupport - ok
16:20:39.0409 0x12a0  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
16:20:39.0438 0x12a0  WerSvc - ok
16:20:39.0469 0x12a0  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:20:39.0494 0x12a0  WfpLwf - ok
16:20:39.0510 0x12a0  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:20:39.0522 0x12a0  WIMMount - ok
16:20:39.0609 0x12a0  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
16:20:39.0646 0x12a0  WinDefend - ok
16:20:39.0656 0x12a0  WinHttpAutoProxySvc - ok
16:20:39.0732 0x12a0  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:20:39.0769 0x12a0  Winmgmt - ok
16:20:39.0826 0x12a0  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:20:39.0898 0x12a0  WinRM - ok
16:20:39.0950 0x12a0  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:20:39.0984 0x12a0  WinUsb - ok
16:20:40.0053 0x12a0  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:20:40.0093 0x12a0  Wlansvc - ok
16:20:40.0197 0x12a0  [ 5E7C103F8475C4289847D15E129C20F7, C6325D3557545FA1DA26B0B1EA9A1C95AED1FA84A93BE29A771DAD9ECB00768B ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:20:40.0248 0x12a0  wlidsvc - ok
16:20:40.0260 0x12a0  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:20:40.0287 0x12a0  WmiAcpi - ok
16:20:40.0320 0x12a0  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:20:40.0352 0x12a0  wmiApSrv - ok
16:20:40.0445 0x12a0  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:20:40.0483 0x12a0  WMPNetworkSvc - ok
16:20:40.0517 0x12a0  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:20:40.0531 0x12a0  WPCSvc - ok
16:20:40.0543 0x12a0  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:20:40.0560 0x12a0  WPDBusEnum - ok
16:20:40.0597 0x12a0  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:20:40.0634 0x12a0  ws2ifsl - ok
16:20:40.0645 0x12a0  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
16:20:40.0663 0x12a0  wscsvc - ok
16:20:40.0668 0x12a0  WSearch - ok
16:20:40.0764 0x12a0  [ FAC7617DD8A8CCCBBB9D36C39AFA5ABE, 64BB658523F4610B6D092BD390D24307F0A545ABA5C78B5DB50B7AA9E65C6A51 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:20:40.0860 0x12a0  wuauserv - ok
16:20:40.0893 0x12a0  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:20:40.0906 0x12a0  WudfPf - ok
16:20:40.0926 0x12a0  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:20:40.0942 0x12a0  WUDFRd - ok
16:20:40.0978 0x12a0  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:20:40.0994 0x12a0  wudfsvc - ok
16:20:41.0033 0x12a0  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:20:41.0052 0x12a0  WwanSvc - ok
16:20:41.0064 0x12a0  ================ Scan global ===============================
16:20:41.0121 0x12a0  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
16:20:41.0148 0x12a0  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
16:20:41.0161 0x12a0  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
16:20:41.0199 0x12a0  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
16:20:41.0238 0x12a0  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
16:20:41.0251 0x12a0  [ Global ] - ok
16:20:41.0252 0x12a0  ================ Scan MBR ==================================
16:20:41.0261 0x12a0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:20:41.0543 0x12a0  \Device\Harddisk0\DR0 - ok
16:20:41.0544 0x12a0  ================ Scan VBR ==================================
16:20:41.0548 0x12a0  [ 46E0FC3B2E1AC56969546BF6EA693EF6 ] \Device\Harddisk0\DR0\Partition1
16:20:41.0551 0x12a0  \Device\Harddisk0\DR0\Partition1 - ok
16:20:41.0558 0x12a0  [ D486343F7CD3C1716C83E1B50B5EB60D ] \Device\Harddisk0\DR0\Partition2
16:20:41.0560 0x12a0  \Device\Harddisk0\DR0\Partition2 - ok
16:20:41.0567 0x12a0  [ 989BB1FAFB4810D42610B7D127A32DE2 ] \Device\Harddisk0\DR0\Partition3
16:20:41.0570 0x12a0  \Device\Harddisk0\DR0\Partition3 - ok
16:20:41.0576 0x12a0  [ 1B4C36334FB8587612590F64FB6C2C0B ] \Device\Harddisk0\DR0\Partition4
16:20:41.0579 0x12a0  \Device\Harddisk0\DR0\Partition4 - ok
16:20:41.0581 0x12a0  ================ Scan generic autorun ======================
16:20:41.0631 0x12a0  [ 9153F2335BCDB87F41559CF066223BF9, C0F89F9A63B1F49F007A971F5180128EC0AFBBBF7CFA82CA1FA44CB9DB5F8BB3 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
16:20:41.0651 0x12a0  SunJavaUpdateSched - ok
16:20:41.0746 0x12a0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
16:20:41.0795 0x12a0  Sidebar - ok
16:20:41.0829 0x12a0  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
16:20:41.0847 0x12a0  mctadmin - ok
16:20:41.0891 0x12a0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
16:20:41.0929 0x12a0  Sidebar - ok
16:20:41.0940 0x12a0  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
16:20:41.0957 0x12a0  mctadmin - ok
16:20:41.0961 0x12a0  Waiting for KSN requests completion. In queue: 76
16:20:42.0971 0x12a0  Win FW state via NFP2: enabled ( trusted )
16:20:43.0101 0x12a0  ============================================================
16:20:43.0101 0x12a0  Scan finished
16:20:43.0101 0x12a0  ============================================================
16:20:43.0114 0x153c  Detected object count: 0
16:20:43.0114 0x153c  Actual detected object count: 0
         

Alt 13.02.2017, 23:35   #8
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Zitat:
16:19:42.0220 0x1678 Scan started
16:19:42.0220 0x1678 Mode: Manual;
Anleitung bitte richtig lesen und umsetzen. Du hast den tdsskiller falsch eingestellt.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.02.2017, 15:37   #9
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Ergebnis TDSSKiller 2. Versuch:

