| |
| |||||||
Log-Analyse und Auswertung: Laptop verdächtig langsamWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
15.02.2018, 17:26
| #1 |
| |  Laptop verdächtig langsam Mein Laptop ist, wenn er mit dem WWW verbunden ist, verdächtig langsam, Formulare im WWW werden (mit Firefox, neueste Version) nur wie mit langsamer Schreibmaschine ausgefüllt. Bei offline Programmen habe ich das Problem nicht. Win 7 prof. Kann das eine Malware sein ? Danke für Eure Hilfe. Avira war unauffällig. FRST.txt: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12.02.2018
durchgeführt von usrname (Administrator) auf USRNAME-PC (15-02-2018 12:47:09)
Gestartet von C:\Users\usrname\Desktop
Geladene Profile: usrname (Verfügbare Profile: usrname & standard)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Borland Software Corporation) D:\Programme\Borland\InterBase\bin\ibguard.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(f.lux Software LLC) C:\Users\usrname\AppData\Local\FluxSoftware\Flux\flux.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Spotify Ltd) C:\Users\usrname\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Borland Software Corporation) D:\Programme\Borland\InterBase\bin\ibserver.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() L:\Notizblock\NotizblockP.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Mozilla Corporation) D:\Programme\Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2885944 2012-09-20] (Synaptics Incorporated)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [177936 2012-02-17] (Intel Corporation)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-04-02] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2012-02-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-04-09] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [60552 2011-09-20] (Sony Corporation)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-01-30] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Run: [f.lux] => C:\Users\usrname\AppData\Local\FluxSoftware\Flux\flux.exe [1678840 2017-10-10] (f.lux Software LLC)
HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Run: [Spotify Web Helper] => C:\Users\usrname\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2018-02-02] (Spotify Ltd)
HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Run: [Spotify] => C:\Users\usrname\AppData\Roaming\Spotify\Spotify.exe [21091728 2018-02-02] (Spotify Ltd)
HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\MountPoints2: {2f57b68f-0412-11e8-90b7-844bf5c7bf22} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\MountPoints2: {dd740ae6-0b5a-11e5-9d42-844bf5c7bf22} - F:\LaunchU3.exe -a
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\Users\standard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\reminder.exe - Verknüpfung.lnk [2014-08-23]
ShortcutTarget: reminder.exe - Verknüpfung.lnk -> D:\Daten\OleProjekte\Reminder\reminder.exe ()
Startup: C:\Users\usrname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\reminder.exe - Verknüpfung.lnk [2014-08-23]
ShortcutTarget: reminder.exe - Verknüpfung.lnk -> D:\Daten\OleProjekte\Reminder\reminder.exe ()
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 172.30.3.254
Tcpip\..\Interfaces\{70D5710F-8257-4843-BB0B-0064207CEE80}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C7B3823C-10E0-4C1D-81E5-91F799C8D74B}: [DhcpNameServer] 172.30.3.254
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll => Keine Datei
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll [2014-05-27] (DVDVideoSoft Ltd.)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll => Keine Datei
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\ssv.dll [2017-09-27] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-09-27] (Oracle Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2014-08-20] (DVDVideoSoft Ltd.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll Keine Datei
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll Keine Datei
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
FireFox:
========
FF ProfilePath: C:\Users\usrname\AppData\Roaming\Mozilla\Firefox\Profiles\lbe9slzc.default [2018-02-15]
FF Homepage: Mozilla\Firefox\Profiles\lbe9slzc.default -> www.google.de
FF NewTab: Mozilla\Firefox\Profiles\lbe9slzc.default -> www.google.de
FF Extension: (NoScript) - C:\Users\usrname\AppData\Roaming\Mozilla\Firefox\Profiles\lbe9slzc.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-04-23] [Legacy]
FF HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: (Download videos and MP3s from YouTube) - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-08-31] [Legacy] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_126.dll [2017-06-15] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_126.dll [2017-06-15] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-04-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-04-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-09-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files (x86)\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-09-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2056474287-1676708938-3234247259-1000: SkypeForBusinessPlugin-15.8 -> C:\Users\usrname\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi.dll [2015-06-15] (Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2056474287-1676708938-3234247259-1000: SkypeForBusinessPlugin64-15.8 -> C:\Users\usrname\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\npGatewayNpapi-x64.dll [2015-06-15] (Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default [2017-11-11]
CHR Extension: (Google Präsentationen) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-06-02]
CHR Extension: (Google Docs) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-06-02]
CHR Extension: (Google Drive) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-02]
CHR Extension: (YouTube) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-02]
CHR Extension: (Google Tabellen) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-06-02]
CHR Extension: (Google Docs Offline) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-06-02]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-02]
CHR Extension: (Google Mail) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-02]
CHR Extension: (Chrome Media Router) - C:\Users\usrname\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-02]
Opera:
=======
OPR StartupUrls: "hxxp://www.google.de/"
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1136744 2018-02-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [492560 2018-02-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [492560 2018-02-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1533608 2018-02-13] (Avira Operations GmbH & Co. KG)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [445112 2018-01-30] (Avira Operations GmbH & Co. KG)
S3 DCDhcpService; C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe [112256 2012-03-21] (Atheros Communication Inc.) [Datei ist nicht signiert]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-04-03] ()
R2 InterBaseGuardian; d:\Programme\Borland\InterBase\bin\ibguard.exe [32768 2001-11-29] (Borland Software Corporation) [Datei ist nicht signiert]
R3 InterBaseServer; d:\Programme\Borland\InterBase\bin\ibserver.exe [1769472 2001-11-29] (Borland Software Corporation) [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-04-03] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-08] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [50688 2013-11-14] (Hewlett-Packard) [Datei ist nicht signiert]
S4 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [Datei ist nicht signiert]
S4 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-06-20] (The OpenVPN Project)
S4 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-06-20] (The OpenVPN Project)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [66048 2013-11-14] (Hewlett-Packard) [Datei ist nicht signiert]
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe [135728 2018-01-11] (SiSoftware) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945264 2017-12-05] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-08] (Intel® Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [64504 2017-06-14] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [196344 2017-12-14] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [153552 2018-02-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35328 2017-03-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2017-03-22] (Avira Operations GmbH & Co. KG)
R1 ElRawDisk; C:\Windows\system32\drivers\rsdrvx64.sys [26024 2009-02-12] (EldoS Corporation)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
R1 truecrypt; C:\Windows\SysWow64\drivers\truecrypt.sys [219840 2014-08-23] (TrueCrypt Foundation)
S3 AthBTPort; system32\DRIVERS\btath_flt.sys [X]
S3 BTATH_A2DP; system32\drivers\btath_a2dp.sys [X]
S3 btath_avdt; system32\drivers\btath_avdt.sys [X]
S3 BTATH_BUS; system32\DRIVERS\btath_bus.sys [X]
S3 BTATH_HCRP; system32\DRIVERS\btath_hcrp.sys [X]
S3 BTATH_LWFLT; system32\DRIVERS\btath_lwflt.sys [X]
S3 BTATH_RCP; system32\DRIVERS\btath_rcp.sys [X]
S3 BTATH_VDP; system32\drivers\btath_vdp.sys [X]
S3 BtFilter; system32\DRIVERS\btfilter.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2018-02-15 12:47 - 2018-02-15 12:47 - 000021261 _____ C:\Users\usrname\Desktop\FRST.txt
2018-02-15 12:46 - 2018-02-15 12:47 - 000000000 ____D C:\FRST
2018-02-15 12:46 - 2018-02-15 12:46 - 002405376 _____ (Farbar) C:\Users\usrname\Desktop\FRST64.exe
2018-02-15 12:28 - 2018-02-15 12:28 - 000000000 ____D C:\Users\usrname\Desktop\Neuer Ordner
2018-02-14 14:04 - 2018-02-14 14:04 - 002476296 _____ C:\Users\usrname\Desktop\patellofemoral-osteochondral-autologous-transfer.pdf
2018-02-12 17:04 - 2018-02-12 17:10 - 000000000 ____D C:\Users\usrname\Desktop\Wolf Shaver
2018-02-09 10:44 - 2018-02-09 17:35 - 000000000 ____D C:\Users\usrname\Desktop\Hannoversche leben
2018-02-04 15:53 - 2018-02-04 15:53 - 000462251 _____ C:\Users\usrname\Downloads\ASIO4ALL_2_14_English.exe
2018-02-04 15:53 - 2018-02-04 15:53 - 000000000 ____D C:\Users\usrname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2018-02-04 15:53 - 2018-02-04 15:53 - 000000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2018-02-04 15:43 - 2012-04-02 22:52 - 001361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2018-02-04 15:43 - 2012-04-02 22:52 - 000836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2018-02-04 15:43 - 2012-04-02 22:52 - 000148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2018-02-04 15:43 - 2012-04-02 22:52 - 000065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 002605400 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000220776 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2018-02-04 15:43 - 2012-04-02 22:50 - 000074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 004754536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2018-02-04 15:43 - 2012-04-02 22:49 - 003846248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 002729472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2018-02-04 15:43 - 2012-04-02 22:49 - 002652264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 001560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2018-02-04 15:43 - 2012-04-02 22:49 - 001247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000823912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000238476 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2018-02-04 15:43 - 2012-04-02 22:49 - 000204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000102504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2018-02-04 15:43 - 2012-04-02 22:49 - 000014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2018-02-04 15:43 - 2012-04-02 22:48 - 003308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2018-02-04 15:43 - 2012-04-02 22:48 - 000426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2018-02-04 15:43 - 2012-04-02 22:48 - 000334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2018-02-04 15:43 - 2012-04-02 22:48 - 000136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2018-02-04 15:43 - 2012-04-02 22:48 - 000118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2018-02-04 15:43 - 2012-04-02 22:48 - 000074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2018-02-04 15:43 - 2012-04-02 22:47 - 008363864 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2018-02-04 15:43 - 2012-04-02 22:47 - 000978776 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2018-02-04 15:43 - 2012-04-02 22:47 - 000341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2018-02-04 15:43 - 2012-04-02 22:47 - 000318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2018-02-04 15:43 - 2012-04-02 22:46 - 002528832 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2018-02-04 15:43 - 2012-04-02 22:46 - 000603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 001756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 001568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 001486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000537456 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000524656 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000449392 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2018-02-04 15:43 - 2012-04-02 22:45 - 000241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2018-02-04 15:43 - 2012-04-02 22:44 - 000200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2018-02-04 15:43 - 2012-04-02 22:44 - 000108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2018-02-03 13:11 - 2018-02-03 13:11 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2018-02-03 13:10 - 2018-02-03 13:10 - 000000000 ____D C:\Windows\system32\DAX3
2018-02-03 13:10 - 2018-02-03 13:10 - 000000000 ____D C:\Windows\system32\DAX2
2018-02-03 13:10 - 2017-06-29 18:55 - 013122576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 012988336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 006410088 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 005938904 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 005593608 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 003509256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 003410832 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 003299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 003122656 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 003092336 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 002190976 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 001435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 001337640 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 001016928 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000923736 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000877424 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000868176 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000866640 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000852128 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000737960 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000691680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000604792 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000525768 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000381408 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2018-02-03 13:10 - 2017-06-29 18:55 - 000341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 010536152 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 002291304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 001422920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 001334376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 001213656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 001166152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000999848 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000680544 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000406448 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000366120 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000360344 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000203840 _____ (Harman) C:\Windows\system32\HMHVS.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2018-02-03 13:10 - 2017-06-29 18:54 - 000179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 005346992 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 002444680 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001959600 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001616680 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001554600 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001326424 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 001170872 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 000362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 000327448 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 000310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2018-02-03 13:10 - 2017-06-29 18:53 - 000272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2018-02-03 13:10 - 2017-06-29 18:52 - 002110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2018-02-03 13:10 - 2017-06-29 18:52 - 000258856 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 014057248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 007096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 006264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 002050176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 001186832 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 001133064 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 001003856 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 000416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 000378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2018-02-03 13:10 - 2017-06-29 18:51 - 000154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2018-02-03 13:10 - 2017-06-29 18:50 - 000122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2018-02-03 13:10 - 2017-06-29 18:50 - 000118584 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2018-02-03 13:10 - 2017-06-29 18:50 - 000105304 _____ C:\Windows\system32\audioLibVc.dll
