Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Avast alerts me for malware on every startup - svchost.exe

avast malware svchost.exe

  • This topic is locked This topic is locked

#1
entwicklung

entwicklung

    New Member

  • Member
  • Pip
  • 5 posts

Hello everyone, I'm new here. On every startup avast alerst me about malware and blocked web page, and mentions svchost.exe.

 

Anyway, to better understand my problem, it's just like http://www.geekstogo...ast-at-startup/ that one there. What could i do to clean my computer out of that malware? Please help, because it's very anyoing. If you need any more informations from me, just say and i will give. I will post a screenshot, next time i startup my machine.

 

Thanks in advance!


  • 0

Advertisements


#2
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Hello and welcome to Geeks To Go! My nickname is Pystryker :) , and I will be helping you with your issue today.


Before we get started, I have a few things I need to go over with you
  • If you are receiving help for this issue at another forum, please let me know so I can close this thread.
  • Please download to and run all requested tools from your Desktop.
  • Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process.
  • At the top of your post, please click on the "Follow this topic" button and make sure that the "Received notification" box is checked and set to "Instantly" This will send an email to you as soon as I reply to your topic, allowing us to solve your problem faster.
  • If any of your security programs give you a warning about any tool I ask you to use, please do not worry. All the links and tools I provide to you will be safe.
  • Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
  • This is a complicated process. It requires several steps, patience, and careful following of my instructions in the order they are given to diagnose your problems to get your machine back in working order.
  • Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. I promise to do the same for you.
  • It is impossible for me to know what interactions may happen between your computer's software and the tools we will use to clean your machine. Therefore, I highly recommend you backup any critical personal files on your machine before we start.
  • If you have any questions at all, please don't hesitate to ask. There's no such thing as a stupid question when dealing with malware.
  • If you are unsure of an instruction I give you, or if something unexepected occurs, Do NOT proceed! Stop and ask for clarification of the instruction or tell me what occurred.
  • Please remember, the fixes are for your machine and your machine ONLY! Do not use these fixes on any other machine, each fix is tailor made for your system only. Using a fix on another machine can and will cause serious damage.
  • Once we have cleaned your machine, we'll have some cleanup and prevention steps to go through. We will also provide you with some information about how to reduce your chances of infection and get some protections in place to help defend you against this in the future
  • Please be patient while I am analyzing your logs. I know you are probably scared and very frustrated with this problem, but I am a volunteer and sometimes life does get in the way. :)
Now, let's get started, shall we? :thumbsup:


Hello, let's get a look at your system and see what's going on. :)


Step 1: Scan with Farbar's Recovery Scan Tool (FRST)


Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Place a check in the box marked Addition.txt

    farbarmainpanel_zps77bf9e25.jpg
  • Press the Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.
Step 2: Scan with TDSSKiller

Please download TDSSKiller to the desktop.

Alternate download is here.
  • Right-click on TDSSKiller.exe and select Run as Administrator to start the program and follow the prompts.
  • When the main GUI(graphical user interface) window opens, click on Change Parameters
  • Under Additional options, select both Verify driver digital signatures & Detect TDLFS File System >> OK
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • A Report will have been created by TDSSKiller in your root directory C:\
  • To find the log go to Start(Windows 7 Orb) > Computer > C: >> TDSSKiller.V.V.V.VV_DD.DD.YYYY_TT.TT.TT_log <-- The letters denote the version and date & time etc.
  • Post the contents of that log in your next reply please.
Note: Do not have TDSSKiller remove anything if found at this point in time!


Things I need to see in your next post:

Please post each of these logs as a separate reply in this thread.

FRST Log

Addition.txt Log

TDSSKiller Log

  • 0

#3
entwicklung

entwicklung

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Hey Pystryker, thanks for your help! And for the fact that you replied so fast! No, this is the only forum, where i asked for help for my issue. By the way if i didn't mention, it's Windows 7 ultimate x64, just to know. Ok here we go!

 

log of FRST.txt

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-01-2015
Ran by Entwicklung (administrator) on ENTWICKLUNG on 29-01-2015 04:15:53
Running from C:\Users\Entwicklung\Desktop
Loaded Profiles: Entwicklung (Available profiles: Entwicklung)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Vimicro) C:\Windows\vmsnap3.exe
() C:\Windows\Domino.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7016520 2013-02-05] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2464072 2014-11-06] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [VMSnap3] => C:\Windows\VMSnap3.exe [49152 2006-07-18] (Vimicro)
HKLM\...\Run: [Domino] => C:\Windows\Domino.exe [49152 2006-07-04] ()
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [134616 2013-01-14] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation)
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [506864 2013-03-08] (MSI)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [52392 2009-01-29] (Elaborate Bytes AG)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-12-18] (AVAST Software)
HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\Policies\Explorer: [] 
HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\MountPoints2: {b9e46df2-75db-11e4-bb49-448a5b63a966} - F:\SETUP.EXE
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTsysTray.exe (Intel Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKU\S-1-5-21-3915107148-2932139291-530517926-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-s...p={searchTerms}
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-s...p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
DPF: HKLM-x32 {108D3206-846A-4A93-BACB-F0572D043ED7} http://192.168.1.160:81/webrec.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.202
 
FireFox:
========
FF ProfilePath: C:\Users\Entwicklung\AppData\Roaming\Mozilla\Firefox\Profiles\px8auqqd.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.66 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-18]
 