Code:
ATTFilter
15:30:29.0027 0x0c50  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
15:31:09.0291 0x0c50  ============================================================
15:31:09.0291 0x0c50  Current date / time: 2017/02/14 15:31:09.0291
15:31:09.0291 0x0c50  SystemInfo:
15:31:09.0291 0x0c50  
15:31:09.0291 0x0c50  OS Version: 6.1.7601 ServicePack: 1.0
15:31:09.0291 0x0c50  Product type: Workstation
15:31:09.0291 0x0c50  ComputerName: LASLEK-PC
15:31:09.0292 0x0c50  UserName: Laslek
15:31:09.0292 0x0c50  Windows directory: C:\Windows
15:31:09.0292 0x0c50  System windows directory: C:\Windows
15:31:09.0292 0x0c50  Processor architecture: Intel x86
15:31:09.0292 0x0c50  Number of processors: 2
15:31:09.0292 0x0c50  Page size: 0x1000
15:31:09.0292 0x0c50  Boot type: Normal boot
15:31:09.0292 0x0c50  CodeIntegrityOptions = 0x00000000
15:31:09.0292 0x0c50  ============================================================
15:31:14.0568 0x0c50  KLMD registered as C:\Windows\system32\drivers\47541630.sys
15:31:14.0568 0x0c50  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x0
15:31:14.0740 0x0c50  System UUID: {3D73D34F-684E-E434-1F02-510EFE7B1244}
15:31:15.0202 0x0c50  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:31:15.0203 0x0c50  ============================================================
15:31:15.0203 0x0c50  \Device\Harddisk0\DR0:
15:31:15.0204 0x0c50  MBR partitions:
15:31:15.0204 0x0c50  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:31:15.0204 0x0c50  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x12BFF000
15:31:15.0204 0x0c50  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x12C31800, BlocksNum 0xB414000
15:31:15.0204 0x0c50  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1E0DB800, BlocksNum 0x1C2AA000
15:31:15.0204 0x0c50  ============================================================
15:31:15.0220 0x0c50  C: <-> \Device\Harddisk0\DR0\Partition2
15:31:15.0295 0x0c50  D: <-> \Device\Harddisk0\DR0\Partition3
15:31:15.0404 0x0c50  E: <-> \Device\Harddisk0\DR0\Partition4
15:31:15.0405 0x0c50  ============================================================
15:31:15.0405 0x0c50  Initialize success
15:31:15.0405 0x0c50  ============================================================
15:31:43.0949 0x0c60  ============================================================
15:31:43.0949 0x0c60  Scan started
15:31:43.0949 0x0c60  Mode: Manual; SigCheck; TDLFS; 
15:31:43.0949 0x0c60  ============================================================
15:31:43.0949 0x0c60  KSN ping started
15:31:44.0130 0x0c60  KSN ping finished: true
15:31:47.0650 0x0c60  ================ Scan system memory ========================
15:31:47.0650 0x0c60  System memory - ok
15:31:47.0655 0x0c60  ================ Scan services =============================
15:31:48.0373 0x0c60  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:31:48.0455 0x0c60  1394ohci - ok
15:31:48.0488 0x0c60  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:31:48.0508 0x0c60  ACPI - ok
15:31:48.0536 0x0c60  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:31:48.0591 0x0c60  AcpiPmi - ok
15:31:48.0758 0x0c60  [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:31:48.0774 0x0c60  AdobeARMservice - ok
15:31:48.0819 0x0c60  [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:31:48.0848 0x0c60  AdobeFlashPlayerUpdateSvc - ok
15:31:48.0924 0x0c60  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:31:48.0954 0x0c60  adp94xx - ok
15:31:48.0992 0x0c60  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:31:49.0014 0x0c60  adpahci - ok
15:31:49.0036 0x0c60  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:31:49.0052 0x0c60  adpu320 - ok
15:31:49.0082 0x0c60  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:31:49.0122 0x0c60  AeLookupSvc - ok
15:31:49.0170 0x0c60  [ 93B49FA857F7036A4EFF32371F6E7391, B9B2867D9A80E7F028E9D7C6ABCB9EC5198ACE28CEE101C5A846666B356B2843 ] AFD             C:\Windows\system32\drivers\afd.sys
15:31:49.0207 0x0c60  AFD - ok
15:31:49.0223 0x0c60  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
15:31:49.0236 0x0c60  agp440 - ok
15:31:49.0447 0x0c60  [ F2EB8EB5FC46FB849498BBEF2AD6539D, 6BC9938B3E432963FFAB6A13E9237DA7888A3595522BBE99F2AA556ED06F5651 ] AGSService      C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
15:31:49.0547 0x0c60  AGSService - ok
15:31:49.0626 0x0c60  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
15:31:49.0645 0x0c60  aic78xx - ok
15:31:49.0702 0x0c60  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
15:31:49.0827 0x0c60  ALG - ok
15:31:49.0848 0x0c60  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:31:49.0861 0x0c60  aliide - ok
15:31:49.0937 0x0c60  [ B19505648F033393E907E2E419FDE8B3, BEF76AAD61FE0CA1F2B91C491FD94DE1BE67E776BBB7972D57ADFBE0333E9615 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:31:50.0055 0x0c60  AMD External Events Utility - ok
15:31:50.0077 0x0c60  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
15:31:50.0091 0x0c60  amdagp - ok
15:31:50.0117 0x0c60  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:31:50.0130 0x0c60  amdide - ok
15:31:50.0147 0x0c60  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:31:50.0167 0x0c60  AmdK8 - ok
15:31:50.0187 0x0c60  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:31:50.0219 0x0c60  AmdPPM - ok
15:31:50.0260 0x0c60  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:31:50.0278 0x0c60  amdsata - ok
15:31:50.0317 0x0c60  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:31:50.0333 0x0c60  amdsbs - ok
15:31:50.0364 0x0c60  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:31:50.0377 0x0c60  amdxata - ok
15:31:50.0427 0x0c60  [ 873F0162D10893E3DF34FA2AC604E6EA, 79655CDB125DBA14DDA01E45A2F8E185788081A3DF8D9E7A6A167C9F0D5C3F62 ] AppID           C:\Windows\system32\drivers\appid.sys
15:31:50.0466 0x0c60  AppID - ok
15:31:50.0492 0x0c60  [ E10F22695EAC1689DED6A9A45D6C352A, 15B10D2E4AB88DE729905E9E4DD24E812163AD45806713E3883E701723D44E3A ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:31:50.0526 0x0c60  AppIDSvc - ok
15:31:50.0551 0x0c60  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
15:31:50.0591 0x0c60  Appinfo - ok
15:31:50.0664 0x0c60  [ 2F2BD5EFFA8E91295F4DB493D85534B5, FF6758DC06751028960C9A165767EDAD78B2868599D1A01CAC8108E1699A92DE ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:31:50.0678 0x0c60  Apple Mobile Device - ok
15:31:50.0754 0x0c60  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:31:50.0804 0x0c60  AppMgmt - ok
15:31:50.0849 0x0c60  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
15:31:50.0866 0x0c60  arc - ok
15:31:50.0897 0x0c60  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:31:50.0911 0x0c60  arcsas - ok
15:31:51.0151 0x0c60  [ 1AC730FBADC2EC955EAF31FD38B5F6D1, BD020703649D73C5E016539AA47C66ED44F97DB04DC16CB76F4308593FF0DC6C ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:31:51.0192 0x0c60  aspnet_state - ok
15:31:51.0233 0x0c60  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:31:51.0264 0x0c60  AsyncMac - ok
15:31:51.0297 0x0c60  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:31:51.0308 0x0c60  atapi - ok
15:31:51.0805 0x0c60  [ 04F09923A393E4E0E8453A8F78361E73, B5C0B9D1195B87AF823887AD9355CD2B4C4F4DDF34103891EE48EA86F0F544E7 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:31:51.0998 0x0c60  atikmdag - ok
15:31:52.0088 0x0c60  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:31:52.0141 0x0c60  AudioEndpointBuilder - ok
15:31:52.0163 0x0c60  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
15:31:52.0188 0x0c60  Audiosrv - ok
15:31:52.0246 0x0c60  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:31:52.0265 0x0c60  AxInstSV - ok
15:31:52.0310 0x0c60  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
15:31:52.0375 0x0c60  b06bdrv - ok
15:31:52.0422 0x0c60  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
15:31:52.0456 0x0c60  b57nd60x - ok
15:31:52.0484 0x0c60  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
15:31:52.0561 0x0c60  BDESVC - ok
15:31:52.0580 0x0c60  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:31:52.0608 0x0c60  Beep - ok
15:31:52.0650 0x0c60  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
15:31:52.0678 0x0c60  BFE - ok
15:31:52.0727 0x0c60  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
15:31:52.0775 0x0c60  BITS - ok
15:31:52.0810 0x0c60  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:31:52.0850 0x0c60  blbdrive - ok
15:31:53.0004 0x0c60  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:31:53.0024 0x0c60  Bonjour Service - ok
15:31:53.0072 0x0c60  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:31:53.0113 0x0c60  bowser - ok
15:31:53.0145 0x0c60  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:31:53.0160 0x0c60  BrFiltLo - ok
15:31:53.0218 0x0c60  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:31:53.0259 0x0c60  BrFiltUp - ok
15:31:53.0303 0x0c60  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
15:31:53.0322 0x0c60  Browser - ok
15:31:53.0349 0x0c60  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:31:53.0407 0x0c60  Brserid - ok
15:31:53.0432 0x0c60  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:31:53.0465 0x0c60  BrSerWdm - ok
15:31:53.0494 0x0c60  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:31:53.0508 0x0c60  BrUsbMdm - ok
15:31:53.0526 0x0c60  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:31:53.0567 0x0c60  BrUsbSer - ok
15:31:53.0589 0x0c60  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:31:53.0608 0x0c60  BTHMODEM - ok
15:31:53.0654 0x0c60  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
15:31:53.0683 0x0c60  bthserv - ok
15:31:53.0713 0x0c60  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:31:53.0756 0x0c60  cdfs - ok
15:31:53.0780 0x0c60  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:31:53.0814 0x0c60  cdrom - ok
15:31:53.0839 0x0c60  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:31:53.0882 0x0c60  CertPropSvc - ok
15:31:53.0908 0x0c60  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
15:31:53.0941 0x0c60  circlass - ok
15:31:53.0984 0x0c60  [ 1136E4A71849BCFCB057140AD03AAEE6, 9A9615F33E475039382E452052040C21EFA9C6669FB4E95D466C014FCAEF4D74 ] CLFS            C:\Windows\system32\CLFS.sys
15:31:54.0002 0x0c60  CLFS - ok
15:31:54.0239 0x0c60  [ 3B1C96EFC314A24D1B2AA0CC9B771ACE, 0D7F467FEDCAB69CBBEA2FA731F5E67F714B0E51B4A84729CF1482951FD8E400 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe
15:31:54.0330 0x0c60  ClickToRunSvc - ok
15:31:54.0512 0x0c60  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:31:54.0545 0x0c60  clr_optimization_v2.0.50727_32 - ok
15:31:54.0616 0x0c60  [ 40554ADA608F31A73BC002041BFBCED4, 8A4FB3B824EC49392A206BF14381AAE389C0E683B4ED0E89F5362746222E1FBA ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:31:54.0700 0x0c60  clr_optimization_v4.0.30319_32 - ok
15:31:54.0718 0x0c60  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:31:54.0759 0x0c60  CmBatt - ok
15:31:54.0824 0x0c60  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:31:54.0838 0x0c60  cmdide - ok
15:31:54.0872 0x0c60  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
15:31:54.0919 0x0c60  CNG - ok
15:31:54.0964 0x0c60  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:31:54.0980 0x0c60  Compbatt - ok
15:31:55.0001 0x0c60  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:31:55.0018 0x0c60  CompositeBus - ok
15:31:55.0026 0x0c60  COMSysApp - ok
15:31:55.0047 0x0c60  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:31:55.0072 0x0c60  crcdisk - ok
15:31:55.0114 0x0c60  [ 348B3A4DD922F590EB39DB231F7AEE4D, 62341BBB263E8E72436FE008E2645692712C2143964D67CE38D58F47F5DEA8B1 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:31:55.0145 0x0c60  CryptSvc - ok
15:31:55.0192 0x0c60  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
15:31:55.0292 0x0c60  CSC - ok
15:31:55.0326 0x0c60  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
15:31:55.0359 0x0c60  CscService - ok
15:31:55.0412 0x0c60  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:31:55.0471 0x0c60  DcomLaunch - ok
15:31:55.0580 0x0c60  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
15:31:55.0649 0x0c60  defragsvc - ok
15:31:55.0695 0x0c60  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:31:55.0729 0x0c60  DfsC - ok
15:31:55.0813 0x0c60  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:31:55.0839 0x0c60  Dhcp - ok
15:31:55.0959 0x0c60  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
15:31:56.0089 0x0c60  DiagTrack - ok
15:31:56.0132 0x0c60  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
15:31:56.0178 0x0c60  discache - ok
15:31:56.0215 0x0c60  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
15:31:56.0229 0x0c60  Disk - ok
15:31:56.0277 0x0c60  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
15:31:56.0320 0x0c60  dmvsc - ok
15:31:56.0375 0x0c60  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:31:56.0410 0x0c60  Dnscache - ok
15:31:56.0446 0x0c60  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:31:56.0479 0x0c60  dot3svc - ok
15:31:56.0504 0x0c60  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
15:31:56.0548 0x0c60  DPS - ok
15:31:56.0587 0x0c60  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:31:56.0649 0x0c60  drmkaud - ok
15:31:56.0697 0x0c60  [ 4B21D102E49E9D44C478D6766A7FCBE5, 7CEEBCF81EE23876F039ED1222020D6F45FE6B3A5CE3BB93DDA3B8BBEAA15E47 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:31:56.0733 0x0c60  DXGKrnl - ok
15:31:56.0778 0x0c60  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
15:31:56.0823 0x0c60  EapHost - ok
15:31:57.0406 0x0c60  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
15:31:57.0597 0x0c60  ebdrv - ok
15:31:57.0652 0x0c60  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] EFS             C:\Windows\System32\lsass.exe
15:31:57.0724 0x0c60  EFS - ok
15:31:57.0822 0x0c60  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:31:57.0930 0x0c60  ehRecvr - ok
15:31:57.0948 0x0c60  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
15:31:57.0967 0x0c60  ehSched - ok
15:31:58.0040 0x0c60  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:31:58.0080 0x0c60  elxstor - ok
15:31:58.0110 0x0c60  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:31:58.0138 0x0c60  ErrDev - ok
15:31:58.0209 0x0c60  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
15:31:58.0297 0x0c60  EventSystem - ok
15:31:58.0344 0x0c60  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:31:58.0389 0x0c60  exfat - ok
15:31:58.0430 0x0c60  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:31:58.0461 0x0c60  fastfat - ok
