Windows zeigt nach dem Start ein schwarzes Bild, der Mauszeiger ist aber zu sehen
Guten Tag habe da ein Problem mit einem Rechner
Nach dem System Start und der Eingabe des Passworts, wird mir nur ein schwarzes Bild angezeigt der Mauszeiger ist aber zu sehen, der Taskmanager ist auch aufrufbar.
Die Festplatte wird auch zu 100% ausgelastet eine Systemwiederherstellung ist nicht möglich
hoffe ihr könnte mir helfen Zitat:
OTL logfile created on: 4/6/2017 10:46:41 AM - Run
OTLPE by OldTimer - Version 3.1.48.0 Folder = X:\Programs\OTLPE
64bit-Windows 10 Pro (Version = 6.3.14393) - Type = System
Internet Explorer (Version = 9.11.14393.0)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 89.00% Memory free
3.00 Gb Paging File | 2.00 Gb Available in Paging File | 98.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files (x86)
Drive C: | 500.00 Mb Total Space | 158.13 Mb Free Space | 31.63% Space Free | Partition Type: NTFS
Drive D: | 698.15 Gb Total Space | 659.44 Gb Free Space | 94.46% Space Free | Partition Type: NTFS
Drive E: | 3.91 Gb Total Space | 3.77 Gb Free Space | 96.47% Space Free | Partition Type: FAT32
Drive X: | 436.59 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Computer Name: REATOGO | User Name: SYSTEM
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
Using ControlSet: ControlSet001
========== Win32 Services (SafeList) ==========
SRV:64bit: - [2017/01/24 20:29:48 | 000,305,176 | ---- | M] (AMD) [Auto] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2016/12/21 02:51:53 | 002,275,840 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2016/12/14 01:33:21 | 000,822,624 | ---- | M] (Microsoft Corporation) [Disabled] -- D:\Windows\System32\AppVClient.exe -- (AppVClient)
SRV:64bit: - [2016/12/14 00:43:24 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2016/12/14 00:36:59 | 000,539,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\usocore.dll -- (UsoSvc)
SRV:64bit: - [2016/12/14 00:23:43 | 001,231,872 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\dosvc.dll -- (DoSvc)
SRV:64bit: - [2016/12/09 06:28:24 | 000,764,392 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV:64bit: - [2016/11/21 12:19:34 | 000,155,016 | ---- | M] () [Auto] -- D:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe -- (AdaptiveSleepService)
SRV:64bit: - [2016/11/11 05:22:23 | 000,082,944 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\moshost.dll -- (MapsBroker)
SRV:64bit: - [2016/11/11 05:20:50 | 000,339,456 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\cdpusersvc.dll -- (CDPUserSvc)
SRV:64bit: - [2016/11/11 05:20:10 | 000,407,552 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV:64bit: - [2016/11/11 05:19:59 | 000,411,648 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\cdpsvc.dll -- (CDPSvc)
SRV:64bit: - [2016/11/11 05:19:35 | 000,285,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\EnterpriseAppMgmtSvc.dll -- (EntAppSvc)
SRV:64bit: - [2016/11/11 05:16:35 | 000,560,128 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2016/11/11 05:14:35 | 002,104,320 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2016/11/11 05:06:19 | 000,650,752 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\RDXService.dll -- (RetailDemo)
SRV:64bit: - [2016/11/11 05:05:32 | 004,136,448 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\Windows.StateRepository.dll -- (StateRepository)
SRV:64bit: - [2016/11/11 05:04:16 | 000,691,712 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\lsm.dll -- (LSM)
SRV:64bit: - [2016/11/02 06:30:35 | 000,635,904 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\FlightSettings.dll -- (wisvc)
SRV:64bit: - [2016/11/02 06:22:02 | 000,337,920 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2016/11/02 06:19:44 | 000,805,888 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\FrameServer.dll -- (FrameServer)
SRV:64bit: - [2016/11/02 06:16:47 | 000,265,728 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\NetSetupSvc.dll -- (NetSetupSvc)
SRV:64bit: - [2016/11/02 06:16:27 | 000,770,560 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2016/10/14 23:37:03 | 001,980,416 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV:64bit: - [2016/10/05 05:18:56 | 000,983,040 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\ngcsvc.dll -- (NgcSvc)
SRV:64bit: - [2016/09/22 05:34:37 | 000,447,488 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2016/09/22 05:34:23 | 001,312,768 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\SensorDataService.exe -- (SensorDataService)
SRV:64bit: - [2016/09/22 05:34:23 | 000,781,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\PhoneService.dll -- (PhoneSvc)
SRV:64bit: - [2016/09/22 05:34:18 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\LicenseManagerSvc.dll -- (LicenseManager)
SRV:64bit: - [2016/09/22 05:34:07 | 000,095,232 | ---- | M] (Microsoft Corporation) [Disabled] -- D:\Windows\System32\tzautoupdate.dll -- (tzautoupdate)
SRV:64bit: - [2016/09/15 13:11:03 | 002,889,896 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe -- (Sense)
SRV:64bit: - [2016/09/15 12:40:41 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\RMapi.dll -- (RmSvc)
SRV:64bit: - [2016/09/15 12:38:15 | 000,203,776 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\PimIndexMaintenance.dll -- (PimIndexMaintenanceSvc)
SRV:64bit: - [2016/09/15 12:38:00 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvcext.dll -- (vmicvss)
SRV:64bit: - [2016/09/15 12:38:00 | 000,349,696 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvcext.dll -- (vmicrdv)
SRV:64bit: - [2016/09/15 12:35:45 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\SensorService.dll -- (SensorService)