2018-02-03 13:10 - 2017-06-29 03:05 - 005804772 _____ C:\Windows\system32\Drivers\rtvienna.dat
2018-02-03 13:10 - 2017-06-29 03:05 - 001920870 _____ C:\Windows\system32\Drivers\rtkSSTsetting.dat
2018-02-03 12:38 - 2018-02-03 13:13 - 000000000 ____D C:\Program Files (x86)\No23 Recorder
2018-02-03 12:38 - 2018-02-03 12:38 - 000000000 ____D C:\ProgramData\Caphyon
2018-02-02 19:41 - 2018-02-15 12:36 - 000000000 ____D C:\Users\usrname\AppData\Roaming\Spotify
2018-02-02 19:41 - 2018-02-15 12:36 - 000000000 ____D C:\Users\usrname\AppData\Local\Spotify
2018-02-02 19:41 - 2018-02-02 19:41 - 000001803 _____ C:\Users\usrname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2018-02-02 19:35 - 2018-02-02 19:35 - 000000000 ____D C:\ProgramData\AVS4YOU
2018-02-02 19:34 - 2018-02-03 11:46 - 000000000 ____D C:\Program Files (x86)\AVS4YOU
2018-02-02 19:34 - 2018-02-02 19:34 - 000000000 ____D C:\Users\usrname\AppData\Roaming\AVS4YOU
2018-02-02 19:34 - 2010-05-11 13:17 - 000024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2018-02-02 19:27 - 2018-02-02 19:27 - 000725488 _____ (Spotify Ltd) C:\Users\usrname\Downloads\SpotifySetup.exe
2018-02-01 09:06 - 2018-02-01 09:06 - 000019040 _____ C:\Users\usrname\Desktop\kalender.xlsx
2018-01-29 17:37 - 2018-01-29 17:37 - 000000754 _____ C:\Users\usrname\Desktop\EBM Ziffern - Verknüpfung.lnk
2018-01-28 11:39 - 2018-01-28 11:39 - 000000410 _____ C:\Users\usrname\Desktop\congstar daten.txt
2018-01-21 16:32 - 2018-01-21 16:32 - 000114364 _____ C:\Users\usrname\Desktop\Rezept Uli Pectoralis.pdf
2018-01-18 14:32 - 2018-01-18 14:35 - 008773632 _____ C:\Users\usrname\Downloads\SkypeForBusinessPlugin.msi
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2018-02-15 12:44 - 2009-07-14 05:45 - 000023840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-02-15 12:44 - 2009-07-14 05:45 - 000023840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-02-15 12:43 - 2016-11-17 23:43 - 000000000 ____D C:\Users\usrname\AppData\LocalLow\Mozilla
2018-02-15 12:40 - 2009-07-14 18:58 - 000699666 _____ C:\Windows\system32\perfh007.dat
2018-02-15 12:40 - 2009-07-14 18:58 - 000149774 _____ C:\Windows\system32\perfc007.dat
2018-02-15 12:40 - 2009-07-14 06:13 - 001620612 _____ C:\Windows\system32\PerfStringBackup.INI
2018-02-15 12:40 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-02-15 12:36 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-02-15 12:35 - 2017-09-18 12:47 - 000003316 _____ C:\Windows\System32\Tasks\Avira_Antivirus_Systray
2018-02-13 11:56 - 2016-07-25 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-02-13 11:35 - 2015-02-09 14:42 - 000000000 ____D C:\ProgramData\Package Cache
2018-02-12 17:27 - 2017-02-04 15:46 - 000000000 ____D C:\Users\usrname\Desktop\Medizindateien OP
2018-02-11 09:47 - 2014-09-22 20:05 - 000000000 ____D C:\Users\usrname\AppData\Local\CrashDumps
2018-02-10 14:54 - 2017-03-20 13:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-02-10 14:54 - 2014-08-23 14:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-02-09 15:11 - 2016-01-13 21:18 - 000689152 _____ C:\Users\usrname\Desktop\WH Newsletter Emailadressen.xls
2018-02-05 12:12 - 2014-09-09 21:20 - 000000001 ____R C:\Users\usrname\serverport
2018-02-05 12:08 - 2014-08-22 23:08 - 000000000 ____D C:\Users\usrname
2018-02-04 16:05 - 2014-08-23 20:18 - 000000000 ____D C:\Users\usrname\AppData\Local\ElevatedDiagnostics
2018-02-04 15:44 - 2014-08-22 23:32 - 000000000 ___HD C:\Program Files (x86)\Temp
2018-02-04 15:44 - 2014-08-22 23:32 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2018-02-04 15:43 - 2014-08-22 23:13 - 000000024 _____ C:\Windows\Model.txt
2018-02-04 15:32 - 2017-11-11 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
2018-02-03 12:39 - 2014-08-31 11:19 - 000000000 ____D C:\Users\usrname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MultimediaProgramme
2018-02-03 10:38 - 2009-07-14 05:45 - 000443312 _____ C:\Windows\system32\FNTCACHE.DAT
2018-02-02 19:34 - 2014-08-22 23:31 - 000118104 _____ C:\Users\usrname\AppData\Local\GDIPFONTCACHEV1.DAT
2018-02-01 17:50 - 2014-08-23 22:16 - 000153552 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2018-01-30 07:46 - 2009-07-14 06:08 - 000032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2018-01-27 18:19 - 2017-03-12 18:38 - 000000000 ____D C:\Users\usrname\Desktop\ebay
2018-01-26 11:46 - 2017-12-29 09:21 - 000000000 ____D C:\Users\usrname\Desktop\Emma iPhone
2018-01-22 16:45 - 2015-03-22 01:00 - 000000600 _____ C:\Users\usrname\AppData\Local\PUTTY.RND
2018-01-22 16:45 - 2014-12-16 20:03 - 000000000 ____D C:\Users\usrname\AppData\Roaming\FileZilla
2018-01-19 11:35 - 2014-12-16 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2018-01-19 11:35 - 2014-12-16 20:03 - 000000000 ____D C:\Program Files (x86)\FileZilla FTP Client
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-11-16 22:49 - 2016-11-21 22:33 - 000003072 _____ () C:\Users\usrname\AppData\Roaming\fotobook Designer Prefsv3
2016-04-17 20:31 - 2016-04-17 20:31 - 000000600 _____ () C:\Users\usrname\AppData\Roaming\PUTTY.RND
2017-11-11 14:22 - 2017-11-11 14:42 - 016400384 _____ () C:\Users\usrname\AppData\Roaming\Sandra.mdb
2014-11-07 19:16 - 2017-12-23 20:58 - 000044544 _____ () C:\Users\usrname\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-22 01:00 - 2018-01-22 16:45 - 000000600 _____ () C:\Users\usrname\AppData\Local\PUTTY.RND
2017-10-28 12:13 - 2017-11-12 14:57 - 000007610 _____ () C:\Users\usrname\AppData\Local\Resmon.ResmonCfg
2014-08-22 23:23 - 2014-08-22 23:23 - 000002853 _____ () C:\Users\usrname\AppData\Local\WiDiSetupLog.20140823.002310.txt
Einige Dateien in TEMP:
====================
2015-02-28 14:36 - 2015-02-28 14:36 - 000000000 ____D () C:\Users\standard\AppData\Local\Temp\avgnt.exe
2018-02-04 15:43 - 2010-06-20 22:42 - 000046456 _____ (Sony Electronics, Inc) C:\Users\usrname\AppData\Local\Temp\GLFB427.EXE
2018-02-04 15:43 - 2003-05-02 15:13 - 000151552 _____ () C:\Users\usrname\AppData\Local\Temp\GLFE130.EXE
2018-01-05 08:47 - 2018-01-05 08:47 - 003996560 _____ (Don HO don.h@free.fr) C:\Users\usrname\AppData\Local\Temp\npp.7.5.3.Installer.exe
2018-02-02 19:40 - 2018-02-02 19:28 - 021091728 _____ (Spotify Ltd) C:\Users\usrname\AppData\Local\Temp\SpotifyUninstall.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-05-18 17:50
==================== Ende von FRST.txt ============================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12.02.2018
durchgeführt von usrname (15-02-2018 12:47:39)
Gestartet von C:\Users\usrname\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-08-22 22:08:04)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2056474287-1676708938-3234247259-500 - Administrator - Disabled)
Gast (S-1-5-21-2056474287-1676708938-3234247259-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2056474287-1676708938-3234247259-1004 - Limited - Enabled)
standard (S-1-5-21-2056474287-1676708938-3234247259-1001 - Limited - Enabled) => C:\Users\standard
usrname (S-1-5-21-2056474287-1676708938-3234247259-1000 - Administrator - Enabled) => C:\Users\usrname
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Flash Player 26 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.126 - Adobe Systems Incorporated)
Advertising Center (HKLM-x32\...\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}) (Version: 0.0.0.2 - Nero AG) Hidden
AMD Catalyst Install Manager (HKLM\...\{EBF1529E-D2D5-47CF-97EC-7D90CEF0FE04}) (Version: 3.0.859.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Avira (HKLM-x32\...\{0d7485e0-9bee-4f51-be99-b5ed9e4c3cad}) (Version: 1.2.105.36322 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{1EC8A200-307B-4964-A67D-6E10088C1CE1}) (Version: 1.2.105.36322 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.34.23 - Avira Operations GmbH & Co. KG)
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version: - AVM Berlin)
AVM FRITZ!Box Druckeranschluss (HKLM-x32\...\AVMFBoxPrinter) (Version: - AVM Berlin)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borland Delphi 7 (HKLM-x32\...\{72263053-50D1-4598-9502-51ED64E54C51}) (Version: 7.0 - Borland Software Corporation)
CDex extraction audio (HKLM-x32\...\CDex) (Version: - )
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Email Extractor (HKLM-x32\...\{30482B99-CAD6-4370-8A3B-8939BCDC90EC}) (Version: 5.8.2.7 - Pro Software) Hidden
Email Extractor (HKLM-x32\...\Email Extractor) (Version: 5.8.2.7 - Pro Software)
EndNote 8.0.2 Upgrade (HKLM-x32\...\{3F55B0C9-D552-4D02-BBCF-76E2EE60C686}) (Version: 8.0.2.1150 - Thomson ResearchSoft)
f.lux (HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Flux) (Version: - f.lux Software LLC)
FileZilla Client 3.30.0 (HKLM-x32\...\FileZilla Client) (Version: 3.30.0 - Tim Kosse)
fotobook Designer (HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\fotobook Designer) (Version: fotobook Designer 2016.3.1 - Printcenter Lamprechter GmbH)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.07) (Version: 9.07 - Artifex Software Inc.)
Help Workshop (HKLM-x32\...\Help Workshop) (Version: - )
HP Officejet 6600 - Grundlegende Software für das Gerät (HKLM\...\{C768E610-4DFB-4A60-A59B-71549EB7BF75}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Officejet 6600 Hilfe (HKLM-x32\...\{C818BA3A-226F-4ED0-9CEF-96A0DF300211}) (Version: 140.0.2.2 - Hewlett Packard)
HTML Help Workshop (HKLM-x32\...\HTML Help Workshop) (Version: - )
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel(R) PROSet/Wireless for Bluetooth(R) 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{520C4DD4-2BC7-409B-BA48-E1A4F832662D}) (Version: 2.1.0.0140 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
Intel® PROSet/Wireless WiFi-Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
InterBase 6.5 (HKLM-x32\...\InterBase) (Version: - )
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
ISI ResearchSoft - Export Helper (HKLM-x32\...\ISI ResearchSoft - Export Helper) (Version: - )
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
JiveX [dv] Viewer 4.6.1 (HKLM-x32\...\JiveX [dv] Viewer 4.6.1) (Version: - VISUS Technology Transfer GmbH)
KUx86 (HKLM-x32\...\{6FD21053-829D-40E7-B04C-CAFB7D5CD025}) (Version: 1.0.0 - Sony Corporation ) Hidden
LameXP (HKLM-x32\...\{FBD7A67D-D700-4043-B54F-DD106D00F308}) (Version: - )
Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.10.13 - Magical Jelly Bean)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft RichCopy 4.0 (HKLM-x32\...\{86F4F32B-77C7-4951-B33C-05D41A8190C1}) (Version: 4.0.216 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 58.0.2 (x64 de) (HKLM\...\Mozilla Firefox 58.0.2 (x64 de)) (Version: 58.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 58.0.2.6611 - Mozilla)
Mozilla Thunderbird 31.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Thunderbird 52.6.0 (x86 de) (HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Mozilla Thunderbird 52.6.0 (x86 de)) (Version: 52.6.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Namo WebEditor 3.0 (HKLM-x32\...\Namo WebEditor 3.0) (Version: - )
Nero 9 Lite (HKLM-x32\...\{5abf21ec-0e27-49f7-b96f-8fb89f96d418}) (Version: - Nero AG)
No23 Recorder (HKLM-x32\...\{6DED41BC-C9EF-4330-B4E5-46CB2C5C6E2D}) (Version: 2.1.0.3 - No23) Hidden
No23 Recorder (HKLM-x32\...\No23 Recorder) (Version: 2.1.0.3 - No23)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.3 - Notepad++ Team)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
OpenVPN 2.4.3-I601 (HKLM\...\OpenVPN) (Version: 2.4.3-I601 - OpenVPN Technologies, Inc.)
Qualcomm Atheros Direct Connect (HKLM-x32\...\{21DD6041-7251-40FA-9D06-C5EB30268E0F}) (Version: 3.1 - Qualcomm Atheros) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{E727B31A-8B24-4C1C-934A-69634E0D2C0B}) (Version: 3.0 - Qualcomm Atheros)
QuickTime (HKLM-x32\...\{BFD96B89-B769-4CD6-B11E-E79FFD46F067}) (Version: 7.4.1.14 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6573 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.91 - Realtek Semiconductor Corp.)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - )
Roentgen-Trainer Chirurgische Ambulanz Version 5.0 (HKLM-x32\...\Roentgen-Trainer 5.0_is1) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
SiSoftware Sandra Lite Platinum.SP4 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 24.57.2017.12 - SiSoftware)
Skype for Business Web App Plug-in (HKLM-x32\...\{37C8167B-B653-4955-A6E8-EBB8DE937DDD}) (Version: 15.8.20020.400 - Microsoft Corporation)
Spotify (HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\...\Spotify) (Version: 1.0.73.345.g6c9971ef - Spotify AB)
SSLx64 (HKLM\...\{312395BC-7CC2-434C-A660-30250276A926}) (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (HKLM-x32\...\{63C43435-F428-42BA-8E7B-5848749D9262}) (Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.0.1.6 - Synaptics Incorporated)
SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.5640 - TeamViewer)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 6.1a - TrueCrypt Foundation)
USB-COM-x64 (HKLM\...\{84BDD487-D5CB-46B4-B047-62B4564A4138}) (Version: 3.1.64 - Datalogic Scanning Inc.)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 5.2.1.15070 - Sony Corporation)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.11.1.15220 - Sony Corporation)
VCCx64 (HKLM\...\{549AD5FB-F52D-4307-864A-C0008FB35D96}) (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (HKLM-x32\...\{DF184496-1CA2-4D07-92E7-0BD251D7DEF0}) (Version: 1.0.0 - Sony Corporation) Hidden
VOB2MPG v3 (HKLM-x32\...\{908B5359-244E-4E09-AA9F-DBF240679B46}) (Version: 3.2.2000 - BadgerIT)
VPMx64 (HKLM\...\{DBEAA361-F8A4-4298-B41C-9E9DCB9AAB84}) (Version: 1.0.0 - Sony Corporation ) Hidden
VSNx64 (HKLM\...\{F2611404-06BF-4E67-A5B7-8DB2FFC1CBF6}) (Version: 1.0.0 - Sony Corporation) Hidden
VSNx86 (HKLM-x32\...\{A49A517F-5332-4665-922C-6D9AD31ADD4F}) (Version: 1.0.0 - Sony Corporation) Hidden
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Mobile-Gerätecenter (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows-Treiberpaket - Sony Corporation (SFEP) HIDClass (11/15/2011 8.0.2.3) (HKLM\...\D3980EE1930054D2BAB3D957A731D6C24AF9F739) (Version: 11/15/2011 8.0.2.3 - Sony Corporation)
Windows-Treiberpaket - USB-COM Driver (dlsusb) MultiportSerial (01/18/2011 3.12.0.64) (HKLM\...\2D4BBBFB3EA69A8758A7A199D6788B339EF1F602) (Version: 01/18/2011 3.12.0.64 - USB-COM Driver)
Windows-Treiberpaket - USB-COM Software (dlsusb) Ports (01/18/2011 3.12.0.64) (HKLM\...\B10839A4D3FB3238A92B7EB203CAD385FAE3B421) (Version: 01/18/2011 3.12.0.64 - USB-COM Software)
XAMPP (HKLM-x32\...\xampp) (Version: 5.5.33-0 - Bitnami)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2056474287-1676708938-3234247259-1000_Classes\CLSID\{7ECF6F97-B4F3-4168-9835-F59C06D7875F}\InprocServer32 -> C:\Users\usrname\AppData\Local\Microsoft\SkypeForBusinessPlugin\15.8.20020.400\GatewayActiveX-x64.dll (Microsoft Corporation)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-02-12] ()
ContextMenuHandlers1-x32: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => -> Keine Datei
ContextMenuHandlers1-x32: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-12-14] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1-x32: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org)
ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4-x32: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2012-02-09] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2013-02-02] (hxxp://winmerge.org)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-12-14] (Avira Operations GmbH & Co. KG)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {012B69F0-9434-4131-9396-7E181BCD0CE3} - System32\Tasks\{A4EDBC72-AEFB-422F-B379-47D1E14EABA9} => C:\Windows\system32\pcalua.exe -a "D:\Daten\Installation\irfanView portable\irfanview_plugins_438_setup.exe" -d "D:\Daten\Installation\irfanView portable"
Task: {04F2BEF0-B410-467C-8140-269EA33350CC} - System32\Tasks\{559BFC4C-D7A1-47EC-820A-40BBFA2B9129} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {0ADB8966-FBB5-4693-94B8-3E1B6D38A5B8} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => net [Argument = start VSNService]
Task: {10BB72F2-DDFB-43E0-90D4-08EABA6869ED} - System32\Tasks\{410E2E8A-B63F-4798-B295-83C5C790AB81} => E:\CLINTUT.EXE
Task: {13F28122-5A4A-415A-A0BD-F4C63CCC95AD} - System32\Tasks\{0DD91F8F-B522-4159-AC54-D18A532F97FB} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {1643C0BB-6704-4757-8537-12C392573360} - System32\Tasks\{A219CF70-A533-494D-90C1-36C5323A8429} => E:\CLINTUT.EXE
Task: {292A9149-3FE6-4614-B79F-293B33250907} - System32\Tasks\{5EB703D1-492F-4376-967F-BA6F8E45A4F7} => E:\CLINTUT.EXE
Task: {2AB05F60-EEB1-4528-9210-5E61D4725E2A} - System32\Tasks\{485C19F3-3DBF-451C-A5BF-21298EE649D7} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {2BB0B963-24C7-4F35-BD97-99C53E84AC94} - System32\Tasks\{72A8FBDA-E6F9-4B4D-86A1-14247F5AC213} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {2CC1BA65-138F-4F77-A9DE-70450FD7C54B} - System32\Tasks\{D715521D-A6AB-4E4E-8061-FE5E1909F3C9} => E:\CLINTUT.EXE