Chrome: 
=======
CHR StartupUrls: Default -> "https://www.google.com/"
CHR Profile: C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-25]
CHR Extension: (Google Docs) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-25]
CHR Extension: (Google Drive) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-25]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-25]
CHR Extension: (YouTube) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-25]
CHR Extension: (Google Search) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-25]
CHR Extension: (Google Sheets) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-25]
CHR Extension: (Avast Online Security) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-22]
CHR Extension: (IE Tab) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2014-11-25]
CHR Extension: (Google Wallet) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-25]
CHR Extension: (Gmail) - C:\Users\Entwicklung\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-25]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-12-18]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-18]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-18] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [104416 2014-12-18] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-18] (Avast Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-11-06] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [732160 2012-12-10] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel® Corporation)
S3 intelsba; C:\Program Files\Intel\Intel® Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [48832 2013-03-13] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe [149032 2012-08-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165336 2013-01-14] (Intel Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-03-20] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-11-06] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19819848 2014-11-06] (NVIDIA Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390672 2012-08-08] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-18] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-12-18] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-18] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [449936 2014-12-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-18] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-18] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-18] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-18] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-18] ()
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2010-02-04] ()
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [20968 2012-08-16] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [19944 2012-08-16] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46016 2012-08-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2014-11-06] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-07-01] (Duplex Secure Ltd.)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [270728 2014-12-18] (Avast Software)
S3 vvftav303; C:\Windows\System32\drivers\vvftav303.sys [308096 2007-06-23] (Vimicro Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-01-28] ()
S3 ZSMC0303; C:\Windows\System32\Drivers\usbVM303.sys [1494656 2007-03-25] (Vimicro Corporation)
U3 avoj2sm9; No ImagePath
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-29 04:15 - 2015-01-29 04:16 - 00019636 _____ () C:\Users\Entwicklung\Desktop\FRST.txt
2015-01-29 04:15 - 2015-01-29 04:15 - 00000000 ____D () C:\FRST
2015-01-29 02:36 - 2015-01-29 02:37 - 02130432 _____ (Farbar) C:\Users\Entwicklung\Desktop\FRST64.exe
2015-01-28 17:47 - 2015-01-28 17:48 - 00000197 _____ () C:\Windows\system32\2015-01-28-16-47-36.039-AvastVBoxSVC.exe-4736.log
2015-01-28 17:47 - 2015-01-28 17:47 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2015-01-28 17:46 - 2015-01-28 17:47 - 00000168 _____ () C:\Windows\setupact.log
2015-01-28 17:46 - 2015-01-28 17:46 - 00000334 _____ () C:\Windows\PFRO.log
2015-01-28 17:46 - 2015-01-28 17:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-28 05:14 - 2015-01-28 05:14 - 00000000 ____D () C:\Windows\EffectResources
2015-01-28 05:14 - 2015-01-28 05:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A4 TECH PC Camera H
2015-01-28 05:14 - 2015-01-28 05:14 - 00000000 ____D () C:\Program Files (x86)\A4 tech
2015-01-28 05:14 - 2010-02-08 11:18 - 00102400 _____ (Vimicro) C:\Windows\SysWOW64\vvftprpav303.ax
2015-01-28 05:14 - 2010-02-08 10:39 - 00360448 _____ (Vimicro) C:\Windows\SysWOW64\VM303Prp.Ax
2015-01-28 05:14 - 2007-06-23 13:46 - 00308096 _____ (Vimicro Corporation) C:\Windows\system32\Drivers\vvftav303.sys
2015-01-28 05:14 - 2007-03-25 12:26 - 01494656 _____ (Vimicro Corporation) C:\Windows\system32\Drivers\usbVM303.sys
2015-01-28 05:14 - 2007-03-15 18:12 - 00122880 _____ (www.zsmc.com.cn) C:\Windows\VM303Cap.exe
2015-01-28 05:14 - 2007-03-02 13:22 - 00046592 _____ (Vimicro Cooperation) C:\Windows\SysWOW64\VvFtCtrl.dll
2015-01-28 05:14 - 2006-11-08 14:27 - 00122880 _____ () C:\Windows\rm303b.exe
2015-01-28 05:14 - 2006-07-18 16:15 - 00049152 _____ (Vimicro) C:\Windows\vmsnap3.exe
2015-01-28 05:14 - 2006-07-04 14:16 - 00049152 _____ () C:\Windows\Domino.exe
2015-01-28 05:14 - 2006-03-14 14:28 - 00172032 _____ (Microsoft Corporation) C:\Windows\amcap.exe
2015-01-28 05:14 - 2005-04-30 18:46 - 00081920 _____ (VM) C:\Windows\system32\VM303STI.dll
2015-01-28 05:14 - 2004-04-06 17:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2015-01-28 05:14 - 2003-12-30 16:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2015-01-28 05:13 - 2015-01-28 05:13 - 00000000 ____D () C:\Users\Entwicklung\AppData\Roaming\InstallShield
2015-01-27 16:21 - 2015-01-27 16:21 - 00000197 _____ () C:\Windows\system32\2015-01-27-15-21-24.047-AvastVBoxSVC.exe-3424.log
2015-01-26 18:24 - 2015-01-26 18:25 - 00000197 _____ () C:\Windows\system32\2015-01-26-17-24-42.057-AvastVBoxSVC.exe-5024.log
2015-01-25 17:41 - 2015-01-25 17:41 - 00000247 _____ () C:\Windows\system32\2015-01-25-16-41-30.061-aswFe.exe-2956.log
2015-01-25 17:35 - 2015-01-25 17:41 - 00000247 _____ () C:\Windows\system32\2015-01-25-16-35-58.011-aswFe.exe-4568.log
2015-01-25 17:35 - 2015-01-25 17:35 - 00000197 _____ () C:\Windows\system32\2015-01-25-16-35-53.005-AvastVBoxSVC.exe-6048.log
2015-01-25 05:08 - 2015-01-25 05:08 - 04070576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-01-24 17:54 - 2015-01-24 17:54 - 00000197 _____ () C:\Windows\system32\2015-01-24-16-54-03.040-AvastVBoxSVC.exe-4668.log
2015-01-23 15:42 - 2015-01-23 15:43 - 00000197 _____ () C:\Windows\system32\2015-01-23-14-42-39.012-AvastVBoxSVC.exe-3300.log
2015-01-22 19:21 - 2015-01-22 19:22 - 00000197 _____ () C:\Windows\system32\2015-01-22-18-21-48.096-AvastVBoxSVC.exe-3472.log
2015-01-22 00:36 - 2015-01-22 00:36 - 00000247 _____ () C:\Windows\system32\2015-01-21-23-36-39.028-aswFe.exe-6284.log
2015-01-22 00:30 - 2015-01-22 00:36 - 00000247 _____ () C:\Windows\system32\2015-01-21-23-30-03.083-aswFe.exe-3028.log
2015-01-22 00:29 - 2015-01-22 00:30 - 00000197 _____ () C:\Windows\system32\2015-01-21-23-29-56.017-AvastVBoxSVC.exe-5428.log
2015-01-20 23:21 - 2015-01-20 23:21 - 00000197 _____ () C:\Windows\system32\2015-01-20-22-21-01.075-AvastVBoxSVC.exe-3440.log
2015-01-19 22:59 - 2015-01-19 23:00 - 00000197 _____ () C:\Windows\system32\2015-01-19-21-59-29.074-AvastVBoxSVC.exe-3532.log
2015-01-18 18:07 - 2015-01-18 18:07 - 00000197 _____ () C:\Windows\system32\2015-01-18-17-07-24.031-AvastVBoxSVC.exe-3412.log
2015-01-17 16:54 - 2015-01-17 16:54 - 00000197 _____ () C:\Windows\system32\2015-01-17-15-54-09.070-AvastVBoxSVC.exe-3400.log
2015-01-16 19:38 - 2014-12-13 01:47 - 00620176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-16 19:36 - 2014-12-13 11:08 - 32099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 25460552 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 24764232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 20465808 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 16040184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 13288360 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 13202520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 10770120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 10710160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 10345280 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-01-16 19:36 - 2014-12-13 11:08 - 03610440 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 03248968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 02897824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 01895056 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434709.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 01556624 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434709.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00994384 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00968336 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00942400 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00928072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00906560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00876976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00399688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00391488 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00346944 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00306328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00178632 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-01-16 19:36 - 2014-12-13 11:08 - 00165760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-01-16 19:36 - 2014-10-09 18:02 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-01-16 19:36 - 2014-10-09 18:02 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-01-16 19:36 - 2014-10-09 08:17 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll
2015-01-16 18:00 - 2015-01-16 18:00 - 00000197 _____ () C:\Windows\system32\2015-01-16-17-00-28.006-AvastVBoxSVC.exe-5032.log
2015-01-15 22:35 - 2015-01-15 22:35 - 00000197 _____ () C:\Windows\system32\2015-01-15-21-35-38.073-AvastVBoxSVC.exe-3376.log
2015-01-14 16:39 - 2015-01-14 16:39 - 00000197 _____ () C:\Windows\system32\2015-01-14-15-39-16.055-AvastVBoxSVC.exe-3508.log
2015-01-14 13:32 - 2015-01-14 13:32 - 00000197 _____ () C:\Windows\system32\2015-01-14-12-32-12.057-AvastVBoxSVC.exe-3448.log
2015-01-13 20:46 - 2015-01-13 20:46 - 00000197 _____ () C:\Windows\system32\2015-01-13-19-46-23.055-AvastVBoxSVC.exe-3900.log
2015-01-12 16:17 - 2015-01-12 16:18 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-17-56.088-AvastVBoxSVC.exe-3468.log
2015-01-11 15:38 - 2015-01-11 15:39 - 00000197 _____ () C:\Windows\system32\2015-01-11-14-38-50.065-AvastVBoxSVC.exe-4440.log
2015-01-10 18:50 - 2015-01-10 18:50 - 00000247 _____ () C:\Windows\system32\2015-01-10-17-50-29.083-aswFe.exe-1956.log
2015-01-10 18:44 - 2015-01-10 18:50 - 00000247 _____ () C:\Windows\system32\2015-01-10-17-44-11.065-aswFe.exe-3664.log
2015-01-10 18:44 - 2015-01-10 18:44 - 00000197 _____ () C:\Windows\system32\2015-01-10-17-44-02.090-AvastVBoxSVC.exe-4088.log
2015-01-10 03:45 - 2015-01-10 03:45 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2015-01-10 03:06 - 2015-01-10 03:06 - 00000197 _____ () C:\Windows\system32\2015-01-10-02-06-36.065-AvastVBoxSVC.exe-3484.log
2015-01-10 02:50 - 2015-01-10 02:50 - 00004014 _____ () C:\Windows\System32\Tasks\Trigger KMS Activation
2015-01-10 02:41 - 2015-01-10 02:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-01-10 02:41 - 2015-01-10 02:41 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2015-01-10 02:41 - 2015-01-10 02:41 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2015-01-10 02:40 - 2015-01-10 02:41 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2015-01-10 02:40 - 2015-01-10 02:40 - 00000000 ____D () C:\Windows\PCHEALTH
2015-01-10 02:38 - 2015-01-10 02:38 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2015-01-10 02:38 - 2015-01-10 02:38 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-01-10 02:38 - 2015-01-10 02:38 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2015-01-10 02:37 - 2015-01-10 02:37 - 00000000 __RHD () C:\MSOCache
2015-01-09 23:28 - 2015-01-09 23:28 - 00000197 _____ () C:\Windows\system32\2015-01-09-22-28-39.020-AvastVBoxSVC.exe-3456.log
2015-01-09 16:35 - 2015-01-09 16:36 - 00000197 _____ () C:\Windows\system32\2015-01-09-15-35-35.048-AvastVBoxSVC.exe-4636.log
2015-01-08 23:49 - 2015-01-08 23:49 - 00000197 _____ () C:\Windows\system32\2015-01-08-22-49-11.008-AvastVBoxSVC.exe-3748.log
2015-01-08 14:58 - 2015-01-08 14:58 - 00000197 _____ () C:\Windows\system32\2015-01-08-13-58-29.014-AvastVBoxSVC.exe-4660.log
2015-01-08 01:56 - 2015-01-08 01:56 - 00000000 ____D () C:\ProgramData\3528706942
2015-01-08 01:55 - 2015-01-08 01:55 - 00000000 ____D () C:\Users\Entwicklung\Documents\Optimizer Pro
2015-01-08 01:49 - 2015-01-08 01:49 - 00004032 _____ () C:\Windows\System32\Tasks\LaunchSignup
2015-01-08 01:46 - 2015-01-08 01:56 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-08 01:46 - 2015-01-08 01:46 - 00000000 ____D () C:\Users\Entwicklung\AppData\Roaming\Opera Software
2015-01-08 01:46 - 2015-01-08 01:46 - 00000000 ____D () C:\Users\Entwicklung\AppData\Local\Opera Software
2015-01-07 18:42 - 2015-01-07 18:43 - 00000197 _____ () C:\Windows\system32\2015-01-07-17-42-24.028-AvastVBoxSVC.exe-3632.log
2015-01-07 01:20 - 2015-01-07 01:21 - 00000197 _____ () C:\Windows\system32\2015-01-07-00-20-36.091-AvastVBoxSVC.exe-3948.log
2015-01-04 17:21 - 2015-01-04 17:22 - 00000197 _____ () C:\Windows\system32\2015-01-04-16-21-58.037-AvastVBoxSVC.exe-3604.log
2015-01-04 16:13 - 2015-01-04 16:14 - 00000197 _____ () C:\Windows\system32\2015-01-04-15-13-39.091-AvastVBoxSVC.exe-3604.log
2015-01-03 15:50 - 2015-01-03 15:50 - 00000197 _____ () C:\Windows\system32\2015-01-03-14-50-22.093-AvastVBoxSVC.exe-3660.log
2015-01-02 20:16 - 2015-01-02 20:16 - 00000247 _____ () C:\Windows\system32\2015-01-02-19-16-47.057-aswFe.exe-6772.log
2015-01-02 20:09 - 2015-01-02 20:16 - 00000247 _____ () C:\Windows\system32\2015-01-02-19-09-31.069-aswFe.exe-2720.log
2015-01-02 20:09 - 2015-01-02 20:09 - 00000197 _____ () C:\Windows\system32\2015-01-02-19-09-23.083-AvastVBoxSVC.exe-6928.log
2015-01-01 18:37 - 2015-01-01 18:37 - 00000197 _____ () C:\Windows\system32\2015-01-01-17-37-10.072-AvastVBoxSVC.exe-5232.log
2014-12-31 15:31 - 2014-12-31 15:31 - 00000197 _____ () C:\Windows\system32\2014-12-31-14-31-11.022-AvastVBoxSVC.exe-3636.log
2014-12-31 00:54 - 2014-12-31 00:54 - 00000197 _____ () C:\Windows\system32\2014-12-30-23-54-27.006-AvastVBoxSVC.exe-3684.log
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-01-29 04:08 - 2014-11-25 15:05 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-29 04:05 - 2014-11-25 16:00 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-29 02:39 - 2014-11-25 14:20 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-01-29 02:00 - 2014-11-27 19:54 - 00000000 ____D () C:\Users\Entwicklung\AppData\Local\Adobe
2015-01-29 00:27 - 2014-06-30 14:23 - 01791813 _____ () C:\Windows\WindowsUpdate.log
2015-01-28 23:29 - 2014-11-25 19:37 - 00000000 ____D () C:\Users\Entwicklung\AppData\Roaming\BitTorrent
2015-01-28 17:54 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-28 17:54 - 2009-07-14 05:45 - 00026544 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-28 17:47 - 2014-12-18 00:11 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-28 17:47 - 2014-06-30 14:36 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2015-01-28 17:46 - 2014-11-25 16:00 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-28 17:46 - 2014-06-30 14:50 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-28 17:46 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-28 08:37 - 2014-11-25 13:48 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-01-28 05:14 - 2014-06-30 14:30 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-28 02:42 - 2014-11-25 20:29 - 00000000 ____D () C:\Users\Entwicklung\AppData\Roaming\Skype
2015-01-27 03:11 - 2014-11-28 00:30 - 00000000 ____D () C:\Users\Entwicklung\AppData\Local\Deployment
2015-01-26 22:49 - 2014-11-25 20:29 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-01-25 18:20 - 2014-11-25 14:01 - 00000000 ____D () C:\Users\Entwicklung
2015-01-25 05:08 - 2014-11-25 15:05 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-25 05:08 - 2014-11-25 15:05 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-25 05:08 - 2014-11-25 15:05 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-16 19:38 - 2014-06-30 14:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-10 03:04 - 2009-07-14 05:45 - 05264888 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-10 02:53 - 2014-11-25 14:03 - 00129984 _____ () C:\Users\Entwicklung\AppData\Local\GDIPFONTCACHEV1.DAT
2015-01-10 02:42 - 2014-11-25 20:04 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-01-10 02:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-10 02:40 - 2014-11-25 20:04 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-01-10 02:39 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2015-01-10 02:39 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini
2015-01-10 02:38 - 2011-04-12 09:28 - 00000000 ____D () C:\Windows\ShellNew
2015-01-09 23:31 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-08 02:32 - 2014-12-18 04:55 - 00000000 ____D () C:\ProgramData\Logitech
2015-01-08 02:32 - 2014-12-18 04:55 - 00000000 ____D () C:\Program Files\Common Files\Logishrd
2015-01-08 01:56 - 2014-11-25 14:01 - 00001413 _____ () C:\Users\Entwicklung\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-07 18:55 - 2014-12-09 02:29 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-07 18:55 - 2014-11-25 20:29 - 00000000 ____D () C:\ProgramData\Skype
 
==================== Files in the root of some directories =======
 
2014-11-27 11:34 - 2014-11-27 11:34 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-01-24 19:36
 
==================== End Of Log ============================

  • 0

#4
entwicklung

entwicklung

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Addition.txt

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-01-2015
Ran by Entwicklung at 2015-01-29 04:16:19
Running from C:\Users\Entwicklung\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
A4 TECH PC Camera H (HKLM\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D303B}) (Version:  - )
A4 TECH PC Camera H (HKLM-x32\...\{CE3B8E96-B0AF-4871-9178-1519B58E3A93}) (Version: 2007.11.12 - A4 TECH)
ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.0.501 - ABBYY Production LLC)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Dreamweaver CS6 (HKLM-x32\...\{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}) (Version: 12 - Adobe Systems Incorporated)
Adobe Fireworks CS6 (HKLM-x32\...\{CA7C485C-7A89-11E1-B2C8-CD54B377BC52}) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AutoCAD 2014 - English (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - English (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - English (HKLM\...\AutoCAD 2014 - English) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.13 - Autodesk)
Autodesk ReCap (Version: 1.0.43.13 - Autodesk) Hidden
Autodesk ReCap Language Pack-English (Version: 1.0.43.13 - Autodesk) Hidden
Avast Premier (HKLM-x32\...\Avast) (Version: 10.0.2206 - AVAST Software)
BitTorrent (HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\BitTorrent) (Version: 7.9.2.36321 - BitTorrent Inc.)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.63.1071 - AB Team, d.o.o.)
CanoScan Toolbox Ver4.9 (HKLM-x32\...\{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
cssSlider (HKLM-x32\...\cssSlider_is1) (Version:  - )
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.2109.0 - CyberLink Corp.)
CyberLink PowerDirector 12 (Version: 12.0.2109.0 - CyberLink Corp.) Hidden
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)
GameRanger (HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\GameRanger) (Version:  - GameRanger Technologies)
GIGABYTE OC_GURU II (HKLM-x32\...\InstallShield_{5588D686-D23B-4C9D-BDFA-2A7875CD3722}) (Version: 1.60.0000 - GIGABYTE Technology Co.,Ltd.)
GIGABYTE OC_GURU II (x32 Version: 1.60.0000 - GIGABYTE Technology Co.,Ltd.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.93 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1010 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel® Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 2.0.31.7101 - Intel® Corporation)
Intel® Smart Connect Technology 3.0 x64 (HKLM\...\{DE788AD4-F7CE-4995-ADF8-56174A7B613C}) (Version: 3.0.41.1571 - Intel)
Intel® Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Nero 2015 (HKLM-x32\...\{763EF8DC-4CC0-47CA-BE1C-BDE731462250}) (Version: 16.0.02900 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG)
NewBlue Video Essentials for PowerDirector (HKLM\...\NewBlue Video Essentials for Cyberlink) (Version: 3.0 - NewBlue)
NVIDIA 3D Vision Controller Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.09 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA Graphics Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.09 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 16.0.0000 - Nero AG) Hidden
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6839 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sublime Text Build 3065 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.018 - MSI)
TranslitGT (HKU\S-1-5-21-3915107148-2932139291-530517926-1004\...\690AD0B0904BC431699FE5FBC28CFCD1F72485F7) (Version: 1.0.0.10 - GTWorks)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version:  - Elaborate Bytes)
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.126 - MSI)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
Wolfenstein. The New Order, âåðñèÿ 1.0.0.0 (HKLM-x32\...\Wolfenstein. The New Order_is1) (Version: 1.0.0.0 - RePack by SEYTER)
WOW Slider (HKLM-x32\...\WOW Slider_is1) (Version:  - )
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-3915107148-2932139291-530517926-1004_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3915107148-2932139291-530517926-1004_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3915107148-2932139291-530517926-1004_Classes\CLSID\{B8E5C57E-CB76-1530-6D93-B07B7EF2285E}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3915107148-2932139291-530517926-1004_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3915107148-2932139291-530517926-1004_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\en-US\acadficn.dll (Autodesk, Inc.)
 