15:31:58.0487 0x0c60  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
15:31:58.0579 0x0c60  Fax - ok
15:31:58.0610 0x0c60  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
15:31:58.0625 0x0c60  fdc - ok
15:31:58.0658 0x0c60  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
15:31:58.0697 0x0c60  fdPHost - ok
15:31:58.0795 0x0c60  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:31:58.0825 0x0c60  FDResPub - ok
15:31:58.0881 0x0c60  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:31:58.0897 0x0c60  FileInfo - ok
15:31:58.0912 0x0c60  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:31:58.0965 0x0c60  Filetrace - ok
15:31:59.0056 0x0c60  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:31:59.0073 0x0c60  flpydisk - ok
15:31:59.0099 0x0c60  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:31:59.0117 0x0c60  FltMgr - ok
15:31:59.0274 0x0c60  [ DF15E8426D02C15422EBFF28BA83F03A, 51BEB315B0E5114906684FB3F460FA7BEA326C1B589C5C35D29795A7C13AB4FB ] FontCache       C:\Windows\system32\FntCache.dll
15:31:59.0357 0x0c60  FontCache - ok
15:31:59.0458 0x0c60  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:31:59.0472 0x0c60  FontCache3.0.0.0 - ok
15:31:59.0516 0x0c60  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:31:59.0529 0x0c60  FsDepends - ok
15:31:59.0563 0x0c60  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:31:59.0579 0x0c60  Fs_Rec - ok
15:31:59.0610 0x0c60  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:31:59.0630 0x0c60  fvevol - ok
15:31:59.0652 0x0c60  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:31:59.0665 0x0c60  gagp30kx - ok
15:31:59.0709 0x0c60  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:31:59.0745 0x0c60  gpsvc - ok
15:31:59.0887 0x0c60  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
15:31:59.0906 0x0c60  gupdate - ok
15:31:59.0918 0x0c60  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
15:31:59.0930 0x0c60  gupdatem - ok
15:31:59.0996 0x0c60  [ D43F6708A90772B6F459AC770702B3B3, 38ECAFA7452D8CEE039B5F9F8D45111826680A83BD4D1F0737AB96261205836F ] Haufe FabricHostService C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
15:32:00.0074 0x0c60  Haufe FabricHostService - detected UnsignedFile.Multi.Generic ( 1 )
15:32:02.0096 0x0c60  Detect skipped due to KSN trusted
15:32:02.0096 0x0c60  Haufe FabricHostService - ok
15:32:02.0199 0x0c60  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:32:02.0264 0x0c60  hcw85cir - ok
15:32:02.0372 0x0c60  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:32:02.0397 0x0c60  HdAudAddService - ok
15:32:02.0418 0x0c60  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:32:02.0456 0x0c60  HDAudBus - ok
15:32:02.0474 0x0c60  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:32:02.0512 0x0c60  HidBatt - ok
15:32:02.0532 0x0c60  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:32:02.0573 0x0c60  HidBth - ok
15:32:02.0596 0x0c60  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:32:02.0643 0x0c60  HidIr - ok
15:32:02.0684 0x0c60  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
15:32:02.0827 0x0c60  hidserv - ok
15:32:02.0851 0x0c60  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:32:02.0922 0x0c60  HidUsb - ok
15:32:02.0943 0x0c60  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:32:02.0985 0x0c60  hkmsvc - ok
15:32:03.0015 0x0c60  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:32:03.0078 0x0c60  HomeGroupListener - ok
15:32:03.0122 0x0c60  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:32:03.0140 0x0c60  HomeGroupProvider - ok
15:32:03.0212 0x0c60  [ 7F854BD9C113B4569CE6579EA3847A2A, 5C9AE7588EBC1C14C948FD4EC117C8E6CB3C421282AF27281659F76C1FD8832D ] HPFXFAX         C:\Windows\system32\drivers\hppcfaxio.sys
15:32:03.0227 0x0c60  HPFXFAX - ok
15:32:03.0298 0x0c60  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:32:03.0312 0x0c60  HpSAMD - ok
15:32:03.0400 0x0c60  [ 1878A79551F2EDAE7EBD110AAE6D33AD, 1F409360B44AEB3A6023E953EAB350FFB3EB8322F589E2422AB312288B33A2DA ] HPSupportSolutionsFrameworkService C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe
15:32:03.0417 0x0c60  HPSupportSolutionsFrameworkService - ok
15:32:03.0489 0x0c60  [ 487569E5DA56A5A432FF8AF6D3599CF9, 7C974D8379C60B4F69A20B01876C49181B0A63AC318C4BD0A21DABFF27A15C9D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:32:03.0558 0x0c60  HTTP - ok
15:32:03.0575 0x0c60  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:32:03.0586 0x0c60  hwpolicy - ok
15:32:03.0635 0x0c60  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:32:03.0650 0x0c60  i8042prt - ok
15:32:03.0714 0x0c60  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:32:03.0771 0x0c60  iaStorV - ok
15:32:04.0081 0x0c60  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:32:04.0164 0x0c60  idsvc - ok
15:32:04.0175 0x0c60  IEEtwCollectorService - ok
15:32:04.0239 0x0c60  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:32:04.0252 0x0c60  iirsp - ok
15:32:04.0327 0x0c60  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:32:04.0383 0x0c60  IKEEXT - ok
15:32:04.0408 0x0c60  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:32:04.0420 0x0c60  intelide - ok
15:32:04.0446 0x0c60  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:32:04.0471 0x0c60  intelppm - ok
15:32:04.0516 0x0c60  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:32:04.0560 0x0c60  IPBusEnum - ok
15:32:04.0591 0x0c60  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:32:04.0619 0x0c60  IpFilterDriver - ok
15:32:04.0721 0x0c60  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:32:04.0757 0x0c60  iphlpsvc - ok
15:32:04.0793 0x0c60  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:32:04.0829 0x0c60  IPMIDRV - ok
15:32:04.0849 0x0c60  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:32:04.0900 0x0c60  IPNAT - ok
15:32:04.0974 0x0c60  [ 1AA479D2A100ACFDE3A7B7B2D6E53DC0, 487714C233A93F2DCE7AD443CEA61B60B35D6131C79DE0A9C1A614BCB3B97391 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:32:05.0010 0x0c60  iPod Service - ok
15:32:05.0025 0x0c60  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:32:05.0052 0x0c60  IRENUM - ok
15:32:05.0070 0x0c60  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:32:05.0082 0x0c60  isapnp - ok
15:32:05.0133 0x0c60  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:32:05.0159 0x0c60  iScsiPrt - ok
15:32:05.0187 0x0c60  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:32:05.0237 0x0c60  kbdclass - ok
15:32:05.0247 0x0c60  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:32:05.0260 0x0c60  kbdhid - ok
15:32:05.0285 0x0c60  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] KeyIso          C:\Windows\system32\lsass.exe
15:32:05.0298 0x0c60  KeyIso - ok
15:32:05.0325 0x0c60  [ EF7A3616C7902A232FEDAAB886AA07C2, B739EA5840E09E32AEF23A414F1E74B33785189BC0F43E156F6321CC0FA5BC35 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:32:05.0338 0x0c60  KSecDD - ok
15:32:05.0357 0x0c60  [ 78EF4037997534DD08545416EF4438E2, ABB739F1BA59A1D88F94C0F6569E92DBCFA73109A4AD7678C2CAB14AEEDEDDCD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:32:05.0372 0x0c60  KSecPkg - ok
15:32:05.0446 0x0c60  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:32:05.0502 0x0c60  KtmRm - ok
15:32:05.0563 0x0c60  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:32:05.0606 0x0c60  LanmanServer - ok
15:32:05.0664 0x0c60  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:32:05.0704 0x0c60  LanmanWorkstation - ok
15:32:05.0757 0x0c60  Lexware_Professional_Datenbank - ok
15:32:05.0845 0x0c60  [ E6DA531F2C86A230AF5D73354D161D3C, 96A0A443B16F44DF8BB2EFD0AEA56E5B2AC323E99CDF4BA29EA379B62B8EB039 ] Lexware_Update_Service C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
15:32:05.0873 0x0c60  Lexware_Update_Service - detected UnsignedFile.Multi.Generic ( 1 )
15:32:06.0188 0x0c60  Detect skipped due to KSN trusted
15:32:06.0188 0x0c60  Lexware_Update_Service - ok
15:32:06.0249 0x0c60  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:32:06.0308 0x0c60  lltdio - ok
15:32:06.0355 0x0c60  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:32:06.0420 0x0c60  lltdsvc - ok
15:32:06.0434 0x0c60  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:32:06.0487 0x0c60  lmhosts - ok
15:32:06.0507 0x0c60  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:32:06.0522 0x0c60  LSI_FC - ok
15:32:06.0540 0x0c60  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:32:06.0554 0x0c60  LSI_SAS - ok
15:32:06.0603 0x0c60  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:32:06.0625 0x0c60  LSI_SAS2 - ok
15:32:06.0642 0x0c60  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:32:06.0656 0x0c60  LSI_SCSI - ok
15:32:06.0695 0x0c60  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:32:06.0736 0x0c60  luafv - ok
15:32:06.0822 0x0c60  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:32:06.0849 0x0c60  Mcx2Svc - ok
15:32:06.0873 0x0c60  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:32:06.0885 0x0c60  megasas - ok
15:32:06.0907 0x0c60  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:32:06.0926 0x0c60  MegaSR - ok
15:32:07.0116 0x0c60  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:32:07.0147 0x0c60  Microsoft Office Groove Audit Service - ok
15:32:07.0191 0x0c60  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
15:32:07.0256 0x0c60  MMCSS - ok
15:32:07.0286 0x0c60  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
15:32:07.0325 0x0c60  Modem - ok
15:32:07.0357 0x0c60  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:32:07.0371 0x0c60  monitor - ok
15:32:07.0385 0x0c60  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:32:07.0399 0x0c60  mouclass - ok
15:32:07.0436 0x0c60  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:32:07.0497 0x0c60  mouhid - ok
15:32:07.0540 0x0c60  [ D1BDF813C9FE5ED53134EDF360927735, 0FC422513A9C98C32A90C7C5B2635DA6104C6425A2E2A8746B110A07AFB1B539 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:32:07.0560 0x0c60  mountmgr - ok
15:32:07.0579 0x0c60  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:32:07.0595 0x0c60  mpio - ok
15:32:07.0608 0x0c60  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:32:07.0649 0x0c60  mpsdrv - ok
15:32:07.0734 0x0c60  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:32:07.0791 0x0c60  MpsSvc - ok
15:32:07.0824 0x0c60  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:32:07.0862 0x0c60  MRxDAV - ok
15:32:07.0876 0x0c60  [ 6284D46BAA301BEDB9AB7FA7672B2410, F998D17FEE497491CC3CF4711FB37E507D1A5B2E9B2E4D6001152EDB968A2D98 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:32:07.0893 0x0c60  mrxsmb - ok
15:32:07.0964 0x0c60  [ 78AD95493F015FA9941869A009C00286, EC075C44FE78249CA58B338EBC3905A020762571A27DBEDF32A41B2A84FDEAFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:32:08.0022 0x0c60  mrxsmb10 - ok
15:32:08.0052 0x0c60  [ D7C3ED1FD46FAC7083473D9B1718255E, BC4BFFDB4B044205A4A658701B7F0E9680C139A6A0141E333BE6D590F99D9D65 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:32:08.0070 0x0c60  mrxsmb20 - ok
15:32:08.0103 0x0c60  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:32:08.0119 0x0c60  msahci - ok
15:32:08.0140 0x0c60  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:32:08.0154 0x0c60  msdsm - ok
15:32:08.0177 0x0c60  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
15:32:08.0198 0x0c60  MSDTC - ok
15:32:08.0221 0x0c60  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:32:08.0247 0x0c60  Msfs - ok
15:32:08.0316 0x0c60  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:32:08.0341 0x0c60  mshidkmdf - ok
15:32:08.0380 0x0c60  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:32:08.0392 0x0c60  msisadrv - ok
15:32:08.0432 0x0c60  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:32:08.0471 0x0c60  MSiSCSI - ok
15:32:08.0476 0x0c60  msiserver - ok
15:32:08.0487 0x0c60  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:32:08.0514 0x0c60  MSKSSRV - ok
15:32:08.0555 0x0c60  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:32:08.0588 0x0c60  MSPCLOCK - ok
15:32:08.0606 0x0c60  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:32:08.0632 0x0c60  MSPQM - ok
15:32:08.0664 0x0c60  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:32:08.0680 0x0c60  MsRPC - ok
15:32:08.0731 0x0c60  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:32:08.0753 0x0c60  mssmbios - ok
15:32:08.0764 0x0c60  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:32:08.0790 0x0c60  MSTEE - ok
15:32:08.0811 0x0c60  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:32:08.0827 0x0c60  MTConfig - ok
15:32:08.0842 0x0c60  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:32:08.0855 0x0c60  Mup - ok
15:32:08.0912 0x0c60  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
15:32:08.0964 0x0c60  napagent - ok
15:32:09.0002 0x0c60  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:32:09.0078 0x0c60  NativeWifiP - ok
15:32:09.0162 0x0c60  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:32:09.0200 0x0c60  NDIS - ok
15:32:09.0249 0x0c60  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:32:09.0276 0x0c60  NdisCap - ok
15:32:09.0300 0x0c60  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:32:09.0335 0x0c60  NdisTapi - ok
15:32:09.0358 0x0c60  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:32:09.0396 0x0c60  Ndisuio - ok
15:32:09.0424 0x0c60  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:32:09.0465 0x0c60  NdisWan - ok
15:32:09.0489 0x0c60  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:32:09.0541 0x0c60  NDProxy - ok
15:32:09.0588 0x0c60  [ 80B7A96F908DA13617E7E6832C5C6A64, 08B81AFE120B8064B6E001BDF424168305D55F38AE2071300F57C8EA32BEAE56 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:32:09.0594 0x0c60  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:32:09.0677 0x0c60  Detect skipped due to KSN trusted
15:32:09.0677 0x0c60  Net Driver HPZ12 - ok
15:32:09.0695 0x0c60  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:32:09.0752 0x0c60  NetBIOS - ok
15:32:09.0797 0x0c60  [ A00996C9BFEF29A93B9F21DBE1DC502D, A97982CBBC2E240B0CD884ED3ED5D11B207DA8E7BEF73DCEA44E16E1CD84222F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:32:09.0815 0x0c60  NetBT - ok
15:32:09.0839 0x0c60  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] Netlogon        C:\Windows\system32\lsass.exe
15:32:09.0852 0x0c60  Netlogon - ok
15:32:09.0927 0x0c60  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
15:32:09.0973 0x0c60  Netman - ok
15:32:10.0031 0x0c60  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:32:10.0092 0x0c60  NetMsmqActivator - ok