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> Keine Datei <==== ACHTUNG
Task: {31EB1FBD-B3A1-41AE-A834-9B748E56D585} - System32\Tasks\{828B1787-2260-4A9D-AB94-5C96D7AF1E7C} => E:\CLINTUT.EXE
Task: {3260D0C1-C9A2-4B70-BDF0-E9640B9381B2} - System32\Tasks\{A828C4DB-8810-4E83-AFB7-57DEB726B75B} => E:\CLINTUT.EXE
Task: {4162E068-70F4-4143-8106-662DDD840317} - System32\Tasks\{9FE8208C-2FD6-46AA-8FAD-B57851C3456D} => D:\Daten\Ole Programme\Excel 3.0\EXCEL.EXE
Task: {41DE6981-6418-4A16-B198-1D4584316405} - System32\Tasks\{0F2FA99C-FAD5-4BDA-AAC8-067F37BCD221} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {42540984-E923-4C7B-BD61-B700BC9B95D5} - System32\Tasks\{41CAB104-5784-483E-9CBA-5FCD79ADAA7F} => E:\CLINTUT.EXE
Task: {448C12B3-8162-430A-B791-8191B3E8C414} - System32\Tasks\{D918666A-3F55-4992-831A-5F287DC1B4A1} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {4AF85443-056B-450B-91A5-70113B3D57E4} - System32\Tasks\{745628D7-5921-4F47-91CA-7AFE97A5C5A0} => E:\CLINTUT.EXE
Task: {4D65DCBF-05BE-48B7-9007-CA5A525746FA} - System32\Tasks\{43803A85-1D0A-4778-9F5D-EA11153609E1} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {4E563BE2-45E0-405C-A7B5-56EAE819522F} - System32\Tasks\{561D9A61-641B-43F4-9974-7E34D1D9D3F7} => E:\CLINTUT.EXE
Task: {4FAABC0E-EFE8-4CB6-B6BE-EC25C8E76B50} - System32\Tasks\{F8036B3D-0F73-401E-8247-CA1B5DE58F76} => F:\3,5 Zoll Disketten\haus vom nitroklaus\HAUSVOM.EXE
Task: {50AC6532-A58D-487F-BF08-CE7A0542E501} - System32\Tasks\{639ECBEA-B9DE-4995-936F-5353A46C5F51} => E:\CLINTUT.EXE
Task: {55F04794-17C9-4BC6-978D-9B2A3EB3E815} - System32\Tasks\{148FE1D8-762A-4876-B62B-898BB84F7204} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {583EE021-FED5-4404-8263-1DAC3608281B} - System32\Tasks\{AF9EB32F-F415-4C03-9C32-C8C4B76D99B4} => E:\CLINTUT.EXE
Task: {59B3B51F-3886-4F10-9839-FD3EC45E88A4} - System32\Tasks\{2186CC03-4872-43AB-8054-7DDD7F9D258D} => E:\CLINTUT.EXE
Task: {5C85A588-58D9-4F27-8D61-46F1E22C1DF3} - System32\Tasks\{8CB0D9AD-65AE-4D27-AB6B-A68EF856E296} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {731AE879-8B5F-4028-AF45-3514D765921B} - System32\Tasks\{4D998D37-C3D1-45BD-B455-E85214EE1E9F} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {8112A4F2-12DD-4FA2-8232-17B931A26DEC} - System32\Tasks\{C14E0A66-4AFB-40DD-8C5D-9854B7708AC1} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {8B08B9E6-E16F-4AF0-AD11-F88D6EA05240} - System32\Tasks\{EABD2DE2-283C-45DD-AC15-79209D2C4617} => E:\CLINTUT.EXE
Task: {8CEE8B03-9FAD-4D2F-B26B-31717F7F5338} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation)
Task: {926947E3-5E09-4AFA-8355-0CC0FDE6A0EE} - System32\Tasks\{34C18A93-5012-4276-9DD2-7480C70BDFF7} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {9333ED4A-FFFA-4F28-BB02-893BD8AFE663} - System32\Tasks\{B0937C1A-F29B-4E4E-9AD3-E07FD28719B6} => E:\CLINTUT.EXE
Task: {933CCDB9-4222-463C-AAE0-A30957A65A61} - System32\Tasks\{A23C69D7-CDF4-40A9-AABE-9F5E2A34778C} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {94E39246-DB4E-444C-80A8-5F5AD4CE415E} - System32\Tasks\{E4AEFE5E-D5A8-429B-845E-B6B275BCBD9B} => E:\CLINTUT.EXE
Task: {97704731-7F55-4EE1-9DFC-764F8A66ABB9} - System32\Tasks\{E3C3C66B-69E9-4111-A6A5-2C8420515126} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe
Task: {9E4D3F8B-3E58-4AA0-9E72-AB81AF59C919} - System32\Tasks\{087C2672-FFE9-4D4D-B07C-E5E367F30974} => F:\3,5 Zoll Disketten\haus vom nitroklaus\HAUSVOM.EXE
Task: {9F889209-EFAB-4084-A8DB-4E93B3C6BC22} - System32\Tasks\{9E0CE78D-C9C0-458D-B0E2-54D592D41CD5} => E:\CLINTUT.EXE
Task: {A13757A8-4E22-45E7-9FA8-259CF9B22D31} - System32\Tasks\{AD087C8F-BFC8-43AA-80C2-0ABC301925B0} => E:\CLINTUT.EXE
Task: {A2FF351D-74B4-4C82-B4D8-ABDBA8EBD193} - System32\Tasks\{FD82B595-427F-4F49-8ADB-8F3EA98B95DD} => E:\CLINTUT.EXE
Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe
Task: {AAA6BFD9-BE1F-46AB-B443-FF37E7E2A0E5} - System32\Tasks\{A85E265B-7F6D-4336-BE9A-C16CE0F869DC} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {AB932A05-78BF-4776-9929-69D28EB5FAFE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-20] (Adobe Systems Incorporated)
Task: {AC17F17D-8EE6-43EE-BDBA-BB3626A72299} - System32\Tasks\{EADF00A8-5BCC-4141-9493-B2C3CD0C8D17} => F:\3,5 Zoll Disketten\spiele\EMIR\EMIR.EXE
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> Keine Datei <==== ACHTUNG
Task: {B0BD5093-A16F-40D5-A943-8C3D7ABEDA96} - System32\Tasks\{1A7F2200-AF8D-41D5-8D03-17FC073782B8} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {B711D4D9-1D9E-4904-B0A7-E25B02674E00} - System32\Tasks\{FEAC2158-2FEE-4686-A370-7B85B2274267} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {BEAC7947-F0E5-45E2-B77E-0D021139EA01} - System32\Tasks\{BBAEEADA-5DED-4E0C-AD91-2191D06ABDBD} => E:\CLINTUT.EXE
Task: {BEE9C958-3AF5-454B-8686-0C1A4A0D5EEC} - System32\Tasks\{10E59F9E-4817-4871-880B-785536BC890F} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {C2B922CD-D831-486C-B5F6-E8DDB2F1D08B} - System32\Tasks\{397947C5-698D-4D7D-AFBE-194FEDFBD6D2} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {C527E36B-5EA1-49A2-9695-F17073666EFC} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2018-02-13] (Avira Operations GmbH & Co. KG)
Task: {C5F6FEC0-D0A9-452D-8808-CE0B91414921} - System32\Tasks\{89BA6518-55A7-4445-964C-1A9F90FF4ECD} => E:\CLINTUT.EXE
Task: {C613DE23-374A-48BE-ADD9-132D39BD425A} - System32\Tasks\{B84C4EDF-11E9-47DE-8149-03B552950967} => F:\3,5 Zoll Disketten\spiele\EMIR\EMIR.EXE
Task: {CD592A56-97EA-4881-93D3-01B24CFE148C} - System32\Tasks\{97BC7E8D-6191-49BE-BDA3-CBB8A6F93F76} => E:\CLINTUT.EXE
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> Keine Datei <==== ACHTUNG
Task: {D0648609-9237-4B16-8F10-A2722C6ED93E} - System32\Tasks\{2A365BE7-EDDF-4B9B-8040-B6855D04BF14} => E:\CLINTUT.EXE
Task: {D11B4B42-935A-4CFE-9028-D3EB9E9E8CBF} - System32\Tasks\{9575B9C8-690A-4C9A-A426-DEDE724FEE9C} => E:\CLINTUT.EXE
Task: {D13D59C6-5FCF-4CC1-9CA9-D1A1C43983DF} - System32\Tasks\{3D702AEB-BA20-4420-92C0-BB0CE75660EB} => C:\Windows\system32\pcalua.exe -a "D:\Daten\Aktuell\kindergeburtstage\Emma 2016\Dalliklick.exe" -d "D:\Daten\Aktuell\kindergeburtstage\Emma 2016"
Task: {D1D56C03-D6E7-4EAB-A430-847E8AFD5F86} - System32\Tasks\{7858CC17-1BD0-461E-A921-3B498FE15E98} => D:\Daten\Ole Programme\Excel 3.0\EXCEL.EXE
Task: {D3966761-E4D6-4CCC-A8BB-09BCC651A928} - System32\Tasks\{5B58F978-B313-4EC2-8C83-07400B37E5FC} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {DEEEC776-61EB-410C-81CF-7217A9A1640B} - System32\Tasks\{B5421BF8-A22F-416C-9FCE-94EA2FC4D3AC} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {E2FD86D6-E8AF-4B77-BF9D-DCC472986F36} - System32\Tasks\{9B4A5C64-91B5-4E55-A18D-85713659E102} => D:\Installation\Abbyy PDF TRansformer\setup.exe [2004-08-02] ()
Task: {E31E147D-9EF0-496C-98D3-794CC45D18B4} - System32\Tasks\{DFB75000-0BF4-4CF8-A183-0A193CB99C01} => E:\CLINTUT.EXE
Task: {E49E6658-5420-4505-AB97-57FFB51F43AD} - System32\Tasks\{A47E3BDE-9B26-42DE-A12F-E05867F7A669} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {EFA2749B-B66B-48FB-94F1-79E9D61DD4EC} - System32\Tasks\{CB28D417-4151-4E5D-88A1-A0433E8D6C31} => E:\CLINTUT.EXE
Task: {EFAEA987-CCA4-4EC3-A840-75102B4306F0} - System32\Tasks\{6679991B-FF07-41FF-AD4E-94CF46D4E575} => E:\CLINTUT.EXE
Task: {F2E2A4C2-8DA7-4C91-9F0C-7FAB0495705D} - System32\Tasks\{7B165A4F-5EB1-4217-9F4B-DADD785E9F21} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {F6202E30-AE55-400E-A7DD-C3514A06DDB2} - System32\Tasks\{DA1C0397-FFBA-49D0-B579-91C7FA877356} => D:\Daten\Ole Programme\Excel 3.0\EXCEL.EXE
Task: {F69376F7-CE10-4DA7-BBC9-F77296B15177} - System32\Tasks\{E423361B-E041-458C-BAE4-87782F2E0A86} => E:\CLINTUT.EXE
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> Keine Datei <==== ACHTUNG
Task: {FB85B204-523E-4782-B35A-D38FF798A5B2} - System32\Tasks\{64BEF992-29E3-4280-AA79-CE4AE52CFC9D} => D:\Daten\Ole Programme\Fantasy\alt\MERSKPF2.exe
Task: {FC36DB1A-9091-414B-8961-12681C735970} - System32\Tasks\{C0019A0B-5ADA-4709-A30C-AF9693D038BB} => E:\CLINTUT.EXE
Task: {FFB4D01F-85F7-408D-BD90-00DFB827A170} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-03-07] (Sony Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\usrname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MultimediaProgramme\CDex\CDex Site.lnk -> hxxp://www.cdex.n3.net
Shortcut: C:\Users\usrname\AppData\Roaming\Microsoft\Windows\Network Shortcuts\My Web Sites on MSN\target.lnk -> hxxp://www.msnusers.co
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-08-24 15:18 - 2005-03-12 01:07 - 000087040 _____ () C:\Windows\System32\redmonnt.dll
2013-09-04 23:17 - 2013-09-04 23:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2018-01-08 14:00 - 2018-01-08 14:00 - 000076456 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2014-08-22 23:27 - 2012-04-03 20:45 - 000128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2011-11-09 08:55 - 2011-11-09 08:55 - 000016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2012-02-09 22:19 - 2012-02-09 22:19 - 000369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2017-07-21 20:53 - 2018-01-25 22:54 - 000733184 _____ () L:\Notizblock\NotizblockP.exe
2014-08-22 23:40 - 2012-03-07 17:57 - 000021128 _____ () C:\Program Files (x86)\Sony\VAIO Control Center\VESBasePS.dll
2013-09-04 23:14 - 2013-09-04 23:14 - 004300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2017-09-14 06:51 - 2017-09-14 06:51 - 000172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\f203ecbdc8e8f4f836e1627efb89f9ae\IsdiInterop.ni.dll
2014-08-22 23:27 - 2011-11-29 19:00 - 000059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-08-22 23:27 - 2012-04-03 20:46 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:6DDED7D9 [149]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2056474287-1676708938-3234247259-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 172.30.3.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: IconMan_R => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: OpenVPNService => 3
MSCONFIG\Services: OpenVPNServiceInteractive => 2
MSCONFIG\Services: OpenVPNServiceLegacy => 3
MSCONFIG\startupfolder: C:^Users^usrname^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Tintenwarnungen überwachen - HP Officejet 6600.lnk => C:\Windows\pss\Tintenwarnungen überwachen - HP Officejet 6600.lnk.Startup
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NeroCheck => C:\Windows\system32\NeroCheck.exe
MSCONFIG\startupreg: OPENVPN-GUI => C:\Program Files\OpenVPN\bin\openvpn-gui.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Syncios device service => C:\Program Files (x86)\Syncios\SynciosDeviceService.exe
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{B03BEFC8-F752-49BC-AE10-88F60F7ECEBB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{040D646C-1D23-4F74-B040-AC0E4C132946}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe
FirewallRules: [{732FDC6B-75FB-42AE-8B1C-4FCE730569D3}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe
FirewallRules: [{B7CECA6C-31CF-4EA9-95E6-529C36BDACE7}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{D1756B5F-3571-41E6-9232-F6AD16AF85CF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{903623A5-342C-4386-BA5C-A3D09493D7BB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{EF153DC5-2370-4B75-8A22-1EC212737ED0}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{6F5C6BA3-39B3-4CEB-97F6-7E5C0F1404F3}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\DeviceSetup.exe
FirewallRules: [{7F7DAB72-312C-4423-8452-CA8E58F2A749}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe
FirewallRules: [TCP Query User{02D3B74A-4DB8-40E1-A767-918D36286800}D:\programme\jivex\jre\bin\jivex[dv]] => (Allow) D:\programme\jivex\jre\bin\jivex[dv]
FirewallRules: [UDP Query User{1EB438FF-B9B0-4565-BDBE-FDC6D31A94AE}D:\programme\jivex\jre\bin\jivex[dv]] => (Allow) D:\programme\jivex\jre\bin\jivex[dv]
FirewallRules: [{B874F25A-561B-488A-9E89-E1AFF78FD6D7}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [{22128676-84D0-43F8-971B-E12BE76FA677}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [TCP Query User{CF0DA9D0-AE77-4EE5-B5B4-6EC006C814B3}C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{BAAE6AF0-976F-45F7-8F2F-1A8ABC31B863}C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [{619B0AEA-8C09-4E21-824E-3847E4EBEF55}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7DA2C88B-7306-4A25-B97C-D66F3770A496}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{80C986D5-9AFF-4B41-A8E6-7526DBACC5A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3188D813-3E22-4977-AFBD-E880E342CB72}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{372FDE14-CBB0-4B27-B281-1B724B7EDFB7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5B43A85A-22CC-4BCF-8A2C-496ACE06C9E6}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{792FA980-4CAA-4A16-9CCC-6C02F1AFE0EC}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe
FirewallRules: [UDP Query User{3154798F-8B3A-40D8-8D1C-47DC4C3487F3}C:\program files\openvpn\bin\openvpn.exe] => (Allow) C:\program files\openvpn\bin\openvpn.exe
FirewallRules: [TCP Query User{2AC73C9D-AF43-485D-AC94-A04020603C72}D:\programme\jivex\jre\bin\jivex[dv]] => (Allow) D:\programme\jivex\jre\bin\jivex[dv]
FirewallRules: [UDP Query User{3E65D610-0CB6-44A2-A843-C143FDFF8203}D:\programme\jivex\jre\bin\jivex[dv]] => (Allow) D:\programme\jivex\jre\bin\jivex[dv]
FirewallRules: [{BC657296-8500-42EB-88B9-02C4BB968DC1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{13F5DD9D-D643-4BB2-B260-7A9DA0564203}] => (Allow) LPort=2869
FirewallRules: [{FB6CE38E-C9CD-495E-9AA6-166BC535F2D7}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{14947A10-F5A7-42D8-905B-82BDA301A1C3}C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Block) C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{F9CB451C-8E52-4B8D-ACBF-F98E938C0E23}C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Block) C:\users\usrname\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [{6A1171BC-613B-4645-8705-A61E682194BA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8DAE7A49-D28F-4691-A229-8F546D316BC0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{17F741B5-95F9-4EA1-8187-9A84F3C71654}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{DE683ADF-B8E1-444C-BCC3-D489659350B5}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{9768813D-13FF-464E-8886-40779D2D281D}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{366B6A72-7A80-4F73-A843-509F8BE4402D}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{B182A8C0-2D25-4F01-8141-024A5F2AB158}] => (Allow) E:\fsetup.exe
FirewallRules: [{DF5B27B6-575B-4D0A-B1DE-CE2097B0B3FE}] => (Allow) E:\fsetup.exe
FirewallRules: [{D1C4449E-F15A-4D65-B264-81C6225256BD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{16F7D064-840A-47F0-A059-7E251B730582}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{D5C690D7-D829-4951-992C-F5953AED2291}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{88A6370F-88E6-4153-8A47-DB609E9753BE}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{CF71E744-670C-4765-9359-A315EBED6CA1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C9116E27-EA72-4AE1-A691-772E727F0E76}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{D2540A4D-E962-40A8-9AAC-CEB5517CD9BE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4B273669-2193-4FC6-B12B-3C89FB05E5D0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{A77FA688-EAF5-4329-A57D-D1D46599ED06}C:\users\usrname\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usrname\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{1162F35B-8E1D-4D4B-AF12-E60CE2EE5882}C:\users\usrname\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\usrname\appdata\roaming\spotify\spotify.exe
FirewallRules: [{FB2CCDDF-77E4-4F24-96F9-68557D3FE614}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe
FirewallRules: [{EA4AD15F-CE35-4C8D-A0DF-2D38F496459A}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\RpcSandraSrv.exe
==================== Wiederherstellungspunkte =========================
14-11-2017 10:34:11 Installed Windows 7 USB/DVD Download Tool
15-11-2017 08:38:55 Windows Update
22-11-2017 18:54:35 Windows Update
30-11-2017 00:00:48 Windows Update
03-02-2018 12:38:30 No23 Recorder wird installiert
03-02-2018 13:10:23 Installiert Realtek High Definition Audio Driver
04-02-2018 15:32:01 SiSoftware Sandra Lite
04-02-2018 15:32:41 Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810
04-02-2018 15:32:50 Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325
04-02-2018 15:32:57 Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810
04-02-2018 15:33:10 Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (02/13/2018 08:52:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11174133
Error: (02/13/2018 08:52:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11174133
Error: (02/13/2018 08:52:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/13/2018 08:52:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11173135
Error: (02/13/2018 08:52:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11173135
Error: (02/13/2018 08:52:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/13/2018 05:45:56 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 998
Error: (02/13/2018 05:45:56 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 998
Systemfehler:
=============
Error: (02/15/2018 12:37:46 PM) (Source: Ntfs) (EventID: 137) (User: )
Description: Auf dem Volume "F:" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten.