==================== Restore Points  =========================
 
05-12-2014 18:36:20 Scheduled Checkpoint
14-12-2014 01:10:02 Scheduled Checkpoint
18-12-2014 00:06:20 avast! antivirus system restore point
18-12-2014 00:10:33 avast! antivirus system restore point
18-12-2014 00:11:51 Device Driver Package Install: Avast Network Service
25-12-2014 17:12:12 Scheduled Checkpoint
25-12-2014 19:59:06 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
01-01-2015 20:03:13 Scheduled Checkpoint
09-01-2015 18:23:24 Scheduled Checkpoint
10-01-2015 02:23:49 Removed Microsoft Office Professional Plus 2013
10-01-2015 02:24:07 PROPLUS
10-01-2015 02:36:56 Installed Microsoft Office Professional Plus 2013
10-01-2015 02:37:08 PROPLUS
17-01-2015 19:17:50 Scheduled Checkpoint
24-01-2015 19:43:46 Scheduled Checkpoint
28-01-2015 05:14:01 Installed A4 TECH PC Camera H
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {12A80234-FA9E-4E01-A83D-A86040B7D39F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-18] (AVAST Software)
Task: {1F3B4C9B-5C22-47AF-8983-B19E4CFB0DC9} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {24A2561F-977C-4101-84AB-FBEA6CB07121} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-25] (Adobe Systems Incorporated)
Task: {268BAECD-F49A-49D3-84CB-31ABC3934514} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-25] (Google Inc.)
Task: {374DBE4B-59DF-4E31-8A89-347437220D0C} - System32\Tasks\AdobeAAMUpdater-1.0-ENTWICKLUNG-Entwicklung => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {69CC925B-C142-4AE9-A212-FE139B7B66FF} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG)
Task: {6EDB4275-013A-4C10-A45C-3084ABB8C58C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-25] (Google Inc.)
Task: {718BED8E-37CC-4281-83C7-0B4B792F1BBD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {71E004FD-83DB-4BD8-9256-602A5C35802D} - System32\Tasks\Trigger KMS Activation => C:\Users\Entwicklung\Desktop\KMSNano v16.1 Offline Office and Windows KMS Activator\KMSNano v16.1 Offline Office and Windows KMS Activator\LaNanov16.1\TriggerKMS.exe
Task: {872F12F5-D2C2-436E-AD63-16F8860D207B} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {91C778F3-0BA0-4D35-BE2A-14DDE7FC3776} - System32\Tasks\{7DEAD829-4167-4155-9FD1-72048D2D685A} => pcalua.exe -a C:\Users\Entwicklung\Downloads\lide25vst6411011aen\SetupSG.exe -d C:\Users\Entwicklung\Downloads\lide25vst6411011aen
Task: {9C7FA6BE-CC50-4C5E-9CD1-FB3FECE7C042} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {D63FF5C9-459C-41E9-8F94-BA2C5D309E5B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {E3EBBFDF-CC55-4972-99BD-AA193269056A} - System32\Tasks\Intel® Small Business Advantage\Notifier => C:\Program Files\Intel\Intel® Small Business Advantage\UI\SBA_Notifier.exe [2013-03-13] (Intel Corporation)
Task: {FBCCEE22-EA66-4498-B4CD-2C044E984103} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2014-06-30 14:49 - 2014-12-13 09:03 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-30 15:57 - 2011-03-02 11:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2015-01-28 05:14 - 2006-07-04 14:16 - 00049152 _____ () C:\Windows\Domino.exe
2012-08-16 19:36 - 2012-08-16 19:36 - 00149032 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
2012-08-16 19:36 - 2012-08-16 19:36 - 00058920 _____ () C:\Program Files\Intel\Intel® Smart Connect Technology Agent\NetworkHeuristic.dll
2014-11-28 05:13 - 2012-08-08 21:36 - 00390672 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-12-18 00:11 - 2014-12-18 00:11 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-12-18 00:11 - 2014-12-18 00:11 - 05846160 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2015-01-27 05:06 - 2015-01-25 06:39 - 01450312 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\libglesv2.dll
2015-01-27 05:06 - 2015-01-25 06:39 - 00205128 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\libegl.dll
2015-01-27 05:06 - 2015-01-25 06:39 - 10864456 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\pdf.dll
2014-12-18 00:14 - 2014-12-18 00:04 - 00695808 ____R () C:\Program Files\AVAST Software\Avast\VERSION.dll
2015-01-28 00:22 - 2015-01-28 00:22 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012701\algo.dll
2014-12-18 00:11 - 2014-12-18 00:11 - 04491192 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2015-01-28 17:47 - 2015-01-28 17:47 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012800\algo.dll
2015-01-28 21:48 - 2015-01-28 21:48 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012801\algo.dll
2014-12-18 00:11 - 2014-12-18 00:11 - 38561576 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-30 14:32 - 2013-01-14 19:25 - 01200088 ____R () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2014-11-25 14:22 - 2014-12-01 22:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2014-11-25 14:22 - 2014-12-01 22:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2014-11-25 14:22 - 2014-12-01 22:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2014-11-25 14:22 - 2014-12-01 22:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2014-11-25 14:22 - 2014-11-11 19:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-01-22 19:48 - 2014-12-02 01:29 - 05002752 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-01-22 19:48 - 2014-12-02 01:29 - 01612800 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-01-22 19:48 - 2014-12-02 01:29 - 01210368 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2014-11-25 14:22 - 2015-01-23 23:34 - 02227904 _____ () C:\Program Files (x86)\Steam\video.dll
2014-11-25 14:22 - 2014-12-01 22:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2014-11-25 14:22 - 2015-01-23 23:33 - 00696512 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-11-25 14:22 - 2015-01-16 00:42 - 34641288 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-11-25 14:22 - 2015-01-16 00:42 - 01709960 _____ () C:\Program Files (x86)\Steam\bin\ffmpegsumo.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AlcoholAutomount => "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe
MSCONFIG\startupreg: Bonus.SSR.FR12 => "C:\Program Files (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe" /autorun
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: iLivid => "C:\Users\Vojin\AppData\Local\iLivid\iLivid.exe" -autorun
MSCONFIG\startupreg: LogiScrollApp => C:\Program Files\Logitech\FlowScroll\KhalScroll.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
 
========================= Accounts: ==========================
 
Administrator (S-1-5-21-3915107148-2932139291-530517926-500 - Administrator - Disabled)
Entwicklung (S-1-5-21-3915107148-2932139291-530517926-1004 - Administrator - Enabled) => C:\Users\Entwicklung
Guest (S-1-5-21-3915107148-2932139291-530517926-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3915107148-2932139291-530517926-1002 - Limited - Enabled)
 
==================== Faulty Device Manager Devices =============
 
Name: A3GYW8A1 IDE Controller
Description: A3GYW8A1 IDE Controller
Class Guid: 
Manufacturer: 
Service: avoj2sm9
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: The Windows Search Service cannot load the property store information.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: The Windows Search Service cannot open the Jet property store.
 
 
Details:
0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))
 
Error: (01/28/2015 05:47:34 PM) (Source: ESENT) (EventID: 455) (User: )
Description: Windows (5040) Windows: Error -1811 occurred while opening logfile C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0002B.log.
 
 
System errors:
=============
Error: (01/28/2015 05:48:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053
 
Error: (01/28/2015 05:48:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053
 
Error: (01/28/2015 05:48:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
 
Microsoft Office Sessions:
=========================
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (01/28/2015 05:47:36 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4700
 
Error: (01/28/2015 05:47:35 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: 
Details:
0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))
 
Error: (01/28/2015 05:47:34 PM) (Source: ESENT) (EventID: 455) (User: )
Description: Windows5040Windows: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS0002B.log-1811
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-3770 CPU @ 3.40GHz
Percentage of memory in use: 31%
Total physical RAM: 8136.17 MB
Available physical RAM: 5581.55 MB
Total Pagefile: 16270.52 MB
Available Pagefile: 13127.03 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:410.06 GB) (Free:225.09 GB) NTFS
Drive e: () (Fixed) (Total:521.36 GB) (Free:429.39 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5CCBDEA6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=410.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=521.4 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

  • 0

#5
entwicklung

entwicklung

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

TDSSkiller log

 