15:32:10.0104 0x0c60  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:32:10.0120 0x0c60  NetPipeActivator - ok
15:32:10.0144 0x0c60  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
15:32:10.0198 0x0c60  netprofm - ok
15:32:10.0250 0x0c60  [ 652881F65B35564575255A0E05E23C55, 6F77B2BD9362D7593B5B2A8AEAE834463CB32B006ABE2188A5A36C9469896960 ] netr28          C:\Windows\system32\DRIVERS\netr28.sys
15:32:10.0354 0x0c60  netr28 - ok
15:32:10.0377 0x0c60  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:32:10.0393 0x0c60  NetTcpActivator - ok
15:32:10.0401 0x0c60  [ 58EB8F52D1F17AF2F6EF9CCE7838D0F8, 6AAEA7AC36F56C7CED5DE8BA8B46716C3E8D0A418D862F4D3C84AD022659456A ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:32:10.0418 0x0c60  NetTcpPortSharing - ok
15:32:10.0468 0x0c60  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:32:10.0491 0x0c60  nfrd960 - ok
15:32:10.0530 0x0c60  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:32:10.0550 0x0c60  NlaSvc - ok
15:32:10.0579 0x0c60  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:32:10.0624 0x0c60  Npfs - ok
15:32:10.0653 0x0c60  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
15:32:10.0710 0x0c60  nsi - ok
15:32:10.0741 0x0c60  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:32:10.0766 0x0c60  nsiproxy - ok
15:32:10.0921 0x0c60  [ 978E7A2E4BF4E8E70D0776EF0D9E97FB, B6C82BB9B3025FD2D37B6AB6FA9C2944F8B3020CD4588BE464CE73A992B7FF00 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:32:10.0988 0x0c60  Ntfs - ok
15:32:11.0027 0x0c60  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
15:32:11.0053 0x0c60  Null - ok
15:32:11.0087 0x0c60  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:32:11.0104 0x0c60  nvraid - ok
15:32:11.0121 0x0c60  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:32:11.0136 0x0c60  nvstor - ok
15:32:11.0153 0x0c60  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:32:11.0168 0x0c60  nv_agp - ok
15:32:11.0295 0x0c60  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:32:11.0321 0x0c60  odserv - ok
15:32:11.0340 0x0c60  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:32:11.0381 0x0c60  ohci1394 - ok
15:32:11.0417 0x0c60  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:11.0432 0x0c60  ose - ok
15:32:11.0878 0x0c60  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:32:12.0131 0x0c60  osppsvc - ok
15:32:12.0202 0x0c60  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:32:12.0311 0x0c60  p2pimsvc - ok
15:32:12.0334 0x0c60  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:32:12.0356 0x0c60  p2psvc - ok
15:32:12.0400 0x0c60  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\drivers\parport.sys
15:32:12.0429 0x0c60  Parport - ok
15:32:12.0449 0x0c60  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:32:12.0462 0x0c60  partmgr - ok
15:32:12.0506 0x0c60  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
15:32:12.0529 0x0c60  Parvdm - ok
15:32:12.0540 0x0c60  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:32:12.0607 0x0c60  PcaSvc - ok
15:32:12.0630 0x0c60  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
15:32:12.0646 0x0c60  pci - ok
15:32:12.0663 0x0c60  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:32:12.0675 0x0c60  pciide - ok
15:32:12.0721 0x0c60  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:32:12.0747 0x0c60  pcmcia - ok
15:32:12.0816 0x0c60  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:32:12.0839 0x0c60  pcw - ok
15:32:13.0278 0x0c60  [ 9C63D4C4F00A6C20DB51515ABD8BD0A0, 8E1E87C5A6AC770529341F3BB53EAFFF0948C20FC605F9C482B6FB5E57BEED1B ] PDF Architect 3 C:\Program Files\PDF Architect 3\ws.exe
15:32:13.0419 0x0c60  PDF Architect 3 - ok
15:32:13.0566 0x0c60  [ 8510198FCE40F07D5ED7F8BD5CF05A93, 7DC420519851C3A9724F0406B280860E645CBFFDC6D6BF6679A79ED2FDD9C6BF ] PDF Architect 3 CrashHandler C:\Program Files\PDF Architect 3\crash-handler-ws.exe
15:32:13.0649 0x0c60  PDF Architect 3 CrashHandler - ok
15:32:13.0709 0x0c60  [ 10B6DFA227FDDC0AA533778B0BF52460, D04442CE945E19B40920112B9AED6EE492302D962DBF133F58FF466072CFD5E3 ] PDF Architect 3 Creator C:\Program Files\PDF Architect 3\creator-ws.exe
15:32:13.0761 0x0c60  PDF Architect 3 Creator - ok
15:32:13.0901 0x0c60  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:32:13.0937 0x0c60  PEAUTH - ok
15:32:14.0007 0x0c60  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:32:14.0080 0x0c60  PeerDistSvc - ok
15:32:14.0286 0x0c60  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
15:32:14.0381 0x0c60  pla - ok
15:32:14.0457 0x0c60  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:32:14.0508 0x0c60  PlugPlay - ok
15:32:14.0548 0x0c60  [ 0C155C5D8942B3CBCF9506A9D376B9AD, 37F4878548DD7063CA31FB21D6955A45C25F648C332A736DA84DEA5AAE7486AF ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:32:14.0561 0x0c60  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:32:14.0887 0x0c60  Detect skipped due to KSN trusted
15:32:14.0887 0x0c60  Pml Driver HPZ12 - ok
15:32:15.0039 0x0c60  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:32:15.0077 0x0c60  PNRPAutoReg - ok
15:32:15.0107 0x0c60  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:32:15.0127 0x0c60  PNRPsvc - ok
15:32:15.0154 0x0c60  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:32:15.0190 0x0c60  PolicyAgent - ok
15:32:15.0228 0x0c60  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
15:32:15.0268 0x0c60  Power - ok
15:32:15.0307 0x0c60  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:32:15.0386 0x0c60  PptpMiniport - ok
15:32:15.0417 0x0c60  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
15:32:15.0442 0x0c60  Processor - ok
15:32:15.0476 0x0c60  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:32:15.0506 0x0c60  ProfSvc - ok
15:32:15.0516 0x0c60  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:32:15.0529 0x0c60  ProtectedStorage - ok
15:32:15.0547 0x0c60  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:32:15.0575 0x0c60  Psched - ok
15:32:15.0604 0x0c60  [ 053A608BCFEB5A4D0CECDDA703B08C83, 58DA926B0F885A31CACA55E2D9F9CA014B19A7C5374B861CE3E4A11C55F4EB5C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
15:32:15.0614 0x0c60  PxHelp20 - ok
15:32:15.0669 0x0c60  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:32:15.0740 0x0c60  ql2300 - ok
15:32:15.0823 0x0c60  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:32:15.0848 0x0c60  ql40xx - ok
15:32:15.0894 0x0c60  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
15:32:15.0942 0x0c60  QWAVE - ok
15:32:15.0961 0x0c60  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:32:16.0004 0x0c60  QWAVEdrv - ok
15:32:16.0021 0x0c60  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:32:16.0097 0x0c60  RasAcd - ok
15:32:16.0137 0x0c60  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:32:16.0170 0x0c60  RasAgileVpn - ok
15:32:16.0196 0x0c60  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
15:32:16.0225 0x0c60  RasAuto - ok
15:32:16.0268 0x0c60  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:32:16.0353 0x0c60  Rasl2tp - ok
15:32:16.0415 0x0c60  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
15:32:16.0468 0x0c60  RasMan - ok
15:32:16.0494 0x0c60  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:32:16.0521 0x0c60  RasPppoe - ok
15:32:16.0547 0x0c60  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:32:16.0606 0x0c60  RasSstp - ok
15:32:16.0634 0x0c60  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:32:16.0706 0x0c60  rdbss - ok
15:32:16.0769 0x0c60  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:32:16.0795 0x0c60  rdpbus - ok
15:32:16.0812 0x0c60  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:32:16.0847 0x0c60  RDPCDD - ok
15:32:16.0890 0x0c60  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:32:16.0923 0x0c60  RDPDR - ok
15:32:16.0934 0x0c60  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:32:16.0970 0x0c60  RDPENCDD - ok
15:32:16.0989 0x0c60  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:32:17.0012 0x0c60  RDPREFMP - ok
15:32:17.0175 0x0c60  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:32:17.0274 0x0c60  RdpVideoMiniport - ok
15:32:17.0337 0x0c60  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:32:17.0370 0x0c60  RDPWD - ok
15:32:17.0393 0x0c60  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:32:17.0409 0x0c60  rdyboost - ok
15:32:17.0458 0x0c60  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:32:17.0495 0x0c60  RemoteAccess - ok
15:32:17.0528 0x0c60  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:32:17.0583 0x0c60  RemoteRegistry - ok
15:32:17.0603 0x0c60  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:32:17.0631 0x0c60  RpcEptMapper - ok
15:32:17.0668 0x0c60  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
15:32:17.0686 0x0c60  RpcLocator - ok
15:32:17.0714 0x0c60  [ 1F54F58D7FA2B3442084E32CDE5E309E, F0D8124E7C9ADC88BD8C53646F2499CDB3D2105DA7C4D28F3D26F313859B3D32 ] RpcSs           C:\Windows\system32\rpcss.dll
15:32:17.0736 0x0c60  RpcSs - ok
15:32:17.0798 0x0c60  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:32:17.0871 0x0c60  rspndr - ok
15:32:17.0930 0x0c60  [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
15:32:17.0987 0x0c60  RTL8167 - ok
15:32:18.0023 0x0c60  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:32:18.0064 0x0c60  s3cap - ok
15:32:18.0089 0x0c60  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] SamSs           C:\Windows\system32\lsass.exe
15:32:18.0112 0x0c60  SamSs - ok
15:32:18.0128 0x0c60  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:32:18.0141 0x0c60  sbp2port - ok
15:32:18.0181 0x0c60  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:32:18.0210 0x0c60  SCardSvr - ok
15:32:18.0228 0x0c60  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:32:18.0252 0x0c60  scfilter - ok
15:32:18.0333 0x0c60  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
15:32:18.0400 0x0c60  Schedule - ok
15:32:18.0412 0x0c60  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:32:18.0438 0x0c60  SCPolicySvc - ok
15:32:18.0481 0x0c60  [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
15:32:18.0520 0x0c60  sdbus - ok
15:32:18.0581 0x0c60  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:32:18.0659 0x0c60  SDRSVC - ok
15:32:18.0699 0x0c60  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:32:18.0757 0x0c60  secdrv - ok
15:32:18.0790 0x0c60  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
15:32:18.0814 0x0c60  seclogon - ok
15:32:18.0825 0x0c60  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
15:32:18.0853 0x0c60  SENS - ok
15:32:18.0885 0x0c60  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:32:18.0949 0x0c60  SensrSvc - ok
15:32:18.0967 0x0c60  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\drivers\serenum.sys
15:32:18.0980 0x0c60  Serenum - ok
15:32:19.0018 0x0c60  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\drivers\serial.sys
15:32:19.0058 0x0c60  Serial - ok
15:32:19.0098 0x0c60  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:32:19.0122 0x0c60  sermouse - ok
15:32:19.0171 0x0c60  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:32:19.0199 0x0c60  SessionEnv - ok
15:32:19.0246 0x0c60  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
15:32:19.0260 0x0c60  sffdisk - ok
15:32:19.0274 0x0c60  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:32:19.0315 0x0c60  sffp_mmc - ok
15:32:19.0335 0x0c60  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
15:32:19.0349 0x0c60  sffp_sd - ok
15:32:19.0373 0x0c60  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:32:19.0387 0x0c60  sfloppy - ok
15:32:19.0464 0x0c60  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:32:19.0532 0x0c60  SharedAccess - ok
15:32:19.0593 0x0c60  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:32:19.0628 0x0c60  ShellHWDetection - ok
15:32:19.0689 0x0c60  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
15:32:19.0715 0x0c60  sisagp - ok
15:32:19.0735 0x0c60  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:32:19.0758 0x0c60  SiSRaid2 - ok
15:32:19.0777 0x0c60  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:32:19.0791 0x0c60  SiSRaid4 - ok
15:32:19.0809 0x0c60  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:32:19.0845 0x0c60  Smb - ok
15:32:19.0891 0x0c60  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:32:19.0906 0x0c60  SNMPTRAP - ok
15:32:19.0924 0x0c60  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:32:19.0936 0x0c60  spldr - ok
15:32:20.0003 0x0c60  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
15:32:20.0062 0x0c60  Spooler - ok
15:32:20.0250 0x0c60  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
15:32:20.0441 0x0c60  sppsvc - ok
15:32:20.0482 0x0c60  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:32:20.0508 0x0c60  sppuinotify - ok
15:32:20.0565 0x0c60  [ D86EA722F3337AA3F0253B6E359E6796, BA4C2DF629CBECFA1C1D589FFA6AEF8C5853C427B6B007793FD432B4AA8DA593 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:32:20.0649 0x0c60  srv - ok
15:32:20.0669 0x0c60  [ 1931823AC05967E5F79B791E9FFC2398, 255E6278F476F1D488199B0AD2004C3860CC74971AC3C0AB4B1DB4E42B329E94 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:32:20.0691 0x0c60  srv2 - ok
15:32:20.0723 0x0c60  [ 50A2FC7B0408F15B77E056076BBB6252, 801AD15B4CDFC09EE4909B7180A5CE562D54D4F08A9C0B7D9CA067ADC42A6C9D ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:32:20.0753 0x0c60  srvnet - ok
15:32:20.0809 0x0c60  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:32:20.0840 0x0c60  SSDPSRV - ok
15:32:20.0856 0x0c60  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:32:20.0885 0x0c60  SstpSvc - ok
15:32:20.0923 0x0c60  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:32:20.0934 0x0c60  stexstor - ok
15:32:20.0978 0x0c60  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
15:32:21.0007 0x0c60  StiSvc - ok
15:32:21.0054 0x0c60  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:32:21.0076 0x0c60  storflt - ok
15:32:21.0101 0x0c60  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:32:21.0114 0x0c60  storvsc - ok
15:32:21.0129 0x0c60  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:32:21.0141 0x0c60  swenum - ok
15:32:21.0192 0x0c60  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
15:32:21.0227 0x0c60  swprv - ok
15:32:21.0274 0x0c60  [ F2AD8960812FD111E20E84659EF19D43, FAC91E940D3735738908447E58792C32E6F86427612114A624041B7213831105 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
15:32:21.0304 0x0c60  Synth3dVsc - ok
15:32:21.0423 0x0c60  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
15:32:21.0565 0x0c60  SysMain - ok