Error: (02/15/2018 12:37:15 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
Error: (02/15/2018 12:37:15 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
Error: (02/15/2018 12:37:15 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
Error: (02/15/2018 12:37:15 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
Error: (02/15/2018 12:37:15 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
Error: (02/15/2018 12:37:14 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
Error: (02/15/2018 12:37:14 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "Intenso" den Befehl "chkdsk" aus.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-3612QM CPU @ 2.10GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 6114.36 MB
Verfügbarer physikalischer RAM: 3622.7 MB
Summe virtueller Speicher: 12226.9 MB
Verfügbarer virtueller Speicher: 9004 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:310.76 GB) (Free:212.11 GB) NTFS
Drive d: () (Fixed) (Total:619.87 GB) (Free:121.76 GB) NTFS
Drive l: (DERSTICK) (Removable) (Total:28.63 GB) (Free:11.25 GB) FAT32
\\?\Volume{0f50926e-2a48-11e4-bb2c-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: AC2223EC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=619.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=310.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 28.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
15.02.2018, 17:27
| #2 |
| | Laptop verdächtig langsam TDSS Killer
__________________Code:
ATTFilter 12:54:18.0126 0x1c8c TDSS rootkit removing tool 3.1.0.16 Jan 24 2018 17:27:43
12:54:21.0948 0x1c8c ============================================================
12:54:21.0948 0x1c8c Current date / time: 2018/02/15 12:54:21.0948
12:54:21.0948 0x1c8c SystemInfo:
12:54:21.0948 0x1c8c
12:54:21.0948 0x1c8c OS Version: 6.1.7601 ServicePack: 1.0
12:54:21.0948 0x1c8c Product type: Workstation
12:54:21.0948 0x1c8c ComputerName: USRNAME-PC
12:54:21.0948 0x1c8c UserName: usrname
12:54:21.0948 0x1c8c Windows directory: C:\Windows
12:54:21.0948 0x1c8c System windows directory: C:\Windows
12:54:21.0948 0x1c8c Running under WOW64
12:54:21.0948 0x1c8c Processor architecture: Intel x64
12:54:21.0948 0x1c8c Number of processors: 8
12:54:21.0948 0x1c8c Page size: 0x1000
12:54:21.0948 0x1c8c Boot type: Normal boot
12:54:21.0948 0x1c8c CodeIntegrityOptions = 0x00000001
12:54:21.0948 0x1c8c ============================================================
12:54:22.0010 0x1c8c KLMD registered as C:\Windows\system32\drivers\80051587.sys
12:54:22.0010 0x1c8c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23915, osProperties = 0x1
12:54:22.0088 0x1c8c System UUID: {AA0A70E0-6818-21D6-8788-8E10B2110A4E}
12:54:22.0182 0x1c8c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:54:22.0182 0x1c8c Drive \Device\Harddisk1\DR3 - Size: 0x728F64800 ( 28.64 Gb ), SectorSize: 0x200, Cylinders: 0xE9A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:54:22.0182 0x1c8c ============================================================
12:54:22.0182 0x1c8c \Device\Harddisk0\DR0:
12:54:22.0182 0x1c8c MBR partitions:
12:54:22.0182 0x1c8c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:54:22.0182 0x1c8c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4D7BC800
12:54:22.0182 0x1c8c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4D7F0800, BlocksNum 0x26D82C6A
12:54:22.0182 0x1c8c \Device\Harddisk1\DR3:
12:54:22.0182 0x1c8c MBR partitions:
12:54:22.0182 0x1c8c \Device\Harddisk1\DR3\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x3947B04
12:54:22.0182 0x1c8c ============================================================
12:54:22.0182 0x1c8c C: <-> \Device\Harddisk0\DR0\Partition3
12:54:22.0182 0x1c8c D: <-> \Device\Harddisk0\DR0\Partition2
12:54:22.0182 0x1c8c ============================================================
12:54:22.0182 0x1c8c Initialize success
12:54:22.0182 0x1c8c ============================================================
12:55:16.0754 0x00ac ============================================================
12:55:16.0754 0x00ac Scan started
12:55:16.0754 0x00ac Mode: Manual; SigCheck; TDLFS;
12:55:16.0754 0x00ac ============================================================
12:55:16.0754 0x00ac KSN ping started
12:55:16.0957 0x00ac KSN ping finished: true
12:55:17.0144 0x00ac ================ Scan system memory ========================
12:55:17.0144 0x00ac System memory - ok
12:55:17.0144 0x00ac ================ Scan services =============================
12:55:17.0191 0x00ac [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:55:17.0207 0x00ac 1394ohci - ok
12:55:17.0222 0x00ac [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:55:17.0222 0x00ac ACPI - ok
12:55:17.0238 0x00ac [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:55:17.0238 0x00ac AcpiPmi - ok
12:55:17.0269 0x00ac [ C52B8980692CACB057742C450D734149, BB2D7034592B6EBBECE5A73FB625E1352FD59972620523022CABA68EE00B7B98 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:55:17.0285 0x00ac AdobeFlashPlayerUpdateSvc - ok
12:55:17.0300 0x00ac [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:55:17.0316 0x00ac adp94xx - ok
12:55:17.0316 0x00ac [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:55:17.0331 0x00ac adpahci - ok
12:55:17.0331 0x00ac [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:55:17.0347 0x00ac adpu320 - ok
12:55:17.0347 0x00ac [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:55:17.0363 0x00ac AeLookupSvc - ok
12:55:17.0378 0x00ac [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
12:55:17.0394 0x00ac AFD - ok
12:55:17.0394 0x00ac [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
12:55:17.0409 0x00ac agp440 - ok
12:55:17.0409 0x00ac [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
12:55:17.0425 0x00ac ALG - ok
12:55:17.0425 0x00ac [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
12:55:17.0441 0x00ac aliide - ok
12:55:17.0441 0x00ac [ 3BCC907366522A9E051B517678C2D4F9, 0E72C90AE1795F44C6EAE92944A474148332BD3CEF946E6E34F69101334C33D7 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:55:17.0456 0x00ac AMD External Events Utility - ok
12:55:17.0456 0x00ac [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
12:55:17.0472 0x00ac amdide - ok
12:55:17.0472 0x00ac [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:55:17.0487 0x00ac AmdK8 - ok
12:55:17.0753 0x00ac [ 616B6715B90445402138389E6C024203, 2C47193F68D39A8C689CBCB0B882EDC06A4DF88B9310CD677725C6CB3F8B6361 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
12:55:17.0940 0x00ac amdkmdag - ok
12:55:17.0955 0x00ac [ EBFD5E4723D51B69C9BD907168C6F5C1, 5AB4FDD001E7A7A3522FE669DD632FB67B520AF73F8ADD0790D9C64B5CCB361B ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
12:55:17.0971 0x00ac amdkmdap - ok
12:55:17.0971 0x00ac [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:55:17.0987 0x00ac AmdPPM - ok
12:55:17.0987 0x00ac [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:55:18.0002 0x00ac amdsata - ok
12:55:18.0002 0x00ac [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:55:18.0018 0x00ac amdsbs - ok
12:55:18.0018 0x00ac [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:55:18.0033 0x00ac amdxata - ok
12:55:18.0033 0x00ac [ 449D90F1FB6402773C2F1ECCEAE15F74, D432D3F9D9AD14C70324B13C0A82A5BADC0EA4927B2E49B8BC31A5DEE6440374 ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
12:55:18.0049 0x00ac AMPPAL - ok
12:55:18.0049 0x00ac [ 449D90F1FB6402773C2F1ECCEAE15F74, D432D3F9D9AD14C70324B13C0A82A5BADC0EA4927B2E49B8BC31A5DEE6440374 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
12:55:18.0065 0x00ac AMPPALP - ok
12:55:18.0080 0x00ac [ AB6E5B9333101E414D8F04BC570064F1, 4BB20C0ECE2C655B8E3A40E8C69A7B6974B73D3585AEDF47A0C52582D17BDAF6 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
12:55:18.0111 0x00ac AMPPALR3 - ok
12:55:18.0143 0x00ac [ 53BDBE3096E5140485EE734EA1A8B269, 0493E158FE864FDB2DA5F74A0D51D3CE041566FF73A4B07E96D0EF7969E9F9ED ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
12:55:18.0174 0x00ac AntiVirMailService - ok
12:55:18.0189 0x00ac [ 5CBC24E7140EA92C78332A20A126F3B3, A905DCB97FE5634ED1AB71D605355CB034AD1C572A80E318237482883A2657F6 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
12:55:18.0205 0x00ac AntiVirSchedulerService - ok
12:55:18.0221 0x00ac [ 5CBC24E7140EA92C78332A20A126F3B3, A905DCB97FE5634ED1AB71D605355CB034AD1C572A80E318237482883A2657F6 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
12:55:18.0236 0x00ac AntiVirService - ok
12:55:18.0252 0x00ac [ 991F7A9DB47A0CAF2AA9F62900EF4E3E, A4563B412126110F27E92CDEE93E036F991D41B80739255125AE09008FAD318E ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
12:55:18.0299 0x00ac AntiVirWebService - ok
12:55:18.0299 0x00ac [ C16B5B379A2A79702CC5FF923EAAE3FD, FD6A1E3C46282CF77AFA9FB4B4ACE2DB6295DFB0C69EA07BE7160538041CDB2F ] AppID C:\Windows\system32\drivers\appid.sys
12:55:18.0314 0x00ac AppID - ok
12:55:18.0314 0x00ac [ 5152D6B29C61EF59537DBDA92BFE2978, 6D426A0FEE016A8899ADE864DD84BE019C5B5DB7E1DB295ED720239877FCB3EF ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:55:18.0314 0x00ac AppIDSvc - ok
12:55:18.0330 0x00ac [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll
12:55:18.0330 0x00ac Appinfo - ok
12:55:18.0345 0x00ac [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:55:18.0345 0x00ac Apple Mobile Device Service - ok
12:55:18.0361 0x00ac [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
12:55:18.0361 0x00ac arc - ok
12:55:18.0361 0x00ac [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:55:18.0377 0x00ac arcsas - ok
12:55:18.0392 0x00ac [ 8637F3119057178364D200F2462E625C, 40CAE47AA6C6B23FEB95961FD06BB3EB075CA63BB91B54CB26215A368371B343 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:55:18.0392 0x00ac aspnet_state - ok
12:55:18.0408 0x00ac [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:55:18.0423 0x00ac AsyncMac - ok
12:55:18.0423 0x00ac [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
12:55:18.0439 0x00ac atapi - ok
12:55:18.0439 0x00ac AthBTPort - ok
12:55:18.0501 0x00ac [ 237EE0B7A65D55E08EB7530F77423480, FE54046F56B0F4BA8BD53B3ECAB570EBE0E2128D0DB3B4EFAE9E4221565C86F6 ] athr C:\Windows\system32\DRIVERS\athrx.sys
12:55:18.0548 0x00ac athr - ok
12:55:18.0564 0x00ac [ 2B3B05C0A7768BF033217EB8F33F9C35, F7B13158440CAE46EC93F29BA47A960194A5A2AD71B5BF628AF4661CEE096402 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:55:18.0564 0x00ac AtiHDAudioService - ok
12:55:18.0579 0x00ac [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:55:18.0611 0x00ac AudioEndpointBuilder - ok
12:55:18.0626 0x00ac [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:55:18.0642 0x00ac AudioSrv - ok
12:55:18.0642 0x00ac [ 6C94D74033458BC2BDF11EED4E78F027, E52134268B2CED17801EE1D7ABA713CECE4CD960AF24749B74CD84B707CB344B ] avdevprot C:\Windows\system32\DRIVERS\avdevprot.sys
12:55:18.0657 0x00ac avdevprot - ok
12:55:18.0657 0x00ac [ 6A03C41E3011F42EB6E95BD0E257E575, 80EBC26D1284A3EBB2BC60D1AC8847585D5B2FF4A383FD281C949A4704DD7EAA ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
12:55:18.0673 0x00ac avgntflt - ok
12:55:18.0673 0x00ac [ 65DE4D2EE3532F3E54702998EA986B71, 64F614444B1509A87FA4D2861DD98F2235E0063ADC503931D2018F4D09A21FEE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
12:55:18.0689 0x00ac avipbb - ok
12:55:18.0689 0x00ac [ 6AA9A66AC30758F077ED146637392907, 10D33BDEDF5665A6D5A442E6CFD4DB8A29EA6D9847A38D5334697659E5D53FAD ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
12:55:18.0720 0x00ac Avira.ServiceHost - ok
12:55:18.0720 0x00ac [ 3E0AB8C453FA433B15A30BAA8BD4B275, 30453E68013DF1A3CD9197F28E8591A67BFA6CA784129666A6F7DF9D2E12440B ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
12:55:18.0720 0x00ac avkmgr - ok
12:55:18.0735 0x00ac [ 19B6F9073BD606B7ABEC03A0328FDC1B, 639E6A05BB0E52CDBDF887A3FA209B32F84253D274F2A9A89E1D96F1BE4C8143 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
12:55:18.0735 0x00ac avnetflt - ok
12:55:18.0751 0x00ac [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:55:18.0751 0x00ac AxInstSV - ok
12:55:18.0767 0x00ac [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:55:18.0782 0x00ac b06bdrv - ok
12:55:18.0798 0x00ac [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:55:18.0813 0x00ac b57nd60a - ok
12:55:18.0813 0x00ac [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
12:55:18.0829 0x00ac BDESVC - ok
12:55:18.0829 0x00ac [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
12:55:18.0845 0x00ac Beep - ok
12:55:18.0860 0x00ac [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
12:55:18.0891 0x00ac BFE - ok
12:55:18.0907 0x00ac [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
12:55:18.0938 0x00ac BITS - ok
12:55:18.0938 0x00ac [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:55:18.0954 0x00ac blbdrive - ok
12:55:18.0985 0x00ac [ A52EA1D8C2900055323C93DDB252A3DA, 70C30AACE3948DFD2E4C52818F93F03AF32430B43229F613FEE3C4CD4FA1EFE6 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
12:55:19.0001 0x00ac Bluetooth Device Monitor - ok
12:55:19.0032 0x00ac [ 091210450CA7CED08F360D9D7FEC5D11, 52298A6FE7DCF5EA484E6A1CBE48E2B1106D006E18F2278CB38AAAB10BB905BD ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
12:55:19.0047 0x00ac Bluetooth Media Service - ok
12:55:19.0079 0x00ac [ 392450754E17FF778CBC5B9D20583AD1, 4E2CC0D5D41303202EE7655FB1F779C41808A714486BAFF22A321A5BAF9FD0F6 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
12:55:19.0094 0x00ac Bluetooth OBEX Service - ok
12:55:19.0110 0x00ac [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:55:19.0125 0x00ac Bonjour Service - ok
12:55:19.0125 0x00ac [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:55:19.0141 0x00ac bowser - ok
12:55:19.0141 0x00ac [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:55:19.0157 0x00ac BrFiltLo - ok
12:55:19.0157 0x00ac [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:55:19.0172 0x00ac BrFiltUp - ok
12:55:19.0172 0x00ac [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
12:55:19.0188 0x00ac Browser - ok
12:55:19.0188 0x00ac [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:55:19.0203 0x00ac Brserid - ok
12:55:19.0203 0x00ac [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:55:19.0219 0x00ac BrSerWdm - ok
12:55:19.0219 0x00ac [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:55:19.0235 0x00ac BrUsbMdm - ok
12:55:19.0235 0x00ac [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:55:19.0250 0x00ac BrUsbSer - ok
12:55:19.0250 0x00ac BTATH_A2DP - ok
12:55:19.0250 0x00ac btath_avdt - ok
12:55:19.0250 0x00ac BTATH_BUS - ok
12:55:19.0266 0x00ac BTATH_HCRP - ok
12:55:19.0266 0x00ac BTATH_LWFLT - ok
12:55:19.0266 0x00ac BTATH_RCP - ok
12:55:19.0266 0x00ac BTATH_VDP - ok
12:55:19.0281 0x00ac BtFilter - ok
12:55:19.0281 0x00ac [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
12:55:19.0297 0x00ac BthEnum - ok