SRV:64bit: - [2016/09/15 12:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvc.dll -- (vmicvmsession)
SRV:64bit: - [2016/09/15 12:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2016/09/15 12:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2016/09/15 12:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2016/09/15 12:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2016/09/15 12:35:06 | 000,305,152 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2016/09/15 12:35:03 | 001,013,248 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\XblAuthManager.dll -- (XblAuthManager)
SRV:64bit: - [2016/09/15 12:23:51 | 001,020,928 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\usermgr.dll -- (UserManager)
SRV:64bit: - [2016/08/05 23:34:01 | 000,023,552 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\smphost.dll -- (smphost)
SRV:64bit: - [2016/07/16 18:56:36 | 001,227,264 | ---- | M] (Microsoft Corporation) [Disabled] -- D:\Windows\System32\AgentService.exe -- (UevAgentService)
SRV:64bit: - [2016/07/16 18:56:29 | 000,197,632 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2016/07/16 07:43:47 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\WalletService.dll -- (WalletService)
SRV:64bit: - [2016/07/16 07:43:18 | 000,167,936 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2016/07/16 07:43:10 | 001,836,032 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2016/07/16 07:43:06 | 000,347,328 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2016/07/16 07:43:04 | 000,103,720 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2016/07/16 07:42:42 | 000,088,576 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2016/07/16 07:42:39 | 000,161,792 | ---- | M] (Microsoft Corporation) [Disabled] -- D:\Windows\System32\Windows.SharedPC.AccountManager.dll -- (shpamsvc)
SRV:64bit: - [2016/07/16 07:42:37 | 000,718,848 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2016/07/16 07:42:36 | 000,183,808 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\dcpsvc.dll -- (DcpSvc)
SRV:64bit: - [2016/07/16 07:42:27 | 000,093,184 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe -- (diagnosticshub.standardcollector.service)
SRV:64bit: - [2016/07/16 07:42:23 | 000,366,592 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\APHostService.dll -- (OneSyncSvc)
SRV:64bit: - [2016/07/16 07:42:20 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2016/07/16 07:42:16 | 000,287,744 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\TieringEngineService.exe -- (TieringEngineService)
SRV:64bit: - [2016/07/16 07:42:16 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2016/07/16 07:42:16 | 000,013,824 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\svsvc.dll -- (svsvc)
SRV:64bit: - [2016/07/16 07:42:13 | 000,590,848 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\SmsRouterSvc.dll -- (SmsRouter)
SRV:64bit: - [2016/07/16 07:42:12 | 000,519,168 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2016/07/16 07:42:12 | 000,052,224 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\MessagingService.dll -- (MessagingService)
SRV:64bit: - [2016/07/16 07:42:09 | 001,512,448 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\UserDataService.dll -- (UserDataSvc)
SRV:64bit: - [2016/07/16 07:42:09 | 001,184,256 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\Unistore.dll -- (UnistoreSvc)
SRV:64bit: - [2016/07/16 07:42:09 | 000,574,976 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\tileobjserver.dll -- (tiledatamodelsvc)
SRV:64bit: - [2016/07/16 07:42:09 | 000,387,072 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2016/07/16 07:42:09 | 000,339,968 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\ncbservice.dll -- (NcbService)
SRV:64bit: - [2016/07/16 07:42:09 | 000,326,656 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\NgcCtnrSvc.dll -- (NgcCtnrSvc)
SRV:64bit: - [2016/07/16 07:42:09 | 000,234,496 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\System32\wpnservice.dll -- (WpnService)
SRV:64bit: - [2016/07/16 07:42:09 | 000,202,240 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\tetheringservice.dll -- (icssvc)
SRV:64bit: - [2016/07/16 07:42:09 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\TimeBrokerServer.dll -- (TimeBrokerSvc)
SRV:64bit: - [2016/07/16 07:42:09 | 000,074,240 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\WpnUserService.dll -- (WpnUserService)
SRV:64bit: - [2016/07/16 07:42:09 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\lfsvc.dll -- (lfsvc)
SRV:64bit: - [2016/07/16 07:42:09 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\DevQueryBroker.dll -- (DevQueryBroker)
SRV:64bit: - [2016/07/16 07:42:07 | 001,159,680 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\XblGameSave.dll -- (XblGameSave)
SRV:64bit: - [2016/07/16 07:42:06 | 000,729,328 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\ClipSVC.dll -- (ClipSVC)
SRV:64bit: - [2016/07/16 07:42:06 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\AJRouter.dll -- (AJRouter)
SRV:64bit: - [2016/07/16 07:42:05 | 000,197,632 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2016/07/16 07:42:05 | 000,152,576 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\dssvc.dll -- (DsSvc)
SRV:64bit: - [2016/07/16 07:42:05 | 000,140,800 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\embeddedmodesvc.dll -- (embeddedmode)
SRV:64bit: - [2016/07/16 07:42:04 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\hvhostsvc.dll -- (HvHost)
SRV:64bit: - [2016/07/16 07:41:50 | 003,318,272 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2016/07/16 07:41:50 | 000,321,536 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\System32\BthHFSrv.dll -- (BthHFSrv)
