TDSSKiller: Code:
16:19:59.0877 0x2254 TDSS rootkit removing tool 3.1.0.7 Nov 29 2015 22:37:04
16:19:59.0877 0x2254 UEFI system
16:20:03.0057 0x2254 ============================================================
16:20:03.0057 0x2254 Current date / time: 2015/12/05 16:20:03.0057
16:20:03.0057 0x2254 SystemInfo:
16:20:03.0057 0x2254
16:20:03.0057 0x2254 OS Version: 10.0.10240 ServicePack: 0.0
16:20:03.0057 0x2254 Product type: Workstation
16:20:03.0057 0x2254 ComputerName: SN_1402860
16:20:03.0057 0x2254 UserName: Florian
16:20:03.0057 0x2254 Windows directory: C:\WINDOWS
16:20:03.0057 0x2254 System windows directory: C:\WINDOWS
16:20:03.0057 0x2254 Running under WOW64
16:20:03.0057 0x2254 Processor architecture: Intel x64
16:20:03.0057 0x2254 Number of processors: 4
16:20:03.0057 0x2254 Page size: 0x1000
16:20:03.0057 0x2254 Boot type: Normal boot
16:20:03.0057 0x2254 ============================================================
16:20:03.0141 0x2254 KLMD registered as C:\WINDOWS\system32\drivers\99176134.sys
16:20:03.0252 0x2254 System UUID: {2C2DBCF6-2981-3690-FCA2-BEA1EF8710AC}
16:20:03.0630 0x2254 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:20:03.0630 0x2254 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:20:03.0641 0x2254 ============================================================
16:20:03.0641 0x2254 \Device\Harddisk0\DR0:
16:20:03.0641 0x2254 GPT partitions:
16:20:03.0642 0x2254 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9C9821B9-9A4D-4228-BDED-EF84CCE6FFC3}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
16:20:03.0642 0x2254 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6048C1F5-ABBC-4A74-94F1-C8B80D1DAB03}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
16:20:03.0642 0x2254 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {BDC1DBF5-2752-4350-A94A-342FF1117E61}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0xDF22000
16:20:03.0642 0x2254 MBR partitions:
16:20:03.0642 0x2254 \Device\Harddisk1\DR1:
16:20:03.0642 0x2254 GPT partitions:
16:20:03.0642 0x2254 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8830645D-3521-4276-8440-A3D9243E77E0}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xE8E08000
16:20:03.0642 0x2254 MBR partitions:
16:20:03.0642 0x2254 ============================================================
16:20:03.0643 0x2254 C: <-> \Device\Harddisk0\DR0\Partition3
16:20:03.0676 0x2254 D: <-> \Device\Harddisk1\DR1\Partition1
16:20:03.0676 0x2254 ============================================================
16:20:03.0676 0x2254 Initialize success
16:20:03.0676 0x2254 ============================================================
16:20:11.0159 0x0a88 ============================================================
16:20:11.0159 0x0a88 Scan started
16:20:11.0159 0x0a88 Mode: Manual;
16:20:11.0159 0x0a88 ============================================================
16:20:11.0159 0x0a88 KSN ping started
16:20:13.0538 0x0a88 KSN ping finished: true
16:20:14.0015 0x0a88 ================ Scan system memory ========================
16:20:14.0015 0x0a88 System memory - ok
16:20:14.0015 0x0a88 ================ Scan services =============================
16:20:14.0049 0x0a88 1394ohci - ok
16:20:14.0051 0x0a88 3ware - ok
16:20:14.0054 0x0a88 ACPI - ok
16:20:14.0056 0x0a88 acpiex - ok
16:20:14.0060 0x0a88 acpipagr - ok
16:20:14.0063 0x0a88 AcpiPmi - ok
16:20:14.0065 0x0a88 acpitime - ok
16:20:14.0068 0x0a88 [ 2F0683FD2DF1D92E891CACA14B45A8C1, B4A8D6A183FA0B7D642FAD6B51C19FEC998481E1C49480D2B391E5D8B55F5BBD ] adfs C:\WINDOWS\system32\drivers\adfs.sys
16:20:14.0070 0x0a88 adfs - ok
16:20:14.0088 0x0a88 [ 57A3B9A69F14414ACE12AFD6BA701773, E17FD004315B666E3A880C987A83A2B6C6156C3D6E9550AAC6F686348F7CE7AC ] Adobe Version Cue CS4 C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
16:20:14.0092 0x0a88 Adobe Version Cue CS4 - ok
16:20:14.0096 0x0a88 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:20:14.0097 0x0a88 AdobeARMservice - ok
16:20:14.0119 0x0a88 [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:20:14.0123 0x0a88 AdobeFlashPlayerUpdateSvc - ok
16:20:14.0127 0x0a88 ADP80XX - ok
16:20:14.0133 0x0a88 AFD - ok
16:20:14.0135 0x0a88 agp440 - ok
16:20:14.0137 0x0a88 ahcache - ok
16:20:14.0139 0x0a88 AJRouter - ok
16:20:14.0144 0x0a88 ALG - ok
16:20:14.0148 0x0a88 [ D4AE4A75771DBD0EBF078685B76C4093, CBF41127608B0DE853C57445E6E0220305065762083C201C842EC277900649B5 ] amdiommu C:\WINDOWS\System32\drivers\amdkiomd.sys
16:20:14.0150 0x0a88 amdiommu - ok
16:20:14.0152 0x0a88 AmdK8 - ok
16:20:14.0155 0x0a88 [ F2FF8C1B41B3784EDBD5C6D5397F403C, 104873700D2BDF4812DC48200B4609F46A63E7A50594A0599100EF1438863708 ] amdkmafd C:\WINDOWS\System32\drivers\amdkmafd.sys
16:20:14.0155 0x0a88 amdkmafd - ok
16:20:14.0159 0x0a88 [ 8A375CB3B6D1A56A2AEEE72A5F1D0926, 03D6EA77B141675B719E66DA09D1DACC7137B19F9918C303DD6870B3F36ADEBB ] amdkmpfd C:\WINDOWS\system32\drivers\amdkmpfd.sys
16:20:14.0160 0x0a88 amdkmpfd - ok
16:20:14.0162 0x0a88 AmdPPM - ok
16:20:14.0164 0x0a88 amdsata - ok
16:20:14.0166 0x0a88 amdsbs - ok
16:20:14.0168 0x0a88 amdxata - ok