12:55:19.0297 0x00ac [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:55:19.0313 0x00ac BTHMODEM - ok
12:55:19.0313 0x00ac [ 5A8951D195AFEF979C4AB02A129EBC37, 48FD4A921E51B6DD306A1248EB9A1A6AEC5F59E49528423BF2F40600B3AF1D08 ] BthPan C:\Windows\system32\drivers\bthpan.sys
12:55:19.0313 0x00ac BthPan - ok
12:55:19.0328 0x00ac [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
12:55:19.0344 0x00ac BTHPORT - ok
12:55:19.0359 0x00ac [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
12:55:19.0375 0x00ac bthserv - ok
12:55:19.0391 0x00ac [ 588762F716C2B7A2054AFBC3D58E5C21, CD44B0200B2E0A81073563BE84ECF9C092F4B5E9DC166A8F0690D6272913CCB7 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
12:55:19.0391 0x00ac BTHSSecurityMgr - ok
12:55:19.0391 0x00ac [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
12:55:19.0406 0x00ac BTHUSB - ok
12:55:19.0406 0x00ac [ 988CC6CC49303665D3B2435C51505C3F, 5217A7A1BAD77EBF4E5D68D191FCFD7CE4FB96ABB91638383A077BE9CE794EE3 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
12:55:19.0422 0x00ac btmaux - ok
12:55:19.0422 0x00ac [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:55:19.0453 0x00ac cdfs - ok
12:55:19.0453 0x00ac [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
12:55:19.0469 0x00ac cdrom - ok
12:55:19.0469 0x00ac [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
12:55:19.0500 0x00ac CertPropSvc - ok
12:55:19.0500 0x00ac [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:55:19.0515 0x00ac circlass - ok
12:55:19.0515 0x00ac [ 3963FEC1892368DD500E6ED1F5C286CE, A04689CB07AF1C1B4B1032B0ACAD88DA3EB03D89A575C59FE602A65E8C246138 ] CLFS C:\Windows\system32\CLFS.sys
12:55:19.0531 0x00ac CLFS - ok
12:55:19.0547 0x00ac [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:55:19.0547 0x00ac clr_optimization_v2.0.50727_32 - ok
12:55:19.0562 0x00ac [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:55:19.0562 0x00ac clr_optimization_v2.0.50727_64 - ok
12:55:19.0578 0x00ac [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:55:19.0593 0x00ac clr_optimization_v4.0.30319_32 - ok
12:55:19.0593 0x00ac [ 7C7502CD2A2CFAB399D0D8DA95DB03E7, 4AE53B468CF597FCFD912A6EEE27E87EE4D9BC73F2A794FB5DF5DA46C1DD1289 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:55:19.0609 0x00ac clr_optimization_v4.0.30319_64 - ok
12:55:19.0609 0x00ac [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:55:19.0625 0x00ac CmBatt - ok
12:55:19.0625 0x00ac [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:55:19.0640 0x00ac cmdide - ok
12:55:19.0640 0x00ac [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
12:55:19.0671 0x00ac CNG - ok
12:55:19.0671 0x00ac [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:55:19.0671 0x00ac Compbatt - ok
12:55:19.0687 0x00ac [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:55:19.0687 0x00ac CompositeBus - ok
12:55:19.0687 0x00ac COMSysApp - ok
12:55:19.0703 0x00ac [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:55:19.0703 0x00ac crcdisk - ok
12:55:19.0718 0x00ac [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:55:19.0718 0x00ac CryptSvc - ok
12:55:19.0734 0x00ac [ 461A0688205D088D2A2EBEEDEE81622E, 3CE54EFD190F666937ADF7088304FB9D41FAA4FF24EE59D067085441257C46D9 ] DCDhcpService C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe
12:55:19.0734 0x00ac DCDhcpService - detected UnsignedFile.Multi.Generic ( 1 )
12:55:19.0812 0x00ac Detect skipped due to KSN trusted
12:55:19.0812 0x00ac DCDhcpService - ok
12:55:19.0843 0x00ac [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:55:19.0874 0x00ac DcomLaunch - ok
12:55:19.0890 0x00ac [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
12:55:19.0905 0x00ac defragsvc - ok
12:55:19.0921 0x00ac [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:55:19.0921 0x00ac DfsC - ok
12:55:19.0937 0x00ac [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:55:19.0952 0x00ac Dhcp - ok
12:55:19.0983 0x00ac [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
12:55:20.0015 0x00ac DiagTrack - ok
12:55:20.0015 0x00ac [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
12:55:20.0030 0x00ac discache - ok
12:55:20.0046 0x00ac [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
12:55:20.0046 0x00ac Disk - ok
12:55:20.0061 0x00ac [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:55:20.0061 0x00ac Dnscache - ok
12:55:20.0077 0x00ac [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
12:55:20.0108 0x00ac dot3svc - ok
12:55:20.0108 0x00ac [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
12:55:20.0139 0x00ac DPS - ok
12:55:20.0139 0x00ac [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:55:20.0139 0x00ac drmkaud - ok
12:55:20.0155 0x00ac [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:55:20.0186 0x00ac DXGKrnl - ok
12:55:20.0186 0x00ac [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
12:55:20.0217 0x00ac EapHost - ok
12:55:20.0280 0x00ac [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:55:20.0342 0x00ac ebdrv - ok
12:55:20.0342 0x00ac [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] EFS C:\Windows\System32\lsass.exe
12:55:20.0358 0x00ac EFS - ok
12:55:20.0373 0x00ac [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:55:20.0389 0x00ac ehRecvr - ok
12:55:20.0405 0x00ac [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
12:55:20.0405 0x00ac ehSched - ok
12:55:20.0405 0x00ac [ 4778EEECB75C6FB419745BEED3530B9D, 8683639FF5CC4DB9955C61C28922637D10BB9CDAA20AD260292F8E90DE198205 ] ElRawDisk C:\Windows\system32\drivers\rsdrvx64.sys
12:55:20.0420 0x00ac ElRawDisk - ok
12:55:20.0436 0x00ac [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:55:20.0451 0x00ac elxstor - ok
12:55:20.0451 0x00ac [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:55:20.0467 0x00ac ErrDev - ok
12:55:20.0467 0x00ac [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
12:55:20.0498 0x00ac EventSystem - ok
12:55:20.0514 0x00ac [ 64D25284A4E9D11CA0722AF3F30FD970, C7C40CA8AC444F7B0F88086396C17316348480EBA09109222897B5A42AD655DF ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
12:55:20.0529 0x00ac EvtEng - ok
12:55:20.0545 0x00ac [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat C:\Windows\system32\drivers\exfat.sys
12:55:20.0545 0x00ac exfat - ok
12:55:20.0561 0x00ac [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:55:20.0576 0x00ac fastfat - ok
12:55:20.0576 0x00ac [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
12:55:20.0607 0x00ac Fax - ok
12:55:20.0607 0x00ac [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:55:20.0623 0x00ac fdc - ok
12:55:20.0623 0x00ac [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
12:55:20.0639 0x00ac fdPHost - ok
12:55:20.0639 0x00ac [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
12:55:20.0670 0x00ac FDResPub - ok
12:55:20.0670 0x00ac [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:55:20.0685 0x00ac FileInfo - ok
12:55:20.0685 0x00ac [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:55:20.0717 0x00ac Filetrace - ok
12:55:20.0717 0x00ac [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:55:20.0717 0x00ac flpydisk - ok
12:55:20.0732 0x00ac [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:55:20.0748 0x00ac FltMgr - ok
12:55:20.0763 0x00ac [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache C:\Windows\system32\FntCache.dll
12:55:20.0795 0x00ac FontCache - ok
12:55:20.0795 0x00ac [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:55:20.0810 0x00ac FontCache3.0.0.0 - ok
12:55:20.0810 0x00ac [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:55:20.0810 0x00ac FsDepends - ok
12:55:20.0810 0x00ac [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:55:20.0826 0x00ac Fs_Rec - ok
12:55:20.0826 0x00ac [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:55:20.0841 0x00ac fvevol - ok
12:55:20.0841 0x00ac [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:55:20.0857 0x00ac gagp30kx - ok
12:55:20.0857 0x00ac [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:55:20.0873 0x00ac GEARAspiWDM - ok
12:55:20.0888 0x00ac [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
12:55:20.0904 0x00ac gpsvc - ok
12:55:20.0919 0x00ac [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:55:20.0919 0x00ac hcw85cir - ok
12:55:20.0935 0x00ac [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:55:20.0951 0x00ac HdAudAddService - ok
12:55:20.0951 0x00ac [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:55:20.0966 0x00ac HDAudBus - ok
12:55:20.0966 0x00ac [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:55:20.0982 0x00ac HidBatt - ok
12:55:20.0982 0x00ac [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:55:20.0997 0x00ac HidBth - ok
12:55:20.0997 0x00ac [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:55:21.0013 0x00ac HidIr - ok
12:55:21.0013 0x00ac [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
12:55:21.0029 0x00ac hidserv - ok
12:55:21.0044 0x00ac [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
12:55:21.0044 0x00ac HidUsb - ok
12:55:21.0044 0x00ac [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:55:21.0075 0x00ac hkmsvc - ok
12:55:21.0075 0x00ac [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:55:21.0091 0x00ac HomeGroupListener - ok
12:55:21.0107 0x00ac [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:55:21.0122 0x00ac HomeGroupProvider - ok
12:55:21.0122 0x00ac [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:55:21.0122 0x00ac HpSAMD - ok
12:55:21.0138 0x00ac [ CF5C9BD985120781200D35FD445D0BD5, 91B37F595A196542458CBBCDAD80779721D228A7030A34E55995DDBB06649248 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:55:21.0169 0x00ac HTTP - ok
12:55:21.0169 0x00ac [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:55:21.0185 0x00ac hwpolicy - ok
12:55:21.0185 0x00ac [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:55:21.0200 0x00ac i8042prt - ok
12:55:21.0200 0x00ac [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
12:55:21.0216 0x00ac iaStor - ok
12:55:21.0216 0x00ac [ 7D4B9A48430ED57ACA6373B71D5904CA, 6ED72DAA7A4951142F036364E8F237E74246EF3E9EA089448DEF15380DAB0DB3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
12:55:21.0231 0x00ac IAStorDataMgrSvc - ok
12:55:21.0247 0x00ac [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:55:21.0247 0x00ac iaStorV - ok
12:55:21.0309 0x00ac [ 3CC7B3BB1A9EA201A040883EDFAA67A0, F543A779BA8CBFD5E0B939844B9CB47A2C05A400C693635F520438C18FFDFAF1 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
12:55:21.0356 0x00ac IconMan_R - ok
12:55:21.0387 0x00ac [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:55:21.0403 0x00ac idsvc - ok
12:55:21.0403 0x00ac IEEtwCollectorService - ok
12:55:21.0403 0x00ac [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:55:21.0419 0x00ac iirsp - ok
12:55:21.0434 0x00ac [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
12:55:21.0465 0x00ac IKEEXT - ok
12:55:21.0543 0x00ac [ 6A0E2A1E2A1E1DBAA17EE02F3A7EF0A6, 5CB548E2B1A0E5EED07D569D279E2403B0D6A39C089DC95FD0473E95486D0753 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:55:21.0621 0x00ac IntcAzAudAddService - ok
12:55:21.0653 0x00ac [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:55:21.0668 0x00ac Intel(R) Capability Licensing Service Interface - ok
12:55:21.0668 0x00ac [ 9571D8BDB56EBC52280E8020574508E6, 0BF66B718E8261D3964CE0B24785F265DD31D4002CDA6F8AE24DDB4D66BF9DD0 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
12:55:21.0684 0x00ac Intel(R) ME Service - ok
12:55:21.0684 0x00ac [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
12:55:21.0684 0x00ac intelide - ok
12:55:21.0699 0x00ac [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:55:21.0699 0x00ac intelppm - ok
12:55:21.0699 0x00ac [ 692BCDCEAB912922A6BB015F45ABE862, 53FE66EB7CDC497EE5BB3FBF6F67E50BF8468B7EB37326A73825845E96D4AAE2 ] InterBaseGuardian d:\Programme\Borland\InterBase\bin\ibguard.exe
12:55:21.0715 0x00ac InterBaseGuardian - detected UnsignedFile.Multi.Generic ( 1 )
12:55:21.0793 0x00ac Detect skipped due to KSN trusted
12:55:21.0793 0x00ac InterBaseGuardian - ok
12:55:21.0855 0x00ac [ 1DF5DB8996EC9D5FFCE0A60135C33F8F, 8731A7027CFE4ECF4E403A66DB88796FA81089B2FE46BAF60B0BF546CEE23541 ] InterBaseServer d:\Programme\Borland\InterBase\bin\ibserver.exe
12:55:21.0887 0x00ac InterBaseServer - detected UnsignedFile.Multi.Generic ( 1 )
12:55:22.0043 0x00ac Detect skipped due to KSN trusted
12:55:22.0043 0x00ac InterBaseServer - ok
12:55:22.0058 0x00ac [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:55:22.0089 0x00ac IPBusEnum - ok
12:55:22.0089 0x00ac [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:55:22.0121 0x00ac IpFilterDriver - ok
12:55:22.0136 0x00ac [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:55:22.0152 0x00ac iphlpsvc - ok
12:55:22.0167 0x00ac [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:55:22.0167 0x00ac IPMIDRV - ok
12:55:22.0183 0x00ac [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:55:22.0199 0x00ac IPNAT - ok
12:55:22.0214 0x00ac [ A4857E8B1DEB9740FB5ADEDF05ED69E0, 24FC7A188D32B08CE4F10EEEF17F37C45DB5433158A7A97A07D43F6BEE58DFFC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:55:22.0230 0x00ac iPod Service - ok
12:55:22.0245 0x00ac [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:55:22.0245 0x00ac IRENUM - ok
12:55:22.0261 0x00ac [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:55:22.0261 0x00ac isapnp - ok
12:55:22.0277 0x00ac [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:55:22.0277 0x00ac iScsiPrt - ok
12:55:22.0277 0x00ac [ B2381712638B0B714D0EEAB9A1F7C640, 113BCA8868057156EFDC7C079171308C1EBA4F979C85EB1265F42F95A499B086 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
12:55:22.0292 0x00ac iusb3hcs - ok
12:55:22.0292 0x00ac [ FD2C6457232E95C014DAD21DEBC64867, 4CC4F488A2555761208D8401265788281B6EC76A8F16C8E115778E571450B90B ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
12:55:22.0308 0x00ac iusb3hub - ok
12:55:22.0323 0x00ac [ F6A2B5D030BE7EDF8ADC12C9A40825A8, 03EFAFD6B7801D83D7689435DED8DC321D153AAC4FD69D46ED8C9D7E7F56B44A ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
12:55:22.0355 0x00ac iusb3xhc - ok
12:55:22.0355 0x00ac [ DBD76BC1D498FE368F2C8CB76C3E00A4, CDFB082B57807CE89509A16D1C8A5BAEEC026EDD7068F5E359AA50557D2525DC ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:55:22.0355 0x00ac jhi_service - ok
12:55:22.0370 0x00ac [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
12:55:22.0370 0x00ac kbdclass - ok
12:55:22.0370 0x00ac [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
12:55:22.0386 0x00ac kbdhid - ok
12:55:22.0386 0x00ac [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] KeyIso C:\Windows\system32\lsass.exe
12:55:22.0401 0x00ac KeyIso - ok
12:55:22.0401 0x00ac [ DFE85B031220F8E0271716BBB3C4C8FF, 531AB0851AE2F2B25D751605529C483B4734E5D26F94F56DEC0191730DD6A9A4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:55:22.0417 0x00ac KSecDD - ok