SRV:64bit: - [2011/12/11 19:00:00 | 000,135,824 | ---- | M] (Seiko Epson Corporation) [Auto] -- D:\Windows\System32\escsvc64.exe -- (EpsonScanSvc)
SRV - [2017/03/24 09:12:43 | 000,487,432 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files (x86)\Avira\Antivirus\sched.exe -- (AntiVirSchedulerService)
SRV - [2017/03/24 09:12:17 | 001,519,136 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files (x86)\Avira\Antivirus\avwebg7.exe -- (AntiVirWebService)
SRV - [2017/03/24 09:12:11 | 001,115,552 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files (x86)\Avira\Antivirus\avmailc7.exe -- (AntiVirMailService)
SRV - [2017/03/24 09:12:09 | 000,487,432 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files (x86)\Avira\Antivirus\avguard.exe -- (AntiVirService)
SRV - [2017/03/09 11:47:00 | 000,349,560 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto] -- D:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe -- (Avira.ServiceHost)
SRV - [2017/02/16 08:03:12 | 000,270,936 | ---- | M] (Adobe Systems Incorporated) [On_Demand] -- D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017/02/06 14:03:50 | 000,172,488 | ---- | M] (Mozilla Foundation) [On_Demand] -- D:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016/12/09 04:54:48 | 000,483,840 | ---- | M] (Microsoft Corporation) [Auto] -- D:\Windows\SysWOW64\CoreMessaging.dll -- (CoreMessagingRegistrar)
SRV - [2016/11/11 03:19:35 | 000,298,496 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\SysWOW64\Windows.Internal.Management.dll -- (DmEnrollmentSvc)
SRV - [2016/11/11 03:05:12 | 003,370,496 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\SysWOW64\Windows.StateRepository.dll -- (StateRepository)
SRV - [2016/08/05 23:33:24 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2016/07/16 07:42:55 | 000,968,704 | ---- | M] (Microsoft Corporation) [On_Demand] -- D:\Windows\SysWOW64\Unistore.dll -- (UnistoreSvc)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2017/03/24 09:12:47 | 000,163,976 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System] -- D:\WINDOWS\system32\DRIVERS\avipbb.sys -- (avipbb)
DRV:64bit: - [2017/03/24 09:12:47 | 000,161,824 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto] -- D:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV:64bit: - [2017/03/24 09:12:47 | 000,088,488 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | Auto] -- D:\WINDOWS\system32\DRIVERS\avnetflt.sys -- (avnetflt)
DRV:64bit: - [2017/03/24 09:12:47 | 000,044,488 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System] -- D:\WINDOWS\system32\DRIVERS\avkmgr.sys -- (avkmgr)
DRV:64bit: - [2017/01/24 20:29:52 | 026,568,848 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\System32\DriverStore\FileRepository\c0309377.inf_amd64_7ab08912e1e1da0a\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2017/01/24 20:29:48 | 000,536,600 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand] -- D:\WINDOWS\System32\DriverStore\FileRepository\c0309377.inf_amd64_7ab08912e1e1da0a\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2016/12/09 06:30:39 | 000,377,184 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2016/11/11 06:00:25 | 000,219,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2016/11/11 05:26:51 | 000,258,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\xboxgip.sys -- (xboxgip)
DRV:64bit: - [2016/11/02 06:55:52 | 000,048,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\iorate.sys -- (iorate)
DRV:64bit: - [2016/10/15 00:37:01 | 000,063,328 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\Windows\System32\drivers\dam.sys -- (dam)
DRV:64bit: - [2016/10/15 00:30:16 | 000,557,408 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2016/10/14 23:31:37 | 000,227,328 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\Windows\System32\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2016/10/05 06:35:31 | 000,279,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2016/10/05 06:09:07 | 000,064,352 | ---- | M] (Avago Technologies) [Kernel | Boot] -- D:\Windows\System32\drivers\MegaSas2i.sys -- (megasas2i)
DRV:64bit: - [2016/09/22 05:34:37 | 000,108,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2016/09/22 05:34:08 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\hvservice.sys -- (hvservice)
DRV:64bit: - [2016/09/22 05:34:07 | 000,118,112 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2016/09/22 05:34:07 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\xinputhid.sys -- (xinputhid)
DRV:64bit: - [2016/09/15 13:29:54 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2016/09/15 13:29:52 | 000,127,328 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\WINDOWS\system32\drivers\AppvStrm.sys -- (AppvStrm)
DRV:64bit: - [2016/09/15 13:29:03 | 000,081,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2016/09/15 13:15:56 | 000,130,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2016/09/15 13:14:50 | 000,119,648 | ---- | M] (Microsoft Corporation) [File_System | Auto] -- D:\WINDOWS\system32\drivers\wcifs.sys -- (wcifs)
DRV:64bit: - [2016/09/15 12:36:57 | 000,719,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\WdiWiFi.sys -- (wdiwifi)
DRV:64bit: - [2016/09/10 09:21:43 | 000,118,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\capimg.sys -- (CapImg)
DRV:64bit: - [2016/09/05 00:47:12 | 000,165,504 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand] -- D:\WINDOWS\system32\DRIVERS\ssudmdm.sys -- (ssudmdm) @oem29.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)
DRV:64bit: - [2016/09/05 00:47:06 | 000,131,712 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand] -- D:\WINDOWS\system32\DRIVERS\ssudbus.sys -- (dg_ssudbus) @oem30.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.)