15:32:21.0624 0x0c60  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
15:32:21.0680 0x0c60  TabletInputService - ok
15:32:21.0718 0x0c60  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:32:21.0750 0x0c60  TapiSrv - ok
15:32:21.0986 0x0c60  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:32:22.0073 0x0c60  Tcpip - ok
15:32:22.0150 0x0c60  [ C7E41209132B9CF084CCEA8593F61328, 441E44C3C4803FA9304111E58AE7A2927EEB6584CEC9CBF81DC508E73A99033E ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:32:22.0193 0x0c60  TCPIP6 - ok
15:32:22.0275 0x0c60  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:32:22.0352 0x0c60  tcpipreg - ok
15:32:22.0393 0x0c60  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:32:22.0444 0x0c60  TDPIPE - ok
15:32:22.0480 0x0c60  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:32:22.0502 0x0c60  TDTCP - ok
15:32:22.0527 0x0c60  [ BB8817D0508DD5EA69C770C8DEF5AB67, C55671524EEF6E16BBCC92556E83FD1D6457E707EA9330FC1CDD28FB11D99B77 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:32:22.0564 0x0c60  tdx - ok
15:32:22.0590 0x0c60  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:32:22.0603 0x0c60  TermDD - ok
15:32:22.0619 0x0c60  [ E951866BAC5A23403F62A349EDBB6EEB, BE6FB3C09D1CF8952B4D041F45B4DEE53D78EE7D27A5135012BC92B2F7CFBEA3 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
15:32:22.0665 0x0c60  terminpt - ok
15:32:22.0721 0x0c60  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
15:32:22.0780 0x0c60  TermService - ok
15:32:22.0826 0x0c60  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
15:32:22.0855 0x0c60  Themes - ok
15:32:22.0917 0x0c60  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
15:32:22.0958 0x0c60  THREADORDER - ok
15:32:22.0980 0x0c60  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
15:32:23.0041 0x0c60  TrkWks - ok
15:32:23.0113 0x0c60  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:32:23.0184 0x0c60  TrustedInstaller - ok
15:32:23.0226 0x0c60  [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:32:23.0238 0x0c60  tssecsrv - ok
15:32:23.0286 0x0c60  [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:32:23.0375 0x0c60  TsUsbFlt - ok
15:32:23.0393 0x0c60  [ 57C527AF84748B5C2F5178C499C0B81F, 2FF1F25BA16F8984E9F2CE4DE663F261BAF267EDF10D466A52BB211C567F763C ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:32:23.0438 0x0c60  TsUsbGD - ok
15:32:23.0466 0x0c60  [ 045ACB987C650D8186C6B4A692223860, C1CDDF7DABAE531C53290C7C70F35DD65751B399D269711865AD65F9E4E43B0B ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
15:32:23.0510 0x0c60  tsusbhub - ok
15:32:23.0553 0x0c60  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:32:23.0587 0x0c60  tunnel - ok
15:32:23.0605 0x0c60  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:32:23.0624 0x0c60  uagp35 - ok
15:32:23.0647 0x0c60  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:32:23.0693 0x0c60  udfs - ok
15:32:23.0735 0x0c60  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:32:23.0750 0x0c60  UI0Detect - ok
15:32:23.0775 0x0c60  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:32:23.0800 0x0c60  uliagpkx - ok
15:32:23.0822 0x0c60  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:32:23.0836 0x0c60  umbus - ok
15:32:23.0858 0x0c60  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:32:23.0871 0x0c60  UmPass - ok
15:32:23.0932 0x0c60  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:32:23.0989 0x0c60  UmRdpService - ok
15:32:24.0038 0x0c60  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
15:32:24.0079 0x0c60  upnphost - ok
15:32:24.0106 0x0c60  [ A176718F0DF45F60F545CF3E14F4D108, 5E767CB0B51B3BA05B6F99A7E46BEC275489DCFE874343C9B992843AA1F2334E ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
15:32:24.0171 0x0c60  USBAAPL - ok
15:32:24.0203 0x0c60  [ 325A69967CC7B4BFB170F5636143A94A, E0341360827B9B3E244F24D0BC01D3B3C0CC97E232A361960849F799A16AD540 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:32:24.0252 0x0c60  usbccgp - ok
15:32:24.0303 0x0c60  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:32:24.0377 0x0c60  usbcir - ok
15:32:24.0400 0x0c60  [ 5D57798CAE5A0DD0B8F61C52B8E7C3D1, 5097997508E1406AD5B018C5006D82F8BFC7B157C6CAF1B4D80C7D6DB722A77A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
15:32:24.0420 0x0c60  usbehci - ok
15:32:24.0469 0x0c60  [ 3835ECC1E928042F92D7AA1963D40523, 60237CB8C3F935544006621255FFD53C9E09C0AF4741D0C50968CB4D647336D5 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
15:32:24.0498 0x0c60  usbhub - ok
15:32:24.0512 0x0c60  [ DCDF9855145A14DFCA0AB32308871961, 9A21013AD032195D54CE655DE5363E78BB74CC55C40B889520B478892F4BA40A ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:32:24.0555 0x0c60  usbohci - ok
15:32:24.0596 0x0c60  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:32:24.0631 0x0c60  usbprint - ok
15:32:24.0663 0x0c60  [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:32:24.0727 0x0c60  usbscan - ok
15:32:24.0784 0x0c60  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:32:24.0842 0x0c60  USBSTOR - ok
15:32:24.0870 0x0c60  [ B4A1789BE90403D9549EF9DBAD37A429, 1F590F8DE0081953B944A076FFEB5FF3BCF7E2BEE4ABD97236A29C00B9242163 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:32:24.0922 0x0c60  usbuhci - ok
15:32:24.0962 0x0c60  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
15:32:25.0017 0x0c60  usbvideo - ok
15:32:25.0060 0x0c60  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
15:32:25.0116 0x0c60  UxSms - ok
15:32:25.0131 0x0c60  [ 4E568DBE3FFF1A0025EB432DC929B78F, 26F36CA31A1B977685F8DF5F8436848B7D4143B47EC0DAE68F8382C1B52A6C71 ] VaultSvc        C:\Windows\system32\lsass.exe
15:32:25.0144 0x0c60  VaultSvc - ok
15:32:25.0204 0x0c60  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:32:25.0220 0x0c60  vdrvroot - ok
15:32:25.0252 0x0c60  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
15:32:25.0290 0x0c60  vds - ok
15:32:25.0318 0x0c60  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:32:25.0371 0x0c60  vga - ok
15:32:25.0391 0x0c60  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:32:25.0447 0x0c60  VgaSave - ok
15:32:25.0453 0x0c60  VGPU - ok
15:32:25.0474 0x0c60  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:32:25.0490 0x0c60  vhdmp - ok
15:32:25.0509 0x0c60  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
15:32:25.0522 0x0c60  viaagp - ok
15:32:25.0546 0x0c60  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
15:32:25.0564 0x0c60  ViaC7 - ok
15:32:25.0578 0x0c60  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:32:25.0591 0x0c60  viaide - ok
15:32:25.0625 0x0c60  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:32:25.0642 0x0c60  vmbus - ok
15:32:25.0659 0x0c60  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:32:25.0704 0x0c60  VMBusHID - ok
15:32:25.0717 0x0c60  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:32:25.0730 0x0c60  volmgr - ok
15:32:25.0746 0x0c60  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:32:25.0766 0x0c60  volmgrx - ok
15:32:25.0788 0x0c60  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:32:25.0806 0x0c60  volsnap - ok
15:32:25.0826 0x0c60  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:32:25.0841 0x0c60  vsmraid - ok
15:32:25.0922 0x0c60  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
15:32:26.0009 0x0c60  VSS - ok
15:32:26.0066 0x0c60  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:32:26.0121 0x0c60  vwifibus - ok
15:32:26.0167 0x0c60  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:32:26.0207 0x0c60  vwififlt - ok
15:32:26.0224 0x0c60  [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:32:26.0240 0x0c60  vwifimp - ok
15:32:26.0294 0x0c60  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
15:32:26.0371 0x0c60  W32Time - ok
15:32:26.0394 0x0c60  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:32:26.0426 0x0c60  WacomPen - ok
15:32:26.0453 0x0c60  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:32:26.0479 0x0c60  WANARP - ok
15:32:26.0486 0x0c60  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:32:26.0511 0x0c60  Wanarpv6 - ok
15:32:26.0616 0x0c60  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
15:32:26.0702 0x0c60  wbengine - ok
15:32:26.0756 0x0c60  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:32:26.0798 0x0c60  WbioSrvc - ok
15:32:26.0827 0x0c60  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:32:26.0871 0x0c60  wcncsvc - ok
15:32:26.0884 0x0c60  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:32:26.0900 0x0c60  WcsPlugInService - ok
15:32:26.0950 0x0c60  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
15:32:26.0964 0x0c60  Wd - ok
15:32:27.0043 0x0c60  [ CF68C54937BACCC0DA9A056FFA2A3988, 4D1FD6CEDA7A00D8F496916F6EE127B41C8875585C9AECAEBB0FC1B6F5E1312F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:32:27.0122 0x0c60  Wdf01000 - ok
15:32:27.0227 0x0c60  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:32:27.0320 0x0c60  WdiServiceHost - ok
15:32:27.0350 0x0c60  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:32:27.0381 0x0c60  WdiSystemHost - ok
15:32:27.0422 0x0c60  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
15:32:27.0492 0x0c60  WebClient - ok
15:32:27.0593 0x0c60  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:32:27.0640 0x0c60  Wecsvc - ok
15:32:27.0744 0x0c60  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:32:27.0813 0x0c60  wercplsupport - ok
15:32:27.0840 0x0c60  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
15:32:27.0868 0x0c60  WerSvc - ok
15:32:27.0974 0x0c60  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:32:28.0053 0x0c60  WfpLwf - ok
15:32:28.0082 0x0c60  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:32:28.0094 0x0c60  WIMMount - ok
15:32:28.0546 0x0c60  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
15:32:28.0728 0x0c60  WinDefend - ok
15:32:28.0742 0x0c60  WinHttpAutoProxySvc - ok
15:32:29.0008 0x0c60  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:32:29.0038 0x0c60  Winmgmt - ok
15:32:29.0337 0x0c60  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
15:32:29.0465 0x0c60  WinRM - ok
15:32:29.0630 0x0c60  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:32:29.0706 0x0c60  WinUsb - ok
15:32:29.0862 0x0c60  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:32:30.0076 0x0c60  Wlansvc - ok
15:32:30.0596 0x0c60  [ 5E7C103F8475C4289847D15E129C20F7, C6325D3557545FA1DA26B0B1EA9A1C95AED1FA84A93BE29A771DAD9ECB00768B ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:32:30.0748 0x0c60  wlidsvc - ok
15:32:30.0888 0x0c60  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
15:32:31.0022 0x0c60  WmiAcpi - ok
15:32:31.0239 0x0c60  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:32:31.0279 0x0c60  wmiApSrv - ok
15:32:31.0486 0x0c60  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
15:32:31.0752 0x0c60  WMPNetworkSvc - ok
15:32:31.0869 0x0c60  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:32:32.0257 0x0c60  WPCSvc - ok
15:32:32.0346 0x0c60  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:32:32.0370 0x0c60  WPDBusEnum - ok
15:32:32.0407 0x0c60  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:32:32.0685 0x0c60  ws2ifsl - ok
15:32:32.0781 0x0c60  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
15:32:32.0836 0x0c60  wscsvc - ok
15:32:32.0851 0x0c60  WSearch - ok
15:32:33.0155 0x0c60  [ FAC7617DD8A8CCCBBB9D36C39AFA5ABE, 64BB658523F4610B6D092BD390D24307F0A545ABA5C78B5DB50B7AA9E65C6A51 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:32:33.0367 0x0c60  wuauserv - ok
15:32:33.0503 0x0c60  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:32:33.0691 0x0c60  WudfPf - ok
15:32:33.0728 0x0c60  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:32:33.0757 0x0c60  WUDFRd - ok
15:32:33.0802 0x0c60  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:32:33.0818 0x0c60  wudfsvc - ok
15:32:33.0912 0x0c60  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:32:33.0955 0x0c60  WwanSvc - ok
15:32:33.0968 0x0c60  ================ Scan global ===============================
15:32:34.0054 0x0c60  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
15:32:34.0247 0x0c60  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
15:32:34.0288 0x0c60  [ 090FF4D4A003291D7579A81089D06981, 2713E190F10A96E977C0BA5D38D89E8D123F7CB7D0180CFC0A4073EC42EDB2DB ] C:\Windows\system32\winsrv.dll
15:32:34.0390 0x0c60  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
15:32:34.0522 0x0c60  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
15:32:34.0538 0x0c60  [ Global ] - ok
15:32:34.0539 0x0c60  ================ Scan MBR ==================================
15:32:34.0569 0x0c60  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:32:40.0125 0x0c60  \Device\Harddisk0\DR0 - ok
15:32:40.0126 0x0c60  ================ Scan VBR ==================================
15:32:40.0136 0x0c60  [ 46E0FC3B2E1AC56969546BF6EA693EF6 ] \Device\Harddisk0\DR0\Partition1
15:32:40.0145 0x0c60  \Device\Harddisk0\DR0\Partition1 - ok
15:32:40.0184 0x0c60  [ D486343F7CD3C1716C83E1B50B5EB60D ] \Device\Harddisk0\DR0\Partition2
15:32:40.0188 0x0c60  \Device\Harddisk0\DR0\Partition2 - ok
15:32:40.0254 0x0c60  [ 989BB1FAFB4810D42610B7D127A32DE2 ] \Device\Harddisk0\DR0\Partition3
15:32:40.0260 0x0c60  \Device\Harddisk0\DR0\Partition3 - ok
15:32:41.0393 0x0c60  [ 1B4C36334FB8587612590F64FB6C2C0B ] \Device\Harddisk0\DR0\Partition4
15:32:41.0396 0x0c60  \Device\Harddisk0\DR0\Partition4 - ok
15:32:41.0397 0x0c60  ================ Scan generic autorun ======================
15:32:41.0464 0x0c60  [ 9153F2335BCDB87F41559CF066223BF9, C0F89F9A63B1F49F007A971F5180128EC0AFBBBF7CFA82CA1FA44CB9DB5F8BB3 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
15:32:41.0523 0x0c60  SunJavaUpdateSched - ok
15:32:41.0727 0x0c60  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
15:32:41.0815 0x0c60  Sidebar - ok
15:32:41.0854 0x0c60  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
15:32:41.0872 0x0c60  mctadmin - ok
15:32:41.0905 0x0c60  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
15:32:41.0944 0x0c60  Sidebar - ok
15:32:41.0954 0x0c60  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
15:32:41.0972 0x0c60  mctadmin - ok
15:32:41.0976 0x0c60  Waiting for KSN requests completion. In queue: 5
15:32:43.0019 0x0c60  Win FW state via NFP2: enabled ( trusted )
15:32:43.0138 0x0c60  ============================================================
15:32:43.0138 0x0c60  Scan finished
15:32:43.0138 0x0c60  ============================================================
15:32:43.0159 0x133c  Detected object count: 0
15:32:43.0159 0x133c  Actual detected object count: 0
         