12:55:22.0417 0x00ac [ 70D7302DD70B979637179BFD8295C924, 7A3498C8A90AC5D7A070E9BCAF1BC0D16F478A7160A9333C58247034C5B3B59F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:55:22.0417 0x00ac KSecPkg - ok
12:55:22.0433 0x00ac [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:55:22.0448 0x00ac ksthunk - ok
12:55:22.0464 0x00ac [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
12:55:22.0495 0x00ac KtmRm - ok
12:55:22.0495 0x00ac [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:55:22.0526 0x00ac LanmanServer - ok
12:55:22.0526 0x00ac [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:55:22.0557 0x00ac LanmanWorkstation - ok
12:55:22.0557 0x00ac [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:55:22.0589 0x00ac lltdio - ok
12:55:22.0589 0x00ac [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:55:22.0620 0x00ac lltdsvc - ok
12:55:22.0620 0x00ac [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:55:22.0651 0x00ac lmhosts - ok
12:55:22.0651 0x00ac [ 86E4CC39C953D11EF57CF54C4DC78238, 076973CA22E8BA94877241EC39D97612C32F3E744E026FA0E518C4DDE8277A55 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:55:22.0667 0x00ac LMS - ok
12:55:22.0667 0x00ac [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:55:22.0682 0x00ac LSI_FC - ok
12:55:22.0682 0x00ac [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:55:22.0698 0x00ac LSI_SAS - ok
12:55:22.0698 0x00ac [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:55:22.0698 0x00ac LSI_SAS2 - ok
12:55:22.0713 0x00ac [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:55:22.0713 0x00ac LSI_SCSI - ok
12:55:22.0729 0x00ac [ 5416CEB2916BBE635288C4D1075B045E, BEFF99052206C0D774CFFF14AC3305C397726B289B17666C2AD2706C261F2FF0 ] luafv C:\Windows\system32\drivers\luafv.sys
12:55:22.0729 0x00ac luafv - ok
12:55:22.0745 0x00ac [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:55:22.0745 0x00ac Mcx2Svc - ok
12:55:22.0745 0x00ac [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:55:22.0760 0x00ac megasas - ok
12:55:22.0760 0x00ac [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:55:22.0776 0x00ac MegaSR - ok
12:55:22.0776 0x00ac [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:55:22.0791 0x00ac MEIx64 - ok
12:55:22.0791 0x00ac Microsoft SharePoint Workspace Audit Service - ok
12:55:22.0791 0x00ac [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
12:55:22.0823 0x00ac MMCSS - ok
12:55:22.0823 0x00ac [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
12:55:22.0854 0x00ac Modem - ok
12:55:22.0854 0x00ac [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:55:22.0869 0x00ac monitor - ok
12:55:22.0869 0x00ac [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
12:55:22.0869 0x00ac mouclass - ok
12:55:22.0885 0x00ac [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:55:22.0885 0x00ac mouhid - ok
12:55:22.0885 0x00ac [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:55:22.0901 0x00ac mountmgr - ok
12:55:22.0901 0x00ac [ 5FD8FEB002DCA919BA18F51C267BFFEB, E6F6F1A1C5C0299B9386AC8A97D4360936CBFC664B99452EE78AACA163673123 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:55:22.0916 0x00ac MozillaMaintenance - ok
12:55:22.0916 0x00ac [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
12:55:22.0932 0x00ac mpio - ok
12:55:22.0932 0x00ac [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:55:22.0963 0x00ac mpsdrv - ok
12:55:22.0979 0x00ac [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:55:23.0010 0x00ac MpsSvc - ok
12:55:23.0025 0x00ac [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:55:23.0025 0x00ac MRxDAV - ok
12:55:23.0041 0x00ac [ 767C6DF04C5758B9F0790D400541B44F, BFC38D7BCF19F7246BCAD3E04273A403F6B973432EE0EF6E25B16BA3826A21B7 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:55:23.0057 0x00ac mrxsmb - ok
12:55:23.0057 0x00ac [ BD55F604FFABC911F8E5500186AE70E5, 3719EDB070E6FFE9781337A05CA0309C3CD5CD38A292DF091E05C9BA3D5A479F ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:55:23.0072 0x00ac mrxsmb10 - ok
12:55:23.0072 0x00ac [ 92EECFB046D4706A4B8D699A4069B6EC, 3B3E232DABA913A500CE55AD8600D8DD8F28E32B0276B9B6C8FD6239688833A4 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:55:23.0088 0x00ac mrxsmb20 - ok
12:55:23.0088 0x00ac [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
12:55:23.0103 0x00ac msahci - ok
12:55:23.0103 0x00ac [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:55:23.0119 0x00ac msdsm - ok
12:55:23.0119 0x00ac [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
12:55:23.0135 0x00ac MSDTC - ok
12:55:23.0135 0x00ac [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:55:23.0166 0x00ac Msfs - ok
12:55:23.0166 0x00ac [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:55:23.0181 0x00ac mshidkmdf - ok
12:55:23.0197 0x00ac [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:55:23.0197 0x00ac msisadrv - ok
12:55:23.0213 0x00ac [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:55:23.0228 0x00ac MSiSCSI - ok
12:55:23.0228 0x00ac msiserver - ok
12:55:23.0228 0x00ac [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:55:23.0259 0x00ac MSKSSRV - ok
12:55:23.0259 0x00ac [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:55:23.0291 0x00ac MSPCLOCK - ok
12:55:23.0291 0x00ac [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:55:23.0306 0x00ac MSPQM - ok
12:55:23.0322 0x00ac [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:55:23.0337 0x00ac MsRPC - ok
12:55:23.0337 0x00ac [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:55:23.0353 0x00ac mssmbios - ok
12:55:23.0353 0x00ac [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:55:23.0369 0x00ac MSTEE - ok
12:55:23.0369 0x00ac [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:55:23.0384 0x00ac MTConfig - ok
12:55:23.0384 0x00ac [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
12:55:23.0400 0x00ac Mup - ok
12:55:23.0400 0x00ac [ E3B58E3011B207C5289D11173B30E298, 68BDF7DE4FD5E38D33DBAD2A2E05E32BABA8BBD85DBC4364AF7CD62C54C6B539 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
12:55:23.0415 0x00ac MyWiFiDHCPDNS - ok
12:55:23.0431 0x00ac [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
12:55:23.0462 0x00ac napagent - ok
12:55:23.0462 0x00ac [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:55:23.0478 0x00ac NativeWifiP - ok
12:55:23.0493 0x00ac [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:55:23.0525 0x00ac NDIS - ok
12:55:23.0525 0x00ac [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:55:23.0556 0x00ac NdisCap - ok
12:55:23.0556 0x00ac [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:55:23.0571 0x00ac NdisTapi - ok
12:55:23.0587 0x00ac [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:55:23.0603 0x00ac Ndisuio - ok
12:55:23.0618 0x00ac [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:55:23.0634 0x00ac NdisWan - ok
12:55:23.0649 0x00ac [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:55:23.0665 0x00ac NDProxy - ok
12:55:23.0665 0x00ac [ 96B4C0CE935F934C86662820294F7533, 118987F8A2EC912E1FF9060E9EF512C571343E66D356B09622F60044142345FC ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
12:55:23.0681 0x00ac Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
12:55:23.0759 0x00ac Detect skipped due to KSN trusted
12:55:23.0759 0x00ac Net Driver HPZ12 - ok
12:55:23.0759 0x00ac [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:55:23.0821 0x00ac NetBIOS - ok
12:55:23.0837 0x00ac [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:55:23.0868 0x00ac NetBT - ok
12:55:23.0868 0x00ac [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] Netlogon C:\Windows\system32\lsass.exe
12:55:23.0883 0x00ac Netlogon - ok
12:55:23.0883 0x00ac [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
12:55:23.0915 0x00ac Netman - ok
12:55:23.0915 0x00ac [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:23.0930 0x00ac NetMsmqActivator - ok
12:55:23.0930 0x00ac [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:23.0946 0x00ac NetPipeActivator - ok
12:55:23.0961 0x00ac [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
12:55:23.0993 0x00ac netprofm - ok
12:55:23.0993 0x00ac [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:24.0008 0x00ac NetTcpActivator - ok
12:55:24.0008 0x00ac [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:55:24.0008 0x00ac NetTcpPortSharing - ok
12:55:24.0024 0x00ac [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:55:24.0024 0x00ac nfrd960 - ok
12:55:24.0039 0x00ac [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
12:55:24.0055 0x00ac NlaSvc - ok
12:55:24.0055 0x00ac [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:55:24.0086 0x00ac Npfs - ok
12:55:24.0086 0x00ac [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\Windows\system32\nsisvc.dll
12:55:24.0086 0x00ac nsi - ok
12:55:24.0102 0x00ac [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:55:24.0102 0x00ac nsiproxy - ok
12:55:24.0133 0x00ac [ 1065D9AFE491706EB00AD3CBB76C9E54, 7014029663FC61932EACC07682A66EE5483F11968EF58DE9766A9D77238C6812 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:55:24.0180 0x00ac Ntfs - ok
12:55:24.0180 0x00ac [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
12:55:24.0195 0x00ac Null - ok
12:55:24.0211 0x00ac [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:55:24.0211 0x00ac nvraid - ok
12:55:24.0227 0x00ac [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:55:24.0227 0x00ac nvstor - ok
12:55:24.0242 0x00ac [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:55:24.0242 0x00ac nv_agp - ok
12:55:24.0258 0x00ac [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:55:24.0258 0x00ac ohci1394 - ok
12:55:24.0258 0x00ac [ 4628C852B721472918C0F07C954AD11D, C3970EC979CCBDB03D38C1DF606FC3437A85CEA2F3B56A2F03C32FDE4DFE9046 ] OpenVPNService C:\Program Files\OpenVPN\bin\openvpnserv2.exe
12:55:24.0273 0x00ac OpenVPNService - detected UnsignedFile.Multi.Generic ( 1 )
12:55:24.0336 0x00ac Detect skipped due to KSN trusted
12:55:24.0336 0x00ac OpenVPNService - ok
12:55:24.0336 0x00ac [ 5387947D7B6EA7A8614B56BB4F9410B5, BC92FBA5D347137BD2DF2055F77581412FA5A9CA626BA49A6A4E3C3059ECC73E ] OpenVPNServiceInteractive C:\Program Files\OpenVPN\bin\openvpnserv.exe
12:55:24.0351 0x00ac OpenVPNServiceInteractive - ok
12:55:24.0351 0x00ac [ 5387947D7B6EA7A8614B56BB4F9410B5, BC92FBA5D347137BD2DF2055F77581412FA5A9CA626BA49A6A4E3C3059ECC73E ] OpenVPNServiceLegacy C:\Program Files\OpenVPN\bin\openvpnserv.exe
12:55:24.0367 0x00ac OpenVPNServiceLegacy - ok
12:55:24.0367 0x00ac [ D30981DA22F2EDB8678AF50B634A9587, 0758ACE093D62226EF045CF080A038A16CAA42FD007B4133052828DB28ABBC60 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:55:24.0383 0x00ac ose - ok
12:55:24.0476 0x00ac [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:55:24.0554 0x00ac osppsvc - ok
12:55:24.0570 0x00ac [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:55:24.0585 0x00ac p2pimsvc - ok
12:55:24.0601 0x00ac [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
12:55:24.0617 0x00ac p2psvc - ok
12:55:24.0617 0x00ac [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:55:24.0632 0x00ac Parport - ok
12:55:24.0632 0x00ac [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:55:24.0648 0x00ac partmgr - ok
12:55:24.0648 0x00ac [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
12:55:24.0663 0x00ac PcaSvc - ok
12:55:24.0663 0x00ac [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
12:55:24.0679 0x00ac pci - ok
12:55:24.0679 0x00ac [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
12:55:24.0695 0x00ac pciide - ok
12:55:24.0695 0x00ac [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:55:24.0710 0x00ac pcmcia - ok
12:55:24.0710 0x00ac [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
12:55:24.0726 0x00ac pcw - ok
12:55:24.0741 0x00ac [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:55:24.0757 0x00ac PEAUTH - ok
12:55:24.0788 0x00ac [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:55:24.0788 0x00ac PerfHost - ok
12:55:24.0819 0x00ac [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
12:55:24.0851 0x00ac pla - ok
12:55:24.0866 0x00ac [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:55:24.0913 0x00ac PlugPlay - ok
12:55:24.0913 0x00ac [ 028E6651E11162AE4F4D0283D78A2EC4, EE34CB8BF5BE95E1841A14111D55170BEEEC8C19B6396763A474CC96E5889D9F ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
12:55:24.0913 0x00ac Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
12:55:25.0069 0x00ac Detect skipped due to KSN trusted
12:55:25.0069 0x00ac Pml Driver HPZ12 - ok
12:55:25.0069 0x00ac [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:55:25.0100 0x00ac PNRPAutoReg - ok
12:55:25.0100 0x00ac [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:55:25.0116 0x00ac PNRPsvc - ok
12:55:25.0131 0x00ac [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:55:25.0147 0x00ac PolicyAgent - ok
12:55:25.0147 0x00ac [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
12:55:25.0178 0x00ac Power - ok
12:55:25.0178 0x00ac [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:55:25.0209 0x00ac PptpMiniport - ok
12:55:25.0209 0x00ac [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:55:25.0225 0x00ac Processor - ok
12:55:25.0225 0x00ac [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
12:55:25.0241 0x00ac ProfSvc - ok
12:55:25.0241 0x00ac [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:55:25.0256 0x00ac ProtectedStorage - ok
12:55:25.0256 0x00ac [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:55:25.0287 0x00ac Psched - ok
12:55:25.0334 0x00ac [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:55:25.0365 0x00ac ql2300 - ok
12:55:25.0365 0x00ac [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:55:25.0381 0x00ac ql40xx - ok
12:55:25.0381 0x00ac [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
12:55:25.0397 0x00ac QWAVE - ok
12:55:25.0397 0x00ac [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:55:25.0412 0x00ac QWAVEdrv - ok
12:55:25.0428 0x00ac [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
12:55:25.0428 0x00ac RapiMgr - ok
12:55:25.0428 0x00ac [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:55:25.0459 0x00ac RasAcd - ok
12:55:25.0459 0x00ac [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:55:25.0490 0x00ac RasAgileVpn - ok
12:55:25.0490 0x00ac [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
12:55:25.0521 0x00ac RasAuto - ok
12:55:25.0521 0x00ac [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:55:25.0537 0x00ac Rasl2tp - ok
12:55:25.0553 0x00ac [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
12:55:25.0584 0x00ac RasMan - ok
12:55:25.0584 0x00ac [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:55:25.0615 0x00ac RasPppoe - ok
12:55:25.0615 0x00ac [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:55:25.0646 0x00ac RasSstp - ok