04:23:47.0949 0x1f90  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
04:23:58.0329 0x1f90  ============================================================
04:23:58.0329 0x1f90  Current date / time: 2015/01/29 04:23:58.0329
04:23:58.0329 0x1f90  SystemInfo:
04:23:58.0329 0x1f90  
04:23:58.0329 0x1f90  OS Version: 6.1.7601 ServicePack: 1.0
04:23:58.0329 0x1f90  Product type: Workstation
04:23:58.0329 0x1f90  ComputerName: ENTWICKLUNG
04:23:58.0329 0x1f90  UserName: Entwicklung
04:23:58.0329 0x1f90  Windows directory: C:\Windows
04:23:58.0329 0x1f90  System windows directory: C:\Windows
04:23:58.0329 0x1f90  Running under WOW64
04:23:58.0329 0x1f90  Processor architecture: Intel x64
04:23:58.0329 0x1f90  Number of processors: 8
04:23:58.0329 0x1f90  Page size: 0x1000
04:23:58.0329 0x1f90  Boot type: Normal boot
04:23:58.0329 0x1f90  ============================================================
04:23:59.0656 0x1f90  KLMD registered as C:\Windows\system32\drivers\99700469.sys
04:23:59.0816 0x1f90  System UUID: {C0B83FE6-D2C5-0AF1-9AA6-C0FF663146F3}
04:24:00.0156 0x1f90  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
04:24:00.0166 0x1f90  ============================================================
04:24:00.0166 0x1f90  \Device\Harddisk0\DR0:
04:24:00.0166 0x1f90  MBR partitions:
04:24:00.0166 0x1f90  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
04:24:00.0166 0x1f90  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3341D800
04:24:00.0166 0x1f90  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x33450000, BlocksNum 0x412B6000
04:24:00.0166 0x1f90  ============================================================
04:24:00.0186 0x1f90  C: <-> \Device\Harddisk0\DR0\Partition2
04:24:00.0226 0x1f90  E: <-> \Device\Harddisk0\DR0\Partition3
04:24:00.0226 0x1f90  ============================================================
04:24:00.0226 0x1f90  Initialize success
04:24:00.0226 0x1f90  ============================================================
04:24:33.0404 0x1924  ============================================================
04:24:33.0404 0x1924  Scan started
04:24:33.0404 0x1924  Mode: Manual; SigCheck; TDLFS; 
04:24:33.0404 0x1924  ============================================================
04:24:33.0404 0x1924  KSN ping started
04:24:36.0140 0x1924  KSN ping finished: true
04:24:37.0124 0x1924  ================ Scan system memory ========================
04:24:37.0124 0x1924  System memory - ok
04:24:37.0124 0x1924  ================ Scan services =============================
04:24:37.0244 0x1924  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
04:24:37.0304 0x1924  1394ohci - ok
04:24:37.0314 0x1924  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
04:24:37.0334 0x1924  ACPI - ok
04:24:37.0344 0x1924  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
04:24:37.0364 0x1924  AcpiPmi - ok
04:24:37.0454 0x1924  [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
04:24:37.0474 0x1924  AdobeARMservice - ok
04:24:37.0547 0x1924  [ A2A9C100FE1BE20A76C0B80D4CA44103, C34B4A31C8563E29EC6A3D318C40075F43C891C23D156F53EE2102C959B7887F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
04:24:37.0567 0x1924  AdobeFlashPlayerUpdateSvc - ok
04:24:37.0607 0x1924  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
04:24:37.0627 0x1924  adp94xx - ok
04:24:37.0657 0x1924  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
04:24:37.0677 0x1924  adpahci - ok
04:24:37.0687 0x1924  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
04:24:37.0707 0x1924  adpu320 - ok
04:24:37.0727 0x1924  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
04:24:37.0757 0x1924  AeLookupSvc - ok
04:24:37.0787 0x1924  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
04:24:37.0817 0x1924  AFD - ok
04:24:37.0837 0x1924  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
04:24:37.0847 0x1924  agp440 - ok
04:24:37.0867 0x1924  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
04:24:37.0877 0x1924  ALG - ok
04:24:37.0897 0x1924  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
04:24:37.0917 0x1924  aliide - ok
04:24:37.0917 0x1924  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
04:24:37.0927 0x1924  amdide - ok
04:24:37.0927 0x1924  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
04:24:37.0947 0x1924  AmdK8 - ok
04:24:37.0947 0x1924  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
04:24:37.0967 0x1924  AmdPPM - ok
04:24:37.0977 0x1924  [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
04:24:37.0997 0x1924  amdsata - ok
04:24:38.0007 0x1924  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
04:24:38.0027 0x1924  amdsbs - ok
04:24:38.0037 0x1924  [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
04:24:38.0047 0x1924  amdxata - ok
04:24:38.0057 0x1924  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
04:24:38.0087 0x1924  AppID - ok
04:24:38.0107 0x1924  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
04:24:38.0137 0x1924  AppIDSvc - ok
04:24:38.0147 0x1924  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo         C:\Windows\System32\appinfo.dll
04:24:38.0167 0x1924  Appinfo - ok
04:24:38.0187 0x1924  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
04:24:38.0207 0x1924  AppMgmt - ok
04:24:38.0247 0x1924  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
04:24:38.0257 0x1924  arc - ok
04:24:38.0267 0x1924  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
04:24:38.0287 0x1924  arcsas - ok
04:24:38.0347 0x1924  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
04:24:38.0387 0x1924  aspnet_state - ok
04:24:38.0407 0x1924  [ 001CFE1AE7A6377D70F654305ED10458, 02319F42082DD01715521BB01C63D93A783890F5EEF4F97E34401D6BF2537075 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
04:24:38.0437 0x1924  aswHwid - ok
04:24:38.0457 0x1924  [ B5FE95B473992B4BD8DC723F063552D1, A54E9FA6569FC89FFF681A40652510E5EC6F95F16551B496343C60CB192999AF ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
04:24:38.0477 0x1924  aswKbd - ok
04:24:38.0497 0x1924  [ CDE120D6279DD61B341CB871C48E5374, D9A5845F405D14268D5DCD54F88DB87FC4071042D65ED08F0F1687740F3E2657 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
04:24:38.0517 0x1924  aswMonFlt - ok
04:24:38.0639 0x1924  [ 7026AEEFBFFECB037E439976BA18B0D6, DDA3B4468B2F2463FF1D569C6392CF59BD44F29D6D8E03A2FA9586EBE685229F ] aswNdisFlt      C:\Windows\system32\DRIVERS\aswNdisFlt.sys
04:24:38.0669 0x1924  aswNdisFlt - ok
04:24:38.0679 0x1924  [ 6669541A3566F5B2F64A87ACC9B8821F, DD99968B1D78B55A6A19C8D494B7FB39ADF5175BD223B01E4C833AE10BBD019A ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
04:24:38.0699 0x1924  aswRdr - ok
04:24:38.0709 0x1924  [ 60FED5EA7F14315C319E7FFB3679CC24, 19774A9C0DB86ED99434A194C9138682982EEFEA43CE33AB38985445C72B4C03 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
04:24:38.0719 0x1924  aswRvrt - ok
04:24:38.0749 0x1924  [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
04:24:38.0799 0x1924  aswSnx - ok
04:24:38.0829 0x1924  [ 6FC940A01C53BC874F531349E991F2BC, C7D84127217D556D7722B0EBC38057C8DFA173265A6E1DBF89CA47379F061ED7 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
04:24:38.0849 0x1924  aswSP - ok
04:24:38.0869 0x1924  [ 7250DFE069F4CB68F736A12F51AC083E, 7422A030786F777E914E1D6C10BC9B94B03B4AA2A8F888FE948004B91C60CD07 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
04:24:38.0889 0x1924  aswStm - ok
04:24:38.0899 0x1924  [ 5EA98C99B780EE215401658BE5E217CA, A778F2E2414BD0C9C572BEAC1DD0A805ED1827A25D6208D650AEBCCEED4D6994 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
04:24:38.0919 0x1924  aswVmm - ok
04:24:38.0929 0x1924  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
04:24:38.0959 0x1924  AsyncMac - ok
04:24:38.0969 0x1924  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
04:24:38.0979 0x1924  atapi - ok
04:24:39.0019 0x1924  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
04:24:39.0059 0x1924  AudioEndpointBuilder - ok
04:24:39.0069 0x1924  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
04:24:39.0109 0x1924  AudioSrv - ok
04:24:39.0159 0x1924  [ 3817558D8D5BBC8B0F190CF0D7C4720F, 7CD250DD22BE0E6CF6BEA639EA8220E46158CA7DF33FF803967CEAEA7FBD14E5 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
04:24:39.0169 0x1924  Autodesk Content Service - detected UnsignedFile.Multi.Generic ( 1 )
04:24:41.0900 0x1924  Detect skipped due to KSN trusted
04:24:41.0900 0x1924  Autodesk Content Service - ok
04:24:41.0980 0x1924  [ 5CE4F1E7D1BF789919DC7F2E7603C638, 604D4D824B9FE183B82637D212D7804DC88D6475383C1E6EE4269CAAD82E7C13 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
04:24:42.0010 0x1924  avast! Antivirus - ok
04:24:42.0030 0x1924  [ 9554E93F44E5316EA97D4297B977AD76, 4CC0BD7D4ABB138ED781D82041287D7DF76FF0D4B26B515483CEC3CAD85CC142 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
04:24:42.0060 0x1924  avast! Firewall - ok
04:24:42.0182 0x1924  [ 780C1694218C375A06864E555C14BDB6, 3DEB07026ED978757706EE5D457AF6126580773C77F90DDFCCE258E5F916483F ] AvastVBoxSvc    C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
04:24:42.0272 0x1924  AvastVBoxSvc - ok
04:24:42.0302 0x1924  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
04:24:42.0322 0x1924  AxInstSV - ok
04:24:42.0362 0x1924  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
04:24:42.0382 0x1924  b06bdrv - ok
04:24:42.0392 0x1924  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
04:24:42.0412 0x1924  b57nd60a - ok
04:24:42.0442 0x1924  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
04:24:42.0482 0x1924  BDESVC - ok
04:24:42.0492 0x1924  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
04:24:42.0553 0x1924  Beep - ok
04:24:42.0583 0x1924  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
04:24:42.0623 0x1924  BFE - ok
04:24:42.0653 0x1924  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
04:24:42.0703 0x1924  BITS - ok
04:24:42.0723 0x1924  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
04:24:42.0733 0x1924  blbdrive - ok
04:24:42.0753 0x1924  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
04:24:42.0773 0x1924  bowser - ok
04:24:42.0803 0x1924  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
04:24:42.0813 0x1924  BrFiltLo - ok
04:24:42.0823 0x1924  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
04:24:42.0833 0x1924  BrFiltUp - ok
04:24:42.0866 0x1924  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
04:24:42.0886 0x1924  Browser - ok
04:24:42.0886 0x1924  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
04:24:42.0916 0x1924  Brserid - ok
04:24:42.0926 0x1924  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
04:24:42.0936 0x1924  BrSerWdm - ok
04:24:42.0946 0x1924  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
04:24:42.0956 0x1924  BrUsbMdm - ok
04:24:42.0956 0x1924  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
04:24:42.0976 0x1924  BrUsbSer - ok
04:24:42.0976 0x1924  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
04:24:42.0996 0x1924  BTHMODEM - ok
04:24:43.0016 0x1924  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
04:24:43.0046 0x1924  bthserv - ok
04:24:43.0056 0x1924  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
04:24:43.0086 0x1924  cdfs - ok
04:24:43.0096 0x1924  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
04:24:43.0116 0x1924  cdrom - ok
04:24:43.0136 0x1924  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
04:24:43.0166 0x1924  CertPropSvc - ok
04:24:43.0186 0x1924  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
04:24:43.0206 0x1924  circlass - ok
04:24:43.0226 0x1924  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
04:24:43.0246 0x1924  CLFS - ok
04:24:43.0286 0x1924  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
04:24:43.0296 0x1924  clr_optimization_v2.0.50727_32 - ok
04:24:43.0316 0x1924  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
04:24:43.0326 0x1924  clr_optimization_v2.0.50727_64 - ok
04:24:43.0366 0x1924  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
04:24:43.0426 0x1924  clr_optimization_v4.0.30319_32 - ok
04:24:43.0446 0x1924  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
04:24:43.0486 0x1924  clr_optimization_v4.0.30319_64 - ok
04:24:43.0496 0x1924  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
04:24:43.0516 0x1924  CmBatt - ok
04:24:43.0526 0x1924  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
04:24:43.0546 0x1924  cmdide - ok
04:24:43.0576 0x1924  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
04:24:43.0606 0x1924  CNG - ok
04:24:43.0606 0x1924  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
04:24:43.0616 0x1924  Compbatt - ok
04:24:43.0646 0x1924  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
04:24:43.0676 0x1924  CompositeBus - ok
04:24:43.0676 0x1924  COMSysApp - ok
04:24:43.0686 0x1924  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
04:24:43.0696 0x1924  crcdisk - ok
04:24:43.0726 0x1924  [ D8129C49798CBBFB2E4351D4B7B8EF9C, 7C125DBA3F88E7C6D98AE0869EDB7995360904A913923528ABD0429B2608C313 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
04:24:43.0756 0x1924  CryptSvc - ok
04:24:43.0776 0x1924  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
04:24:43.0816 0x1924  CSC - ok
04:24:43.0836 0x1924  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
04:24:43.0866 0x1924  CscService - ok
04:24:43.0906 0x1924  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
04:24:43.0940 0x1924  DcomLaunch - ok
04:24:43.0960 0x1924  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
04:24:43.0990 0x1924  defragsvc - ok
04:24:44.0020 0x1924  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
04:24:44.0040 0x1924  DfsC - ok
04:24:44.0070 0x1924  [ 388039F99CE8769024EE0438352ACA99, B61D14884E6129B2D12F4C67CCB7B546A6FE0A2EE9EAB11FD6D168B2EFDE30B0 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
04:24:44.0080 0x1924  dg_ssudbus - ok
04:24:44.0100 0x1924  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
04:24:44.0140 0x1924  Dhcp - ok
04:24:44.0140 0x1924  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
04:24:44.0180 0x1924  discache - ok
04:24:44.0200 0x1924  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
04:24:44.0210 0x1924  Disk - ok
04:24:44.0240 0x1924  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
04:24:44.0270 0x1924  dmvsc - ok
04:24:44.0330 0x1924  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
04:24:44.0360 0x1924  Dnscache - ok
04:24:44.0400 0x1924  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
04:24:44.0450 0x1924  dot3svc - ok
04:24:44.0480 0x1924  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
04:24:44.0520 0x1924  DPS - ok
04:24:44.0540 0x1924  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
04:24:44.0550 0x1924  drmkaud - ok
04:24:44.0600 0x1924  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
04:24:44.0654 0x1924  DXGKrnl - ok
04:24:44.0664 0x1924  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
04:24:44.0694 0x1924  EapHost - ok
04:24:44.0784 0x1924  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
04:24:44.0874 0x1924  ebdrv - ok
04:24:44.0894 0x1924  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
04:24:44.0914 0x1924  EFS - ok
04:24:44.0974 0x1924  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
04:24:45.0024 0x1924  ehRecvr - ok
04:24:45.0034 0x1924  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
04:24:45.0054 0x1924  ehSched - ok
04:24:45.0114 0x1924  [ 702D5606CF2199E0EDEA6F0E0D27CD10, 238046CFE126A1F8AB96D8B62F6AA5EC97BAB830E2BAE5B1B6AB2D31894C79E4 ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
04:24:45.0134 0x1924  ElbyCDIO - ok
04:24:45.0164 0x1924  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
04:24:45.0194 0x1924  elxstor - ok
04:24:45.0204 0x1924  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
04:24:45.0224 0x1924  ErrDev - ok
04:24:45.0244 0x1924  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
04:24:45.0284 0x1924  EventSystem - ok
04:24:45.0294 0x1924  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
04:24:45.0334 0x1924  exfat - ok
04:24:45.0344 0x1924  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
04:24:45.0384 0x1924  fastfat - ok
04:24:45.0414 0x1924  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