Alt 14.02.2017, 15:40   #10
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Da ist nix. Wenn sehen wir Junkware mit adwCleaner und so.


Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.02.2017, 17:58   #11
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Ergebnis AdwCleaner

Code:
ATTFilter
# AdwCleaner v6.043 - Bericht erstellt am 14/02/2017 um 17:37:44
# Aktualisiert am 27/01/2017 von Malwarebytes
# Datenbank : 2017-02-13.1 [Server]
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (X86)
# Benutzername : Laslek - LASLEK-PC
# Gestartet von : C:\Users\Laslek\Desktop\AdwCleaner_6.043.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Datei Gefunden: C:\END


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [1193 Bytes] - [14/02/2017 17:37:44]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1266 Bytes] ##########
         
Ergebnis JRT
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 7 Ultimate x86 
Ran by Laslek (Administrator) on 14.02.2017 at 17:54:11,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 8 

Successfully deleted: C:\Users\Laslek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\672MW05T (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Laslek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\72ZHSYPD (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Laslek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QBZ9IUP3 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Laslek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YR6T1JOO (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\672MW05T (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\72ZHSYPD (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QBZ9IUP3 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YR6T1JOO (Temporary Internet Files Folder) 



Registry: 4 

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06E08260-0695-4EC1-A74B-1310D8899D93} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{2DFF3579-5AA7-45B9-9328-1D38EA230861} (Registry Value) 




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.02.2017 at 17:56:32,01
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

Alt 14.02.2017, 19:14   #12
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Wir haben leider noch ne ältere Anleitung vom adwCleaner, bitte nochmal ausführen und so einstellen:

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.02.2017, 19:43   #13
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Code:
ATTFilter
# AdwCleaner v6.043 - Bericht erstellt am 14/02/2017 um 19:43:09
# Aktualisiert am 27/01/2017 von Malwarebytes
# Datenbank : 2017-02-13.1 [Lokal]
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (X86)
# Benutzername : Laslek - LASLEK-PC
# Gestartet von : C:\Users\Laslek\Desktop\AdwCleaner_6.043.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Keine schädlichen Dateien gefunden.


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1083 Bytes] - [14/02/2017 17:40:14]
C:\AdwCleaner\AdwCleaner[S0].txt - [1345 Bytes] - [14/02/2017 17:37:44]
C:\AdwCleaner\AdwCleaner[S1].txt - [1504 Bytes] - [14/02/2017 17:45:09]
C:\AdwCleaner\AdwCleaner[S2].txt - [1425 Bytes] - [14/02/2017 19:43:09]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1498 Bytes] ##########
         

Alt 14.02.2017, 20:09   #14
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 14.02.2017, 20:20   #15
Soumaya1982
 
Windows 7,  DVD wird bei Neuinstallation nicht erkannt - Standard

Windows 7, DVD wird bei Neuinstallation nicht erkannt



Kommt sofort :-)

FRST
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 14-02-2017
durchgeführt von Laslek (Administrator) auf LASLEK-PC (14-02-2017 20:16:41)
Gestartet von C:\Users\Laslek\Desktop
Geladene Profile: Laslek (Verfügbare Profile: Laslek)
Platform: Microsoft Windows 7 Ultimate  Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Adobe Systems, Incorporated) C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Company) C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe
(iAnywhere Solutions, Inc.) C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 3\creator-ws.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: F - F:\sources\sperr32.exe x64
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: {57bf2a69-e854-11e4-b44b-c80aa97ddde5} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: {57bf2a71-e854-11e4-b44b-c80aa97ddde5} - G:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\...\MountPoints2: {8c3895fe-d742-11e5-a732-c80aa97ddde5} - G:\HiSuiteDownLoader.exe
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{8FE2BC3D-460C-4327-9EAF-AF3C616FBA71}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{C4BCAFB5-DB1C-4335-A0E7-D27E0E6F1F07}: [DhcpNameServer] 192.168.0.1 192.168.0.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-26] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-11-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-26] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-2547369665-2112981076-2713180307-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Keine Datei
DPF: {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-11-18] (Microsoft Corporation)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension
FF Extension: (PDF Architect 3 Creator) - C:\Program Files\PDF Architect 3\resources\pdfarchitect3firefoxextension [2015-04-21] [ist nicht signiert]
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-26] (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-11-18] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-05-25] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin: PDF Architect 3 -> C:\Program Files\PDF Architect 3\np-previewer.dll [2015-04-14] (pdfforge GmbH)