DRV:64bit: - [2016/07/16 18:56:46 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2016/07/16 18:56:40 | 000,179,040 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\Windows\System32\drivers\mssecflt.sys -- (MsSecFlt)
DRV:64bit: - [2016/07/16 18:56:36 | 000,040,288 | ---- | M] (Microsoft Corporation) [File_System | Disabled] -- D:\WINDOWS\system32\drivers\UevAgentDriver.sys -- (UevAgentDriver)
DRV:64bit: - [2016/07/16 18:56:29 | 000,029,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2016/07/16 18:56:26 | 000,123,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2016/07/16 18:56:25 | 000,157,024 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\WINDOWS\system32\drivers\AppvVemgr.sys -- (AppvVemgr)
DRV:64bit: - [2016/07/16 18:56:25 | 000,141,152 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\WINDOWS\system32\drivers\AppvVfs.sys -- (AppvVfs)
DRV:64bit: - [2016/07/16 07:44:01 | 000,030,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2016/07/16 07:43:06 | 000,123,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2016/07/16 07:43:04 | 000,290,144 | ---- | M] (Microsoft Corporation) [File_System | On_Demand] -- D:\WINDOWS\system32\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2016/07/16 07:43:04 | 000,044,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2016/07/16 07:42:38 | 000,125,440 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- D:\Windows\System32\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2016/07/16 07:42:36 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2016/07/16 07:42:36 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- D:\Windows\System32\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2016/07/16 07:42:36 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\applockerfltr.sys -- (applockerfltr)
DRV:64bit: - [2016/07/16 07:42:35 | 000,003,009 | ---- | M] () [File_System | On_Demand] -- D:\Windows\System32\wbem\refsv1.mof -- (ReFSv1)
DRV:64bit: - [2016/07/16 07:42:35 | 000,000,308 | ---- | M] () [File_System | On_Demand] -- D:\Windows\System32\wbem\ntfs.mof -- (NTFS)
DRV:64bit: - [2016/07/16 07:42:28 | 000,107,032 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\WindowsTrustedRT.sys -- (WindowsTrustedRT)
DRV:64bit: - [2016/07/16 07:42:28 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\Windows\System32\drivers\gpuenergydrv.sys -- (GpuEnergyDrv)
DRV:64bit: - [2016/07/16 07:42:27 | 000,263,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\ufx01000.sys -- (Ufx01000)
DRV:64bit: - [2016/07/16 07:42:27 | 000,201,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2016/07/16 07:42:27 | 000,151,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2016/07/16 07:42:27 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\UcmTcpciCx.sys -- (UcmTcpciCx0101)
DRV:64bit: - [2016/07/16 07:42:27 | 000,095,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\UcmCx.sys -- (UcmCx0101)
DRV:64bit: - [2016/07/16 07:42:27 | 000,079,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2016/07/16 07:42:27 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | Auto] -- D:\Windows\System32\drivers\storqosflt.sys -- (storqosflt)
DRV:64bit: - [2016/07/16 07:42:27 | 000,074,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2016/07/16 07:42:27 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\urscx01000.sys -- (UrsCx01000)
DRV:64bit: - [2016/07/16 07:42:27 | 000,053,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2016/07/16 07:42:27 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\IndirectKmd.sys -- (IndirectKmd)
DRV:64bit: - [2016/07/16 07:42:27 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2016/07/16 07:42:23 | 000,038,752 | ---- | M] (Microsoft Corporation) [Kernel | Disabled] -- D:\Windows\System32\drivers\cnghwassist.sys -- (cnghwassist)
DRV:64bit: - [2016/07/16 07:42:22 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- D:\WINDOWS\system32\drivers\mmcss.sys -- (MMCSS)
DRV:64bit: - [2016/07/16 07:42:18 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2016/07/16 07:42:12 | 000,120,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\irda.sys -- (irda)
DRV:64bit: - [2016/07/16 07:42:11 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2016/07/16 07:42:09 | 000,168,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2016/07/16 07:42:09 | 000,156,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2016/07/16 07:42:09 | 000,070,144 | ---- | M] (Microsoft Corporation) [Kernel | Auto] -- D:\WINDOWS\System32\drivers\registry.sys -- (clreg)
DRV:64bit: - [2016/07/16 07:42:09 | 000,066,560 | ---- | M] (Microsoft Corporation) [File_System | Auto] -- D:\WINDOWS\system32\drivers\wcnfs.sys -- (wcnfs)
DRV:64bit: - [2016/07/16 07:42:03 | 000,210,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\Ucx01000.sys -- (Ucx01000)
DRV:64bit: - [2016/07/16 07:42:03 | 000,126,816 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2016/07/16 07:42:03 | 000,090,624 | ---- | M] () [Kernel | On_Demand] -- D:\Windows\System32\drivers\NetAdapterCx.sys -- (NetAdapterCx)
DRV:64bit: - [2016/07/16 07:42:03 | 000,088,576 | ---- | M] (Microsoft Corporation) [File_System | System] -- D:\Windows\System32\drivers\filecrypt.sys -- (FileCrypt)
DRV:64bit: - [2016/07/16 07:42:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (tsusbflt)
DRV:64bit: - [2016/07/16 07:42:03 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\Windows\System32\drivers\Udecx.sys -- (UdeCx)
DRV:64bit: - [2016/07/16 07:42:03 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\vhf.sys -- (vhf)
DRV:64bit: - [2016/07/16 07:41:55 | 000,535,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\UsbHub3.sys -- (USBHUB3)
DRV:64bit: - [2016/07/16 07:41:55 | 000,381,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2016/07/16 07:41:55 | 000,137,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\ufxsynopsys.sys -- (ufxsynopsys)
DRV:64bit: - [2016/07/16 07:41:55 | 000,096,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\UfxChipidea.sys -- (UfxChipidea)