12:55:25.0646 0x00ac [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:55:25.0677 0x00ac rdbss - ok
12:55:25.0677 0x00ac [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:55:25.0693 0x00ac rdpbus - ok
12:55:25.0693 0x00ac [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:55:25.0709 0x00ac RDPCDD - ok
12:55:25.0724 0x00ac [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:55:25.0740 0x00ac RDPENCDD - ok
12:55:25.0740 0x00ac [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:55:25.0771 0x00ac RDPREFMP - ok
12:55:25.0771 0x00ac [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:55:25.0787 0x00ac RDPWD - ok
12:55:25.0802 0x00ac [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:55:25.0802 0x00ac rdyboost - ok
12:55:25.0818 0x00ac [ F3AF2B43F35DBB3A0EB9FEEEC7D62217, 5BFB97BFE94F52CE02DFB2B7E8A9AD34AE489B77BA689F63D733EFB65548D734 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
12:55:25.0818 0x00ac RegSrvc - ok
12:55:25.0818 0x00ac [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:55:25.0849 0x00ac RemoteAccess - ok
12:55:25.0849 0x00ac [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:55:25.0880 0x00ac RemoteRegistry - ok
12:55:25.0896 0x00ac [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
12:55:25.0896 0x00ac RFCOMM - ok
12:55:25.0911 0x00ac [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:55:25.0927 0x00ac RpcEptMapper - ok
12:55:25.0927 0x00ac [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
12:55:25.0943 0x00ac RpcLocator - ok
12:55:25.0958 0x00ac [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] RpcSs C:\Windows\system32\rpcss.dll
12:55:25.0974 0x00ac RpcSs - ok
12:55:25.0974 0x00ac [ 9BD6DEBC9862FBE0C0467F0633B34962, F244BF3F2E997C18D7CF755941B5E1CEA11406FACADF6DB4341708622D3AADAC ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
12:55:25.0989 0x00ac RSPCIESTOR - ok
12:55:25.0989 0x00ac [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:55:26.0021 0x00ac rspndr - ok
12:55:26.0036 0x00ac [ B358C047E081AC70035017BD1D7ED818, D52455156F2913C5A88B18EC76C4C10B3589FE95F9735DD687A0307FA00FF500 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:55:26.0067 0x00ac RTL8167 - ok
12:55:26.0067 0x00ac [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] SamSs C:\Windows\system32\lsass.exe
12:55:26.0067 0x00ac SamSs - ok
12:55:26.0083 0x00ac [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\WNt600x64\Sandra.sys
12:55:26.0083 0x00ac SANDRA - ok
12:55:26.0083 0x00ac [ 9CF152F4E891D487A94F1A56B1B947C9, 94ADA01249E825EF1C12A218A00C53D75C0D1D66B788FD3E3341C1F3621AF21C ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite Platinum.SP2\RpcAgentSrv.exe
12:55:26.0099 0x00ac SandraAgentSrv - detected UnsignedFile.Multi.Generic ( 1 )
12:55:26.0177 0x00ac Detect skipped due to KSN trusted
12:55:26.0177 0x00ac SandraAgentSrv - ok
12:55:26.0192 0x00ac [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:55:26.0208 0x00ac sbp2port - ok
12:55:26.0208 0x00ac [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:55:26.0239 0x00ac SCardSvr - ok
12:55:26.0239 0x00ac [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:55:26.0270 0x00ac scfilter - ok
12:55:26.0301 0x00ac [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
12:55:26.0317 0x00ac Schedule - ok
12:55:26.0333 0x00ac [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:55:26.0348 0x00ac SCPolicySvc - ok
12:55:26.0364 0x00ac [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:55:26.0364 0x00ac SDRSVC - ok
12:55:26.0379 0x00ac [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:55:26.0379 0x00ac secdrv - ok
12:55:26.0379 0x00ac [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
12:55:26.0395 0x00ac seclogon - ok
12:55:26.0395 0x00ac [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
12:55:26.0426 0x00ac SENS - ok
12:55:26.0426 0x00ac [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:55:26.0442 0x00ac SensrSvc - ok
12:55:26.0442 0x00ac [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:55:26.0442 0x00ac Serenum - ok
12:55:26.0457 0x00ac [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:55:26.0457 0x00ac Serial - ok
12:55:26.0457 0x00ac [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:55:26.0473 0x00ac sermouse - ok
12:55:26.0489 0x00ac [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
12:55:26.0504 0x00ac SessionEnv - ok
12:55:26.0504 0x00ac [ 85D0F874734C105D02280B39BF0AD23F, 8067852BC131363629B686D4DD6296748889482E2FC50C7A50F29906AF99C4C2 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
12:55:26.0520 0x00ac SFEP - ok
12:55:26.0520 0x00ac [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:55:26.0535 0x00ac sffdisk - ok
12:55:26.0535 0x00ac [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:55:26.0551 0x00ac sffp_mmc - ok
12:55:26.0551 0x00ac [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:55:26.0551 0x00ac sffp_sd - ok
12:55:26.0567 0x00ac [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:55:26.0567 0x00ac sfloppy - ok
12:55:26.0582 0x00ac [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:55:26.0613 0x00ac SharedAccess - ok
12:55:26.0613 0x00ac [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:55:26.0645 0x00ac ShellHWDetection - ok
12:55:26.0660 0x00ac [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:55:26.0660 0x00ac SiSRaid2 - ok
12:55:26.0676 0x00ac [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:55:26.0676 0x00ac SiSRaid4 - ok
12:55:26.0676 0x00ac [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:55:26.0707 0x00ac Smb - ok
12:55:26.0707 0x00ac [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:55:26.0723 0x00ac SNMPTRAP - ok
12:55:26.0723 0x00ac [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
12:55:26.0738 0x00ac spldr - ok
12:55:26.0754 0x00ac [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
12:55:26.0769 0x00ac Spooler - ok
12:55:26.0847 0x00ac [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
12:55:26.0925 0x00ac sppsvc - ok
12:55:26.0941 0x00ac [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:55:26.0957 0x00ac sppuinotify - ok
12:55:26.0972 0x00ac [ 72E6A150A8C8530B201832D1C801CDE6, EFBDD5D1FB924979E63D829A6970CB5552A746BEBB7C4D41066684CA16A374E0 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:55:26.0988 0x00ac srv - ok
12:55:27.0003 0x00ac [ C4F67ABCC5033D334613F28F9E782809, A19E32E2EF790E88E7013C298AF0A34A9957A7CE55DF19FBD7BDF688D3767BA5 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:55:27.0019 0x00ac srv2 - ok
12:55:27.0019 0x00ac [ C53CB62B0E57488AAE41FDA0FF8A0AB9, 93614C72C578E348B66690585F8AC2B53C0C19D2C96AAD3E776D3389CA5E43B6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:55:27.0035 0x00ac srvnet - ok
12:55:27.0035 0x00ac [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:55:27.0066 0x00ac SSDPSRV - ok
12:55:27.0066 0x00ac [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:55:27.0097 0x00ac SstpSvc - ok
12:55:27.0097 0x00ac [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:55:27.0113 0x00ac stexstor - ok
12:55:27.0113 0x00ac [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
12:55:27.0144 0x00ac stisvc - ok
12:55:27.0144 0x00ac [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
12:55:27.0159 0x00ac swenum - ok
12:55:27.0159 0x00ac [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
12:55:27.0191 0x00ac swprv - ok
12:55:27.0206 0x00ac [ A585607D5D3A2AB41DF03A714718133E, ABE535F2433D662E5F13788421DB6B2392641E3D17FF2A07FB5BA284C1203E7D ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
12:55:27.0222 0x00ac SynTP - ok
12:55:27.0253 0x00ac [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
12:55:27.0300 0x00ac SysMain - ok
12:55:27.0300 0x00ac [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:55:27.0315 0x00ac TabletInputService - ok
12:55:27.0331 0x00ac [ D765F43CBEA72D14C04AF3D2B9C8E54B, 89C5CA1440DF186497CE158EB71C0C6BF570A75B6BC1880EAC7C87A0250201C0 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
12:55:27.0331 0x00ac tap0901 - ok
12:55:27.0347 0x00ac [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
12:55:27.0378 0x00ac TapiSrv - ok
12:55:27.0409 0x00ac [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:55:27.0440 0x00ac Tcpip - ok
12:55:27.0487 0x00ac [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:55:27.0518 0x00ac TCPIP6 - ok
12:55:27.0534 0x00ac [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:55:27.0534 0x00ac tcpipreg - ok
12:55:27.0534 0x00ac [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:55:27.0549 0x00ac TDPIPE - ok
12:55:27.0549 0x00ac [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:55:27.0565 0x00ac TDTCP - ok
12:55:27.0565 0x00ac [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:55:27.0581 0x00ac tdx - ok
12:55:27.0768 0x00ac [ 5A64A68A18C35007614B432BA9573E22, 4DDDBB1FBD0ABAE3CBF468BA55E71AAEFFE06B4689C45B2CAB2CD39955BB011E ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
12:55:27.0939 0x00ac TeamViewer - ok
12:55:27.0955 0x00ac [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
12:55:27.0971 0x00ac TermDD - ok
12:55:28.0002 0x00ac [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
12:55:28.0017 0x00ac TermService - ok
12:55:28.0017 0x00ac [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
12:55:28.0033 0x00ac Themes - ok
12:55:28.0033 0x00ac [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
12:55:28.0064 0x00ac THREADORDER - ok
12:55:28.0064 0x00ac [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
12:55:28.0095 0x00ac TrkWks - ok
12:55:28.0095 0x00ac [ 95E61DE74510BDB18221F09F8FEF7479, F1A7AAFC47B045FF2BCA9B5A0A4654B63586E6F919613FDF89484CF48862F9B8 ] truecrypt C:\Windows\syswow64\drivers\truecrypt.sys
12:55:28.0111 0x00ac truecrypt - ok
12:55:28.0111 0x00ac [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:55:28.0142 0x00ac TrustedInstaller - ok
12:55:28.0142 0x00ac [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:55:28.0158 0x00ac tssecsrv - ok
12:55:28.0158 0x00ac [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:55:28.0173 0x00ac TsUsbFlt - ok
12:55:28.0173 0x00ac [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:55:28.0205 0x00ac tunnel - ok
12:55:28.0205 0x00ac [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:55:28.0205 0x00ac uagp35 - ok
12:55:28.0220 0x00ac [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:55:28.0251 0x00ac udfs - ok
12:55:28.0251 0x00ac [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:55:28.0267 0x00ac UI0Detect - ok
12:55:28.0267 0x00ac [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:55:28.0267 0x00ac uliagpkx - ok
12:55:28.0283 0x00ac [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
12:55:28.0283 0x00ac umbus - ok
12:55:28.0283 0x00ac [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:55:28.0298 0x00ac UmPass - ok
12:55:28.0314 0x00ac [ D80B1075B69B57A3AB78F750CE463ECE, E8435B723C3D9F5B28D5588365E7D6BED298565BCF61240C2B505B1033180DAA ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:55:28.0314 0x00ac UNS - ok
12:55:28.0329 0x00ac [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
12:55:28.0361 0x00ac upnphost - ok
12:55:28.0361 0x00ac [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
12:55:28.0376 0x00ac USBAAPL64 - ok
12:55:28.0376 0x00ac [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:55:28.0392 0x00ac usbaudio - ok
12:55:28.0392 0x00ac [ 9E68E917FB4B5C983438969643F53BEF, 7148BF1E7AFAFA025A51AA9A26B90ED85328B41C7F7791CB3460D9CF53245985 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:55:28.0392 0x00ac usbccgp - ok
12:55:28.0407 0x00ac [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:55:28.0407 0x00ac usbcir - ok
12:55:28.0423 0x00ac [ 3F9D3902CE931E2A28DD8452AE915B67, C8BF042DD84FB2E3AE7FCDBA65923611FCBDAFD6410E42A5E58F8995D99AE16C ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:55:28.0423 0x00ac usbehci - ok
12:55:28.0439 0x00ac [ 86B65EEBC03B936DE8B26E5A18D98FA2, 2981CF5A0FB6B6FE0A38363EA4804DB743C45E3E6E72DC3A2260F583377717C8 ] usbhub C:\Windows\system32\drivers\usbhub.sys
12:55:28.0454 0x00ac usbhub - ok
12:55:28.0454 0x00ac [ 099C2931C6F73EB1B9E13C560F61B50D, 83B64A52173243526E380C8FA0D913C7B07C2AF1806ECC4EC0D0B5523A7CBFAA ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:55:28.0454 0x00ac usbohci - ok
12:55:28.0470 0x00ac [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:55:28.0470 0x00ac usbprint - ok
12:55:28.0470 0x00ac [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
12:55:28.0485 0x00ac usbscan - ok
12:55:28.0485 0x00ac [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:55:28.0501 0x00ac USBSTOR - ok
12:55:28.0501 0x00ac [ 5D7651347C7D702F4A5DE53603DC024F, F55532D13AB2FF6D4B6058113AF2710AC5C87059C9000942CF517198BABCD6F5 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:55:28.0517 0x00ac usbuhci - ok
12:55:28.0517 0x00ac [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:55:28.0532 0x00ac usbvideo - ok
12:55:28.0532 0x00ac [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
12:55:28.0563 0x00ac UxSms - ok
12:55:28.0563 0x00ac [ 203FD19D70549A2939E1AE3A36608151, 2B965E52571B6F409132E5D7608B794D56538314BD4E68E58F9CBA39450A94B2 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
12:55:28.0563 0x00ac VAIO Event Service - ok
12:55:28.0579 0x00ac [ 59308CD511A5F3EE33595FFD46F76B31, 757A8245AB2424DC245E5516BA6DB7DF30AF83E217CDA8EADAC0CA1DB24F457A ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
12:55:28.0595 0x00ac VAIO Power Management - ok
12:55:28.0610 0x00ac [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] VaultSvc C:\Windows\system32\lsass.exe
12:55:28.0610 0x00ac VaultSvc - ok
12:55:28.0610 0x00ac [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:55:28.0626 0x00ac vdrvroot - ok
12:55:28.0641 0x00ac [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
12:55:28.0673 0x00ac vds - ok
12:55:28.0673 0x00ac [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:55:28.0688 0x00ac vga - ok
12:55:28.0688 0x00ac [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:55:28.0704 0x00ac VgaSave - ok
12:55:28.0719 0x00ac [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:55:28.0735 0x00ac vhdmp - ok
12:55:28.0735 0x00ac [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
12:55:28.0735 0x00ac viaide - ok
12:55:28.0751 0x00ac [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:55:28.0751 0x00ac volmgr - ok
12:55:28.0766 0x00ac [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:55:28.0782 0x00ac volmgrx - ok
12:55:28.0782 0x00ac [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:55:28.0797 0x00ac volsnap - ok
12:55:28.0797 0x00ac [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:55:28.0813 0x00ac vsmraid - ok
12:55:28.0829 0x00ac [ 596E65BDEE804CC6658A39756CC61849, 34936A8FBB886212C23485C38FE095C4122922C3D139DEDEEF4DFF182E3E43C5 ] VSNService C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