Chrome: 
=======
CHR Profile: C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default [2017-02-14]
CHR Extension: (Google Präsentationen) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-23]
CHR Extension: (Google Docs) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-23]
CHR Extension: (Google Drive) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-23]
CHR Extension: (YouTube) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-23]
CHR Extension: (Google Tabellen) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-23]
CHR Extension: (Avira Browserschutz) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-01-23]
CHR Extension: (Google Docs Offline) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-23]
CHR Extension: (Google Mail) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-23]
CHR Extension: (Chrome Media Router) - C:\Users\Laslek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-01-19] (Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2042608 2016-12-12] (Microsoft Corporation)
R2 Haufe FabricHostService; C:\Program Files\Lexware\services\Haufe.FabricHostService.exe [14848 2013-10-10] (Haufe-Lexware GmbH & Co. KG) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89840 2015-03-28] (Hewlett-Packard Company)
R2 Lexware_Professional_Datenbank; C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe [141176 2012-06-01] (iAnywhere Solutions, Inc.)
R2 Lexware_Update_Service; C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe [49664 2013-10-08] (Haufe-Lexware GmbH & Co. KG) [Datei ist nicht signiert]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
S3 PDF Architect 3; C:\Program Files\PDF Architect 3\ws.exe [2243288 2015-04-14] (pdfforge GmbH)
S3 PDF Architect 3 CrashHandler; C:\Program Files\PDF Architect 3\crash-handler-ws.exe [901336 2015-04-14] (pdfforge GmbH)
R2 PDF Architect 3 Creator; C:\Program Files\PDF Architect 3\creator-ws.exe [740568 2015-04-14] (pdfforge GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-01-18] (Hewlett-Packard) [Datei ist nicht signiert]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-10-09] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 HPFXFAX; C:\Windows\System32\drivers\hppcfaxio.sys [21528 2010-08-25] (Hewlett Packard)
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-02-14 20:16 - 2017-02-14 20:16 - 00000000 ____D C:\Users\Laslek\Desktop\FRST-OlderVersion
2017-02-14 17:56 - 2017-02-14 17:56 - 00002442 _____ C:\Users\Laslek\Desktop\JRT.txt
2017-02-14 17:53 - 2017-02-14 17:53 - 01663040 _____ (Malwarebytes) C:\Users\Laslek\Desktop\JRT.exe
2017-02-14 17:36 - 2017-02-14 19:43 - 00000000 ____D C:\AdwCleaner
2017-02-14 17:32 - 2017-02-14 17:33 - 04015056 _____ C:\Users\Laslek\Desktop\AdwCleaner_6.043.exe
2017-02-14 15:30 - 2017-02-14 15:38 - 00198660 _____ C:\TDSSKiller.3.1.0.12_14.02.2017_15.30.28_log.txt
2017-02-13 16:17 - 2017-02-13 16:25 - 00215832 _____ C:\TDSSKiller.3.1.0.12_13.02.2017_16.17.06_log.txt
2017-02-13 15:40 - 2017-02-13 15:40 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-02-13 15:38 - 2017-02-14 18:16 - 00094936 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-02-13 15:38 - 2017-02-14 18:16 - 00000000 ____D C:\Users\Laslek\Desktop\mbar
2017-02-13 15:38 - 2017-02-13 15:38 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Laslek\Desktop\tdsskiller.exe
2017-02-13 15:36 - 2017-02-13 15:37 - 16563352 _____ (Malwarebytes Corp.) C:\Users\Laslek\Desktop\mbar-1.09.3.1001.exe
2017-02-12 18:12 - 2016-10-26 16:29 - 00407720 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2017-02-11 09:49 - 2017-02-11 09:50 - 00028272 _____ C:\Users\Laslek\Desktop\Addition.txt
2017-02-11 09:48 - 2017-02-14 20:17 - 00013922 _____ C:\Users\Laslek\Desktop\FRST.txt
2017-02-11 09:48 - 2017-02-14 20:16 - 00000000 ____D C:\FRST
2017-02-11 09:47 - 2017-02-14 20:16 - 01764352 _____ (Farbar) C:\Users\Laslek\Desktop\FRST.exe
2017-02-10 20:06 - 2017-02-10 20:06 - 00001936 _____ C:\Users\Public\Desktop\CDBurnerXP.lnk
2017-02-10 20:06 - 2017-02-10 20:06 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\Canneverbe Limited
2017-02-10 20:06 - 2017-02-10 20:06 - 00000000 ____D C:\Program Files\CDBurnerXP
2017-02-10 20:04 - 2017-02-10 20:04 - 06232760 _____ (Canneverbe Limited ) C:\Users\Laslek\Downloads\cdbxp_setup_4.5.7.6521.exe
2017-02-10 20:03 - 2017-02-10 20:22 - 1143336599 _____ C:\Users\Laslek\Downloads\993df2-Win-7-Home-32-Bit-DE-X15-65740.iso
2017-02-10 19:28 - 2017-02-10 19:28 - 00570020 _____ C:\Users\Laslek\Downloads\Win7Download.pdf
2017-02-10 17:04 - 2017-02-10 17:05 - 2509058048 _____ C:\Users\Laslek\Downloads\Win7_HomePrem_SP1_German_x32.iso
2017-02-10 15:38 - 2017-02-10 15:39 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\UseNeXT
2017-02-09 18:58 - 2017-02-09 18:59 - 3268147200 _____ C:\Users\Laslek\Downloads\Win7_HomePrem_SP1_German_x64.iso
2017-02-08 20:51 - 2017-02-08 20:51 - 00624614 _____ (ISOImageBurner.com ) C:\Users\Laslek\Downloads\iso_image_burner_setup.exe
2017-02-08 19:59 - 2017-02-08 19:59 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\Macromedia
2017-02-08 19:50 - 2017-02-08 19:50 - 01496584 _____ C:\Users\Laslek\Downloads\Windows ISO Downloader - CHIP-Installer.exe
2017-01-31 12:48 - 2017-01-31 14:10 - 00000000 ____D C:\Users\Laslek\AppData\Local\Microsoft Games
2017-01-23 18:50 - 2017-01-23 18:50 - 00000000 ____D C:\Users\Laslek\AppData\Local\ElevatedDiagnostics
2017-01-23 18:38 - 2017-01-23 18:38 - 00002234 _____ C:\Users\Laslek\Desktop\Google Chrome.lnk
2017-01-15 09:18 - 2017-01-05 18:46 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-15 09:18 - 2017-01-05 18:46 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-15 09:18 - 2017-01-05 18:43 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-15 09:18 - 2017-01-05 18:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-15 09:18 - 2017-01-05 18:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-15 09:18 - 2017-01-05 18:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-15 09:18 - 2017-01-05 18:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-15 09:18 - 2017-01-05 18:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-15 09:18 - 2017-01-05 18:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-15 09:18 - 2017-01-05 18:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-15 09:18 - 2017-01-05 18:19 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-15 09:18 - 2017-01-05 18:19 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-15 09:00 - 2017-01-15 09:00 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2017-01-15 08:57 - 2016-05-15 05:00 - 00393728 _____ (CANON INC.) C:\Windows\system32\CNMLMDG.DLL

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-02-14 20:03 - 2015-01-26 20:51 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-14 19:56 - 2016-11-19 12:11 - 00116480 _____ C:\Users\Laslek\AppData\Local\GDIPFONTCACHEV1.DAT
2017-02-14 19:03 - 2015-01-26 20:51 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-02-14 19:03 - 2015-01-26 20:51 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-02-14 19:03 - 2015-01-26 20:51 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-14 18:16 - 2009-07-14 05:34 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-02-14 18:16 - 2009-07-14 05:34 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-02-14 18:10 - 2016-11-19 12:11 - 00000000 ____D C:\Users\Laslek\AppData\Roaming\Adobe
2017-02-14 18:10 - 2016-11-19 12:11 - 00000000 ____D C:\Users\Laslek\AppData\LocalLow\Adobe
2017-02-14 18:08 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-14 18:08 - 2009-07-14 05:33 - 03850368 _____ C:\Windows\system32\FNTCACHE.DAT
2017-02-14 18:07 - 2015-05-17 11:44 - 00000000 ____D C:\Windows\system32\appmgmt
2017-02-14 18:04 - 2015-01-25 17:47 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-02-14 18:04 - 2015-01-25 17:47 - 00000000 ____D C:\Program Files\Adobe
2017-02-10 17:39 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2017-02-10 15:53 - 2015-05-28 23:54 - 00000000 ____D C:\Users\Laslek\Documents\UseNeXT
2017-02-09 14:19 - 2011-04-12 02:30 - 00699014 _____ C:\Windows\system32\perfh007.dat
2017-02-09 14:19 - 2011-04-12 02:30 - 00149154 _____ C:\Windows\system32\perfc007.dat
2017-02-09 14:19 - 2010-11-20 22:01 - 01618960 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-09 14:19 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-02-08 20:52 - 2016-12-28 12:42 - 00000000 ____D C:\Users\Laslek\AppData\Local\Google
2017-01-23 19:03 - 2015-01-25 18:15 - 00000000 ____D C:\Windows\system32\MRT
2017-01-23 18:59 - 2015-01-25 18:15 - 133456224 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-23 18:19 - 2015-05-25 21:50 - 00000000 ____D C:\Program Files\Microsoft Office 15

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-02-14 15:56

==================== Ende vom FRST.txt ============================
         
Addition

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 14-02-2017
durchgeführt von Laslek (14-02-2017 20:17:40)
Gestartet von C:\Users\Laslek\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) (2015-01-25 12:19:10)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2547369665-2112981076-2713180307-500 - Administrator - Disabled)
Gast (S-1-5-21-2547369665-2112981076-2713180307-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2547369665-2112981076-2713180307-1003 - Limited - Enabled)
Laslek (S-1-5-21-2547369665-2112981076-2713180307-1000 - Administrator - Enabled) => C:\Users\Laslek