DRV:64bit: - [2016/07/16 07:41:55 | 000,095,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2016/07/16 07:41:55 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\UcmUcsi.sys -- (UcmUcsi)
DRV:64bit: - [2016/07/16 07:41:55 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\urschipidea.sys -- (UrsChipidea)
DRV:64bit: - [2016/07/16 07:41:55 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\urssynopsys.sys -- (UrsSynopsys)
DRV:64bit: - [2016/07/16 07:41:55 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\genericusbfn.sys -- (genericusbfn)
DRV:64bit: - [2016/07/16 07:41:55 | 000,017,944 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\WindowsTrustedRTProxy.sys -- (WindowsTrustedRTProxy)
DRV:64bit: - [2016/07/16 07:41:54 | 000,176,384 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys -- (iaLPSS2i_I2C) @iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:54 | 000,081,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iai2c.sys -- (iai2c) @iai2c.inf,%iai2c.SVCDESC%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:54 | 000,064,512 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys -- (iaLPSS2i_GPIO2) @iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:54 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2016/07/16 07:41:54 | 000,050,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2016/07/16 07:41:54 | 000,050,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\hidinterrupt.sys -- (hidinterrupt)
DRV:64bit: - [2016/07/16 07:41:54 | 000,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\buttonconverter.sys -- (buttonconverter)
DRV:64bit: - [2016/07/16 07:41:54 | 000,034,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2016/07/16 07:41:54 | 000,033,280 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iagpio.sys -- (iagpio)
DRV:64bit: - [2016/07/16 07:41:54 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2016/07/16 07:41:54 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\kdnic.sys -- (kdnic) @kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20)
DRV:64bit: - [2016/07/16 07:41:53 | 002,104,160 | ---- | M] (Chelsio Communications) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\cht4vx64.sys -- (cht4vbd)
DRV:64bit: - [2016/07/16 07:41:53 | 001,135,456 | ---- | M] (PMC-Sierra) [Kernel | Boot] -- D:\Windows\System32\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2016/07/16 07:41:53 | 000,842,584 | ---- | M] (Mellanox) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\mlx4_bus.sys -- (mlx4_bus)
DRV:64bit: - [2016/07/16 07:41:53 | 000,673,120 | ---- | M] (Intel Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\iaStorAV.sys -- (iaStorAV) @iastorav.inf,%iaStorAV.DeviceDesc%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:53 | 000,589,824 | ---- | M] (Realtek ) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\rt640x64.sys -- (rt640x64)
DRV:64bit: - [2016/07/16 07:41:53 | 000,526,176 | ---- | M] (Mellanox) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\ibbus.sys -- (ibbus) @mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver)
DRV:64bit: - [2016/07/16 07:41:53 | 000,346,976 | ---- | M] (Chelsio Communications) [Kernel | On_Demand] -- D:\Windows\System32\drivers\cht4sx64.sys -- (cht4iscsi)
DRV:64bit: - [2016/07/16 07:41:53 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2016/07/16 07:41:53 | 000,123,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\scmdisk0101.sys -- (scmdisk0101)
DRV:64bit: - [2016/07/16 07:41:53 | 000,108,896 | ---- | M] (Mellanox) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\ndfltr.sys -- (ndfltr)
DRV:64bit: - [2016/07/16 07:41:53 | 000,107,360 | ---- | M] (LSI) [Kernel | Boot] -- D:\Windows\System32\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2016/07/16 07:41:53 | 000,105,824 | ---- | M] (LSI Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\lsi_sas2i.sys -- (LSI_SAS2i)
DRV:64bit: - [2016/07/16 07:41:53 | 000,101,216 | ---- | M] (Avago Technologies) [Kernel | Boot] -- D:\Windows\System32\drivers\lsi_sas3i.sys -- (LSI_SAS3i)
DRV:64bit: - [2016/07/16 07:41:53 | 000,088,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\scmbus.sys -- (scmbus)
DRV:64bit: - [2016/07/16 07:41:53 | 000,082,776 | ---- | M] (LSI Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2016/07/16 07:41:53 | 000,077,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\uaspstor.sys -- (UASPStor) @uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS)
DRV:64bit: - [2016/07/16 07:41:53 | 000,069,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\usbser.sys -- (usbser)
DRV:64bit: - [2016/07/16 07:41:53 | 000,064,864 | ---- | M] (Mellanox) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\winverbs.sys -- (WinVerbs)
DRV:64bit: - [2016/07/16 07:41:53 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot] -- D:\Windows\System32\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2016/07/16 07:41:53 | 000,061,792 | ---- | M] (Avago Technologies) [Kernel | Boot] -- D:\Windows\System32\drivers\percsas3i.sys -- (percsas3i)
DRV:64bit: - [2016/07/16 07:41:53 | 000,058,720 | ---- | M] (Avago Technologies) [Kernel | Boot] -- D:\Windows\System32\drivers\percsas2i.sys -- (percsas2i)
DRV:64bit: - [2016/07/16 07:41:53 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2016/07/16 07:41:53 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | System] -- D:\WINDOWS\System32\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2016/07/16 07:41:53 | 000,032,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\storufs.sys -- (storufs) @storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS)
DRV:64bit: - [2016/07/16 07:41:53 | 000,032,096 | ---- | M] (Mellanox) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\winmad.sys -- (WinMad)
DRV:64bit: - [2016/07/16 07:41:53 | 000,028,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\UEFI.sys -- (UEFI)
DRV:64bit: - [2016/07/16 07:41:53 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\AcpiDev.sys -- (AcpiDev)
DRV:64bit: - [2016/07/16 07:41:53 | 000,016,224 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\volume.sys -- (volume)