04:24:45.0444 0x1924  Fax - ok
04:24:45.0444 0x1924  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
04:24:45.0464 0x1924  fdc - ok
04:24:45.0484 0x1924  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
04:24:45.0514 0x1924  fdPHost - ok
04:24:45.0524 0x1924  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
04:24:45.0554 0x1924  FDResPub - ok
04:24:45.0574 0x1924  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
04:24:45.0584 0x1924  FileInfo - ok
04:24:45.0594 0x1924  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
04:24:45.0624 0x1924  Filetrace - ok
04:24:45.0696 0x1924  [ ECC329F6104EE208C24C4A8C1B4A9D14, E120DAAB58C4083577A8445230DBB841984818188BFD0609576BC704C836DF3F ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
04:24:45.0736 0x1924  FlexNet Licensing Service 64 - ok
04:24:45.0746 0x1924  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
04:24:45.0766 0x1924  flpydisk - ok
04:24:45.0786 0x1924  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
04:24:45.0806 0x1924  FltMgr - ok
04:24:45.0846 0x1924  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
04:24:45.0886 0x1924  FontCache - ok
04:24:45.0916 0x1924  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
04:24:45.0926 0x1924  FontCache3.0.0.0 - ok
04:24:45.0946 0x1924  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
04:24:45.0956 0x1924  FsDepends - ok
04:24:45.0976 0x1924  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
04:24:45.0996 0x1924  Fs_Rec - ok
04:24:46.0036 0x1924  [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
04:24:46.0056 0x1924  fvevol - ok
04:24:46.0076 0x1924  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
04:24:46.0086 0x1924  gagp30kx - ok
04:24:46.0176 0x1924  [ 34E75903D327D9D02AA5F92F87C808EF, D43C5085C1D265DA7516EFE893002CE02CAA515AA9B5C2A080F75C78048688C1 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
04:24:46.0236 0x1924  GfExperienceService - ok
04:24:46.0256 0x1924  [ 5D4DF0BAC74E9AC62AF6BC99440B050B, 655110646BFF890C448C0951E11132DC3592BDA6E080696341B930D090224723 ] GPCIDrv         C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys
04:24:46.0286 0x1924  GPCIDrv - ok
04:24:46.0326 0x1924  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
04:24:46.0386 0x1924  gpsvc - ok
04:24:46.0440 0x1924  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:24:46.0470 0x1924  gupdate - ok
04:24:46.0470 0x1924  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
04:24:46.0500 0x1924  gupdatem - ok
04:24:46.0510 0x1924  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
04:24:46.0540 0x1924  hcw85cir - ok
04:24:46.0580 0x1924  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
04:24:46.0630 0x1924  HdAudAddService - ok
04:24:46.0660 0x1924  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
04:24:46.0700 0x1924  HDAudBus - ok
04:24:46.0710 0x1924  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
04:24:46.0720 0x1924  HidBatt - ok
04:24:46.0730 0x1924  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
04:24:46.0750 0x1924  HidBth - ok
04:24:46.0760 0x1924  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
04:24:46.0780 0x1924  HidIr - ok
04:24:46.0800 0x1924  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
04:24:46.0830 0x1924  hidserv - ok
04:24:46.0850 0x1924  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
04:24:46.0870 0x1924  HidUsb - ok
04:24:46.0880 0x1924  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
04:24:46.0910 0x1924  hkmsvc - ok
04:24:46.0920 0x1924  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
04:24:46.0940 0x1924  HomeGroupListener - ok
04:24:46.0970 0x1924  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
04:24:46.0990 0x1924  HomeGroupProvider - ok
04:24:47.0010 0x1924  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
04:24:47.0020 0x1924  HpSAMD - ok
04:24:47.0050 0x1924  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
04:24:47.0090 0x1924  HTTP - ok
04:24:47.0110 0x1924  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
04:24:47.0120 0x1924  hwpolicy - ok
04:24:47.0130 0x1924  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
04:24:47.0150 0x1924  i8042prt - ok
04:24:47.0160 0x1924  [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
04:24:47.0180 0x1924  iaStorV - ok
04:24:47.0230 0x1924  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
04:24:47.0260 0x1924  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
04:24:49.0998 0x1924  Detect skipped due to KSN trusted
04:24:49.0998 0x1924  IDriverT - ok
04:24:50.0068 0x1924  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
04:24:50.0108 0x1924  idsvc - ok
04:24:50.0118 0x1924  IEEtwCollectorService - ok
04:24:50.0138 0x1924  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
04:24:50.0158 0x1924  iirsp - ok
04:24:50.0178 0x1924  [ F2C300C2E56F016B485B88080CD7D2FE, 3C4904B3BA45C0DCCD6789E9C7FC1191BCA3C6B498CDE5D77CA06359FBBDD5E7 ] ikbevent        C:\Windows\system32\DRIVERS\ikbevent.sys
04:24:50.0188 0x1924  ikbevent - ok
04:24:50.0228 0x1924  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
04:24:50.0258 0x1924  IKEEXT - ok
04:24:50.0278 0x1924  [ 5082439C30729042C60075A1176DA19C, 3747C6740EF33BF21FB9DE44025436D42085116341EBD2D6FD6CC5518A7E42F4 ] imsevent        C:\Windows\system32\DRIVERS\imsevent.sys
04:24:50.0288 0x1924  imsevent - ok
04:24:50.0358 0x1924  [ 826B707277FECF130AB4B5F156B53837, 94041839A4FF3DF0945391D294370FE95BA19D0EDE689FB8DFE50E68BEBAE5DC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
04:24:50.0438 0x1924  IntcAzAudAddService - ok
04:24:50.0478 0x1924  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
04:24:50.0510 0x1924  Intel® Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
04:24:53.0228 0x1924  Detect skipped due to KSN trusted
04:24:53.0228 0x1924  Intel® Capability Licensing Service Interface - ok
04:24:53.0278 0x1924  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
04:24:53.0318 0x1924  Intel® Capability Licensing Service TCP IP Interface - ok
04:24:53.0328 0x1924  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
04:24:53.0338 0x1924  intelide - ok
04:24:53.0358 0x1924  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
04:24:53.0378 0x1924  intelppm - ok
04:24:53.0408 0x1924  [ 48085DB8F39F81D70022E916B971F399, 6F27715528FE1E8A78ABD08C52C344667F64F571DBF9C8BA1F1357711266FB29 ] intelsba        C:\Program Files\Intel\Intel® Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe
04:24:53.0418 0x1924  intelsba - ok
04:24:53.0448 0x1924  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
04:24:53.0478 0x1924  IPBusEnum - ok
04:24:53.0498 0x1924  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
04:24:53.0521 0x1924  IpFilterDriver - ok
04:24:53.0561 0x1924  [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
04:24:53.0611 0x1924  iphlpsvc - ok
04:24:53.0621 0x1924  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
04:24:53.0631 0x1924  IPMIDRV - ok
04:24:53.0641 0x1924  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
04:24:53.0671 0x1924  IPNAT - ok
04:24:53.0691 0x1924  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
04:24:53.0711 0x1924  IRENUM - ok
04:24:53.0711 0x1924  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
04:24:53.0721 0x1924  isapnp - ok
04:24:53.0741 0x1924  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
04:24:53.0761 0x1924  iScsiPrt - ok
04:24:53.0771 0x1924  [ 5AB18D8055A4280C0F377A6262F3157E, 091366AE17601407E2A882BFF7901F1970C1111DA935B913BEAA2AFA76D4EEA2 ] ISCT            C:\Windows\system32\DRIVERS\ISCTD64.sys
04:24:53.0781 0x1924  ISCT - ok
04:24:53.0811 0x1924  [ B1010068CC23F73B874A70B94D6C8373, 9B11E1CE020F003153261F676B7AA479AF70E3A7CD748A0E79CF5E97C02A8FA5 ] ISCTAgent       C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
04:24:53.0821 0x1924  ISCTAgent - ok
04:24:53.0831 0x1924  [ 75779002A6084C1A011E195E421A9C75, 03D84CE7E50EEA1DFB298F4CE3669F478920ECEB33513FE2DC16C8BF90DF3830 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
04:24:53.0841 0x1924  iusb3hcs - ok
04:24:53.0861 0x1924  [ F390B641FE6115F536B8B78AA71B8814, 8F26FCEC9B1442224A8DEE3B6459F788DBCEDFB206846BFAA3B26E40B06E2D28 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
04:24:53.0881 0x1924  iusb3hub - ok
04:24:53.0901 0x1924  [ 653B86AA174FF7661D00EE1E524B234F, F4598336206097DD3C838F7315D87D989D8AB755F773ED613E984C2CC95D511B ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
04:24:53.0931 0x1924  iusb3xhc - ok
04:24:53.0991 0x1924  [ 1EDBBA43C0CDCE4EE210C9BA848C38CA, 9702A5731BE5A314D4B5EBB1A6C43144E380A39325457967144D54A36944C5DE ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
04:24:54.0021 0x1924  jhi_service - ok
04:24:54.0051 0x1924  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
04:24:54.0071 0x1924  kbdclass - ok
04:24:54.0091 0x1924  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
04:24:54.0121 0x1924  kbdhid - ok
04:24:54.0141 0x1924  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
04:24:54.0171 0x1924  KeyIso - ok
04:24:54.0181 0x1924  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
04:24:54.0211 0x1924  KSecDD - ok
04:24:54.0231 0x1924  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
04:24:54.0261 0x1924  KSecPkg - ok
04:24:54.0271 0x1924  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
04:24:54.0311 0x1924  ksthunk - ok
04:24:54.0341 0x1924  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
04:24:54.0381 0x1924  KtmRm - ok
04:24:54.0401 0x1924  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
04:24:54.0431 0x1924  LanmanServer - ok
04:24:54.0451 0x1924  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
04:24:54.0481 0x1924  LanmanWorkstation - ok
04:24:54.0521 0x1924  [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
04:24:54.0531 0x1924  LHidFilt - ok
04:24:54.0551 0x1924  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
04:24:54.0581 0x1924  lltdio - ok
04:24:54.0616 0x1924  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
04:24:54.0651 0x1924  lltdsvc - ok
04:24:54.0672 0x1924  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
04:24:54.0692 0x1924  lmhosts - ok
04:24:54.0712 0x1924  [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
04:24:54.0722 0x1924  LMouFilt - ok
04:24:54.0742 0x1924  [ 8B0D2FE92B090C59133EE321BAD58D99, 14B430C7D0F962268238C61353F3D0FBFE677DBC75D97A14969957B61C237C02 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
04:24:54.0762 0x1924  LMS - ok
04:24:54.0772 0x1924  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
04:24:54.0792 0x1924  LSI_FC - ok
04:24:54.0802 0x1924  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
04:24:54.0812 0x1924  LSI_SAS - ok
04:24:54.0822 0x1924  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
04:24:54.0842 0x1924  LSI_SAS2 - ok
04:24:54.0842 0x1924  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
04:24:54.0862 0x1924  LSI_SCSI - ok
04:24:54.0872 0x1924  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
04:24:54.0902 0x1924  luafv - ok
04:24:54.0934 0x1924  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
04:24:54.0963 0x1924  Mcx2Svc - ok
04:24:54.0983 0x1924  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
04:24:54.0993 0x1924  megasas - ok
04:24:55.0013 0x1924  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
04:24:55.0033 0x1924  MegaSR - ok
04:24:55.0053 0x1924  [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
04:24:55.0073 0x1924  MEIx64 - ok
04:24:55.0093 0x1924  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
04:24:55.0123 0x1924  MMCSS - ok
04:24:55.0143 0x1924  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
04:24:55.0173 0x1924  Modem - ok
04:24:55.0183 0x1924  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
04:24:55.0193 0x1924  monitor - ok
04:24:55.0223 0x1924  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
04:24:55.0243 0x1924  mouclass - ok
04:24:55.0263 0x1924  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
04:24:55.0283 0x1924  mouhid - ok
04:24:55.0293 0x1924  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
04:24:55.0313 0x1924  mountmgr - ok
04:24:55.0333 0x1924  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
04:24:55.0343 0x1924  mpio - ok
04:24:55.0363 0x1924  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
04:24:55.0403 0x1924  mpsdrv - ok
04:24:55.0423 0x1924  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
04:24:55.0473 0x1924  MpsSvc - ok
04:24:55.0483 0x1924  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
04:24:55.0503 0x1924  MRxDAV - ok
04:24:55.0523 0x1924  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
04:24:55.0543 0x1924  mrxsmb - ok
04:24:55.0563 0x1924  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
04:24:55.0583 0x1924  mrxsmb10 - ok
04:24:55.0593 0x1924  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
04:24:55.0613 0x1924  mrxsmb20 - ok
04:24:55.0623 0x1924  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
04:24:55.0633 0x1924  msahci - ok
04:24:55.0646 0x1924  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
04:24:55.0656 0x1924  msdsm - ok
04:24:55.0676 0x1924  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
04:24:55.0696 0x1924  MSDTC - ok
04:24:55.0716 0x1924  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
04:24:55.0746 0x1924  Msfs - ok
04:24:55.0756 0x1924  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
04:24:55.0786 0x1924  mshidkmdf - ok
04:24:55.0786 0x1924  MSICDSetup - ok
04:24:55.0796 0x1924  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
04:24:55.0806 0x1924  msisadrv - ok
04:24:55.0826 0x1924  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
04:24:55.0866 0x1924  MSiSCSI - ok
04:24:55.0866 0x1924  msiserver - ok
04:24:55.0886 0x1924  [ C23F5F6865AD25DD70A00A32DEA2D0A9, 5C284AC9ABED799D6668096D3FBA9C26C9BDA844B91D93CB057048725CAA56B5 ] MSI_SuperCharger C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
04:24:55.0906 0x1924  MSI_SuperCharger - ok
04:24:55.0926 0x1924  [ 09CDBC08AC17F650501D6BE36029B42C, 811722B3DACFA5651A4B245557ABCB386094A320E2E2DA9DC61CE4235C99F6DE ] MSI_Trigger_Service C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
04:24:55.0936 0x1924  MSI_Trigger_Service - ok
04:24:55.0946 0x1924  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
04:24:55.0966 0x1924  MSKSSRV - ok
04:24:55.0976 0x1924  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
04:24:56.0006 0x1924  MSPCLOCK - ok
04:24:56.0006 0x1924  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
04:24:56.0036 0x1924  MSPQM - ok
04:24:56.0046 0x1924  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
04:24:56.0066 0x1924  MsRPC - ok
04:24:56.0076 0x1924  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
04:24:56.0096 0x1924  mssmbios - ok
04:24:56.0106 0x1924  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
04:24:56.0126 0x1924  MSTEE - ok
04:24:56.0146 0x1924  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
04:24:56.0156 0x1924  MTConfig - ok
04:24:56.0166 0x1924  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
04:24:56.0176 0x1924  Mup - ok
04:24:56.0206 0x1924  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
04:24:56.0246 0x1924  napagent - ok
04:24:56.0276 0x1924  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
04:24:56.0296 0x1924  NativeWifiP - ok
04:24:56.0390 0x1924  [ DF1A606A45C5280BD2DEFEFC17311489, 690656E73211BF34A1A839EAAA6B090D66040773228506C571E40699CB4927F4 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
04:24:56.0420 0x1924  NAUpdate - ok
04:24:56.0470 0x1924  [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS            C:\Windows\system32\drivers\ndis.sys
04:24:56.0510 0x1924  NDIS - ok
04:24:56.0530 0x1924  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
04:24:56.0560 0x1924  NdisCap - ok
04:24:56.0580 0x1924  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
04:24:56.0610 0x1924  NdisTapi - ok
04:24:56.0630 0x1924  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
04:24:56.0650 0x1924  Ndisuio - ok
04:24:56.0660 0x1924  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
04:24:56.0690 0x1924  NdisWan - ok
04:24:56.0700 0x1924  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