12:55:28.0860 0x00ac VSNService - ok
12:55:28.0907 0x00ac [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
12:55:28.0953 0x00ac VSS - ok
12:55:28.0969 0x00ac [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:55:28.0969 0x00ac vwifibus - ok
12:55:28.0969 0x00ac [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:55:28.0985 0x00ac vwififlt - ok
12:55:28.0985 0x00ac [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
12:55:29.0000 0x00ac vwifimp - ok
12:55:29.0000 0x00ac [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:55:29.0016 0x00ac WacomPen - ok
12:55:29.0016 0x00ac [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:55:29.0047 0x00ac WANARP - ok
12:55:29.0047 0x00ac [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:55:29.0078 0x00ac Wanarpv6 - ok
12:55:29.0109 0x00ac [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
12:55:29.0141 0x00ac wbengine - ok
12:55:29.0141 0x00ac [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:55:29.0156 0x00ac WbioSrvc - ok
12:55:29.0172 0x00ac [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
12:55:29.0187 0x00ac WcesComm - ok
12:55:29.0203 0x00ac [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:55:29.0219 0x00ac wcncsvc - ok
12:55:29.0219 0x00ac [ BC00873272B3771CCDA38336AF2B4D4B, 3E412DEC5F172B4C5FD5C227CD790EE56B90A00A8B538704E8F973D230BE2289 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:55:29.0234 0x00ac WcsPlugInService - ok
12:55:29.0234 0x00ac [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:55:29.0250 0x00ac Wd - ok
12:55:29.0265 0x00ac [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:55:29.0297 0x00ac Wdf01000 - ok
12:55:29.0297 0x00ac [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:55:29.0312 0x00ac WdiServiceHost - ok
12:55:29.0312 0x00ac [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:55:29.0328 0x00ac WdiSystemHost - ok
12:55:29.0328 0x00ac [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
12:55:29.0343 0x00ac WebClient - ok
12:55:29.0343 0x00ac [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:55:29.0375 0x00ac Wecsvc - ok
12:55:29.0390 0x00ac [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:55:29.0406 0x00ac wercplsupport - ok
12:55:29.0406 0x00ac [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
12:55:29.0437 0x00ac WerSvc - ok
12:55:29.0437 0x00ac [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:55:29.0468 0x00ac WfpLwf - ok
12:55:29.0468 0x00ac [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:55:29.0468 0x00ac WIMMount - ok
12:55:29.0468 0x00ac WinDefend - ok
12:55:29.0484 0x00ac WinHttpAutoProxySvc - ok
12:55:29.0484 0x00ac [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:55:29.0515 0x00ac Winmgmt - ok
12:55:29.0562 0x00ac [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
12:55:29.0609 0x00ac WinRM - ok
12:55:29.0609 0x00ac [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:55:29.0624 0x00ac WinUsb - ok
12:55:29.0640 0x00ac [ 4B7912EB80820EAC543EE54806EFCAF0, 4D9186F9FE80F03C85C4DC73342EE5870DF1021BD29974BE33557CEA0D524667 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:55:29.0655 0x00ac Wlansvc - ok
12:55:29.0702 0x00ac [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:55:29.0749 0x00ac wlidsvc - ok
12:55:29.0749 0x00ac [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:55:29.0765 0x00ac WmiAcpi - ok
12:55:29.0765 0x00ac [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:55:29.0780 0x00ac wmiApSrv - ok
12:55:29.0780 0x00ac WMPNetworkSvc - ok
12:55:29.0796 0x00ac [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:55:29.0796 0x00ac WPCSvc - ok
12:55:29.0796 0x00ac [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:55:29.0811 0x00ac WPDBusEnum - ok
12:55:29.0811 0x00ac [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:55:29.0843 0x00ac ws2ifsl - ok
12:55:29.0843 0x00ac [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
12:55:29.0858 0x00ac wscsvc - ok
12:55:29.0858 0x00ac [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
12:55:29.0874 0x00ac WSDPrintDevice - ok
12:55:29.0874 0x00ac WSearch - ok
12:55:29.0921 0x00ac [ 88009DB9E1166B6B6713A858C176FECD, CBF4C63D3C5D14AF3C3F0D9C48E5AC9E7A4323BFB0363E9948FD801963BE1467 ] wuauserv C:\Windows\system32\wuaueng.dll
12:55:29.0983 0x00ac wuauserv - ok
12:55:29.0983 0x00ac [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:55:29.0999 0x00ac WudfPf - ok
12:55:29.0999 0x00ac [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:55:30.0014 0x00ac WUDFRd - ok
12:55:30.0014 0x00ac [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:55:30.0030 0x00ac wudfsvc - ok
12:55:30.0030 0x00ac [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
12:55:30.0045 0x00ac WwanSvc - ok
12:55:30.0061 0x00ac [ 74713CB32792F9C7632DAA7DA22CA974, 1B1D907F8F18AE22E36F371EE6417D068C01FB4F9413571444AF3845A27F3C4D ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
12:55:30.0077 0x00ac ZeroConfigService - ok
12:55:30.0092 0x00ac ================ Scan global ===============================
12:55:30.0123 0x00ac [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
12:55:30.0139 0x00ac [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\system32\winsrv.dll
12:55:30.0139 0x00ac [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\system32\winsrv.dll
12:55:30.0155 0x00ac [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:55:30.0155 0x00ac [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
12:55:30.0170 0x00ac [ Global ] - ok
12:55:30.0170 0x00ac ================ Scan MBR ==================================
12:55:30.0170 0x00ac [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:55:30.0233 0x00ac \Device\Harddisk0\DR0 - ok
12:55:30.0233 0x00ac [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR3
12:55:30.0373 0x00ac \Device\Harddisk1\DR3 - ok
12:55:30.0373 0x00ac ================ Scan VBR ==================================
12:55:30.0389 0x00ac [ A21A3BF124A508F67E8FECE0768F0280 ] \Device\Harddisk0\DR0\Partition1
12:55:30.0389 0x00ac \Device\Harddisk0\DR0\Partition1 - ok
12:55:30.0389 0x00ac [ 62A63A507C5D6D363131E8A01712A7C5 ] \Device\Harddisk0\DR0\Partition2
12:55:30.0389 0x00ac \Device\Harddisk0\DR0\Partition2 - ok
12:55:30.0389 0x00ac [ 488975E0DBA779DFEC82F0FBAFF2CD70 ] \Device\Harddisk0\DR0\Partition3
12:55:30.0404 0x00ac \Device\Harddisk0\DR0\Partition3 - ok
12:55:30.0404 0x00ac [ A56FA026E5650B1DACC5ADE06F82B4DD ] \Device\Harddisk1\DR3\Partition1
12:55:30.0404 0x00ac \Device\Harddisk1\DR3\Partition1 - ok
12:55:30.0404 0x00ac ================ Scan generic autorun ======================
12:55:30.0404 0x00ac SynTPEnh - ok
12:55:30.0420 0x00ac [ C8560742F5E4C77A91A75C14D3583604, EDFFBCF84667C47621D78C3239DCC296AC5295249CCE01850AE2578EC59FF045 ] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
12:55:30.0435 0x00ac BLEServicesCtrl - ok
12:55:30.0467 0x00ac [ B1DDCBE7D17DE94045FE9E40EB3D0170, 76EAF208139160C10937FEB4CB47A9890BF66414A3958289DDDCE62EA6E701FC ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
12:55:30.0482 0x00ac RtHDVBg - ok
12:55:30.0498 0x00ac [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdc.exe
12:55:30.0513 0x00ac Windows Mobile Device Center - ok
12:55:30.0529 0x00ac [ E4467B3D2FCA263DE551432A1709F24A, 370F193FAC2068CCEBE0844159B5276B0AFAF69543FACC88F8726F1ADB301BAD ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
12:55:30.0545 0x00ac StartCCC - ok
12:55:30.0560 0x00ac [ 6BA8D86746935498D64CB5CF6286F2EB, E47D1DEE39451428344233DB15412BCB486C4F6FE1D0426F20AA4C6245387926 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
12:55:30.0560 0x00ac USB3MON - ok
12:55:30.0560 0x00ac [ 4AD491D49890D794BFA77AAB935046C5, 9A3D575C4CF99844DAA1CD11D0F5BAD13653B12941F211A42C27A09B6E079BE8 ] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
12:55:30.0576 0x00ac ISBMgr.exe - ok
12:55:30.0576 0x00ac [ CD0362AEE36CFE1EF5DF973230742E67, 9F1D8AD4E09D16C39CD6A35CB298456468C1808226FFA8AD65BF9562A6ECC07D ] C:\Program Files (x86)\PDF24\pdf24.exe
12:55:30.0591 0x00ac PDFPrint - ok
12:55:30.0591 0x00ac [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
12:55:30.0607 0x00ac BCSSync - ok
12:55:30.0607 0x00ac [ 43055C5E5700DBCEE2A28C22199C06A8, A0E84B5EA9F80433C8ADA7FABE2AEA7D497675B6DE67CB4F6D5E909CE4FB7A9E ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
12:55:30.0623 0x00ac Avira SystrayStartTrigger - ok
12:55:30.0638 0x00ac [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:55:30.0669 0x00ac Sidebar - ok
12:55:30.0685 0x00ac [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:55:30.0701 0x00ac mctadmin - ok
12:55:30.0716 0x00ac [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:55:30.0747 0x00ac Sidebar - ok
12:55:30.0747 0x00ac [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:55:30.0763 0x00ac mctadmin - ok
12:55:30.0794 0x00ac [ 05EF78B9E274D3B190C18C34361D4024, D200A291D2B50F9A23A228919CBF5D70938D609487FBFAC5C4BFF9F6A9A4C7EF ] C:\Users\usrname\AppData\Local\FluxSoftware\Flux\flux.exe
12:55:30.0825 0x00ac f.lux - ok
12:55:30.0841 0x00ac [ DB26D7ACE93BCD74EA69C4A9611026CC, 66C0CB23C981CD2C9DC0BE84B6FA9B2FED5FDECAF177DB3274476F483C04A2C2 ] C:\Users\usrname\AppData\Roaming\Spotify\SpotifyWebHelper.exe
12:55:30.0872 0x00ac Spotify Web Helper - ok
12:55:30.0872 0x00ac Spotify - ok
12:55:30.0903 0x00ac [ 05EF78B9E274D3B190C18C34361D4024, D200A291D2B50F9A23A228919CBF5D70938D609487FBFAC5C4BFF9F6A9A4C7EF ] C:\Users\usrname\AppData\Local\FluxSoftware\Flux\flux.exe
12:55:30.0935 0x00ac f.lux - ok
12:55:30.0935 0x00ac Spotify Web Helper - ok
12:55:30.0935 0x00ac Spotify - ok
12:55:30.0935 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:31.0949 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:32.0963 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:33.0977 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:34.0991 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:36.0005 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:37.0019 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:38.0033 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:39.0047 0x00ac Waiting for KSN requests completion. In queue: 459
12:55:40.0061 0x00ac Waiting for KSN requests completion. In queue: 402
12:55:41.0075 0x00ac Waiting for KSN requests completion. In queue: 402
12:55:42.0089 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:43.0103 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:44.0117 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:45.0131 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:46.0145 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:47.0159 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:48.0173 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:49.0187 0x00ac Waiting for KSN requests completion. In queue: 374
12:55:50.0201 0x00ac Waiting for KSN requests completion. In queue: 63
12:55:51.0215 0x00ac Waiting for KSN requests completion. In queue: 63
12:55:52.0244 0x00ac AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\WindowsSecurityCenter.exe ( 15.0.34.21 ), 0x41000 ( enabled : updated )
12:55:52.0275 0x00ac Win FW state via NFP2: enabled ( trusted )
12:55:52.0275 0x00ac ============================================================
12:55:52.0275 0x00ac Scan finished
12:55:52.0275 0x00ac ============================================================
12:55:52.0275 0x1ec8 Detected object count: 0
12:55:52.0275 0x1ec8 Actual detected object count: 0
13:06:10.0507 0x070c Deinitialize success
|
|
15.02.2018, 20:00
| #3 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Laptop verdächtig langsam Bitte Avira deinstallieren. Wir deinstallieren dann am besten auch gleich weiteren unnötigen oder veralteten Krempel.
__________________Avira empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ |
|
16.02.2018, 06:12
| #4 |
| | Laptop verdächtig langsam Hallo Cosinus, Vielen Dank für die Antwort. Ich müsste jetzt aber doch einmal nachfragen. Sind die Programme nur Krempel oder potenziell gefährlich ? Notepad++, OpenOffice und vor allem Truecrypt sind sehr nützliche Tools, die ich nicht gerne weggeben möchte. Notepadd ist schlank und sehr flott mit vielen einfachen und dabei nützlichen Features, Openoffice hat einige Vorteile bei PDF und GifßVerarbeitung und Truecrypt ist der einzuge vertrauenswürdige Verschlüsseler, der sich der NSA widersetzt hat, auch wenn er nicht mehr weiterentwickelt wird. Ich möchte natürlich nicht meckern... |
|
16.02.2018, 09:29
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop verdächtig langsam Das ist tw. uralter Abfall!! 1.) Notepad++ ist ok, aber du hast ne Uraltversion! 2.) OpenOffice wird nur noch von einem sehr kleinen Team betreut und die bringen vllt 1x im Jahr irgendwelche Updates raus. Weg damit. 3.) TrueCrypt wird auch schon seit ner Ewigkeit nicht mehr gepflegt. Man muss sich auch schon mal von Zeit zu Zeit informieren, du kannst nicht einfach ein Programm raufpacken und dich dann für Ewigkeit um nichts mehr kümmern. Dazu lies mal das --> https://heise.de/-2211037 Das ist jetzt fast vier Jahre her!! Und es ist ja nicht so, dass es keine Ersatzprogramme gäbe! OpenOffice --> LibreOffice TrueCrypt --> VeraCrypt
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
16.02.2018, 09:50
| #6 |
| | Laptop verdächtig langsam OK, ich habe jetzt Avira, OpenOffice, Java, Quicktime, Java und den Flashplayer gelöscht. Jetz brauche ich aber noch einen anderen Virenscanner, hast du Da einen Tipp ? FG Zongo-Joe |
|
16.02.2018, 09:52
| #7 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop verdächtig langsam Ja, mein Tipp lautet den fetten blauen Text zu lesen, der unter der Deinstallationsintruktion in Beitrag #3 steht 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.02.2018, 09:58
| #8 |
| | Laptop verdächtig langsam äh, ja, habe ich doch gemacht... Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren! |
|
16.02.2018, 10:17
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop verdächtig langsam Ja, und, sind wir hier komplett durch? Nein? Also warte bitte ab. Und leg diese Hysterie bzgl. Virenscanner ab. Die Dinger sind oft erschreckend schlecht in der Erkennung. Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers  Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.02.2018, 07:11
| #10 |
| | Laptop verdächtig langsam Lieber Cosinus, Vielen Dank für Deine Hilfe, das Thema hat sich durch einen Sturz des Compus vom Tisch leider erledigt. Spende kommt. Fg Zongo-joe PS „Hysterie“ kannste Dir klemmen |
|
| Themen zu Laptop verdächtig langsam |
| .dll, antivir, antivirus, avdevprot, bonjour, defender, explorer, firefox, ftp, home, homepage, langsam, langsam internet lahm, malware, mozilla, problem, prozesse, realtek, registry, scan, services.exe, software, svchost.exe, system, usb, windows, winlogon.exe |
dann auf 
und dann auf 
. 
Linear-Darstellung