DRV:64bit: - [2016/07/16 07:41:53 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2016/07/16 07:41:53 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2016/07/16 07:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2016/07/16 07:41:53 | 000,009,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\bcmfn.sys -- (bcmfn)
DRV:64bit: - [2016/07/16 07:41:52 | 003,418,976 | ---- | M] (QLogic Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2016/07/16 07:41:52 | 000,533,856 | ---- | M] (QLogic Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2016/07/16 07:41:52 | 000,048,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot] -- D:\Windows\System32\drivers\intelpep.sys -- (intelpep) @intelpep.inf,%INTELPEP.SVCDESC%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:52 | 000,038,128 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO) @ialpssi_gpio.inf,%iaLPSSi_GPIO.SVCDESC%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:50 | 000,113,152 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C) @ialpssi_i2c.inf,%iaLPSSi_I2C.SVCDESC%;Intel(R)
DRV:64bit: - [2016/07/16 07:41:50 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2016/07/16 07:41:50 | 000,064,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2016/07/16 07:41:50 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2016/07/16 07:41:50 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys -- (CompositeBus)
DRV:64bit: - [2016/07/16 07:41:50 | 000,035,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2016/07/16 07:41:50 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\BthHFHid.sys -- (bthhfhid)
DRV:64bit: - [2016/07/16 07:41:50 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2016/07/16 07:41:50 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2016/07/16 07:41:50 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\vmgid.sys -- (vmgid)
DRV:64bit: - [2015/10/15 14:13:32 | 000,041,456 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\MBI.sys -- (MBI) Intel(R)
DRV:64bit: - [2015/08/23 12:08:16 | 000,100,776 | ---- | M] (ASUS Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\AsusTP.sys -- (ATP)
DRV:64bit: - [2015/08/19 20:53:56 | 000,027,872 | ---- | M] (ASUS) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\AsHIDSwitch64.sys -- (HIDSwitch)
DRV:64bit: - [2015/07/21 18:42:06 | 000,102,912 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand] -- D:\WINDOWS\system32\drivers\AtihdWT6.sys -- (AtiHDAudioService)
DRV:64bit: - [2015/07/20 15:45:04 | 000,038,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2015/06/26 06:56:32 | 000,146,232 | ---- | M] (Intel Corporation) [Kernel | On_Demand] -- D:\WINDOWS\System32\drivers\TXEIx64.sys -- (TXEIx64) Intel(R)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\LocalService_ON_D\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\Malychenko_ON_D\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
IE - HKU\Malychenko_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
IE - HKU\Malychenko_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
IE - HKU\Malychenko_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 9F A2 2D 68 F6 E7 D1 01 [binary data]
IE - HKU\Malychenko_ON_D\Software\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 21 82 FF FD F5 E7 D1 01 [binary data]
IE - HKU\Malychenko_ON_D\Software\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 33 00 00 00 DC 49 B1 F4 47 45 31 67 0C A8 DB C9 4E 4F B8 15 03 4D B9 29 CC 06 ED B8 B9 A7 83 34 53 5B 2E 1D 4A 45 92 CB 78 9B D0 FE D0 A6 B5 A5 B4 9F 25 7F 19 CE 96 02 00 00 00 0E 00 00 00 66 65 33 34 6C 6F 43 5A 4F 69 63 25 33 64 [binary data]
IE - HKU\Malychenko_ON_D\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\NetworkService_ON_D\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "DE"
FF - prefs.js..browser.search.hiddenOneOffs: "Yahoo,Amazon.de,Bing,DuckDuckGo,eBay,LEO Eng-Deu,Wikipedia (de)"
FF - prefs.js..browser.search.region: "DE"
FF - prefs.js..browser.startup.homepage: "hxxp://hp.myway.com/pconverter/ttab02/index.html?coId=679adcea12ab46bf835c61a644b23854&subId&ln=de&n=782aacf0&ptb=9C398FDD-DCB1-4EAC-802F-67464F4EFBBA&st=tab&p2=%5EBYC%5Exdm001%5ETTAB02%5Ede&si"
FF - prefs.js..browser.startup.homepage: "Google.de"
FF - prefs.js..browser.startup.homepage: "true"
FF - prefs.js..browser.startup.homepage: "hxxp://hp.myway.com/pconverter/ttab02/index.html?coId=679adcea12ab46bf835c61a644b23854&subId&ln=de&n=782aacf0&ptb=9C398FDD-DCB1-4EAC-802F-67464F4EFBBA&st=tab&p2=%5EBYC%5Exdm001%5ETTAB02%5Ede&si"
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\System32\Macromed\Flash\NPSWF64_24_0_0_221.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_221.dll ()
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin: D:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4: D:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Firefox\Extensions\\e-webprint@epson.com: C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2016/03/13 11:46:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 51.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\wow6432node\mozilla\Mozilla Firefox 51.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 51.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 51.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2016/02/22 21:27:26 | 000,000,000 | ---D | M] (No name found) -- D:\Users\Malychenko\AppData\Roaming\Mozilla\Extensions
[2017/03/02 04:00:38 | 000,000,000 | ---D | M] (No name found) -- D:\Users\Malychenko\AppData\Roaming\Mozilla\Firefox\Profiles\Szu66PBZ.default\extensions
[2017/02/06 14:03:54 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files (x86)\Mozilla Firefox\browser\extensions
File not found (No name found) --
O1 HOSTS File: ([2016/02/22 07:04:54 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (E-Web Print) - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - D:\Program Files (x86)\EPSON Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
O3 - HKLM\..\Toolbar: (E-Web Print) - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - D:\Program Files (x86)\EPSON Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