04:24:56.0730 0x1924  NDProxy - ok
04:24:56.0750 0x1924  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
04:24:56.0780 0x1924  NetBIOS - ok
04:24:56.0790 0x1924  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
04:24:56.0820 0x1924  NetBT - ok
04:24:56.0830 0x1924  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
04:24:56.0840 0x1924  Netlogon - ok
04:24:56.0870 0x1924  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
04:24:56.0900 0x1924  Netman - ok
04:24:56.0930 0x1924  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:24:56.0970 0x1924  NetMsmqActivator - ok
04:24:56.0970 0x1924  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:24:56.0990 0x1924  NetPipeActivator - ok
04:24:57.0010 0x1924  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
04:24:57.0050 0x1924  netprofm - ok
04:24:57.0080 0x1924  [ 81B8D0C1CE44A7FDBD596B693783950C, 9F47ACECFE32E935FE03D0134018A9C03698D9E25E6FC9B8A525A4FE4A880642 ] netr7364        C:\Windows\system32\DRIVERS\netr7364.sys
04:24:57.0110 0x1924  netr7364 - ok
04:24:57.0120 0x1924  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:24:57.0130 0x1924  NetTcpActivator - ok
04:24:57.0130 0x1924  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
04:24:57.0150 0x1924  NetTcpPortSharing - ok
04:24:57.0170 0x1924  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
04:24:57.0180 0x1924  nfrd960 - ok
04:24:57.0200 0x1924  [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
04:24:57.0240 0x1924  NlaSvc - ok
04:24:57.0240 0x1924  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
04:24:57.0270 0x1924  Npfs - ok
04:24:57.0280 0x1924  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
04:24:57.0310 0x1924  nsi - ok
04:24:57.0320 0x1924  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
04:24:57.0340 0x1924  nsiproxy - ok
04:24:57.0390 0x1924  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
04:24:57.0442 0x1924  Ntfs - ok
04:24:57.0442 0x1924  NTIOLib_1_0_C - ok
04:24:57.0472 0x1924  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
04:24:57.0512 0x1924  Null - ok
04:24:57.0532 0x1924  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
04:24:57.0552 0x1924  NVHDA - ok
04:24:57.0762 0x1924  [ ED4D88A04D22E6B00DB6BC8FACDBAFED, 38DDB9B353D3A24DD8390C6FB58FD513B46F9F715BC7E68D0958E78EACC3D3FA ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
04:24:57.0972 0x1924  nvlddmkm - ok
04:24:58.0072 0x1924  [ 9EA1D43D68AAAE216CDA9C89CEF24D9E, 6554DD56EA804BC69EA5B50FA5F7CCCE790B5CC650F17DF5C474BEF7E5C99990 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
04:24:58.0132 0x1924  NvNetworkService - ok
04:24:58.0152 0x1924  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
04:24:58.0175 0x1924  nvraid - ok
04:24:58.0195 0x1924  [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
04:24:58.0215 0x1924  nvstor - ok
04:24:58.0275 0x1924  [ 63734B0FBD8E6DAF841AD3DD47DEFFFB, 8D458301C8349591C5649E53D7DA6C67D71FF3C82B2ADF426231DE208ECF85ED ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
04:24:58.0295 0x1924  NvStreamKms - ok
04:24:58.0676 0x1924  [ 8EB877DD871935DF1074BFF18CB301AB, 44B94840E24BF83D445C516756F78DAF4CF9C665B74A318AF3A6C5648DF8C45D ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
04:24:59.0036 0x1924  NvStreamSvc - ok
04:24:59.0086 0x1924  [ B7CD89EFA562A991F2864EFD3147473A, D38BAE7883BC073562C3C77DF59663B820CFE8305A3319C6E5CF8E48752E18C1 ] nvsvc           C:\Windows\system32\nvvsvc.exe
04:24:59.0116 0x1924  nvsvc - ok
04:24:59.0136 0x1924  [ 1FE5C1F4CCA8EAEA75C90FB2A85D9CC3, 4C3C36ADC9EC0FDED3E3FFC7918680B643652AD39458FAA8525392DAD0ABD845 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
04:24:59.0146 0x1924  nvvad_WaveExtensible - ok
04:24:59.0176 0x1924  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
04:24:59.0186 0x1924  nv_agp - ok
04:24:59.0186 0x1924  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
04:24:59.0206 0x1924  ohci1394 - ok
04:24:59.0246 0x1924  [ B9C125314A025127FE562C116D614AA3, 79C46C0BACEBBB5B8E1C162766B21587365A100BBAD01171C77B995C514BC7D6 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
04:24:59.0266 0x1924  ose64 - ok
04:24:59.0416 0x1924  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
04:24:59.0515 0x1924  osppsvc - ok
04:24:59.0545 0x1924  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
04:24:59.0565 0x1924  p2pimsvc - ok
04:24:59.0585 0x1924  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
04:24:59.0605 0x1924  p2psvc - ok
04:24:59.0685 0x1924  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
04:24:59.0725 0x1924  Parport - ok
04:24:59.0785 0x1924  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
04:24:59.0805 0x1924  partmgr - ok
04:24:59.0855 0x1924  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
04:24:59.0895 0x1924  PcaSvc - ok
04:24:59.0915 0x1924  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
04:24:59.0935 0x1924  pci - ok
04:24:59.0945 0x1924  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
04:24:59.0955 0x1924  pciide - ok
04:24:59.0965 0x1924  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
04:24:59.0985 0x1924  pcmcia - ok
04:24:59.0995 0x1924  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
04:25:00.0005 0x1924  pcw - ok
04:25:00.0025 0x1924  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
04:25:00.0075 0x1924  PEAUTH - ok
04:25:00.0125 0x1924  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
04:25:00.0175 0x1924  PeerDistSvc - ok
04:25:00.0225 0x1924  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
04:25:00.0245 0x1924  PerfHost - ok
04:25:00.0288 0x1924  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
04:25:00.0348 0x1924  pla - ok
04:25:00.0398 0x1924  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
04:25:00.0428 0x1924  PlugPlay - ok
04:25:00.0448 0x1924  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
04:25:00.0458 0x1924  PNRPAutoReg - ok
04:25:00.0468 0x1924  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
04:25:00.0498 0x1924  PNRPsvc - ok
04:25:00.0518 0x1924  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
04:25:00.0558 0x1924  PolicyAgent - ok
04:25:00.0578 0x1924  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
04:25:00.0608 0x1924  Power - ok
04:25:00.0638 0x1924  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
04:25:00.0668 0x1924  PptpMiniport - ok
04:25:00.0678 0x1924  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
04:25:00.0698 0x1924  Processor - ok
04:25:00.0708 0x1924  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc         C:\Windows\system32\profsvc.dll
04:25:00.0748 0x1924  ProfSvc - ok
04:25:00.0758 0x1924  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
04:25:00.0768 0x1924  ProtectedStorage - ok
04:25:00.0778 0x1924  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
04:25:00.0808 0x1924  Psched - ok
04:25:00.0848 0x1924  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
04:25:00.0888 0x1924  ql2300 - ok
04:25:00.0918 0x1924  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
04:25:00.0938 0x1924  ql40xx - ok
04:25:00.0958 0x1924  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
04:25:00.0978 0x1924  QWAVE - ok
04:25:00.0988 0x1924  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
04:25:01.0011 0x1924  QWAVEdrv - ok
04:25:01.0021 0x1924  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
04:25:01.0051 0x1924  RasAcd - ok
04:25:01.0071 0x1924  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
04:25:01.0101 0x1924  RasAgileVpn - ok
04:25:01.0111 0x1924  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
04:25:01.0141 0x1924  RasAuto - ok
04:25:01.0161 0x1924  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
04:25:01.0191 0x1924  Rasl2tp - ok
04:25:01.0211 0x1924  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
04:25:01.0251 0x1924  RasMan - ok
04:25:01.0271 0x1924  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
04:25:01.0291 0x1924  RasPppoe - ok
04:25:01.0311 0x1924  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
04:25:01.0341 0x1924  RasSstp - ok
04:25:01.0371 0x1924  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
04:25:01.0401 0x1924  rdbss - ok
04:25:01.0411 0x1924  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
04:25:01.0421 0x1924  rdpbus - ok
04:25:01.0451 0x1924  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
04:25:01.0471 0x1924  RDPCDD - ok
04:25:01.0491 0x1924  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
04:25:01.0513 0x1924  RDPDR - ok
04:25:01.0523 0x1924  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
04:25:01.0543 0x1924  RDPENCDD - ok
04:25:01.0553 0x1924  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
04:25:01.0583 0x1924  RDPREFMP - ok
04:25:01.0623 0x1924  [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
04:25:01.0653 0x1924  RdpVideoMiniport - ok
04:25:01.0663 0x1924  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
04:25:01.0703 0x1924  RDPWD - ok
04:25:01.0753 0x1924  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
04:25:01.0773 0x1924  rdyboost - ok
04:25:01.0803 0x1924  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
04:25:01.0833 0x1924  RemoteAccess - ok
04:25:01.0853 0x1924  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
04:25:01.0883 0x1924  RemoteRegistry - ok
04:25:01.0963 0x1924  [ C70F30AD0A519A53544129BD723CC5FB, B93ACB75423E3DA0A9E3EA641C62265D3087FF504850E70AE87625221BE9E987 ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
04:25:01.0993 0x1924  RichVideo64 - ok
04:25:02.0013 0x1924  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
04:25:02.0044 0x1924  RpcEptMapper - ok
04:25:02.0055 0x1924  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
04:25:02.0065 0x1924  RpcLocator - ok
04:25:02.0085 0x1924  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
04:25:02.0125 0x1924  RpcSs - ok
04:25:02.0135 0x1924  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
04:25:02.0165 0x1924  rspndr - ok
04:25:02.0215 0x1924  [ 61A04C0C084D560BBEF1D09604608262, 27230BDFB479FBD1B18BB4035059A52F8BE74B19190951EAC95D569E284421B3 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
04:25:02.0245 0x1924  RTL8167 - ok
04:25:02.0265 0x1924  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
04:25:02.0275 0x1924  s3cap - ok
04:25:02.0285 0x1924  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
04:25:02.0305 0x1924  SamSs - ok
04:25:02.0325 0x1924  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
04:25:02.0345 0x1924  sbp2port - ok
04:25:02.0365 0x1924  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
04:25:02.0395 0x1924  SCardSvr - ok
04:25:02.0415 0x1924  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
04:25:02.0445 0x1924  scfilter - ok
04:25:02.0475 0x1924  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
04:25:02.0525 0x1924  Schedule - ok
04:25:02.0545 0x1924  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
04:25:02.0575 0x1924  SCPolicySvc - ok
04:25:02.0585 0x1924  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
04:25:02.0605 0x1924  SDRSVC - ok
04:25:02.0615 0x1924  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
04:25:02.0655 0x1924  secdrv - ok
04:25:02.0665 0x1924  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
04:25:02.0695 0x1924  seclogon - ok
04:25:02.0705 0x1924  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
04:25:02.0735 0x1924  SENS - ok
04:25:02.0745 0x1924  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
04:25:02.0765 0x1924  SensrSvc - ok
04:25:02.0776 0x1924  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
04:25:02.0788 0x1924  Serenum - ok
04:25:02.0808 0x1924  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
04:25:02.0828 0x1924  Serial - ok
04:25:02.0848 0x1924  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
04:25:02.0858 0x1924  sermouse - ok
04:25:02.0888 0x1924  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
04:25:02.0918 0x1924  SessionEnv - ok
04:25:02.0918 0x1924  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
04:25:02.0938 0x1924  sffdisk - ok
04:25:02.0938 0x1924  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
04:25:02.0948 0x1924  sffp_mmc - ok
04:25:02.0958 0x1924  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
04:25:02.0968 0x1924  sffp_sd - ok
04:25:02.0968 0x1924  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
04:25:02.0988 0x1924  sfloppy - ok
04:25:03.0008 0x1924  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
04:25:03.0048 0x1924  SharedAccess - ok
04:25:03.0058 0x1924  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
04:25:03.0098 0x1924  ShellHWDetection - ok
04:25:03.0118 0x1924  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
04:25:03.0128 0x1924  SiSRaid2 - ok
04:25:03.0138 0x1924  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
04:25:03.0148 0x1924  SiSRaid4 - ok
04:25:03.0208 0x1924  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
04:25:03.0238 0x1924  SkypeUpdate - ok
04:25:03.0248 0x1924  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
04:25:03.0278 0x1924  Smb - ok
04:25:03.0308 0x1924  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
04:25:03.0328 0x1924  SNMPTRAP - ok
04:25:03.0338 0x1924  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
04:25:03.0348 0x1924  spldr - ok
04:25:03.0378 0x1924  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
04:25:03.0418 0x1924  Spooler - ok
04:25:03.0490 0x1924  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
04:25:03.0590 0x1924  sppsvc - ok
04:25:03.0610 0x1924  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
04:25:03.0640 0x1924  sppuinotify - ok
04:25:03.0680 0x1924  [ 74D30C2EF66C2EB19F17ED5423AA8038, F79AB2B2B60620565FB2169255F95F4B37F6113F0AF776D1BAD02681EBE0DB54 ] sptd            C:\Windows\System32\Drivers\sptd.sys
04:25:03.0700 0x1924  sptd - ok
04:25:03.0720 0x1924  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
04:25:03.0740 0x1924  srv - ok
04:25:03.0760 0x1924  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
04:25:03.0780 0x1924  srv2 - ok
04:25:03.0800 0x1924  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
04:25:03.0821 0x1924  srvnet - ok
04:25:03.0833 0x1924  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
04:25:03.0873 0x1924  SSDPSRV - ok
04:25:03.0873 0x1924  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
04:25:03.0903 0x1924  SstpSvc - ok
04:25:03.0943 0x1924  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
04:25:03.0973 0x1924  ssudmdm - ok
04:25:04.0043 0x1924  [ AC8B882D658AF3070167F59AE92E5CA3, 7781475B6A49DCE239FEE2B32767A7E58188EF04BC4BB29E04B40DAFD8214E85 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
04:25:04.0073 0x1924  Steam Client Service - ok
04:25:04.0133 0x1924  [ E7AF8F82C69A5E9B2CC46633BCBBAAEE, D7FC81DB72A1A96219335AFF861ADD82BEC115CBCB70C6765058E1D76702403C ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
04:25:04.0173 0x1924  Stereo Service - ok
04:25:04.0193 0x1924  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
04:25:04.0203 0x1924  stexstor - ok
04:25:04.0243 0x1924  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
04:25:04.0283 0x1924  stisvc - ok
04:25:04.0293 0x1924  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
04:25:04.0303 0x1924  storflt - ok
04:25:04.0333 0x1924  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
04:25:04.0343 0x1924  storvsc - ok
04:25:04.0353 0x1924  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
04:25:04.0363 0x1924  swenum - ok
04:25:04.0393 0x1924  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
04:25:04.0433 0x1924  swprv - ok
04:25:04.0453 0x1924  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
04:25:04.0463 0x1924  Synth3dVsc - ok
04:25:04.0513 0x1924  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
04:25:04.0566 0x1924  SysMain - ok
04:25:04.0576 0x1924  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
04:25:04.0606 0x1924  TabletInputService - ok
04:25:04.0676 0x1924  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
04:25:04.0716 0x1924  TapiSrv - ok
04:25:04.0736 0x1924  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
04:25:04.0766 0x1924  TBS - ok