16:20:14.0171 0x0a88 AppID - ok
16:20:14.0173 0x0a88 AppIDSvc - ok
16:20:14.0177 0x0a88 Appinfo - ok
16:20:14.0187 0x0a88 [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:20:14.0188 0x0a88 Apple Mobile Device Service - ok
16:20:14.0193 0x0a88 AppReadiness - ok
16:20:14.0196 0x0a88 AppXSvc - ok
16:20:14.0198 0x0a88 arcsas - ok
16:20:14.0201 0x0a88 [ 7BC1F2FC2A9D79E1EBBBF6D69AC3BA1F, 236265BE3F1B2130025A3A10152893BD0D18AD8965732361058B775F010539A2 ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
16:20:14.0201 0x0a88 aswHwid - ok
16:20:14.0205 0x0a88 [ 82065730918234A15A3A7AD6153FF8F2, 8426FF72512F7C7456E9A648100BFD35AC43FA8C01F98493B036F78F13C1F2C8 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
16:20:14.0206 0x0a88 aswMonFlt - ok
16:20:14.0212 0x0a88 [ 2D6B49A071216796106E7804AB2BA7DC, 6A58A3B36EA05A24333482F87CFD315F73E56A64E46493E82E0FE9115E284168 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
16:20:14.0213 0x0a88 aswRdr - ok
16:20:14.0217 0x0a88 [ E46B51C99BB750A81AC6A68362475A5C, 2A61C09902B39696D151B9D5E6A60FFC3CF3EA02613EC64BBAB4DEE3C78838E2 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
16:20:14.0218 0x0a88 aswRvrt - ok
16:20:14.0236 0x0a88 [ A428CC308673A5E74F91D92E4A2B205D, 0A768AA4BD1CD22B5181EDA692F7CB9A43F627BB4FFEEFBB8CBC77A45107A443 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
16:20:14.0248 0x0a88 aswSnx - ok
16:20:14.0260 0x0a88 [ 5C0C4440A27074BBABC5D572DD29CA9B, 9545498B55994D427DB71F67B28C24804FECFE6BF225B24B067A7F0658429EDF ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
16:20:14.0265 0x0a88 aswSP - ok
16:20:14.0270 0x0a88 [ D9079E1A1C2A1F8ED5F37AF8E6CD3161, 629E3A642C5E3BEA65CDD2E08CAD69F9649A98BDA906678B51D3D2C9DB5BB253 ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
16:20:14.0272 0x0a88 aswStm - ok
16:20:14.0279 0x0a88 [ 3BEC32A0B646D914921FD56AA39998C1, 8DB7CBF3DEF8EAE1D7D28C38B3A0FCD5C2A04D772078B907F35C66451355A04A ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
16:20:14.0284 0x0a88 aswVmm - ok
16:20:14.0287 0x0a88 AsyncMac - ok
16:20:14.0289 0x0a88 atapi - ok
16:20:14.0293 0x0a88 AudioEndpointBuilder - ok
16:20:14.0295 0x0a88 Audiosrv - ok
16:20:14.0336 0x0a88 [ F5CB8703A4F51EE30E5C090C78073AA4, 90683F39E9AA315FFB66A9F014AD1BEBF19EA62908247C133455815F6632E578 ] avast! Antivirus D:\Programme\Avast\AvastSvc.exe
16:20:14.0339 0x0a88 avast! Antivirus - ok
16:20:14.0341 0x0a88 AvastVBoxSvc - ok
16:20:14.0344 0x0a88 AxInstSV - ok
16:20:14.0346 0x0a88 b06bdrv - ok
16:20:14.0349 0x0a88 BasicDisplay - ok
16:20:14.0351 0x0a88 BasicRender - ok
16:20:14.0354 0x0a88 bcmfn2 - ok
16:20:14.0357 0x0a88 BDESVC - ok
16:20:14.0361 0x0a88 Beep - ok
16:20:14.0386 0x0a88 [ 12A7660F0666033B98510A1C45EE0C34, 280350B3E960479A0CE4848916804950CF241846162955EB9D12E725CFF0ADD7 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
16:20:14.0401 0x0a88 BEService - ok
16:20:14.0404 0x0a88 BFE - ok
16:20:14.0407 0x0a88 BITS - ok
16:20:14.0417 0x0a88 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:20:14.0423 0x0a88 Bonjour Service - ok
16:20:14.0426 0x0a88 bowser - ok
16:20:14.0427 0x0a88 BrokerInfrastructure - ok
16:20:14.0429 0x0a88 Browser - ok
16:20:14.0432 0x0a88 BthAvrcpTg - ok
16:20:14.0435 0x0a88 BthHFEnum - ok
16:20:14.0437 0x0a88 bthhfhid - ok
16:20:14.0440 0x0a88 BthHFSrv - ok
16:20:14.0442 0x0a88 BTHMODEM - ok
16:20:14.0446 0x0a88 bthserv - ok
16:20:14.0448 0x0a88 buttonconverter - ok
16:20:14.0450 0x0a88 CapImg - ok
16:20:14.0452 0x0a88 cdfs - ok
16:20:14.0455 0x0a88 CDPSvc - ok
16:20:14.0457 0x0a88 cdrom - ok
16:20:14.0461 0x0a88 CertPropSvc - ok
16:20:14.0463 0x0a88 circlass - ok
16:20:14.0465 0x0a88 CLFS - ok
16:20:14.0467 0x0a88 ClipSVC - ok
16:20:14.0473 0x0a88 CmBatt - ok
16:20:14.0476 0x0a88 CNG - ok
16:20:14.0478 0x0a88 cnghwassist - ok
16:20:14.0491 0x0a88 CompositeBus - ok
16:20:14.0493 0x0a88 COMSysApp - ok
16:20:14.0495 0x0a88 condrv - ok
16:20:14.0498 0x0a88 CoreMessagingRegistrar - ok
16:20:14.0520 0x0a88 [ A6B9FD89353D6005DD74485F591F2A83, 1148FDAC0C4B01E9F7C925E22F0E13CA0ECA3DB8AE13F3303E99AB03D4E7B644 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
16:20:14.0525 0x0a88 cphs - ok
16:20:14.0529 0x0a88 CryptSvc - ok
16:20:14.0531 0x0a88 dam - ok
16:20:14.0534 0x0a88 DcomLaunch - ok
16:20:14.0536 0x0a88 DcpSvc - ok
16:20:14.0538 0x0a88 defragsvc - ok
16:20:14.0541 0x0a88 DeviceAssociationService - ok
16:20:14.0543 0x0a88 DeviceInstall - ok
16:20:14.0545 0x0a88 DevQueryBroker - ok
16:20:14.0547 0x0a88 Dfsc - ok
16:20:14.0549 0x0a88 Dhcp - ok
16:20:14.0552 0x0a88 diagnosticshub.standardcollector.service - ok
16:20:14.0554 0x0a88 DiagTrack - ok
16:20:14.0557 0x0a88 disk - ok
16:20:14.0561 0x0a88 DmEnrollmentSvc - ok
16:20:14.0563 0x0a88 dmvsc - ok
16:20:14.0565 0x0a88 dmwappushservice - ok
16:20:14.0567 0x0a88 Dnscache - ok
16:20:14.0570 0x0a88 dot3svc - ok
16:20:14.0572 0x0a88 DPS - ok
16:20:14.0576 0x0a88 drmkaud - ok
16:20:14.0578 0x0a88 DsmSvc - ok
16:20:14.0580 0x0a88 DsSvc - ok
16:20:14.0583 0x0a88 DXGKrnl - ok
16:20:14.0585 0x0a88 Eaphost - ok
16:20:14.0587 0x0a88 ebdrv - ok