O4:64bit: - HKLM..\Run: [StartCN] D:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [avgnt] D:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [Avira SystrayStartTrigger] D:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [EEventManager] D:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [FUFAXRCV] D:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [FUFAXSTM] D:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe (SEIKO EPSON CORPORATION)
O4 - HKU\.DEFAULT..\Run: [EPLTarget\P0000000000000000] File not found
O4 - HKU\LocalService_ON_D..\Run: [OneDriveSetup] D:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O4 - HKU\Malychenko_ON_D..\Run: [OneDrive] D:\Users\Malychenko\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
O4 - HKU\NetworkService_ON_D..\Run: [OneDriveSetup] D:\Windows\SysWOW64\OneDriveSetup.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DSCAutomationHostEnabled = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O7 - HKU\Malychenko_ON_D\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O13:64bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
O18:64bit: - Protocol\Handler\tbauth {14654CA6-5711-491D-B89A-58E571679951} - D:\Windows\System32\tbauth.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\windows.tbauth {14654CA6-5711-491D-B89A-58E571679951} - D:\Windows\System32\tbauth.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\WINDOWS\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - ( ) - (Registry value not found)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/03/24 07:06:41 | 000,000,053 | R--- | M] () - X:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{aa613bf6-d9c1-11e5-bd19-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{aa613bf6-d9c1-11e5-bd19-806e6f6e6963}\Shell\AutoRun\command - "" = "D:\EPSETUP.EXE"
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
64bit: O35 - HKLM\..comfile [open] -- "%1" %* File not found
64bit: O35 - HKLM\..exefile [open] -- "%1" %* File not found
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
========== Files/Folders - Created Within 30 Days ==========
[2017/04/06 04:30:52 | 000,000,000 | ---D | C] -- D:\$WINDOWS.~LS
[2017/03/24 10:23:02 | 000,000,000 | ---D | C] -- D:\$WINDOWS.~BT
[2017/03/24 10:02:50 | 000,000,000 | -H-D | C] -- D:\$SysReset
[2017/03/24 09:25:23 | 000,000,000 | ---D | C] -- D:\ProgramData\Package Cache
[2017/03/11 12:58:53 | 000,000,000 | -HSD | C] -- D:\found.008
[2017/03/11 08:50:27 | 000,000,000 | ---D | C] -- D:\WINDOWS\Logs
[2017/03/11 05:34:39 | 000,000,000 | ---D | C] -- D:\ProgramData\InstallShield
[2017/03/11 05:34:12 | 000,501,912 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\SysWow64\PICSDK2.dll
[2017/03/11 05:34:11 | 000,120,992 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\SysWow64\EpPicPrt.dll
[2017/03/11 05:34:11 | 000,108,704 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\SysWow64\PICEntry.dll
[2017/03/11 05:34:11 | 000,080,024 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\SysWow64\PICSDK.dll
[2017/03/11 05:34:11 | 000,071,840 | ---- | C] (SEIKO EPSON CORPORATION) -- D:\WINDOWS\SysWow64\EPPicMgr.dll
[2017/03/11 05:34:09 | 000,000,000 | ---D | C] -- D:\Users\Malychenko\AppData\Roaming\InstallShield
[2017/03/11 05:32:24 | 000,083,968 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\esxcwiad.dll
[2017/03/11 05:32:24 | 000,012,800 | ---- | C] (SEIKO EPSON CORP.) -- D:\WINDOWS\System32\esxcdev.dll
[2017/03/10 13:27:06 | 000,000,000 | -HSD | C] -- D:\found.007
[2017/03/09 14:43:27 | 000,000,000 | ---D | C] -- D:\WINDOWS\Minidump
[2017/03/09 14:41:54 | 000,000,000 | -HSD | C] -- D:\found.006
[2017/03/07 12:29:01 | 000,000,000 | -HSD | C] -- D:\found.005
[4 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2017/04/06 03:01:37 | 000,067,584 | --S- | M] () -- D:\WINDOWS\bootstat.dat
[2017/04/06 03:01:33 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2017/04/06 03:01:29 | 3197,976,576 | -HS- | M] () -- D:\hiberfil.sys
[2017/04/06 03:00:50 | 000,065,536 | ---- | M] () -- D:\WINDOWS\System32\spu_storage.bin
[2017/03/24 11:13:54 | 000,000,214 | ---- | M] () -- D:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2017/03/24 09:26:32 | 000,000,000 | ---D | M] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2017/03/24 09:26:31 | 000,001,219 | ---- | M] () -- D:\Users\Public\Desktop\Avira Connect.lnk
[2017/03/24 09:12:47 | 000,163,976 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\WINDOWS\System32\drivers\avipbb.sys
[2017/03/24 09:12:47 | 000,161,824 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\WINDOWS\System32\drivers\avgntflt.sys
[2017/03/24 09:12:47 | 000,088,488 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\WINDOWS\System32\drivers\avnetflt.sys
[2017/03/24 09:12:47 | 000,048,584 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\WINDOWS\System32\drivers\avusbflt.sys
[2017/03/24 09:12:47 | 000,044,488 | ---- | M] (Avira Operations GmbH & Co. KG) -- D:\WINDOWS\System32\drivers\avkmgr.sys
[2017/03/11 08:46:49 | 399,607,238 | ---- | M] () -- D:\WINDOWS\MEMORY.DMP
[2017/03/11 06:38:02 | 000,002,418 | ---- | M] () -- D:\Users\Public\Desktop\EPSON Stylus Photo PX700W_PX800FW_TX700W_TX800FW Handbuch.lnk
[2017/03/11 06:37:09 | 000,001,017 | ---- | M] () -- D:\Users\Public\Desktop\EPSON Scan.lnk
[2017/03/11 05:34:03 | 000,000,000 | ---D | M] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
[4 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ]
========== Files Created - No Company Name ==========
[2017/03/24 11:13:54 | 000,000,214 | ---- | C] () -- D:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job
[2017/03/24 09:26:31 | 000,001,219 | ---- | C] () -- D:\Users\Public\Desktop\Avira Connect.lnk
[2017/03/11 05:34:12 | 000,000,097 | ---- | C] () -- D:\WINDOWS\SysWow64\PICSDK.ini
[2017/03/11 05:34:11 | 000,111,932 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPrinterDB.dat
[2017/03/11 05:34:11 | 000,031,053 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern131.dat
[2017/03/11 05:34:11 | 000,027,417 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern121.dat
[2017/03/11 05:34:11 | 000,026,154 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern1.dat