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

32 Bit HP CIO Components Installer (Version: 7.1.4 - Hewlett-Packard) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated)
Adobe Flash Player 24 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.19) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.19 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Apple Application Support (32-Bit) (HKLM\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{538227C6-C74B-4A74-99E1-2C0B4F9DA5E1}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
bl (Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6521 - CDBurnerXP)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Deutsche Gesetze (HKLM\...\de.ramicro.flex.germanlaws) (Version: 13.12.202 - Jurasoft AG)
Deutsche Gesetze (Version: 13.12.202 - Jurasoft AG) Hidden
ElsterFormular (HKLM\...\ElsterFormular) (Version: 16.0.16151 - Landesfinanzdirektion Thüringen)
Fotogalerie (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
HP LaserJet Professional CM1410 Series (HKLM\...\{0EF0EA0D-F945-4958-85CC-60FF1E86D216}) (Version:  - Hewlett-Packard)
HP Support Solutions Framework (HKLM\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
iTunes (HKLM\...\{025E78AC-BD91-4E9E-B165-3C09D4084BA4}) (Version: 12.2.2.25 - Apple Inc.)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Lexware Elster (HKLM\...\{A4AAD5E5-1563-4A51-AFFC-F896AC979EAE}) (Version: 15.04.00.0028 - Haufe-Lexware GmbH & Co.KG)
Lexware financial office pro 2014 (HKLM\...\{5a4bb126-f8ba-438a-8c96-029352d5c3e6}) (Version: 14.0.0.106 - Haufe-Lexware GmbH & Co.KG)
Lexware financial office pro 2014 (Version: 14.51.00.0257 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware financial office pro 2014 Client (HKLM\...\{eb3027d7-fbde-4700-8606-17ef3df891d9}) (Version: 14.0.0.106 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (Version: 4.01.00.0077 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Installations Dienst (Version: 3.01.00.0011 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware online banking (HKLM\...\{7F603892-89C9-4EC4-9236-7AD4A798EA41}) (Version: 21.00.00.0039 - Haufe-Lexware GmbH & Co.KG)
Lexware professional Datenbank 2014 (Version: 14.25.00.0055 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Server Pro 2014 (Version: 14.0.0.55 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Services (Version: 2.00.00.0024 - Haufe-Lexware GmbH & Co.KG) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
PDF Architect 3 (HKLM\...\PDF Architect 3) (Version: 3.0.45.22485 - pdfforge GmbH)
PDF Architect 3 Create Module (Version: 3.0.12.22873 - pdfforge GmbH) Hidden
PDF Architect 3 Edit Module (Version: 3.0.12.22873 - pdfforge GmbH) Hidden
PDF Architect 3 View Module (Version: 3.0.12.22873 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.1 - pdfforge)
ph (Version: 1.0.0 - Your Company Name) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.10 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04628F74-B27D-4455-B7C2-8515DC739E86} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {171E2C94-9831-414B-8A9A-26D4C138880E} - System32\Tasks\{7B50C3C5-325D-4514-A4F7-C0E1BFBE87CA} => pcalua.exe -a "C:\Users\Laslek\Downloads\jre-8u31-windows-i586 (1).exe" -d C:\Users\Laslek\Downloads
Task: {2BDAE08C-1710-4DA6-9B8B-6C6F429B9F06} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {355FFCAC-77DB-4492-AAE7-43CD5FC09048} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {414BADC7-1F2F-420C-AA8B-3CFAE19DE9F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {457B2728-46CD-4411-9E97-BD070215DBEE} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {7D7D70C4-BF78-4AC2-BD23-08C31C9F180C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {A59D7382-399B-4FC4-A742-5A449A92C874} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {B50D1F88-29F9-4543-955E-0E4E272ABFC4} - System32\Tasks\{69B327C3-C743-4FB2-999A-2CED2CA6499C} => pcalua.exe -a C:\Users\Laslek\Downloads\AdobeAIRInstaller.exe -d C:\Users\Laslek\Downloads
Task: {D24AE484-EA70-4EEC-83E2-8AB22154B38A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-11-01] (Microsoft Corporation)
Task: {D7FB80FE-6129-4B85-AFA1-D803CBE0C7A8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-05-15 15:27 - 2015-05-15 15:27 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 15:27 - 2015-05-15 15:27 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-05-25 21:50 - 2016-05-24 07:21 - 00089792 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2017-02-08 20:22 - 2017-02-01 10:01 - 01870168 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-08 20:22 - 2017-02-01 10:01 - 00085848 _____ () C:\Program Files\Google\Chrome\Application\56.0.2924.87\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2547369665-2112981076-2713180307-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Laslek\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LexwareInfoService => C:\Program Files\Lexware\Update Manager\LxUpdateManager.exe /autostart

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{359E3505-5B47-4CFA-AFD1-57250BEB38B0}] => C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe
FirewallRules: [{18AE878F-4FF4-43AE-AFEC-B96981D9378B}] => C:\Program Files\SQL Anywhere 12\Bin32\dbsrv12.exe
FirewallRules: [{3EAC13DB-D592-4C08-A43C-A70CA683B212}] => C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{18F3B84C-E7DF-4AD9-AC11-BB21E2684699}] => C:\Program Files\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{38118381-0A0D-4269-8C15-7EDFA22553F4}] => C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
FirewallRules: [{3FD06538-ED5D-41CF-A242-20F4B31851D3}] => C:\Program Files\Lexware\services\Haufe.FabricHostService.exe
FirewallRules: [{DF241F50-6B85-4179-ACAF-E34DF58C9F18}] => C:\Program Files\Sybase\SQL Anywhere 9\win32\dbeng9.exe
FirewallRules: [{5D03DF03-7F1C-41CB-BB64-6398BD21BF7B}] => C:\Program Files\Sybase\SQL Anywhere 9\win32\dbeng9.exe
FirewallRules: [{4F84D304-5F26-4122-A0BF-30BAD9AABD7F}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AD919760-22BB-457C-9FB6-5037CD63A1A2}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{99789993-73B6-44D7-94E2-B1FE6CF0A75D}C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{3F67415D-4260-40D6-A7F4-CB8A603ED6B6}C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => C:\users\laslek\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [{0C45F0ED-140F-4F5E-A099-13C6E365BF58}] => C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{F3E4D528-9AF6-4A90-8D87-E10A98A22225}] => C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{21091367-0275-44C8-8BD8-E6311714B941}] => LPort=7935
FirewallRules: [{E90B721C-FDC3-49CB-9F45-B53ABA19AFF6}] => C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{43335C07-8937-4CF6-AC44-E17721A53213}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{D9D308D0-5E21-4664-804C-316DA9CEEEAF}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{69D3D165-3127-4BFD-ADBD-8698493D65C0}] => C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{D301CD10-4DE2-4A23-95B1-07017BA4DF0B}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{CC5E50D1-8B96-42DD-9FE5-8CE880E08BEC}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{2996D5AF-77CC-417E-BA7F-CF2A7CC7E07C}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D5672D78-1BEB-483B-AEAC-DFB3DD5A3C35}] => LPort=2869
FirewallRules: [{AF18822D-EA06-47E1-B25D-EE6278CC256A}] => LPort=1900
FirewallRules: [{93A74787-5C4B-4F81-A34C-F18BCAD3765E}] => C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

23-01-2017 18:59:14 Windows Update
08-02-2017 19:37:20 Windows-Sicherung
12-02-2017 18:10:03 Removed Avira Browser Safety
12-02-2017 18:12:23 Windows Update
14-02-2017 17:54:14 JRT Pre-Junkware Removal
14-02-2017 18:03:39 Removed Adobe Acrobat DC.

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Basissystemgerät
Description: Basissystemgerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: AVerMedia A336 MiniCard Hybrid DVB-T
Description: AVerMedia A336 MiniCard Hybrid DVB-T
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: AVerMedia A336 MiniCard Hybrid DVB-T
Description: AVerMedia A336 MiniCard Hybrid DVB-T
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Basissystemgerät
Description: Basissystemgerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/14/2017 06:10:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/14/2017 05:43:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/14/2017 03:27:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/13/2017 03:33:04 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Die Sicherung wurde aufgrund eines Fehlers beim Schreiben am Sicherungsspeicherort "H:\" nicht abgeschlossen. Fehler: "Der Sicherungsort wurde nicht gefunden oder ist ungültig. Überprüfen Sie die Sicherungseinstellungen und den Sicherungsort. (0x81000006)"

Error: (02/13/2017 03:24:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/12/2017 06:06:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/11/2017 09:37:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 09:00:42 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 04:31:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/10/2017 04:16:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.


Systemfehler:
=============
Error: (02/14/2017 06:08:25 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/14/2017 06:08:25 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/14/2017 05:41:10 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active

Error: (02/14/2017 05:41:10 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/14/2017 05:40:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst konnte wegen einer fehlerhaften Anmeldung nicht gestartet werden.

Error: (02/14/2017 05:40:41 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WMPNetworkSvc" konnte sich nicht als "NT AUTHORITY\NetworkService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
Die Anforderung wird nicht unterstützt.


Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (02/14/2017 05:40:41 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst konnte wegen einer fehlerhaften Anmeldung nicht gestartet werden.

Error: (02/14/2017 05:40:41 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WSearch" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
Die Anforderung wird nicht unterstützt.


Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (02/14/2017 05:40:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (02/14/2017 05:40:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.


==================== Memory info =========================== 

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Prozentuale Nutzung des RAM: 51%
Installierter physikalischer RAM: 2046.1 MB
Verfügbarer physikalischer RAM: 1000.47 MB
Summe virtueller Speicher: 4092.2 MB
Verfügbarer virtueller Speicher: 2626.73 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:150 GB) (Free:49.72 GB) NTFS
Drive d: () (Fixed) (Total:90.04 GB) (Free:88.05 GB) NTFS
Drive e: (DATA) (Fixed) (Total:225.33 GB) (Free:75.66 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BC1604DA)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=90 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=225.3 GB) - (Type=07 NTFS)

==================== Ende vom Addition.txt ============================
         

Antwort

Themen zu Windows 7, DVD wird bei Neuinstallation nicht erkannt
brauch, daten, dvd, erkannt, erkennen, falsch, funktioniert, hallo zusammen, home, internet, iso-datei, jahre, laufwerk, lizenz, neu, neuem, neuinstallation, nicht erkannt, problem, prüfen, runter, startet, viren, windows, windows 7



Ähnliche Themen: Windows 7, DVD wird bei Neuinstallation nicht erkannt


  1. Windows 8.1/Rechner extrem langsam, Neuinstallation wird verhindert, Virenscanner können nicht gestartet werden.
    Log-Analyse und Auswertung - 07.12.2016 (6)
  2. Windows 8.1 Virus wird nicht erkannt und kann nicht entfernt werden
    Plagegeister aller Art und deren Bekämpfung - 26.10.2016 (5)
  3. Tastatur wird nicht erkannt
    Alles rund um Windows - 17.07.2015 (1)
  4. Windows Vista: Antivir wird von Windows nicht erkannt
    Antiviren-, Firewall- und andere Schutzprogramme - 22.02.2014 (1)
  5. Bildschirm wird weiß, Festplatte wird mit Reatogo-X-Pe nicht erkannt
    Plagegeister aller Art und deren Bekämpfung - 07.05.2013 (1)
  6. USB 3.0 wird in Windows erkannt, aber nicht angezeigt
    Netzwerk und Hardware - 05.04.2013 (1)
  7. Canon Cam wird nicht mehr erkannt - Windows 7
    Alles rund um Windows - 26.02.2013 (1)
  8. Windows 7: Festplatte wird nicht mehr erkannt!
    Alles rund um Windows - 01.11.2012 (5)
  9. 1&1 Router wird nicht erkannt
    Netzwerk und Hardware - 20.02.2012 (4)
  10. Virenbefall, wird nicht von avira antivir und avast gefunden, xp neuinstallation nicht erfolgreich
    Plagegeister aller Art und deren Bekämpfung - 08.11.2010 (3)
  11. Trojaner wird von Virenprogramm nicht erkannt, beeinflusst Windows Explorer und Mozilla, Stopzilla
    Plagegeister aller Art und deren Bekämpfung - 25.08.2010 (35)
  12. CD wird nicht erkannt
    Alles rund um Windows - 22.02.2010 (0)
  13. AV startet nicht, Brenner wird nicht erkannt, Malware wird nicht installiert, usw.
    Log-Analyse und Auswertung - 11.01.2010 (1)
  14. USB-Stick wird nicht erkannt!!
    Netzwerk und Hardware - 19.05.2009 (1)
  15. Soundkarte wird nach Neuinstallation von Windows nicht mehr erkannt
    Netzwerk und Hardware - 19.03.2009 (20)
  16. Sasser wird nicht erkannt
    Plagegeister aller Art und deren Bekämpfung - 09.04.2006 (1)
  17. windows XP / home: CD-laufwerk wird nicht mehr erkannt
    Alles rund um Windows - 03.02.2005 (3)

Zum Thema Windows 7, DVD wird bei Neuinstallation nicht erkannt - Hallo zusammen, sitze seit einigen Tagen an einem Problem mit meinem PC, bin aber ehrlich gesagt nicht ganz so Sattelfest im tiefgründigen Umgang damit. ich weiß nur: Viren und seeehr - Windows 7, DVD wird bei Neuinstallation nicht erkannt...
Archiv
Du betrachtest: Windows 7, DVD wird bei Neuinstallation nicht erkannt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.