04:25:04.0806 0x1924  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
04:25:04.0856 0x1924  Tcpip - ok
04:25:04.0906 0x1924  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
04:25:04.0956 0x1924  TCPIP6 - ok
04:25:04.0976 0x1924  [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
04:25:04.0996 0x1924  tcpipreg - ok
04:25:05.0006 0x1924  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
04:25:05.0026 0x1924  TDPIPE - ok
04:25:05.0046 0x1924  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
04:25:05.0056 0x1924  TDTCP - ok
04:25:05.0076 0x1924  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
04:25:05.0106 0x1924  tdx - ok
04:25:05.0116 0x1924  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
04:25:05.0126 0x1924  TermDD - ok
04:25:05.0146 0x1924  [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt        C:\Windows\system32\drivers\terminpt.sys
04:25:05.0156 0x1924  terminpt - ok
04:25:05.0206 0x1924  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
04:25:05.0266 0x1924  TermService - ok
04:25:05.0276 0x1924  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
04:25:05.0296 0x1924  Themes - ok
04:25:05.0316 0x1924  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
04:25:05.0346 0x1924  THREADORDER - ok
04:25:05.0356 0x1924  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
04:25:05.0386 0x1924  TrkWks - ok
04:25:05.0426 0x1924  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
04:25:05.0456 0x1924  TrustedInstaller - ok
04:25:05.0486 0x1924  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
04:25:05.0506 0x1924  tssecsrv - ok
04:25:05.0526 0x1924  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
04:25:05.0556 0x1924  TsUsbFlt - ok
04:25:05.0566 0x1924  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
04:25:05.0586 0x1924  TsUsbGD - ok
04:25:05.0606 0x1924  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
04:25:05.0626 0x1924  tsusbhub - ok
04:25:05.0646 0x1924  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
04:25:05.0676 0x1924  tunnel - ok
04:25:05.0686 0x1924  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
04:25:05.0696 0x1924  uagp35 - ok
04:25:05.0716 0x1924  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
04:25:05.0746 0x1924  udfs - ok
04:25:05.0776 0x1924  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
04:25:05.0796 0x1924  UI0Detect - ok
04:25:05.0816 0x1924  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
04:25:05.0826 0x1924  uliagpkx - ok
04:25:05.0836 0x1924  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
04:25:05.0846 0x1924  umbus - ok
04:25:05.0856 0x1924  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
04:25:05.0866 0x1924  UmPass - ok
04:25:05.0896 0x1924  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
04:25:05.0916 0x1924  UmRdpService - ok
04:25:05.0986 0x1924  [ D8A54623FFFB5A882645910EA165AE44, 527968E3C2CC67AFB4CC908584D4A7E40FDD76CBF2F2D9756BB17DA647A0DC73 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
04:25:06.0016 0x1924  UNS - ok
04:25:06.0026 0x1924  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
04:25:06.0076 0x1924  upnphost - ok
04:25:06.0116 0x1924  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
04:25:06.0146 0x1924  usbaudio - ok
04:25:06.0166 0x1924  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
04:25:06.0196 0x1924  usbccgp - ok
04:25:06.0216 0x1924  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
04:25:06.0246 0x1924  usbcir - ok
04:25:06.0266 0x1924  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
04:25:06.0276 0x1924  usbehci - ok
04:25:06.0286 0x1924  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
04:25:06.0316 0x1924  usbhub - ok
04:25:06.0326 0x1924  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
04:25:06.0346 0x1924  usbohci - ok
04:25:06.0346 0x1924  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
04:25:06.0366 0x1924  usbprint - ok
04:25:06.0386 0x1924  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
04:25:06.0406 0x1924  usbscan - ok
04:25:06.0426 0x1924  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
04:25:06.0436 0x1924  USBSTOR - ok
04:25:06.0436 0x1924  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
04:25:06.0456 0x1924  usbuhci - ok
04:25:06.0486 0x1924  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
04:25:06.0516 0x1924  usbvideo - ok
04:25:06.0536 0x1924  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
04:25:06.0566 0x1924  UxSms - ok
04:25:06.0586 0x1924  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
04:25:06.0606 0x1924  VaultSvc - ok
04:25:06.0669 0x1924  [ C650F6CB1AB3128CFB8A2D1259BA5F1B, 2DE386109AAE4AB55E6FE23454A5A817BA1457E4C4F9B93350EA7983B6BCBB1A ] VBoxAswDrv      C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
04:25:06.0689 0x1924  VBoxAswDrv - ok
04:25:06.0719 0x1924  [ BB6CF6FE601D597E0DB81AD023250CC2, AD56985B9C16A5665835DA72E7B7E1D3D94543B5CC2CD95AF5E7F0BF230623AC ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
04:25:06.0739 0x1924  VClone - ok
04:25:06.0749 0x1924  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
04:25:06.0769 0x1924  vdrvroot - ok
04:25:06.0789 0x1924  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
04:25:06.0829 0x1924  vds - ok
04:25:06.0859 0x1924  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
04:25:06.0879 0x1924  vga - ok
04:25:06.0889 0x1924  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
04:25:06.0939 0x1924  VgaSave - ok
04:25:06.0939 0x1924  VGPU - ok
04:25:06.0959 0x1924  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
04:25:06.0979 0x1924  vhdmp - ok
04:25:06.0989 0x1924  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
04:25:06.0999 0x1924  viaide - ok
04:25:07.0019 0x1924  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
04:25:07.0039 0x1924  vmbus - ok
04:25:07.0059 0x1924  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
04:25:07.0079 0x1924  VMBusHID - ok
04:25:07.0089 0x1924  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
04:25:07.0099 0x1924  volmgr - ok
04:25:07.0119 0x1924  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
04:25:07.0149 0x1924  volmgrx - ok
04:25:07.0169 0x1924  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
04:25:07.0189 0x1924  volsnap - ok
04:25:07.0209 0x1924  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
04:25:07.0229 0x1924  vsmraid - ok
04:25:07.0279 0x1924  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
04:25:07.0349 0x1924  VSS - ok
04:25:07.0400 0x1924  [ B6B68B3CDA4DC22E25AD22C8CF5A5FE1, 8EA297177683D059780FD1C7225AFA0ED9D142A1BA04943A5BFF45F433C22CE4 ] vvftav303       C:\Windows\system32\drivers\vvftav303.sys
04:25:07.0424 0x1924  vvftav303 - ok
04:25:07.0434 0x1924  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
04:25:07.0454 0x1924  vwifibus - ok
04:25:07.0464 0x1924  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
04:25:07.0494 0x1924  vwififlt - ok
04:25:07.0514 0x1924  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
04:25:07.0554 0x1924  W32Time - ok
04:25:07.0574 0x1924  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
04:25:07.0594 0x1924  WacomPen - ok
04:25:07.0624 0x1924  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
04:25:07.0654 0x1924  WANARP - ok
04:25:07.0654 0x1924  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
04:25:07.0684 0x1924  Wanarpv6 - ok
04:25:07.0744 0x1924  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
04:25:07.0794 0x1924  wbengine - ok
04:25:07.0804 0x1924  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
04:25:07.0834 0x1924  WbioSrvc - ok
04:25:07.0854 0x1924  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
04:25:07.0884 0x1924  wcncsvc - ok
04:25:07.0894 0x1924  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
04:25:07.0904 0x1924  WcsPlugInService - ok
04:25:07.0924 0x1924  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
04:25:07.0934 0x1924  Wd - ok
04:25:07.0964 0x1924  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
04:25:07.0994 0x1924  Wdf01000 - ok
04:25:08.0004 0x1924  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
04:25:08.0024 0x1924  WdiServiceHost - ok
04:25:08.0034 0x1924  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
04:25:08.0054 0x1924  WdiSystemHost - ok
04:25:08.0074 0x1924  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
04:25:08.0094 0x1924  WebClient - ok
04:25:08.0114 0x1924  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
04:25:08.0154 0x1924  Wecsvc - ok
04:25:08.0174 0x1924  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
04:25:08.0204 0x1924  wercplsupport - ok
04:25:08.0224 0x1924  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
04:25:08.0254 0x1924  WerSvc - ok
04:25:08.0274 0x1924  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
04:25:08.0304 0x1924  WfpLwf - ok
04:25:08.0324 0x1924  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
04:25:08.0334 0x1924  WIMMount - ok
04:25:08.0354 0x1924  WinDefend - ok
04:25:08.0364 0x1924  WinHttpAutoProxySvc - ok
04:25:08.0404 0x1924  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
04:25:08.0447 0x1924  Winmgmt - ok
04:25:08.0507 0x1924  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
04:25:08.0587 0x1924  WinRM - ok
04:25:08.0617 0x1924  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
04:25:08.0647 0x1924  WinUsb - ok
04:25:08.0687 0x1924  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
04:25:08.0737 0x1924  Wlansvc - ok
04:25:08.0747 0x1924  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
04:25:08.0757 0x1924  WmiAcpi - ok
04:25:08.0787 0x1924  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
04:25:08.0807 0x1924  wmiApSrv - ok
04:25:08.0827 0x1924  WMPNetworkSvc - ok
04:25:08.0847 0x1924  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
04:25:08.0857 0x1924  WPCSvc - ok
04:25:08.0877 0x1924  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
04:25:08.0897 0x1924  WPDBusEnum - ok
04:25:08.0907 0x1924  [ 7CA09731EB7FC99B910C7F239E57720F, 502F8917A0811F37C39B2B3F5E9B4F38A0E899C30CB29D3ECD87A50FF228E536 ] WPRO_41_2001    C:\Windows\system32\drivers\WPRO_41_2001.sys
04:25:08.0927 0x1924  WPRO_41_2001 - ok
04:25:08.0937 0x1924  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
04:25:08.0967 0x1924  ws2ifsl - ok
04:25:08.0977 0x1924  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
04:25:08.0997 0x1924  wscsvc - ok
04:25:08.0997 0x1924  WSearch - ok
04:25:09.0057 0x1924  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
04:25:09.0127 0x1924  wuauserv - ok
04:25:09.0147 0x1924  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
04:25:09.0167 0x1924  WudfPf - ok
04:25:09.0201 0x1924  [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
04:25:09.0231 0x1924  WUDFRd - ok
04:25:09.0251 0x1924  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
04:25:09.0291 0x1924  wudfsvc - ok
04:25:09.0301 0x1924  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
04:25:09.0321 0x1924  WwanSvc - ok
04:25:09.0391 0x1924  [ EDD2DA8090C54935C92C4CC81EBA9FFF, 211AB8BC812A1B206CAC65F6AF813082CA677868E0098CD1B9A141F3C5514726 ] ZSMC0303        C:\Windows\system32\Drivers\usbVM303.sys
04:25:09.0441 0x1924  ZSMC0303 - ok
04:25:09.0451 0x1924  ================ Scan global ===============================
04:25:09.0471 0x1924  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
04:25:09.0491 0x1924  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
04:25:09.0512 0x1924  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
04:25:09.0533 0x1924  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
04:25:09.0553 0x1924  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
04:25:09.0553 0x1924  [ Global ] - ok
04:25:09.0563 0x1924  ================ Scan MBR ==================================
04:25:09.0563 0x1924  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
04:25:10.0003 0x1924  \Device\Harddisk0\DR0 - ok
04:25:10.0003 0x1924  ================ Scan VBR ==================================
04:25:10.0003 0x1924  [ 39E43107F8B482A276923EF20D2D6386 ] \Device\Harddisk0\DR0\Partition1
04:25:10.0033 0x1924  \Device\Harddisk0\DR0\Partition1 - ok
04:25:10.0043 0x1924  [ 26DC7ED02932FD9097D957474D2DDA6F ] \Device\Harddisk0\DR0\Partition2
04:25:10.0073 0x1924  \Device\Harddisk0\DR0\Partition2 - ok
04:25:10.0073 0x1924  [ B971445AAC655E6ED4F0FEA02D5961A8 ] \Device\Harddisk0\DR0\Partition3
04:25:10.0083 0x1924  \Device\Harddisk0\DR0\Partition3 - ok
04:25:10.0083 0x1924  ================ Scan generic autorun ======================
04:25:10.0283 0x1924  [ 2A679BBF27B060E7690915AB7E0C9F84, 847D35551A32D9329D738A6655CB674BD3471259A4245000175A01AD4FB9CA1D ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
04:25:10.0433 0x1924  RTHDVCPL - ok
04:25:10.0494 0x1924  [ 90AC42BBCDF908DD576853CB5CACA761, DACDE2E100970229CA219D2640B483E955A22C45F34BC494BDF92F974C6DB611 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
04:25:10.0564 0x1924  NvBackend - ok
04:25:10.0574 0x1924  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
04:25:10.0604 0x1924  ShadowPlay - ok
04:25:10.0634 0x1924  [ 0B1E2A37AAB87034314D8014F23221B2, 7291FF50759EBC04C9BF9A09E78DBF8A3B77DF2BCA433633A9C8DE291D3F2E3D ] C:\Windows\VMSnap3.exe
04:25:10.0654 0x1924  VMSnap3 - ok
04:25:10.0684 0x1924  [ F9CAAC9D8C767E51AFFD396EDFD20C96, 939FC38059B4F82E3B02BF10EB91AA503A86F94F2CB6E2BE74FB47FC3DE8E845 ] C:\Windows\Domino.exe
04:25:10.0714 0x1924  Domino - ok
04:25:10.0734 0x1924  [ 0A628102E7558A86A9A6728B4A39DA08, D3BEB96B1E77143B71ADEC3CC49E5AE45F619EBA039A92B4DB0EAC10A9847D91 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe
04:25:10.0754 0x1924  IMSS - ok
04:25:10.0794 0x1924  [ 796227FCA947A0B8E3D6A097B27F2363, F14B1F8CF253A27554D4C24228911355FA475AABF086B66A498E825E8E3CBFA5 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
04:25:10.0824 0x1924  USB3MON - ok
04:25:10.0854 0x1924  [ F2671AC48B16AD68699C8F67DFBD5B0E, D951C067E58EB0E3D06718D9B3D0555D8FBF0EC9BB907F0B3D602BDE36366C52 ] C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
04:25:10.0894 0x1924  Super-Charger - ok
04:25:10.0924 0x1924  [ DE37F9B256FABE999A03EA23B4CA26EC, 262B1BF65259FBBEC06FC2CA1B293B54612406396D80977ACE19295D7D3E9C3D ] C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
04:25:10.0954 0x1924  VirtualCloneDrive - ok
04:25:11.0074 0x1924  [ C2D60F6277707014C1C670A4D27F36E8, 9F02C675BCE2BA500E8C1A4EA60BD553C1257836F5868126037E35772E9F251F ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
04:25:11.0194 0x1924  AvastUI.exe - ok
04:25:11.0264 0x1924  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
04:25:11.0327 0x1924  Sidebar - ok
04:25:11.0347 0x1924  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
04:25:11.0367 0x1924  mctadmin - ok
04:25:11.0387 0x1924  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
04:25:11.0427 0x1924  Sidebar - ok
04:25:11.0427 0x1924  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
04:25:11.0447 0x1924  mctadmin - ok
04:25:11.0497 0x1924  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
04:25:11.0549 0x1924  Sidebar - ok
04:25:11.0579 0x1924  [ B22CB67919EBAD88B0E8BB9CDA446010, 2F744FEAC48EDE7D6B6D2727F7DDFA80B26D9E3B0009741B00992B19AD85E128 ] C:\Windows\System32\StikyNot.exe
04:25:11.0629 0x1924  RESTART_STICKY_NOTES - ok
04:25:11.0789 0x1924  [ 18EE6C694976C4D205AF24D6CCE3B660, 262F8B929CBBC8BFDD465826A27625ED9508A7C325C45F1964A4EFAC36D60056 ] C:\Program Files\CCleaner\CCleaner64.exe
04:25:11.0929 0x1924  CCleaner Monitoring - ok
04:25:11.0929 0x1924  Waiting for KSN requests completion. In queue: 322
04:25:12.0938 0x1924  Waiting for KSN requests completion. In queue: 322
04:25:13.0945 0x1924  Waiting for KSN requests completion. In queue: 16
04:25:15.0060 0x1924  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2206.692 ), 0x41000 ( enabled : updated )
04:25:15.0060 0x1924  FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2206.692 ), 0x41010 ( enabled )
04:25:17.0801 0x1924  ============================================================
04:25:17.0801 0x1924  Scan finished
04:25:17.0801 0x1924  ============================================================
04:25:17.0811 0x1b7c  Detected object count: 0
04:25:17.0811 0x1b7c  Actual detected object count: 0