[2017/03/11 05:34:11 | 000,024,903 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern3.dat
[2017/03/11 05:34:11 | 000,021,390 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern5.dat
[2017/03/11 05:34:11 | 000,020,148 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern2.dat
[2017/03/11 05:34:11 | 000,013,732 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_EN.cfg
[2017/03/11 05:34:11 | 000,011,811 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern4.dat
[2017/03/11 05:34:11 | 000,006,442 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_IT.cfg
[2017/03/11 05:34:11 | 000,006,335 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_GE.cfg
[2017/03/11 05:34:11 | 000,006,195 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_CF.cfg
[2017/03/11 05:34:11 | 000,006,122 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_DU.cfg
[2017/03/11 05:34:11 | 000,006,103 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_ES.cfg
[2017/03/11 05:34:11 | 000,005,817 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_KO.cfg
[2017/03/11 05:34:11 | 000,005,436 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_SC.cfg
[2017/03/11 05:34:11 | 000,004,943 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPattern6.dat
[2017/03/11 05:34:11 | 000,002,889 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_RU.cfg
[2017/03/11 05:34:11 | 000,002,426 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_TC.cfg
[2017/03/11 05:34:11 | 000,001,146 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_DU.dat
[2017/03/11 05:34:11 | 000,001,139 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_PT.dat
[2017/03/11 05:34:11 | 000,001,139 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_BP.dat
[2017/03/11 05:34:11 | 000,001,136 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_ES.dat
[2017/03/11 05:34:11 | 000,001,129 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_FR.dat
[2017/03/11 05:34:11 | 000,001,129 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_CF.dat
[2017/03/11 05:34:11 | 000,001,120 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_IT.dat
[2017/03/11 05:34:11 | 000,001,107 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_GE.dat
[2017/03/11 05:34:11 | 000,001,104 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICPresetData_EN.dat
[2017/03/11 05:34:10 | 000,006,347 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_PT.cfg
[2017/03/11 05:34:10 | 000,006,347 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_BP.cfg
[2017/03/11 05:34:10 | 000,006,195 | ---- | C] () -- D:\WINDOWS\SysWow64\EPPICLocal_FR.cfg
[2017/03/11 05:34:03 | 000,002,418 | ---- | C] () -- D:\Users\Public\Desktop\EPSON Stylus Photo PX700W_PX800FW_TX700W_TX800FW Handbuch.lnk
[2017/01/24 20:29:52 | 000,258,072 | ---- | C] () -- D:\WINDOWS\SysWow64\GameManager32.dll
[2017/01/24 20:29:52 | 000,251,416 | ---- | C] () -- D:\WINDOWS\SysWow64\hsa-thunk.dll
[2017/01/24 20:29:48 | 000,226,328 | ---- | C] () -- D:\WINDOWS\SysWow64\atieah32.exe
[2017/01/24 20:29:40 | 000,239,128 | ---- | C] () -- D:\WINDOWS\SysWow64\amdgfxinfo32.dll
[2016/12/18 15:31:52 | 002,048,496 | ---- | C] () -- D:\WINDOWS\SysWow64\CoreUIComponents.dll
[2016/10/10 18:13:24 | 000,265,728 | ---- | C] () -- D:\WINDOWS\SysWow64\Windows.Perception.Stub.dll
[2016/09/22 04:47:12 | 000,067,584 | --S- | C] () -- D:\WINDOWS\bootstat.dat
[2016/07/16 07:47:57 | 000,215,943 | ---- | C] () -- D:\WINDOWS\SysWow64\dssec.dat
[2016/07/16 07:47:57 | 000,000,741 | ---- | C] () -- D:\WINDOWS\SysWow64\NOISE.DAT
[2016/07/16 07:43:52 | 000,197,632 | ---- | C] () -- D:\WINDOWS\SysWow64\ir32_32original.dll
[2016/07/16 07:43:04 | 000,055,296 | ---- | C] () -- D:\WINDOWS\SysWow64\BWContextHandler.dll
[2016/07/16 07:43:00 | 000,019,968 | ---- | C] () -- D:\WINDOWS\SysWow64\GamePanelExternalHook.dll
[2016/07/16 07:42:55 | 000,167,640 | ---- | C] () -- D:\WINDOWS\SysWow64\chs_singlechar_pinyin.dat
[2016/07/16 07:42:53 | 000,673,088 | ---- | C] () -- D:\WINDOWS\SysWow64\mlang.dat
[2016/07/16 07:42:49 | 000,304,640 | ---- | C] () -- D:\WINDOWS\SysWow64\HrtfApo.dll
[2016/07/16 07:42:48 | 000,364,544 | ---- | C] () -- D:\WINDOWS\SysWow64\msjetoledb40.dll
[2016/07/16 07:42:43 | 000,002,307 | ---- | C] () -- D:\WINDOWS\SysWow64\WimBootCompress.ini
[2016/07/16 07:42:12 | 000,043,131 | ---- | C] () -- D:\WINDOWS\mib.bin
[2016/06/24 10:32:20 | 000,204,952 | ---- | C] () -- D:\WINDOWS\SysWow64\ativvsvl.dat
[2016/06/24 10:32:20 | 000,157,144 | ---- | C] () -- D:\WINDOWS\SysWow64\ativvsva.dat
[2016/02/22 20:15:45 | 000,000,000 | ---- | C] () -- D:\WINDOWS\ativpsrm.bin
[2015/12/16 15:07:38 | 001,004,032 | ---- | C] () -- D:\WINDOWS\SysWow64\amdocl_as32.exe
[2015/12/16 15:07:36 | 000,807,424 | ---- | C] () -- D:\WINDOWS\SysWow64\amdocl_ld32.exe
[2011/06/03 05:59:12 | 000,945,664 | ---- | C] () -- D:\WINDOWS\SysWow64\SevenPDFComObj.dll
========== LOP Check ==========
[2017/02/03 15:18:35 | 000,000,000 | ---D | M] -- D:\ProgramData\AMD
[2016/02/22 20:23:35 | 000,000,000 | -HSD | M] -- D:\ProgramData\Anwendungsdaten
[2016/07/16 07:47:48 | 000,000,000 | ---D | M] -- D:\ProgramData\Comms
[2016/09/22 05:33:32 | 000,000,000 | -HSD | M] -- D:\ProgramData\Desktop
[2016/02/22 20:23:35 | 000,000,000 | -HSD | M] -- D:\ProgramData\Dokumente
[2016/09/22 05:01:02 | 000,000,000 | ---D | M] -- D:\ProgramData\EPSON
[2017/03/24 09:25:23 | 000,000,000 | ---D | M] -- D:\ProgramData\Package Cache
[2016/09/22 05:33:11 | 000,000,000 | ---D | M] -- D:\ProgramData\regid.1991-06.com.microsoft
[2016/07/16 07:47:48 | 000,000,000 | ---D | M] -- D:\ProgramData\SoftwareDistribution
[2016/02/22 20:23:35 | 000,000,000 | -HSD | M] -- D:\ProgramData\Startmenü
[2016/09/22 07:17:01 | 000,000,000 | ---D | M] -- D:\ProgramData\USOPrivate
[2016/09/22 07:17:00 | 000,000,000 | ---D | M] -- D:\ProgramData\USOShared
[2016/02/22 20:23:35 | 000,000,000 | -HSD | M] -- D:\ProgramData\Vorlagen
[2017/03/24 11:13:54 | 000,000,214 | ---- | M] () -- D:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
========== Purity Check ==========
< End of report >
| |