16:20:14.0589 0x0a88 EFS - ok
16:20:14.0593 0x0a88 EhStorClass - ok
16:20:14.0595 0x0a88 EhStorTcgDrv - ok
16:20:14.0597 0x0a88 embeddedmode - ok
16:20:14.0599 0x0a88 EntAppSvc - ok
16:20:14.0602 0x0a88 ErrDev - ok
16:20:14.0606 0x0a88 EventSystem - ok
16:20:14.0608 0x0a88 exfat - ok
16:20:14.0611 0x0a88 fastfat - ok
16:20:14.0613 0x0a88 Fax - ok
16:20:14.0615 0x0a88 fcvsc - ok
16:20:14.0617 0x0a88 fdc - ok
16:20:14.0619 0x0a88 fdPHost - ok
16:20:14.0622 0x0a88 FDResPub - ok
16:20:14.0624 0x0a88 fhsvc - ok
16:20:14.0626 0x0a88 FileCrypt - ok
16:20:14.0628 0x0a88 FileInfo - ok
16:20:14.0630 0x0a88 Filetrace - ok
16:20:14.0645 0x0a88 [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:20:14.0652 0x0a88 FLEXnet Licensing Service - ok
16:20:14.0675 0x0a88 [ 1C3FB052A0BB72EDAED90785C34D6EED, 5300A82D1A79EBA1768F545E73974E3B8CE189AB39CDF905BF42AFA2E497186B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
16:20:14.0687 0x0a88 FLEXnet Licensing Service 64 - ok
16:20:14.0690 0x0a88 flpydisk - ok
16:20:14.0693 0x0a88 FltMgr - ok
16:20:14.0695 0x0a88 FontCache - ok
16:20:14.0698 0x0a88 FontCache3.0.0.0 - ok
16:20:14.0700 0x0a88 FsDepends - ok
16:20:14.0702 0x0a88 Fs_Rec - ok
16:20:14.0704 0x0a88 fvevol - ok
16:20:14.0706 0x0a88 gagp30kx - ok
16:20:14.0709 0x0a88 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:20:14.0710 0x0a88 GEARAspiWDM - ok
16:20:14.0713 0x0a88 gencounter - ok
16:20:14.0715 0x0a88 genericusbfn - ok
16:20:14.0735 0x0a88 [ 5E42BDFF22707E577AD82BE4C43C3BCE, 4C0BBF6AAA7EB30A789D91A4F29726C2A6D941D457B59CF376EF96571F3E1BB4 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:20:14.0748 0x0a88 GfExperienceService - ok
16:20:14.0751 0x0a88 GPIOClx0101 - ok
16:20:14.0753 0x0a88 gpsvc - ok
16:20:14.0755 0x0a88 GpuEnergyDrv - ok
16:20:14.0762 0x0a88 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:20:14.0764 0x0a88 gupdate - ok
16:20:14.0767 0x0a88 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:20:14.0769 0x0a88 gupdatem - ok
16:20:14.0773 0x0a88 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
16:20:14.0774 0x0a88 Hamachi - ok
16:20:14.0816 0x0a88 [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
16:20:14.0845 0x0a88 Hamachi2Svc - ok
16:20:14.0852 0x0a88 HDAudBus - ok
16:20:14.0853 0x0a88 HidBatt - ok
16:20:14.0856 0x0a88 HidBth - ok
16:20:14.0860 0x0a88 hidi2c - ok
16:20:14.0864 0x0a88 hidinterrupt - ok
16:20:14.0866 0x0a88 HidIr - ok
16:20:14.0867 0x0a88 hidserv - ok
16:20:14.0869 0x0a88 HidUsb - ok
16:20:14.0903 0x0a88 [ 7D8A3C3D22CE3826693DC7E600EFC1D7, C7B4585BEBB9E0E3628D922859DA3BFE6CCC2612ED31C7FDCB541116483F3046 ] HiPatchService D:\Programme\Hi-Rez Studios\HiPatchService.exe
16:20:14.0903 0x0a88 HiPatchService - ok
16:20:14.0906 0x0a88 HomeGroupListener - ok
16:20:14.0909 0x0a88 HomeGroupProvider - ok
16:20:14.0912 0x0a88 HpSAMD - ok
16:20:14.0914 0x0a88 HTTP - ok
16:20:14.0916 0x0a88 hwpolicy - ok
16:20:14.0918 0x0a88 hyperkbd - ok
16:20:14.0920 0x0a88 HyperVideo - ok
16:20:14.0922 0x0a88 i8042prt - ok
16:20:14.0925 0x0a88 iaLPSSi_GPIO - ok
16:20:14.0927 0x0a88 iaLPSSi_I2C - ok
16:20:14.0941 0x0a88 [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
16:20:14.0949 0x0a88 iaStorA - ok
16:20:14.0953 0x0a88 iaStorAV - ok
16:20:14.0956 0x0a88 iaStorV - ok
16:20:14.0960 0x0a88 ibbus - ok
16:20:14.0966 0x0a88 [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
16:20:14.0968 0x0a88 ICCS - ok
16:20:14.0971 0x0a88 icssvc - ok
16:20:14.0973 0x0a88 IEEtwCollectorService - ok
16:20:15.0080 0x0a88 [ 6FFC445E0D38C3C880125F2C201C9BC6, 488A427239B55394359751FCB8CBAEA8E2AE1CB2AE03C04590E7B8C80EF3F709 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
16:20:15.0152 0x0a88 igfx - ok
16:20:15.0168 0x0a88 [ AC4F72ABB5ED596A0F3D9D1EDDC4B27C, F48BFF192B523709DEF64578EA7217EED59E2C1D2627E7BD54E59DABC25B8C36 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
16:20:15.0175 0x0a88 igfxCUIService2.0.0.0 - ok
16:20:15.0178 0x0a88 IKEEXT - ok
16:20:15.0181 0x0a88 [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
16:20:15.0182 0x0a88 intaud_WaveExtensible - ok
16:20:15.0257 0x0a88 [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:20:15.0306 0x0a88 IntcAzAudAddService - ok
16:20:15.0322 0x0a88 [ B375D8686E1BD2B79C0F00E3868A8C3B, A15D99F04B69FB37ED3AC0C3BBA464BF6D6EB1873D4AE1062983120E3BD1C4DB ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
16:20:15.0328 0x0a88 IntcDAud - ok
16:20:15.0330 0x0a88 intelide - ok
16:20:15.0333 0x0a88 intelpep - ok
16:20:15.0335 0x0a88 intelppm - ok
16:20:15.0338 0x0a88 IoQos - ok
16:20:15.0340 0x0a88 IpFilterDriver - ok
16:20:15.0343 0x0a88 iphlpsvc - ok
16:20:15.0345 0x0a88 IPMIDRV - ok
16:20:15.0347 0x0a88 IPNAT - ok
16:20:15.0360 0x0a88 [ 043A93A498B3C4A88CACA3BCBC9B54C7, C08C5A03940806C6CB75ADDCBE6183145AD2AFE84D77BC85E620E7C1542F0893 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:20:15.0367 0x0a88 iPod Service - ok
16:20:15.0370 0x0a88 IRENUM - ok
16:20:15.0372 0x0a88 isapnp - ok
16:20:15.0375 0x0a88 iScsiPrt - ok
16:20:15.0378 0x0a88 [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
16:20:15.0379 0x0a88 iwdbus - ok
16:20:15.0381 0x0a88 kbdclass - ok
16:20:15.0384 0x0a88 kbdhid - ok
16:20:15.0386 0x0a88 kdnic - ok
16:20:15.0388 0x0a88 KeyIso - ok
16:20:15.0390 0x0a88 KSecDD - ok
16:20:15.0393 0x0a88 KSecPkg - ok
16:20:15.0394 0x0a88 ksthunk - ok
16:20:15.0397 0x0a88 KtmRm - ok
16:20:15.0399 0x0a88 LanmanServer - ok
16:20:15.0401 0x0a88 LanmanWorkstation - ok
16:20:15.0405 0x0a88 lfsvc - ok
16:20:15.0407 0x0a88 LicenseManager - ok
16:20:15.0409 0x0a88 lltdio - ok
16:20:15.0411 0x0a88 lltdsvc - ok
16:20:15.0413 0x0a88 lmhosts - ok
16:20:15.0422 0x0a88 [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
16:20:15.0427 0x0a88 LMIGuardianSvc - ok
16:20:15.0431 0x0a88 LSI_SAS - ok
16:20:15.0433 0x0a88 LSI_SAS2i - ok
16:20:15.0435 0x0a88 LSI_SAS3i - ok
16:20:15.0436 0x0a88 LSI_SSS - ok
16:20:15.0439 0x0a88 LSM - ok
16:20:15.0441 0x0a88 luafv - ok
16:20:15.0444 0x0a88 MapsBroker - ok
16:20:15.0448 0x0a88 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:20:15.0449 0x0a88 MBAMProtector - ok
16:20:15.0474 0x0a88 [ AB176B9E59C0435499D83047D84EDD59, 85B826A3972CE9AD885313B69B9C60328B850257667D0EB65DDE890D0BB06361 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:20:15.0491 0x0a88 MBAMScheduler - ok
16:20:15.0512 0x0a88 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:20:15.0525 0x0a88 MBAMService - ok
16:20:15.0533 0x0a88 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:20:15.0535 0x0a88 MBAMSwissArmy - ok
16:20:15.0540 0x0a88 [ 08DECFCB9BA97786165A69AB1015BC30, EDC8C8447B57BD412E2DEBCA9B5B1B58C19D40105DC7CE9520DE214081696B05 ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:20:15.0541 0x0a88 MBAMWebAccessControl - ok
16:20:15.0549 0x0a88 [ E1C4AE452E1F6C6571CE5F8A6937EAF4, CB3C89BD5C6C0197A033C8A6B834FD3326728BA5D7364E64AE2E8F42AAD91D23 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.11.226\McCHSvc.exe
16:20:15.0553 0x0a88 McComponentHostService - ok
16:20:15.0556 0x0a88 megasas - ok
16:20:15.0558 0x0a88 megasr - ok
16:20:15.0562 0x0a88 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
16:20:15.0563 0x0a88 MEIx64 - ok
16:20:15.0604 0x0a88 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service D:\Programme\Microsoft Office\Office12\GrooveAuditService.exe
16:20:15.0605 0x0a88 Microsoft Office Groove Audit Service - ok
16:20:15.0608 0x0a88 mlx4_bus - ok
16:20:15.0610 0x0a88 MMCSS - ok
16:20:15.0612 0x0a88 Modem - ok
16:20:15.0614 0x0a88 monitor - ok
16:20:15.0616 0x0a88 mouclass - ok
16:20:15.0618 0x0a88 mouhid - ok
16:20:15.0621 0x0a88 mountmgr - ok
16:20:15.0625 0x0a88 mpsdrv - ok
16:20:15.0627 0x0a88 MpsSvc - ok
16:20:15.0629 0x0a88 MRxDAV - ok
16:20:15.0630 0x0a88 mrxsmb - ok
16:20:15.0632 0x0a88 mrxsmb10 - ok
16:20:15.0635 0x0a88 mrxsmb20 - ok
16:20:15.0637 0x0a88 MsBridge - ok
16:20:15.0639 0x0a88 MSDTC - ok
16:20:15.0646 0x0a88 Msfs - ok
16:20:15.0649 0x0a88 msgpiowin32 - ok
16:20:15.0650 0x0a88 mshidkmdf - ok
16:20:15.0652 0x0a88 mshidumdf - ok
16:20:15.0654 0x0a88 msisadrv - ok
16:20:15.0657 0x0a88 MSiSCSI - ok
16:20:15.0659 0x0a88 msiserver - ok
16:20:15.0661 0x0a88 MSKSSRV - ok
16:20:15.0663 0x0a88 MsLldp - ok
16:20:15.0665 0x0a88 MSPCLOCK - ok
16:20:15.0667 0x0a88 MSPQM - ok
16:20:15.0669 0x0a88 MsRPC - ok
16:20:15.0672 0x0a88 mssmbios - ok
16:20:15.0674 0x0a88 MSTEE - ok
16:20:15.0677 0x0a88 MTConfig - ok
16:20:15.0680 0x0a88 Mup - ok
16:20:15.0682 0x0a88 mvumis - ok
16:20:15.0685 0x0a88 NativeWifiP - ok
16:20:15.0695 0x0a88 [ 9D1CCE440552500DED3A62F9D779CDB4, C6B3B1C891A8BA3F91CC1EC21919C4F80F4C9CAF88971AB6CA11F09820601EBD ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
16:20:15.0701 0x0a88 NAUpdate - ok
16:20:15.0704 0x0a88 NcaSvc - ok
16:20:15.0706 0x0a88 NcbService - ok
16:20:15.0708 0x0a88 NcdAutoSetup - ok
16:20:15.0711 0x0a88 ndfltr - ok
16:20:15.0713 0x0a88 NDIS - ok
16:20:15.0716 0x0a88 NdisCap - ok
16:20:15.0718 0x0a88 NdisImPlatform - ok
16:20:15.0719 0x0a88 NdisTapi - ok
16:20:15.0721 0x0a88 Ndisuio - ok
16:20:15.0724 0x0a88 NdisVirtualBus - ok
16:20:15.0726 0x0a88 NdisWan - ok
16:20:15.0728 0x0a88 ndiswanlegacy - ok
16:20:15.0730 0x0a88 ndproxy - ok
16:20:15.0732 0x0a88 Ndu - ok
16:20:15.0734 0x0a88 NetBIOS - ok
16:20:15.0737 0x0a88 NetBT - ok
16:20:15.0739 0x0a88 Netlogon - ok
16:20:15.0742 0x0a88 Netman - ok
16:20:15.0744 0x0a88 netprofm - ok
16:20:15.0747 0x0a88 NetSetupSvc - ok
16:20:15.0751 0x0a88 NetTcpPortSharing - ok
16:20:15.0753 0x0a88 netvsc - ok
16:20:15.0757 0x0a88 NgcCtnrSvc - ok
16:20:15.0759 0x0a88 NgcSvc - ok
16:20:15.0761 0x0a88 NlaSvc - ok
16:20:15.0763 0x0a88 Npfs - ok
16:20:15.0766 0x0a88 npsvctrig - ok
16:20:15.0768 0x0a88 nsi - ok
16:20:15.0769 0x0a88 nsiproxy - ok
16:20:15.0772 0x0a88 NTFS - ok
16:20:15.0775 0x0a88 Null - ok
16:20:15.0780 0x0a88 [ D812362E8AF615B521AD4DF19A93BD5A, B1F04122DFE9FCC3FC56BE327D86912D624C89F2EFB9684BE66FC22115D0E19F ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
16:20:15.0783 0x0a88 NVHDA - ok
16:20:15.0979 0x0a88 [ DC64CB97227915552607E46543E3AA07, 75B812C3CF1720B9E7122A485C6283E06D9159019BF981DC4038CA5ADF41EA11 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
16:20:16.0103 0x0a88 nvlddmkm - ok
16:20:16.0146 0x0a88 [ 2CCD9A74A0F9C7605EAFA3F3AC8DC476, DEE95B0C0CA4525850E06AD3C1233A6C6E88D97EE874F83801686B87FD23F0BC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:20:16.0168 0x0a88 NvNetworkService - ok
16:20:16.0171 0x0a88 nvraid - ok
16:20:16.0174 0x0a88 nvstor - ok
16:20:16.0176 0x0a88 [ 2F61DB46C84CCBB5D9F75065A85D2173, 79049D42F0D82BD3C5A9C8231CF2F412B50C9E6483DB14F41CD48301D85C166C ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:20:16.0177 0x0a88 NvStreamKms - ok
16:20:16.0306 0x0a88 [ 6F5AC1C495DA6D19AF99A59DC44BC13F, 61E8C0C0B9EEEF6ADE86AD4BC8D43256A6B20AEEB43BBC3C44B3B6140544259F ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
16:20:16.0397 0x0a88 NvStreamNetworkSvc - ok
16:20:16.0500 0x0a88 [ 73FA6B2DF3348AF05E1F98310854BD4F, F0B7CF54495C81EE4C8B44580E399F3B22E190CB553AC7BA8E2DC13A28477566 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
16:20:16.0564 0x0a88 NvStreamSvc - ok
16:20:16.0583 0x0a88 [ C7C75E4D199802EFCE0BEC2F6F823E31, 97084D9D0711242DBBC06E96B52A926159DCA2EBB9199C542FB8013E31F989BE ] NvStUSB C:\WINDOWS\System32\drivers\nvstusb.sys
16:20:16.0589 0x0a88 NvStUSB - ok
16:20:16.0608 0x0a88 [ 12559BAED24D0FC17DB92D2B4150E6EB, 3DD5D19B4BCDBCE7B6B7600D91261C794E6479388E4C52D4BE62F2DC1F9EF5FD ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
16:20:16.0623 0x0a88 nvsvc - ok
16:20:16.0627 0x0a88 [ 35DFC12FD7E44B7CB8CCD7E5A2B3975A, 36E0E39646636F6E027691E5C3903C51479B3F707BDEA40F460FD27E357DA14E ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:20:16.0629 0x0a88 nvvad_WaveExtensible - ok
16:20:16.0631 0x0a88 nv_agp - ok
16:20:16.0640 0x0a88 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:20:16.0645 0x0a88 odserv - ok
16:20:16.0648 0x0a88 OneSyncSvc - ok
16:20:16.0736 0x0a88 [ 4F9FFCF12B6ED0B4DAC95427772C226E, 4A79AEC410ED1034366FAC1388FB29381EE6541AA17E3652BE86265D09541C56 ] Origin Client Service D:\Programme\Origin\OriginClientService.exe
16:20:16.0760 0x0a88 Origin Client Service - ok
16:20:16.0767 0x0a88 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:20:16.0770 0x0a88 ose - ok
16:20:16.0773 0x0a88 p2pimsvc - ok
16:20:16.0776 0x0a88 p2psvc - ok
16:20:16.0778 0x0a88 Parport - ok
16:20:16.0780 0x0a88 partmgr - ok
16:20:16.0782 0x0a88 PcaSvc - ok
16:20:16.0784 0x0a88 pci - ok
16:20:16.0786 0x0a88 pciide - ok
16:20:16.0788 0x0a88 pcmcia - ok
16:20:16.0790 0x0a88 pcw - ok
16:20:16.0794 0x0a88 pdc - ok
16:20:16.0796 0x0a88 PEAUTH - ok
16:20:16.0798 0x0a88 percsas2i - ok
16:20:16.0801 0x0a88 percsas3i - ok
16:20:16.0819 0x0a88 PerfHost - ok
16:20:16.0825 0x0a88 PimIndexMaintenanceSvc - ok
16:20:16.0830 0x0a88 pla - ok
16:20:16.0833 0x0a88 PlugPlay - ok
16:20:16.0835 0x0a88 PNRPAutoReg - ok
16:20:16.0837 0x0a88 PNRPsvc - ok
16:20:16.0839 0x0a88 PolicyAgent - ok
16:20:16.0842 0x0a88 Power - ok
16:20:16.0844 0x0a88 PptpMiniport - ok
16:20:16.0896 0x0a88 [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:20:16.0930 0x0a88 PrintNotify - ok
16:20:16.0935 0x0a88 Processor - ok
16:20:16.0937 0x0a88 ProfSvc - ok
16:20:16.0939 0x0a88 Psched - ok
16:20:16.0941 0x0a88 QWAVE - ok
16:20:16.0943 0x0a88 QWAVEdrv - ok
16:20:16.0945 0x0a88 RasAcd - ok
16:20:16.0948 0x0a88 RasAgileVpn - ok
16:20:16.0950 0x0a88 RasAuto - ok
16:20:16.0951 0x0a88 Rasl2tp - ok
16:20:16.0954 0x0a88 RasMan - ok
16:20:16.0956 0x0a88 RasPppoe - ok
16:20:16.0959 0x0a88 RasSstp - ok
16:20:16.0961 0x0a88 rdbss - ok
16:20:16.0963 0x0a88 rdpbus - ok
16:20:16.0965 0x0a88 RDPDR - ok
16:20:16.0969 0x0a88 RdpVideoMiniport - ok
16:20:16.0971 0x0a88 rdyboost - ok
16:20:16.0973 0x0a88 ReFSv1 - ok
16:20:16.0977 0x0a88 RemoteAccess - ok
16:20:16.0979 0x0a88 RemoteRegistry - ok
16:20:16.0982 0x0a88 RetailDemo - ok
16:20:16.0984 0x0a88 RpcEptMapper - ok
16:20:16.0986 0x0a88 RpcLocator - ok
16:20:16.0988 0x0a88 RpcSs - ok
16:20:16.0993 0x0a88 rspndr - ok
16:20:16.0995 0x0a88 rt640x64 - ok
16:20:16.0997 0x0a88 s3cap - ok
16:20:16.0999 0x0a88 SamSs - ok
16:20:17.0001 0x0a88 sbp2port - ok
16:20:17.0003 0x0a88 SCardSvr - ok
16:20:17.0005 0x0a88 ScDeviceEnum - ok
16:20:17.0007 0x0a88 scfilter - ok
16:20:17.0010 0x0a88 Schedule - ok
16:20:17.0012 0x0a88 SCPolicySvc - ok
16:20:17.0019 0x0a88 [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
16:20:17.0023 0x0a88 sdbus - ok
16:20:17.0026 0x0a88 SDRSVC - ok
16:20:17.0057 0x0a88 [ 2100C3E7E1D060DE822677DDE41FCCCF, 82F645A981C91ABD237AA8DD730F4490EF566371946E56A498146B7C8FC3C44A ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
16:20:17.0077 0x0a88 SDScannerService - ok
16:20:17.0081 0x0a88 sdstor - ok
16:20:17.0115 0x0a88 [ B89DF0D2410759A6C826C136AEBC2416, 5EF86212BE1E075B2B7E0783FDA6EB2CA6938546145428FC7B39EE9D5817F0B1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
16:20:17.0140 0x0a88 SDUpdateService - ok
16:20:17.0147 0x0a88 [ 6B4E097AD063AEED188629CB9A542602, 0342CD807ADD430E4EC14308464EB0E1BF74F95AD0D32356210A832E6C3FE6CF ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
16:20:17.0150 0x0a88 SDWSCService - ok
16:20:17.0153 0x0a88 seclogon - ok
16:20:17.0155 0x0a88 SENS - ok
16:20:17.0158 0x0a88 SensorDataService - ok
16:20:17.0161 0x0a88 SensorService - ok
16:20:17.0164 0x0a88 SensrSvc - ok
16:20:17.0166 0x0a88 SerCx - ok
16:20:17.0168 0x0a88 SerCx2 - ok
16:20:17.0170 0x0a88 Serenum - ok
16:20:17.0172 0x0a88 Serial - ok
16:20:17.0175 0x0a88 sermouse - ok
16:20:17.0180 0x0a88 SessionEnv - ok
16:20:17.0182 0x0a88 sfloppy - ok
16:20:17.0185 0x0a88 SharedAccess - ok
16:20:17.0187 0x0a88 ShellHWDetection - ok
16:20:17.0190 0x0a88 SiSRaid2 - ok
16:20:17.0192 0x0a88 SiSRaid4 - ok
16:20:17.0201 0x0a88 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:20:17.0204 0x0a88 SkypeUpdate - ok
16:20:17.0208 0x0a88 smphost - ok
16:20:17.0211 0x0a88 SmsRouter - ok
16:20:17.0214 0x0a88 SNMPTRAP - ok
16:20:17.0217 0x0a88 spaceport - ok
16:20:17.0219 0x0a88 SpbCx - ok
16:20:17.0236 0x0a88 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\WINDOWS\SysWOW64\speedfan.sys
16:20:17.0241 0x0a88 speedfan - ok
16:20:17.0244 0x0a88 Spooler - ok
16:20:17.0245 0x0a88 sppsvc - ok
16:20:17.0248 0x0a88 srv - ok
16:20:17.0250 0x0a88 srv2 - ok
16:20:17.0252 0x0a88 srvnet - ok
16:20:17.0256 0x0a88 SSDPSRV - ok
16:20:17.0258 0x0a88 SstpSvc - ok
16:20:17.0261 0x0a88 StateRepository - ok
16:20:17.0276 0x0a88 [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:20:17.0286 0x0a88 Steam Client Service - ok
16:20:17.0296 0x0a88 [ F6EA204FFB05C2A491B2D29B9482B4FC, D7662D6B63AC205849782BA9BA916F6FEEB405A551AA3902B15DCF22EBA50125 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:20:17.0301 0x0a88 Stereo Service - ok
16:20:17.0303 0x0a88 stexstor - ok
16:20:17.0306 0x0a88 stisvc - ok
16:20:17.0308 0x0a88 storahci - ok
16:20:17.0311 0x0a88 storflt - ok
16:20:17.0313 0x0a88 stornvme - ok
16:20:17.0315 0x0a88 storqosflt - ok
16:20:17.0317 0x0a88 StorSvc - ok
16:20:17.0320 0x0a88 storufs - ok
16:20:17.0322 0x0a88 storvsc - ok
16:20:17.0325 0x0a88 svsvc - ok
16:20:17.0338 0x0a88 swenum - ok
16:20:17.0340 0x0a88 swprv - ok
16:20:17.0343 0x0a88 Synth3dVsc - ok
16:20:17.0345 0x0a88 SysMain - ok
16:20:17.0347 0x0a88 SystemEventsBroker - ok
16:20:17.0350 0x0a88 TabletInputService - ok
16:20:17.0352 0x0a88 TapiSrv - ok
16:20:17.0355 0x0a88 Tcpip - ok
16:20:17.0357 0x0a88 Tcpip6 - ok
16:20:17.0360 0x0a88 tcpipreg - ok
16:20:17.0365 0x0a88 tdx - ok
16:20:17.0367 0x0a88 terminpt - ok
16:20:17.0369 0x0a88 TermService - ok
16:20:17.0371 0x0a88 Themes - ok
16:20:17.0373 0x0a88 tiledatamodelsvc - ok
16:20:17.0376 0x0a88 TimeBroker - ok
16:20:17.0378 0x0a88 TPM - ok
16:20:17.0381 0x0a88 TrkWks - ok
16:20:17.0383 0x0a88 TrustedInstaller - ok
16:20:17.0386 0x0a88 TsUsbFlt - ok
16:20:17.0388 0x0a88 TsUsbGD - ok
16:20:17.0390 0x0a88 tunnel - ok
16:20:17.0392 0x0a88 uagp35 - ok
16:20:17.0395 0x0a88 UASPStor - ok
16:20:17.0397 0x0a88 UcmCx0101 - ok
16:20:17.0399 0x0a88 UcmUcsi - ok
16:20:17.0401 0x0a88 Ucx01000 - ok
16:20:17.0403 0x0a88 UdeCx - ok
16:20:17.0405 0x0a88 udfs - ok
16:20:17.0407 0x0a88 UEFI - ok
16:20:17.0410 0x0a88 Ufx01000 - ok
16:20:17.0412 0x0a88 UfxChipidea - ok
16:20:17.0417 0x0a88 ufxsynopsys - ok
16:20:17.0422 0x0a88 UI0Detect - ok
16:20:17.0424 0x0a88 uliagpkx - ok
16:20:17.0427 0x0a88 umbus - ok
16:20:17.0429 0x0a88 UmPass - ok
16:20:17.0432 0x0a88 UmRdpService - ok
16:20:17.0434 0x0a88 UnistoreSvc - ok
16:20:17.0439 0x0a88 upnphost - ok
16:20:17.0443 0x0a88 UrsChipidea - ok
16:20:17.0445 0x0a88 UrsCx01000 - ok
16:20:17.0447 0x0a88 UrsSynopsys - ok
16:20:17.0450 0x0a88 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
16:20:17.0451 0x0a88 USBAAPL64 - ok
16:20:17.0453 0x0a88 usbccgp - ok
16:20:17.0456 0x0a88 usbcir - ok
16:20:17.0459 0x0a88 usbehci - ok
16:20:17.0461 0x0a88 usbhub - ok
16:20:17.0472 0x0a88 [ C08449092043601887A1743350888635, 5CD916649D2CD8823B89C9E7459AD76AA8E54D70B6D9F40AD4A41144E22ACBE0 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
16:20:17.0479 0x0a88 USBHUB3 - ok
16:20:17.0482 0x0a88 usbohci - ok
16:20:17.0505 0x0a88 [ 538233FBBC748AA1D57B7B53F150DE9A, 2ACE7539E3A79D609DD11229708F7DB1822C36189844A40E2F4971766229039B ] USBPNPA C:\WINDOWS\system32\drivers\CM10864.sys
16:20:17.0520 0x0a88 USBPNPA - ok
16:20:17.0524 0x0a88 usbprint - ok
16:20:17.0526 0x0a88 usbser - ok
16:20:17.0528 0x0a88 USBSTOR - ok
16:20:17.0531 0x0a88 usbuhci - ok
16:20:17.0533 0x0a88 USBXHCI - ok
16:20:17.0536 0x0a88 UserDataSvc - ok
16:20:17.0542 0x0a88 UserManager - ok
16:20:17.0544 0x0a88 UsoSvc - ok
16:20:17.0546 0x0a88 VaultSvc - ok
16:20:17.0548 0x0a88 VBoxAswDrv - ok
16:20:17.0552 0x0a88 vdrvroot - ok
16:20:17.0554 0x0a88 vds - ok
16:20:17.0556 0x0a88 VerifierExt - ok
16:20:17.0559 0x0a88 vhdmp - ok
16:20:17.0561 0x0a88 vhf - ok
16:20:17.0563 0x0a88 vmbus - ok
16:20:17.0565 0x0a88 VMBusHID - ok
16:20:17.0567 0x0a88 vmicguestinterface - ok
16:20:17.0570 0x0a88 vmicheartbeat - ok
16:20:17.0573 0x0a88 vmickvpexchange - ok
16:20:17.0575 0x0a88 vmicrdv - ok
16:20:17.0577 0x0a88 vmicshutdown - ok
16:20:17.0579 0x0a88 vmictimesync - ok
16:20:17.0581 0x0a88 vmicvmsession - ok
16:20:17.0583 0x0a88 vmicvss - ok
16:20:17.0585 0x0a88 volmgr - ok
16:20:17.0589 0x0a88 volmgrx - ok
16:20:17.0591 0x0a88 volsnap - ok
16:20:17.0593 0x0a88 vpci - ok
16:20:17.0595 0x0a88 vsmraid - ok
16:20:17.0598 0x0a88 VSS - ok
16:20:17.0600 0x0a88 VSTXRAID - ok
16:20:17.0602 0x0a88 vwifibus - ok
16:20:17.0605 0x0a88 vwififlt - ok
16:20:17.0608 0x0a88 W32Time - ok
16:20:17.0610 0x0a88 WacomPen - ok
16:20:17.0613 0x0a88 WalletService - ok
16:20:17.0616 0x0a88 wanarp - ok
16:20:17.0618 0x0a88 wanarpv6 - ok
16:20:17.0620 0x0a88 wbengine - ok
16:20:17.0622 0x0a88 WbioSrvc - ok
16:20:17.0625 0x0a88 Wcmsvc - ok
16:20:17.0627 0x0a88 wcncsvc - ok
16:20:17.0629 0x0a88 WcsPlugInService - ok
16:20:17.0632 0x0a88 WdBoot - ok
16:20:17.0634 0x0a88 Wdf01000 - ok
16:20:17.0636 0x0a88 WdFilter - ok
16:20:17.0638 0x0a88 WdiServiceHost - ok
16:20:17.0640 0x0a88 WdiSystemHost - ok
16:20:17.0643 0x0a88 wdiwifi - ok
16:20:17.0645 0x0a88 WdNisDrv - ok
16:20:17.0648 0x0a88 WdNisSvc - ok
16:20:17.0652 0x0a88 WebClient - ok
16:20:17.0654 0x0a88 Wecsvc - ok
16:20:17.0656 0x0a88 WEPHOSTSVC - ok
16:20:17.0659 0x0a88 wercplsupport - ok
16:20:17.0662 0x0a88 WerSvc - ok
16:20:17.0664 0x0a88 wfpcapture - ok
16:20:17.0666 0x0a88 WFPLWFS - ok
16:20:17.0668 0x0a88 WiaRpc - ok
16:20:17.0671 0x0a88 WIMMount - ok
16:20:17.0672 0x0a88 WinDefend - ok
16:20:17.0677 0x0a88 WindowsTrustedRT - ok
16:20:17.0680 0x0a88 WindowsTrustedRTProxy - ok
16:20:17.0683 0x0a88 WinHttpAutoProxySvc - ok
16:20:17.0685 0x0a88 WinMad - ok
16:20:17.0690 0x0a88 Winmgmt - ok
16:20:17.0693 0x0a88 WinRM - ok
16:20:17.0698 0x0a88 WINUSB - ok
16:20:17.0700 0x0a88 WinVerbs - ok
16:20:17.0702 0x0a88 WlanSvc - ok
16:20:17.0705 0x0a88 wlidsvc - ok
16:20:17.0707 0x0a88 WmiAcpi - ok
16:20:17.0712 0x0a88 wmiApSrv - ok
16:20:17.0714 0x0a88 WMPNetworkSvc - ok
16:20:17.0717 0x0a88 Wof - ok
16:20:17.0720 0x0a88 workfolderssvc - ok
16:20:17.0723 0x0a88 wpcfltr - ok
16:20:17.0726 0x0a88 WPDBusEnum - ok
16:20:17.0728 0x0a88 WpdUpFltr - ok
16:20:17.0730 0x0a88 WpnService - ok
16:20:17.0733 0x0a88 ws2ifsl - ok
16:20:17.0735 0x0a88 wscsvc - ok
16:20:17.0737 0x0a88 WSearch - ok
16:20:17.0741 0x0a88 WSService - ok
16:20:17.0744 0x0a88 wuauserv - ok
16:20:17.0747 0x0a88 WudfPf - ok
16:20:17.0749 0x0a88 WUDFRd - ok
16:20:17.0752 0x0a88 wudfsvc - ok
16:20:17.0755 0x0a88 WUDFWpdFs - ok
16:20:17.0758 0x0a88 WUDFWpdMtp - ok
16:20:17.0760 0x0a88 WwanSvc - ok
16:20:17.0763 0x0a88 XblAuthManager - ok
16:20:17.0766 0x0a88 XblGameSave - ok
16:20:17.0768 0x0a88 xboxgip - ok
16:20:17.0771 0x0a88 XboxNetApiSvc - ok
16:20:17.0775 0x0a88 xinputhid - ok
16:20:17.0777 0x0a88 ================ Scan global ===============================
16:20:17.0787 0x0a88 [ Global ] - ok
16:20:17.0787 0x0a88 ================ Scan MBR ==================================
16:20:17.0789 0x0a88 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:20:17.0794 0x0a88 \Device\Harddisk0\DR0 - ok
16:20:17.0796 0x0a88 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:20:17.0799 0x0a88 \Device\Harddisk1\DR1 - ok
16:20:17.0800 0x0a88 ================ Scan VBR ==================================
16:20:17.0801 0x0a88 [ 7AD42DD26B172EDB8FCD00D07CBAC239 ] \Device\Harddisk0\DR0\Partition1
16:20:17.0802 0x0a88 \Device\Harddisk0\DR0\Partition1 - ok
16:20:17.0803 0x0a88 [ D5E5BE67AE084DF0D2D7228F0B894CAE ] \Device\Harddisk0\DR0\Partition2
16:20:17.0803 0x0a88 \Device\Harddisk0\DR0\Partition2 - ok
16:20:17.0805 0x0a88 [ 3D61297944DB6FF886D01E74BA051A03 ] \Device\Harddisk0\DR0\Partition3
16:20:17.0807 0x0a88 \Device\Harddisk0\DR0\Partition3 - ok
16:20:17.0808 0x0a88 [ 98F962453147190E3704B8D71070A215 ] \Device\Harddisk1\DR1\Partition1
16:20:17.0847 0x0a88 \Device\Harddisk1\DR1\Partition1 - ok
16:20:17.0847 0x0a88 ================ Scan generic autorun ======================
16:20:18.0097 0x0a88 [ 65E8545F1297CD83534C354A7BED1848, 19B3F3C17A335837454DC1851C6436D0BB2D8B1595AEB4DC71265FB20868B48F ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:20:18.0247 0x0a88 RTHDVCPL - ok
16:20:18.0267 0x0a88 [ BA5E62B4485B83737579749DCE43EE85, 49D82BF54DEFA2505F26AC7DBD5CEC7766E23CE24F5AC887564A8AE15BC99FEC ] C:\Windows\system32\igfxtray.exe
16:20:18.0273 0x0a88 IgfxTray - ok
16:20:18.0290 0x0a88 Cm108Sound - ok
16:20:18.0334 0x0a88 [ DD37DC13DF1224A8719208AE5CDE2B63, EA365A7358637C555D8CDEDD59BCA574C8B6EB8BB3C1B8790FEC7D76A37FC4AB ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:20:18.0364 0x0a88 NvBackend - ok
16:20:18.0368 0x0a88 ShadowPlay - ok
16:20:18.0372 0x0a88 [ 1BF113E377E570DB915EE7D228E594D6, FF4D198D412CA21C49E0A3E6FE52EAD69786B305429095B5BD25CB4FAFD33B51 ] C:\Program Files\iTunes\iTunesHelper.exe
16:20:18.0375 0x0a88 iTunesHelper - ok
16:20:18.0531 0x0a88 [ 8A312D5764B4FC4C55CEDDEED4652CF1, C4E726C9C77614CD32D5B76DA2E9A049EC490C2392D9A94B84712BCBF47BA7C6 ] D:\Programme\Avast\AvastUI.exe
16:20:18.0606 0x0a88 AvastUI.exe - ok
16:20:18.0625 0x0a88 [ E43A851F7B12DE589424D6C656155CFC, FD42172921C18D1BBDFC0C5CFFFD6D0534764D770E210CA3E1DF61A66A99BE62 ] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
16:20:18.0632 0x0a88 AdobeCS4ServiceManager - ok
16:20:18.0707 0x0a88 [ 35FD33EAE23AF69715EE3231A9F15B82, C7351F3537F4B938E4E8A8A8DD59039298F9B09678A4BC09B2A362DC4B25E2C0 ] D:\Programme\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
16:20:18.0709 0x0a88 Adobe Acrobat Speed Launcher - ok
16:20:18.0713 0x0a88 OneDriveSetup - ok
16:20:18.0716 0x0a88 OneDriveSetup - ok
16:20:18.0825 0x0a88 [ 5353A34090BABE3CD48B70569AF0DD12, A211D0B06DC05BFCBD13EBC71275C644B7616E95485ED8336DEFF257B7AE7E80 ] D:\Programme\Steam\steam.exe
16:20:18.0858 0x0a88 Steam - ok
16:20:18.0980 0x238c Object required for P2P: [ 6F5AC1C495DA6D19AF99A59DC44BC13F ] NvStreamNetworkSvc
16:20:19.0109 0x0a88 [ 374878A85C70346867BCC80496F03354, 310F71D26914D939665F4197BE844A7A38C0565357F97158E6855FAFEFC3F7DE ] D:\Programme\Adobe\Adobe Bridge CS4\Bridge.exe
16:20:19.0251 0x0a88 AdobeBridge - ok
16:20:19.0302 0x0a88 [ A1BAEE2F2AA71318D08A81EB1AE60F1F, 8CEE7310553205E2047B2168CA7C578FBD80B403D644EC3E2DE7E4CECC9717FC ] C:\Users\Florian\AppData\Roaming\Spotify\SpotifyWebHelper.exe
16:20:19.0327 0x0a88 Spotify Web Helper - ok
16:20:19.0466 0x0a88 [ 47DBCC66CF9A3DCEF2D42051431160D3, 5E99CB8333471E80590AED8CA139EF859AD617D1C7BD9406913A86016DCA08F6 ] C:\Program Files\CCleaner\CCleaner64.exe
16:20:19.0556 0x0a88 CCleaner Monitoring - ok
16:20:19.0582 0x0a88 [ F51BB12D8977D26C1A4CDA348770D9F1, DDA35CD8F8A6591B83821B5180D457740E0B820CCE000BC7FB1B78FB4AEAD3BA ] C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
16:20:19.0593 0x0a88 SpybotPostWindows10UpgradeReInstall - ok
16:20:19.0606 0x0a88 [ 9F2ECA252720B25E8FEC1CAB2984B98D, 476EE2929901CD43F15869B763376393AA0942A3B934532055E037C6DCE3CD2D ] C:\Users\Florian\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:20:19.0612 0x0a88 OneDrive - ok
16:20:19.0614 0x0a88 Skype - ok
16:20:19.0766 0x0a88 [ E9D5B153D89878EA4A0A73DB229649F9, DB19A242CDA809BA53EBA0577244B1678A5B2689EC1CA26B6F3707E171D5A893 ] C:\Users\Florian\AppData\Roaming\Spotify\Spotify.exe
16:20:19.0854 0x0a88 Spotify - ok
16:20:19.0867 0x0a88 Uninstall C:\Users\Florian\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 - ok
16:20:19.0871 0x0a88 Uninstall C:\Users\Florian\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64 - ok
16:20:19.0875 0x0a88 Uninstall C:\Users\Florian\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64 - ok
16:20:19.0879 0x0a88 Uninstall C:\Users\Florian\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64 - ok
16:20:19.0880 0x0a88 Waiting for KSN requests completion. In queue: 34
16:20:20.0881 0x0a88 Waiting for KSN requests completion. In queue: 34
16:20:21.0524 0x238c Object send P2P result: true
16:20:21.0527 0x238c Object required for P2P: [ 73FA6B2DF3348AF05E1F98310854BD4F ] NvStreamSvc
16:20:21.0882 0x0a88 Waiting for KSN requests completion. In queue: 33
16:20:22.0246 0x1ba8 Object required for P2P: [ 12559BAED24D0FC17DB92D2B4150E6EB ] nvsvc
16:20:22.0883 0x0a88 Waiting for KSN requests completion. In queue: 33
16:20:23.0884 0x0a88 Waiting for KSN requests completion. In queue: 33
16:20:23.0998 0x238c Object send P2P result: true
16:20:24.0783 0x1ba8 Object send P2P result: true
16:20:24.0790 0x1ba8 Object required for P2P: [ 8A312D5764B4FC4C55CEDDEED4652CF1 ] D:\Programme\Avast\AvastUI.exe
16:20:24.0884 0x0a88 Waiting for KSN requests completion. In queue: 10
16:20:25.0885 0x0a88 Waiting for KSN requests completion. In queue: 10
16:20:26.0885 0x0a88 Waiting for KSN requests completion. In queue: 10
16:20:27.0355 0x1ba8 Object send P2P result: true
16:20:27.0355 0x1ba8 Object required for P2P: [ 5353A34090BABE3CD48B70569AF0DD12 ] D:\Programme\Steam\steam.exe
16:20:27.0886 0x0a88 Waiting for KSN requests completion. In queue: 7
16:20:28.0887 0x0a88 Waiting for KSN requests completion. In queue: 7
16:20:29.0806 0x1ba8 Object send P2P result: true
16:20:29.0806 0x1ba8 Object required for P2P: [ A1BAEE2F2AA71318D08A81EB1AE60F1F ] C:\Users\Florian\AppData\Roaming\Spotify\SpotifyWebHelper.exe
16:20:29.0888 0x0a88 Waiting for KSN requests completion. In queue: 5
16:20:30.0888 0x0a88 Waiting for KSN requests completion. In queue: 5
16:20:31.0889 0x0a88 Waiting for KSN requests completion. In queue: 5
16:20:32.0252 0x1ba8 Object send P2P result: true
16:20:32.0252 0x1ba8 Object required for P2P: [ E9D5B153D89878EA4A0A73DB229649F9 ] C:\Users\Florian\AppData\Roaming\Spotify\Spotify.exe
16:20:32.0889 0x0a88 Waiting for KSN requests completion. In queue: 1
16:20:33.0890 0x0a88 Waiting for KSN requests completion. In queue: 1
16:20:34.0741 0x1ba8 Object send P2P result: true
16:20:34.0942 0x0a88 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
16:20:34.0962 0x0a88 AV detected via SS2: avast! Antivirus, D:\Programme\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41000 ( enabled : updated )
16:20:34.0980 0x0a88 Win FW state via NFP2: enabled ( trusted )
16:20:37.0638 0x0a88 ============================================================
16:20:37.0638 0x0a88 Scan finished
16:20:37.0638 0x0a88 ============================================================
16:20:37.0661 0x2ac0 Detected object count: 0
16:20:37.0661 0x2ac0 Actual detected object count: 0
16:21:39.0981 0x2220 Deinitialize success |