  • 0

#6
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
Piracy Warning


It appears that you have pirated material on your computer.

Here at Geeks to Go we DO NOT support pirated material at all and maintain a zero tolerance policy.

If you wish our help to continue, you need to uninstall the pirated software.


If you wish to go ahead then please run the following so we can build up a complete list of what needs to be removed.

CKScanner
  • Download CKScanner by askey127 from here and save it to your desktop.
  • Right-click on CKScanner.exe then click Run as Administrator to open. Allow if prompted.
  • Click Search For Files
  • When the cursor hourglass disappears, click Save List To File
  • A message box will verify the file saved
  • Double-click the CKFiles.txt icon on your desktop then copy/paste the contents in your next reply.
Things I need to see in your next post:

CKFiles.txt Log

  • 0

#7
entwicklung

entwicklung

    New Member

  • Topic Starter
  • Member
  • Pip
  • 5 posts

Here I am! Sorry for slow reply, I couldn't reply any faster than this. Ofcourse, I uninstalled pirate software. I assume you were talking about "BitTorrent". That's the only thing i found, that could be pirated. Now when I did that, i followed your instructions.

 

Ofcourse, this time, when I started up machine, i took a screen shoot of my problem, just to show you.

 

Here it is: http://postimg.org/image/pctftyu1b/

 

And here is ckfiles.txt

 

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.RP.11.UUAAL0
 ----- EOF ----- 

 


  • 0

#8
pystryker

pystryker

    Trusted Helper

  • Malware Removal
  • 3,886 posts
This service is provided to you, without charge, by people who volunteer their own time to help.
There is an implied trust that you will respect that donated time, and provide all the information possible to bring the dialog to a successful conclusion.
If false information is provided, that trust is violated, and no further help will be given.

This thread is now closed.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP