| |
| |||||||
Log-Analyse und Auswertung: Tdss killer auswertungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
22.09.2013, 20:53
| #1 |
 |  Tdss killer auswertung Hallo Habe gestern eien scan mit tdss killer durchgefuehrt eine datei wurde angezeigt und ungeduldig wie ich bin habe ich sie unter Quarantäne gestellt. Nun startete windows nicht mehr und ich musste mit einem Wiederherstellungspunkt reparieren. Weiss jemand um was fuer eine Datei es sich hierbei handelt. Hier mal der log Code:
ATTFilter 02:30:44.0529 0x0d54 TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
02:30:44.0837 0x0d54 ============================================================
02:30:44.0837 0x0d54 Current date / time: 2013/09/22 02:30:44.0837
02:30:44.0837 0x0d54 SystemInfo:
02:30:44.0837 0x0d54
02:30:44.0837 0x0d54 OS Version: 6.2.9200 ServicePack: 0.0
02:30:44.0837 0x0d54 Product type: Workstation
02:30:44.0837 0x0d54 ComputerName: XXX
02:30:44.0837 0x0d54 UserName: xxx
02:30:44.0837 0x0d54 Windows directory: C:\Windows
02:30:44.0837 0x0d54 System windows directory: C:\Windows
02:30:44.0837 0x0d54 Running under WOW64
02:30:44.0837 0x0d54 Processor architecture: Intel x64
02:30:44.0837 0x0d54 Number of processors: 4
02:30:44.0837 0x0d54 Page size: 0x1000
02:30:44.0837 0x0d54 Boot type: Normal boot
02:30:44.0837 0x0d54 ============================================================
02:31:35.0089 0x0d54 !crdlk
02:31:35.0095 0x0d54 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
02:31:35.0114 0x0d54 Drive \Device\Harddisk1\DR1 - Size: 0x1E880000 (0.48 Gb), SectorSize: 0x200, Cylinders: 0x3E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
02:31:35.0116 0x0d54 ============================================================
02:31:35.0116 0x0d54 \Device\Harddisk0\DR0:
02:31:35.0117 0x0d54 MBR partitions:
02:31:35.0117 0x0d54 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770800, BlocksNum 0x32000
02:31:35.0117 0x0d54 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A2800, BlocksNum 0x39E541BB
02:31:35.0168 0x0d54 \Device\Harddisk1\DR1:
02:31:35.0169 0x0d54 MBR partitions:
02:31:35.0169 0x0d54 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x29, BlocksNum 0xF43D7
02:31:35.0169 0x0d54 ============================================================
02:31:35.0212 0x0d54 C: <-> \Device\Harddisk0\DR0\Partition2
02:31:35.0233 0x0d54 E: <-> \Device\Harddisk0\DR0\Partition1
02:31:35.0233 0x0d54 ============================================================
02:31:35.0233 0x0d54 Initialize success
02:31:35.0233 0x0d54 ============================================================
02:31:39.0308 0x063c ============================================================
02:31:39.0308 0x063c Scan started
02:31:39.0308 0x063c Mode: Manual;
02:31:39.0308 0x063c ============================================================
02:31:39.0536 0x063c ================ Scan system memory ========================
02:31:39.0536 0x063c System memory - ok
02:31:39.0536 0x063c ================ Scan services =============================
02:31:39.0781 0x063c [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
02:31:39.0785 0x063c 1394ohci - ok
02:31:39.0839 0x063c 22242893 - ok
02:31:39.0874 0x063c [ AD508A1A46EC21B740AB31C28EFDFDB1 ] 3ware C:\Windows\system32\drivers\3ware.sys
02:31:39.0876 0x063c 3ware - ok
02:31:39.0938 0x063c [ B8B6D51DCB4529E8B37E4AD674FCED41 ] 80117480 C:\Windows\system32\drivers\30439020.sys
02:31:39.0941 0x063c Suspicious file (Forged): C:\Windows\system32\drivers\30439020.sys. Real md5: B8B6D51DCB4529E8B37E4AD674FCED41, Fake md5: 030C7DB76C829116D696C7B652E01C3A
02:31:39.0941 0x063c 80117480 ( ForgedFile.Multi.Generic ) - warning
02:31:39.0941 0x063c 80117480 - detected ForgedFile.Multi.Generic (1)
02:31:40.0033 0x063c [ E19D921EBBD1A2CA4C48D7B5F1685B30 ] ACPI C:\Windows\system32\drivers\ACPI.sys
02:31:40.0045 0x063c ACPI - ok
02:31:40.0088 0x063c [ AC8279D229398BCF05C3154ADCA86813 ] acpiex C:\Windows\system32\Drivers\acpiex.sys
02:31:40.0097 0x063c acpiex - ok
02:31:40.0159 0x063c [ A8970D9BF23CD309E0403978A1B58F3F ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
02:31:40.0160 0x063c acpipagr - ok
02:31:40.0200 0x063c [ 111A89C99C5B4F1A7BCE5F643DD86F65 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
02:31:40.0201 0x063c AcpiPmi - ok
02:31:40.0235 0x063c [ 5758387D68A20AE7D3245011B07E36E7 ] acpitime C:\Windows\System32\drivers\acpitime.sys
02:31:40.0236 0x063c acpitime - ok
02:31:40.0326 0x063c [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:31:40.0327 0x063c AdobeARMservice - ok
02:31:40.0491 0x063c [ 3109B16A0939BA11696EEB04F345D099 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:31:40.0495 0x063c AdobeFlashPlayerUpdateSvc - ok
02:31:40.0587 0x063c [ 7C1FDF1B48298CBA7CE4BDD4978951AD ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS
02:31:40.0598 0x063c ADP80XX - ok
02:31:40.0677 0x063c [ B19CA8E441D35AA2B1EE51C10B27DA1B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:31:40.0681 0x063c AeLookupSvc - ok
02:31:40.0747 0x063c [ 239268BAB58EAE9A3FF4E08334C00451 ] AFD C:\Windows\system32\drivers\afd.sys
02:31:40.0756 0x063c AFD - ok
02:31:40.0845 0x063c [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
02:31:40.0860 0x063c AgereSoftModem - ok
02:31:40.0917 0x063c [ 7DFAEBA9AD62D20102B576D5CAC45EC8 ] agp440 C:\Windows\system32\drivers\agp440.sys
02:31:40.0918 0x063c agp440 - ok
02:31:40.0960 0x063c [ 8E8E34B7BA059050EED827410D0697A2 ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys
02:31:40.0962 0x063c ahcache - ok
02:31:41.0012 0x063c [ A91D8E1E433EFB32551BCE69037E1CE7 ] ALG C:\Windows\System32\alg.exe
02:31:41.0014 0x063c ALG - ok
02:31:41.0085 0x063c [ 062F771F0D30757CE36192D8717F9C84 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
02:31:41.0089 0x063c AMD External Events Utility - ok
02:31:41.0138 0x063c [ 7589DE749DB6F71A68489DCE04158729 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
02:31:41.0140 0x063c AmdK8 - ok
02:31:41.0465 0x063c [ C0CBA3F3ED8AA0945C39FBF43F9F7E55 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
02:31:41.0731 0x063c amdkmdag - ok
02:31:41.0800 0x063c [ D8363654E731019A4F737AD660F33C78 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
02:31:41.0809 0x063c amdkmdap - ok
02:31:41.0868 0x063c [ B46D2D89AFF8A9490FA8C98C7A5616E3 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
02:31:41.0869 0x063c AmdPPM - ok
02:31:41.0913 0x063c [ D2BF2F94A47D332814910FD47C6BBCD2 ] amdsata C:\Windows\system32\drivers\amdsata.sys
02:31:41.0915 0x063c amdsata - ok
02:31:41.0952 0x063c [ A8E04943C7BBA7219AA50400272C3C6E ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
02:31:41.0955 0x063c amdsbs - ok
02:31:42.0003 0x063c [ CEA5F4F27CFC08E3A44D576811B35F50 ] amdxata C:\Windows\system32\drivers\amdxata.sys
02:31:42.0004 0x063c amdxata - ok
02:31:42.0043 0x063c [ BE3BFEFD0EDA6AA4C3A81B0490B1F7F5 ] AppID C:\Windows\system32\drivers\appid.sys
02:31:42.0044 0x063c AppID - ok
02:31:42.0129 0x063c [ C0DC3F58214A227980AEB091CFD2F973 ] AppIDSvc C:\Windows\System32\appidsvc.dll
02:31:42.0130 0x063c AppIDSvc - ok
02:31:42.0452 0x063c [ 7E790DE2487CEDB349D1750B9E47F090 ] Appinfo C:\Windows\System32\appinfo.dll
02:31:42.0453 0x063c Appinfo - ok
02:31:42.0652 0x063c [ 8176FBA685178FB0F52D46693474FA50 ] AppMgmt C:\Windows\System32\appmgmts.dll
02:31:42.0656 0x063c AppMgmt - ok
02:31:42.0757 0x063c [ 550076AD22A72FF2C28FE2B19FB64C12 ] AppReadiness C:\Windows\system32\AppReadiness.dll
02:31:42.0766 0x063c AppReadiness - ok
02:31:42.0843 0x063c [ 66D592883A272B75DA22873C94D1C99D ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll
02:31:42.0887 0x063c AppXSvc - ok
02:31:42.0985 0x063c [ 65045784366F7EC5FB4E71BCF923187B ] arcsas C:\Windows\system32\drivers\arcsas.sys
02:31:42.0987 0x063c arcsas - ok
02:31:43.0038 0x063c [ 3DB7721F06BC2FEDB25029EA23AB27DA ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:31:43.0039 0x063c AsyncMac - ok
02:31:43.0077 0x063c [ 74B14192CF79A72F7536B27CB8814FBD ] atapi C:\Windows\system32\drivers\atapi.sys
02:31:43.0078 0x063c atapi - ok
02:31:43.0210 0x063c [ B04BF12AEBFB5E71971B4EDA4EDFC196 ] athr C:\Windows\system32\DRIVERS\athwnx.sys
02:31:43.0292 0x063c athr - ok
02:31:43.0432 0x063c [ 4903CBC14742B5AB4DCF7A92F7DEC483 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
02:31:43.0436 0x063c AudioEndpointBuilder - ok
02:31:43.0517 0x063c [ 86DD7884124D363A63CCE7A11FDEBBED ] Audiosrv C:\Windows\System32\Audiosrv.dll
02:31:43.0529 0x063c Audiosrv - ok
02:31:43.0599 0x063c [ 74FD4F3D4CCF7E0AD040BE0F70D916A5 ] AxInstSV C:\Windows\System32\AxInstSV.dll
02:31:43.0602 0x063c AxInstSV - ok
02:31:43.0679 0x063c [ A4A73F631FE2AA2826FBE4A399B04DEF ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
02:31:43.0687 0x063c b06bdrv - ok
02:31:43.0802 0x063c [ 8CC7F7E4AFCBA605921B137ED7992C68 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
02:31:43.0803 0x063c BasicDisplay - ok
02:31:43.0872 0x063c [ 2748E116F8621A4DB0D39FCDD7318C01 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
02:31:43.0873 0x063c BasicRender - ok
02:31:43.0961 0x063c [ C1ABB0F7E3BEA48A0417BDF6FF14AB21 ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys
02:31:43.0962 0x063c bcmfn2 - ok
02:31:44.0051 0x063c [ BBE61A40665B83488901E41082A6097D ] BDESVC C:\Windows\System32\bdesvc.dll
02:31:44.0056 0x063c BDESVC - ok
02:31:44.0150 0x063c [ EC19013E4CF87609534165DF897274D6 ] Beep C:\Windows\system32\drivers\Beep.sys
02:31:44.0150 0x063c Beep - ok
02:31:44.0250 0x063c [ ACC04CBB75086D86031E0C63D0930B98 ] BFE C:\Windows\System32\bfe.dll
02:31:44.0262 0x063c BFE - ok
02:31:44.0410 0x063c [ 15225081966C785A9192782401643FD4 ] BITS C:\Windows\System32\qmgr.dll
02:31:44.0435 0x063c BITS - ok
02:31:44.0534 0x063c [ 6B4FFFDDC618FCF64473CAA86E305697 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:31:44.0536 0x063c bowser - ok
02:31:44.0622 0x063c [ 85948475C7FFCA1B7A825BB7BE9A5E72 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
02:31:44.0627 0x063c BrokerInfrastructure - ok
02:31:44.0706 0x063c [ D528D6A92D187777691993DD757AF19A ] Browser C:\Windows\System32\browser.dll
02:31:44.0709 0x063c Browser - ok
02:31:44.0819 0x063c [ A8F23D453A424FF4DE04989C4727ECC7 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
02:31:44.0820 0x063c BthAvrcpTg - ok
02:31:44.0882 0x063c [ 746B9F94214915AECDE4B7FEA5FF9664 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
02:31:44.0883 0x063c BthHFEnum - ok
02:31:44.0970 0x063c [ 71FE2A48E4C93DDB9798C024880B6C07 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
02:31:44.0971 0x063c bthhfhid - ok
02:31:45.0038 0x063c [ 07E33226AD218A2A162662A05CAFB52F ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
02:31:45.0039 0x063c BTHMODEM - ok
02:31:45.0233 0x063c [ E5E48FEED73D463175EAB1542495191C ] bthserv C:\Windows\system32\bthserv.dll
02:31:45.0235 0x063c bthserv - ok
02:31:45.0346 0x063c [ 2FA6510E33F7DEFEC03658B74101A9B9 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:31:45.0348 0x063c cdfs - ok
02:31:45.0431 0x063c [ C6796EA22B513E3457514D92DCDB1A3D ] cdrom C:\Windows\System32\drivers\cdrom.sys
02:31:45.0434 0x063c cdrom - ok
02:31:45.0541 0x063c [ AB285CE3431FF3D2ACE669245874C1C7 ] CertPropSvc C:\Windows\System32\certprop.dll
02:31:45.0544 0x063c CertPropSvc - ok
02:31:45.0673 0x063c [ BE9936EDD3267FAAFF94A7835867F00B ] circlass C:\Windows\System32\drivers\circlass.sys
02:31:45.0674 0x063c circlass - ok
02:31:45.0841 0x063c [ 55FE970B500F6D2A550B5E80AB8C4EAC ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
02:31:45.0843 0x063c ClassicShellService - ok
02:31:45.0924 0x063c cleanhlp - ok
02:31:46.0019 0x063c [ 7F006813C2AFE622C13D7AF94F56CD07 ] CLFS C:\Windows\system32\drivers\CLFS.sys
02:31:46.0024 0x063c CLFS - ok
02:31:46.0314 0x063c [ EF6EF85DADC3184A10D8F2F7159973CB ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
02:31:46.0315 0x063c CmBatt - ok
02:31:46.0414 0x063c [ 825BE21E6395E00698D8A23955A87972 ] CNG C:\Windows\system32\Drivers\cng.sys
02:31:46.0422 0x063c CNG - ok
02:31:46.0583 0x063c [ 03AAED827C36F35D70900558B8274905 ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
02:31:46.0583 0x063c CompositeBus - ok
02:31:46.0670 0x063c COMSysApp - ok
02:31:46.0739 0x063c [ A1FF7DFBFBE164CF92603C651D304DD2 ] condrv C:\Windows\system32\drivers\condrv.sys
02:31:46.0739 0x063c condrv - ok
02:31:46.0880 0x063c [ 0EFE4B5884A8032617826A4D76F80969 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:31:46.0883 0x063c CryptSvc - ok
02:31:46.0971 0x063c [ EE2F3C0D6ADBC975D6B621EC15ACF4E2 ] CSC C:\Windows\system32\drivers\csc.sys
02:31:46.0980 0x063c CSC - ok
02:31:47.0099 0x063c [ 936D9E2871CEEFF6A33695D98374367B ] CscService C:\Windows\System32\cscsvc.dll
02:31:47.0111 0x063c CscService - ok
02:31:47.0207 0x063c [ 315BA4BC19316D72B2E037534E048B93 ] dam C:\Windows\system32\drivers\dam.sys
02:31:47.0208 0x063c dam - ok
02:31:47.0369 0x063c [ 3FD5AE42EC87C6F532A931F96BE731DD ] DcomLaunch C:\Windows\system32\rpcss.dll
02:31:47.0382 0x063c DcomLaunch - ok
02:31:47.0515 0x063c [ F4CCAADC2C78F57E4F16B24C9201CE22 ] defragsvc C:\Windows\System32\defragsvc.dll
02:31:47.0522 0x063c defragsvc - ok
02:31:47.0645 0x063c [ 0BC71D4D3B5883903C37BF4E13B0F0C5 ] DeviceAssociationService C:\Windows\system32\das.dll
02:31:47.0653 0x063c DeviceAssociationService - ok
02:31:47.0778 0x063c [ 752A457320A946E03C3AA86C3ACD735E ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
02:31:47.0783 0x063c DeviceInstall - ok
02:31:47.0902 0x063c [ 5DB26D7E0216D0BF364A81D3829AD7B9 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
02:31:47.0904 0x063c Dfsc - ok
02:31:48.0005 0x063c [ A40B5232D325AC0200E73329F7F19F54 ] Dhcp C:\Windows\system32\dhcpcore.dll
02:31:48.0012 0x063c Dhcp - ok
02:31:48.0116 0x063c [ 4D40C9B33F738797CF50E77CB7C53E85 ] disk C:\Windows\system32\drivers\disk.sys
02:31:48.0118 0x063c disk - ok
02:31:48.0218 0x063c [ EB70A894708D1BC176AFD690FF06085F ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
02:31:48.0219 0x063c dmvsc - ok
02:31:48.0317 0x063c [ FBD2D7F491F3EBC5C54C5C4DB2564953 ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:31:48.0322 0x063c Dnscache - ok
02:31:48.0438 0x063c [ 50288EA079BB520C2B8C8A154202D518 ] dot3svc C:\Windows\System32\dot3svc.dll
02:31:48.0443 0x063c dot3svc - ok
02:31:48.0569 0x063c [ 281BEE07BA97E3E98D12A822D923D0D8 ] DPS C:\Windows\system32\dps.dll
02:31:48.0573 0x063c DPS - ok
02:31:48.0733 0x063c [ 308195495181C8F3D51E6ED5B58D54AC ] DragonUpdater C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
02:31:48.0780 0x063c DragonUpdater - ok
02:31:48.0918 0x063c [ DDC11A202207C0400CBE07315B8FDE5E ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:31:48.0919 0x063c drmkaud - ok
02:31:49.0019 0x063c [ 5B074F14F5DD6418F46EE4CA2DEB7EA8 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
02:31:49.0023 0x063c DsmSvc - ok
02:31:49.0165 0x063c [ 5A5C2A5D961CADF49DDE26582B8ED1FA ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:31:49.0220 0x063c DXGKrnl - ok
02:31:49.0334 0x063c [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm C:\Windows\system32\DRIVERS\eamonm.sys
02:31:49.0337 0x063c eamonm - ok
02:31:49.0462 0x063c [ 6073537F250B45E1CB2A02E97F0FE1B2 ] Eaphost C:\Windows\System32\eapsvc.dll
02:31:49.0465 0x063c Eaphost - ok
02:31:49.0634 0x063c [ 114BCFDF367FF37C3F1B0A96AF542E4D ] ebdrv C:\Windows\system32\drivers\evbda.sys
02:31:49.0714 0x063c ebdrv - ok
02:31:49.0841 0x063c [ F6F209DDB94959BA104FC8FC87C53759 ] EFS C:\Windows\System32\lsass.exe
02:31:49.0844 0x063c EFS - ok
02:31:49.0934 0x063c [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
02:31:49.0936 0x063c ehdrv - ok
02:31:50.0036 0x063c [ 43531A5993380CC5113242C29D265FD9 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
02:31:50.0037 0x063c EhStorClass - ok
02:31:50.0148 0x063c [ 6F8E738A9505A388B1157FDDE7B3101B ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
02:31:50.0150 0x063c EhStorTcgDrv - ok
02:31:50.0327 0x063c [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
02:31:50.0340 0x063c ekrn - ok
02:31:50.0481 0x063c [ 392EC4EA0C265F5BC50D057BEAA593CD ] epfw C:\Windows\system32\DRIVERS\epfw.sys
02:31:50.0483 0x063c epfw - ok
02:31:50.0580 0x063c [ 0C9EC63C5BAE9506161F14B8A5C10280 ] EpfwLWF C:\Windows\system32\DRIVERS\EpfwLWF.sys
02:31:50.0582 0x063c EpfwLWF - ok
02:31:50.0670 0x063c [ AD03E0C95E750F3FBE84EDA87B2C4E08 ] epfwwfp C:\Windows\system32\DRIVERS\epfwwfp.sys
02:31:50.0671 0x063c epfwwfp - ok
02:31:50.0776 0x063c [ DFFFAE1442BA4076E18EED5E406FA0D3 ] ErrDev C:\Windows\System32\drivers\errdev.sys
02:31:50.0776 0x063c ErrDev - ok
02:31:51.0083 0x063c [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3 ] EventSystem C:\Windows\system32\es.dll
02:31:51.0091 0x063c EventSystem - ok
02:31:51.0236 0x063c [ 7729D294A555C7AEB281ED8E4D0E01E4 ] exfat C:\Windows\system32\drivers\exfat.sys
02:31:51.0239 0x063c exfat - ok
02:31:51.0384 0x063c [ 7C4E0D5900B2A1D11EDD626D6DDB937B ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:31:51.0388 0x063c fastfat - ok
02:31:51.0565 0x063c [ 2BC8532ABF2B3756B78FA1DA54147DDE ] Fax C:\Windows\system32\fxssvc.exe
02:31:51.0577 0x063c Fax - ok
02:31:51.0710 0x063c [ 5D8402613E778B3BD45E687A8372710B ] fdc C:\Windows\System32\drivers\fdc.sys
02:31:51.0711 0x063c fdc - ok
02:31:51.0811 0x063c [ DC1A78BCCCB7EE53D6FD3BD615A8E222 ] fdPHost C:\Windows\system32\fdPHost.dll
02:31:51.0813 0x063c fdPHost - ok
02:31:51.0928 0x063c [ E5AD448F2DC84B1CF387FA7F2A3D1936 ] FDResPub C:\Windows\system32\fdrespub.dll
02:31:51.0931 0x063c FDResPub - ok
02:31:52.0029 0x063c [ 0046E0BD031213D37123876B0D0FA61C ] fhsvc C:\Windows\system32\fhsvc.dll
02:31:52.0033 0x063c fhsvc - ok
02:31:52.0173 0x063c [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:31:52.0175 0x063c FileInfo - ok
02:31:52.0323 0x063c [ A1A66C4FDAFD6B0289523232AFB7D8AF ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:31:52.0324 0x063c Filetrace - ok
02:31:52.0422 0x063c [ BE743083CF7063C486A4398E3AEFE59A ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
02:31:52.0423 0x063c flpydisk - ok
02:31:52.0561 0x063c [ 60D5067FCE6D9433D35E04C01D8538B3 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:31:52.0566 0x063c FltMgr - ok
02:31:52.0764 0x063c [ 183CA7699474FDE235853967D1DA4D9B ] FontCache C:\Windows\system32\FntCache.dll
02:31:52.0809 0x063c FontCache - ok
02:31:53.0020 0x063c [ 1C52387BF5A127F5F3BFB31288F30D93 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:31:53.0101 0x063c FontCache3.0.0.0 - ok
02:31:53.0268 0x063c [ 35005534E600E993A90B036E4E599F2B ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
02:31:53.0269 0x063c FsDepends - ok
02:31:53.0367 0x063c [ 09F460AFEDCA03F3BF6E07D1CCC9AC42 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:31:53.0367 0x063c Fs_Rec - ok
02:31:53.0506 0x063c [ 818CF11786B2FA424E33A49E2CB79CC9 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
02:31:53.0514 0x063c fvevol - ok
02:31:53.0668 0x063c [ 9591D0B9351ED489EAFD9D1CE52A8015 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
02:31:53.0669 0x063c FxPPM - ok
02:31:53.0826 0x063c [ FC3EF65EE20D39F8749C2218DBA681CA ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
02:31:53.0827 0x063c gagp30kx - ok
02:31:53.0986 0x063c [ 0BF5CAD281E25F1418E5B8875DC5ADD1 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
02:31:53.0987 0x063c gencounter - ok
02:31:54.0149 0x063c [ FDA72810CA2F8409D9B31E833C448E34 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
02:31:54.0152 0x063c GPIOClx0101 - ok
02:31:54.0359 0x063c [ 0BDE0FCF597E9B65600121EF54FF8340 ] gpsvc C:\Windows\System32\gpsvc.dll
02:31:54.0404 0x063c gpsvc - ok
02:31:54.0577 0x063c [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:54.0579 0x063c gupdate - ok
02:31:54.0688 0x063c [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:54.0690 0x063c gupdatem - ok
02:31:54.0811 0x063c [ 56F69F7C25FB67C970997D7066DBC593 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:31:54.0819 0x063c HdAudAddService - ok
02:31:54.0975 0x063c [ 03909BDBFF0DCACCABF2B2D4ADEE44DC ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
02:31:54.0976 0x063c HDAudBus - ok
02:31:55.0139 0x063c [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\System32\drivers\HECIx64.sys
02:31:55.0140 0x063c HECIx64 - ok
02:31:55.0293 0x063c [ 10A70BC1871CD955D85CD88372724906 ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
02:31:55.0294 0x063c HidBatt - ok
02:31:55.0412 0x063c [ 1EA1B4FABB8CC348E73CA90DBA22E104 ] HidBth C:\Windows\System32\drivers\hidbth.sys
02:31:55.0413 0x063c HidBth - ok
02:31:55.0561 0x063c [ C241A8BAFBBFC90176EA0F5240EACC17 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
02:31:55.0562 0x063c hidi2c - ok
02:31:55.0716 0x063c [ 9BDDEE26255421017E161CCB9D5EDA95 ] HidIr C:\Windows\System32\drivers\hidir.sys
02:31:55.0717 0x063c HidIr - ok
02:31:55.0902 0x063c [ 449A20A674AA3FAA7F0DD4E33EE2DC20 ] hidserv C:\Windows\system32\hidserv.dll
02:31:55.0905 0x063c hidserv - ok
02:31:56.0103 0x063c [ F31397220D9687E11EB448649AA6E038 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
02:31:56.0104 0x063c HidUsb - ok
02:31:56.0276 0x063c [ 7BF3ADCBD021D4F4A84CF40EB49C71B5 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:31:56.0279 0x063c hkmsvc - ok
02:31:56.0408 0x063c [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:31:56.0414 0x063c HomeGroupListener - ok
02:31:56.0549 0x063c [ BE5F89BAFBD4272D5A0C0A37B97865ED ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:31:56.0558 0x063c HomeGroupProvider - ok
02:31:56.0707 0x063c [ A6AACEA4C785789BDA5912AD1FEDA80D ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
02:31:56.0708 0x063c HpSAMD - ok
02:31:56.0873 0x063c [ 3502776E366C913D49C0DA928AE3E6CB ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:31:56.0888 0x063c HTTP - ok
02:31:57.0033 0x063c [ 90656C0B3864804B090434EFC582404F ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
02:31:57.0034 0x063c hwpolicy - ok
02:31:57.0139 0x063c [ 6D6F9E3BF0484967E52F7E846BFF1CA1 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
02:31:57.0140 0x063c hyperkbd - ok
02:31:57.0239 0x063c [ 907C870F8C31F8DDD6F090857B46AB25 ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
02:31:57.0240 0x063c HyperVideo - ok
02:31:57.0366 0x063c [ 84CFC5EFA97D0C965EDE1D56F116A541 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
02:31:57.0368 0x063c i8042prt - ok
02:31:57.0528 0x063c [ 5D90E32E36CE5D4C535D17CE08AEAF05 ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
02:31:57.0529 0x063c iaLPSSi_GPIO - ok
02:31:57.0642 0x063c [ DD05E7E80F52ADE9AEB292819920F32C ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys
02:31:57.0643 0x063c iaLPSSi_I2C - ok
02:31:57.0781 0x063c [ 08BFE413B0B4AA8DFA4B5684CE06D3DC ] iaStorAV C:\Windows\system32\drivers\iaStorAV.sys
02:31:57.0799 0x063c iaStorAV - ok
02:31:57.0920 0x063c [ A2200C3033FA4EF249FC096A7A7D02A2 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
02:31:57.0926 0x063c iaStorV - ok
02:31:58.0056 0x063c IEEtwCollectorService - ok
02:31:58.0216 0x063c [ F568467CD984714E1B849CA170358EC0 ] IKEEXT C:\Windows\System32\ikeext.dll
02:31:58.0228 0x063c IKEEXT - ok
02:31:58.0452 0x063c [ 4E448FCFFD00E8D657CD9E48D3E47157 ] intelide C:\Windows\system32\drivers\intelide.sys
02:31:58.0453 0x063c intelide - ok
02:31:58.0591 0x063c [ 647CF2AB16D2A23F1C441A313BC39820 ] intelpep C:\Windows\system32\drivers\intelpep.sys
02:31:58.0592 0x063c intelpep - ok
02:31:58.0738 0x063c [ 47E74A8E53C7C24DCE38311E1451C1D9 ] intelppm C:\Windows\System32\drivers\intelppm.sys
02:31:58.0739 0x063c intelppm - ok
02:31:58.0898 0x063c [ 9DB76D7F9E4E53EFE5DD8C53DE837514 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:31:58.0899 0x063c IpFilterDriver - ok
02:31:59.0054 0x063c [ 201EDF3C5E674BF1FE44D28CC6A76EA2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:31:59.0068 0x063c iphlpsvc - ok
02:31:59.0210 0x063c [ 9949A3C7590B8C536C05312205079A82 ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
02:31:59.0211 0x063c IPMIDRV - ok
02:31:59.0340 0x063c [ 0063040EFD7C5B81D67CF985BA35388A ] IPNAT C:\Windows\system32\drivers\ipnat.sys
02:31:59.0342 0x063c IPNAT - ok
02:31:59.0463 0x063c [ AE44C526AB5F8A487D941CEB57B10C97 ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:31:59.0464 0x063c IRENUM - ok
02:31:59.0587 0x063c [ 8AFEEA3955AA43616A60F133B1D25F21 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:31:59.0588 0x063c isapnp - ok
02:31:59.0716 0x063c [ 034D4BD9DC67C64F3A4C8A049B5173BF ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
02:31:59.0721 0x063c iScsiPrt - ok
02:31:59.0866 0x063c [ 45369E037410609D769852A1CE46A184 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
02:31:59.0873 0x063c k57nd60a - ok
02:32:00.0006 0x063c [ 8BE92376799B6B44D543E8D07CDCF885 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
02:32:00.0007 0x063c kbdclass - ok
02:32:00.0124 0x063c [ FB6E47E569D4872ABEB506BE03A45FBA ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
02:32:00.0125 0x063c kbdhid - ok
02:32:00.0245 0x063c [ DB7A09BC90DF20F44F16F8B0F9ED3491 ] kbldfltr C:\Windows\system32\drivers\kbldfltr.sys
02:32:00.0246 0x063c kbldfltr - ok
02:32:00.0391 0x063c [ 813871C7D402A05F2E3A7075F9584A05 ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
02:32:00.0392 0x063c kdnic - ok
02:32:00.0530 0x063c [ F6F209DDB94959BA104FC8FC87C53759 ] KeyIso C:\Windows\system32\lsass.exe
02:32:00.0532 0x063c KeyIso - ok
02:32:00.0680 0x063c [ 0AD1DF5AF3E1AEE66583F9718E892B50 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:32:00.0682 0x063c KSecDD - ok
02:32:00.0838 0x063c [ 7296EA420134EAC390798B3232D066A4 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
02:32:00.0841 0x063c KSecPkg - ok
02:32:00.0969 0x063c [ 11AFB527AA370B1DAFD5C36F35F6D45F ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
02:32:00.0970 0x063c ksthunk - ok
02:32:01.0124 0x063c [ 32B1A8351160F307A8C66BCB0F94A9C2 ] KtmRm C:\Windows\system32\msdtckrm.dll
02:32:01.0132 0x063c KtmRm - ok
02:32:01.0305 0x063c [ 27B58E16CF895AC1F1A97C04814C2239 ] LanmanServer C:\Windows\system32\srvsvc.dll
02:32:01.0313 0x063c LanmanServer - ok
02:32:01.0478 0x063c [ D0D9C2ECA4D03A8F06DCD91236B90C98 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:32:01.0509 0x063c LanmanWorkstation - ok
02:32:01.0870 0x063c [ 48C163706383C7319DC1F8E9D135D68E ] lfsvc C:\Windows\System32\GeofenceMonitorService.dll
02:32:01.0879 0x063c lfsvc - ok
02:32:02.0053 0x063c [ C09010B3680860131631F53E8FE7BAD8 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:32:02.0055 0x063c lltdio - ok
02:32:02.0242 0x063c [ 00E070FC0C673311AFD4B068D1242780 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:32:02.0248 0x063c lltdsvc - ok
02:32:02.0433 0x063c [ D113FAD71A5E67AA94B32A0F8828D265 ] lmhosts C:\Windows\System32\lmhsvc.dll
02:32:02.0436 0x063c lmhosts - ok
02:32:02.0730 0x063c [ C755AE4635457AA2A11F79C0DF857ABC ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
02:32:02.0731 0x063c LSI_SAS - ok
02:32:02.0909 0x063c [ ADAC09CBE7A2040B7F68B5E5C9A75141 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
02:32:02.0910 0x063c LSI_SAS2 - ok
02:32:03.0085 0x063c [ 04D1274BB9BBCCF12BD12374002AA191 ] LSI_SAS3 C:\Windows\system32\drivers\lsi_sas3.sys
02:32:03.0087 0x063c LSI_SAS3 - ok
02:32:03.0255 0x063c [ 327469EEF3833D0C584B7E88A76AEC0C ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
02:32:03.0256 0x063c LSI_SSS - ok
02:32:03.0479 0x063c [ B6B69FF200F68888A7FAFDF204D00C91 ] LSM C:\Windows\System32\lsm.dll
02:32:03.0491 0x063c LSM - ok
02:32:03.0694 0x063c [ 5EF604B0698F4FA962778285E8C5F1F2 ] luafv C:\Windows\system32\drivers\luafv.sys
02:32:03.0696 0x063c luafv - ok
02:32:03.0883 0x063c [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
02:32:03.0883 0x063c MBAMProtector - ok
02:32:04.0084 0x063c [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
02:32:04.0088 0x063c MBAMScheduler - ok
02:32:04.0307 0x063c [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
02:32:04.0317 0x063c MBAMService - ok
02:32:04.0500 0x063c [ EB5C03A070F30D64A6DF80E53B22F53F ] megasas C:\Windows\system32\drivers\megasas.sys
02:32:04.0501 0x063c megasas - ok
02:32:04.0696 0x063c [ F6F13533196DE7A582D422B0241E4363 ] megasr C:\Windows\system32\drivers\megasr.sys
02:32:04.0704 0x063c megasr - ok
02:32:04.0897 0x063c [ FD788C2D96EA91469A3C1D13E80D7473 ] MMCSS C:\Windows\system32\mmcss.dll
02:32:04.0900 0x063c MMCSS - ok
02:32:05.0081 0x063c [ 8B38C44F69259987C95135C9627E2378 ] Modem C:\Windows\system32\drivers\modem.sys
02:32:05.0082 0x063c Modem - ok
02:32:05.0235 0x063c [ 601589000CC90F0DF8DA2CC254A3CCC9 ] monitor C:\Windows\System32\drivers\monitor.sys
02:32:05.0236 0x063c monitor - ok
02:32:05.0417 0x063c [ CEAC6D40FE887CE8406C2393CF97DE06 ] mouclass C:\Windows\System32\drivers\mouclass.sys
02:32:05.0419 0x063c mouclass - ok
02:32:05.0640 0x063c [ 02D98BF804084E9A0D69D1C69B02CCA9 ] mouhid C:\Windows\System32\drivers\mouhid.sys
02:32:05.0641 0x063c mouhid - ok
02:32:05.0840 0x063c [ 515549560D481138E6E21AF7C6998E56 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
02:32:05.0843 0x063c mountmgr - ok
02:32:06.0008 0x063c [ F170510BE94CF45E3C6274578F6204B2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:32:06.0010 0x063c mpsdrv - ok
02:32:06.0222 0x063c [ D186C5844393252147BE934F3871DB7A ] MpsSvc C:\Windows\system32\mpssvc.dll
02:32:06.0236 0x063c MpsSvc - ok
02:32:06.0421 0x063c [ 59DCEC7499095DE5AED741358037AE2D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:32:06.0422 0x063c MRxDAV - ok
02:32:06.0581 0x063c [ 405A2E5754DF76663CF0522B87D7929F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:32:06.0587 0x063c mrxsmb - ok
02:32:06.0743 0x063c [ 295771B092D4F7FCF2B62F80CCD14320 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:32:06.0748 0x063c mrxsmb10 - ok
02:32:06.0907 0x063c [ FFC548EABBB8271E979B0EEE0EA4D55B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:32:06.0911 0x063c mrxsmb20 - ok
02:32:07.0048 0x063c [ 4E888019078AC363076A5433E89AA4F8 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
02:32:07.0050 0x063c MsBridge - ok
02:32:07.0207 0x063c [ A082C17D14D0790E27D064EA4B138AE1 ] MSDTC C:\Windows\System32\msdtc.exe
02:32:07.0212 0x063c MSDTC - ok
02:32:07.0599 0x063c [ D13329FBF8345B28AB30F44CC247DC08 ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:32:07.0600 0x063c Msfs - ok
02:32:07.0743 0x063c [ C6B474E46F9E543B875981ED3FFE6ADD ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
02:32:07.0744 0x063c msgpiowin32 - ok
02:32:07.0891 0x063c [ 65C92EB9D08DB5C69F28C7FFD4E84E31 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
02:32:07.0892 0x063c mshidkmdf - ok
02:32:08.0054 0x063c [ 52299F086AC2DAFD100DD5DC4A8614BA ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
02:32:08.0055 0x063c mshidumdf - ok
02:32:08.0210 0x063c [ 36D92AF3343C3A3E57FEF11C449AEA4C ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:32:08.0211 0x063c msisadrv - ok
02:32:08.0390 0x063c [ 810F8A0A0680662BB0CE44D0E2CEF90C ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:32:08.0395 0x063c MSiSCSI - ok
02:32:08.0542 0x063c msiserver - ok
02:32:08.0697 0x063c [ D22AE5313F6B7EFDDD8C117B5501F4A3 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
02:32:08.0701 0x063c MsKeyboardFilter - ok
02:32:08.0841 0x063c [ A9BBBD2BAE6142253B9195E949AC2E8D ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:32:08.0841 0x063c MSKSSRV - ok
02:32:08.0987 0x063c [ 375E44168F2DFB91A68B8A3F619C5A7C ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
02:32:08.0989 0x063c MsLldp - ok
02:32:09.0133 0x063c [ 7B2128EB875DCBC006E6A913211006D6 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:32:09.0134 0x063c MSPCLOCK - ok
02:32:09.0280 0x063c [ 1E88171579B218115C7A772F8DE04BD8 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:32:09.0280 0x063c MSPQM - ok
02:32:09.0527 0x063c [ BBE2A455053E63BECBF42C2F9B21FAE0 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:32:09.0533 0x063c MsRPC - ok
02:32:09.0835 0x063c [ 8D6B7D515C5CBCDB75B928A0B73C3C5E ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
02:32:09.0837 0x063c mssmbios - ok
02:32:09.0988 0x063c [ 115019AE01E0EB9C048530D2928AB4A2 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:32:09.0989 0x063c MSTEE - ok
02:32:10.0139 0x063c [ 96D604A35070360F0DD4A7A8AF410B5E ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
02:32:10.0140 0x063c MTConfig - ok
02:32:10.0312 0x063c [ 619CA29326B82372621DB2C0964D8365 ] Mup C:\Windows\system32\Drivers\mup.sys
02:32:10.0314 0x063c Mup - ok
02:32:10.0494 0x063c [ B8C35C94DCB2DFEAF03BB42131F2F77F ] mvumis C:\Windows\system32\drivers\mvumis.sys
02:32:10.0495 0x063c mvumis - ok
02:32:10.0675 0x063c [ 41A45D2A75494EABF2806EA051E00376 ] napagent C:\Windows\system32\qagentRT.dll
02:32:10.0684 0x063c napagent - ok
02:32:10.0879 0x063c [ 869055F61568AA08E7DEE95EC82ED653 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:32:10.0886 0x063c NativeWifiP - ok
02:32:11.0098 0x063c [ 71E3C0100AA19D11373CCEB2F51A6008 ] NcaSvc C:\Windows\System32\ncasvc.dll
02:32:11.0103 0x063c NcaSvc - ok
02:32:11.0323 0x063c [ 51DF09CAB2CAC64FEE3E371D9028ED01 ] NcbService C:\Windows\System32\ncbservice.dll
02:32:11.0327 0x063c NcbService - ok
02:32:11.0507 0x063c [ 2586C4C167499210DCBF3ECFD8CCE210 ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
02:32:11.0511 0x063c NcdAutoSetup - ok
02:32:11.0711 0x063c [ 424B0796F85BB0DADD4438EAFFADA133 ] NDIS C:\Windows\system32\drivers\ndis.sys
02:32:11.0736 0x063c NDIS - ok
02:32:11.0941 0x063c [ C6BB12BC35D1637CA17AE16D3A4725EB ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
02:32:11.0942 0x063c NdisCap - ok
02:32:12.0154 0x063c [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
02:32:12.0156 0x063c NdisImPlatform - ok
02:32:12.0354 0x063c [ 9423421E735BD5394351E0C47C76BB92 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:32:12.0355 0x063c NdisTapi - ok
02:32:12.0528 0x063c [ B832B35055BA2B7B4181861FF94D8E59 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:32:12.0530 0x063c Ndisuio - ok
02:32:12.0694 0x063c [ 1F58E48EF75F34C35D8E93A0DC535CFE ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys
02:32:12.0695 0x063c NdisVirtualBus - ok
02:32:12.0903 0x063c [ DEC29080202D4F9F17F55E18BCFCC41A ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:32:12.0906 0x063c NdisWan - ok
02:32:13.0104 0x063c [ DEC29080202D4F9F17F55E18BCFCC41A ] NdisWanLegacy C:\Windows\system32\DRIVERS\ndiswan.sys
02:32:13.0107 0x063c NdisWanLegacy - ok
02:32:13.0344 0x063c [ A5BD69A8812FA79D1A487691DD3FB244 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:32:13.0346 0x063c NDProxy - ok
02:32:13.0537 0x063c [ 5A072F0B90C29C5233D78BE33EF5ED78 ] Ndu C:\Windows\system32\drivers\Ndu.sys
02:32:13.0539 0x063c Ndu - ok
02:32:13.0721 0x063c [ A83D67D347A684F10B7D3019C8A6380C ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:32:13.0723 0x063c NetBIOS - ok
02:32:13.0904 0x063c [ 0217532E19A748F0E5D569307363D5FD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
02:32:13.0909 0x063c NetBT - ok
02:32:14.0074 0x063c [ F6F209DDB94959BA104FC8FC87C53759 ] Netlogon C:\Windows\system32\lsass.exe
02:32:14.0077 0x063c Netlogon - ok
02:32:14.0258 0x063c [ B7AD851A21FEBA3BA214972627614207 ] Netman C:\Windows\System32\netman.dll
02:32:14.0264 0x063c Netman - ok
02:32:14.0486 0x063c [ F0F0A372C2EF6358399C4936F91B6131 ] netprofm C:\Windows\System32\netprofmsvc.dll
02:32:14.0493 0x063c netprofm - ok
02:32:14.0730 0x063c [ 1092B3190E69E0C5ECBCE90F171DE047 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:14.0744 0x063c NetTcpPortSharing - ok
02:32:14.0967 0x063c [ 70414DB660BFBB7BD58FCE8EA4364E1B ] netvsc C:\Windows\system32\DRIVERS\netvsc63.sys
02:32:14.0968 0x063c netvsc - ok
02:32:15.0201 0x063c [ 3A280F3B3C7A46E29C404ACD46ECBF5E ] NlaSvc C:\Windows\System32\nlasvc.dll
02:32:15.0209 0x063c NlaSvc - ok
02:32:15.0411 0x063c [ 8F44A2F57C9F1A19AC9C6288C10FB351 ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:32:15.0413 0x063c Npfs - ok
02:32:15.0637 0x063c [ CBDB4F0871C88DF930FC0E8588CA67FC ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
02:32:15.0638 0x063c npsvctrig - ok
02:32:15.0811 0x063c [ 6E2271ED0C3E95B8E29F3752B91B9E84 ] nsi C:\Windows\system32\nsisvc.dll
02:32:15.0814 0x063c nsi - ok
02:32:16.0029 0x063c [ E490B459978CB87779E84C761D22B827 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:32:16.0031 0x063c nsiproxy - ok
02:32:16.0402 0x063c [ 4412D565C0278C401575E11072C7DCE3 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:32:16.0460 0x063c Ntfs - ok
02:32:16.0664 0x063c [ EF1B290FC9F0E47CC0B537292BEE5904 ] Null C:\Windows\system32\drivers\Null.sys
02:32:16.0665 0x063c Null - ok
02:32:16.0849 0x063c [ BC6B5942AFF25EBAF62DE43C3807EDF8 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:32:16.0851 0x063c nvraid - ok
02:32:17.0028 0x063c [ 1F43ABFFAC3D6CA356851D517392966E ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:32:17.0031 0x063c nvstor - ok
02:32:17.0262 0x063c [ 6934A936A7369DFE37B7DBA93F5E5E49 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:32:17.0264 0x063c nv_agp - ok
02:32:17.0509 0x063c [ 3B510F20806B94E389784ED09DBD2111 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
02:32:17.0518 0x063c p2pimsvc - ok
02:32:17.0788 0x063c [ 2A57A937BC5B1B2D6AFE6A8C5925F50B ] p2psvc C:\Windows\system32\p2psvc.dll
02:32:17.0796 0x063c p2psvc - ok
02:32:18.0044 0x063c [ 764B1121867B2D9B31C491668AC72B2B ] Parport C:\Windows\System32\drivers\parport.sys
02:32:18.0046 0x063c Parport - ok
02:32:18.0278 0x063c [ EF0C1749C9A8CEE9A457473D433CC00F ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:32:18.0279 0x063c partmgr - ok
02:32:18.0501 0x063c [ 38A31075D9630062AD7E26C97033CCC7 ] PcaSvc C:\Windows\System32\pcasvc.dll
02:32:18.0511 0x063c PcaSvc - ok
02:32:18.0774 0x063c [ C0D3F3BC1C84B4BA746D9847314C1164 ] pci C:\Windows\system32\drivers\pci.sys
02:32:18.0782 0x063c pci - ok
02:32:19.0097 0x063c [ 346E38FCC6859A727DD28AFAD1F0AFF4 ] pciide C:\Windows\system32\drivers\pciide.sys
02:32:19.0098 0x063c pciide - ok
02:32:19.0330 0x063c [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
02:32:19.0332 0x063c pcmcia - ok
02:32:19.0549 0x063c [ BF28771D1436C88BE1D297D3098B0F7D ] pcw C:\Windows\system32\drivers\pcw.sys
02:32:19.0550 0x063c pcw - ok
02:32:19.0784 0x063c [ 28AAACD3B871305F07188A0DB366B439 ] pdc C:\Windows\system32\drivers\pdc.sys
02:32:19.0786 0x063c pdc - ok
02:32:20.0043 0x063c [ BA50CC0BD19004AAB88BE37338B6FA0D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:32:20.0052 0x063c PEAUTH - ok
02:32:20.0327 0x063c [ 084DE525DFE82AE7453DD527390FA110 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
02:32:20.0384 0x063c PeerDistSvc - ok
02:32:20.0886 0x063c [ 8E3C640FFF5A963F570233AE99C0FFF3 ] PerfHost C:\Windows\SysWow64\perfhost.exe
02:32:20.0889 0x063c PerfHost - ok
02:32:21.0662 0x063c [ 928061178CD9856CA6B67FFFCE6BA766 ] pla C:\Windows\system32\pla.dll
02:32:21.0708 0x063c pla - ok
02:32:21.0955 0x063c [ 752A457320A946E03C3AA86C3ACD735E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:32:21.0960 0x063c PlugPlay - ok
02:32:22.0206 0x063c [ 045EB4F260606A03BE340D09DEAF3BA4 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
02:32:22.0210 0x063c PNRPAutoReg - ok
02:32:22.0486 0x063c [ 3B510F20806B94E389784ED09DBD2111 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
02:32:22.0493 0x063c PNRPsvc - ok
02:32:22.0687 0x063c [ C16097D77A232A288D65F299E2E01105 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:32:22.0693 0x063c PolicyAgent - ok
02:32:23.0082 0x063c [ 00E08B30E7F7C13ECE2CDF4F46A77311 ] Power C:\Windows\system32\umpo.dll
02:32:23.0087 0x063c Power - ok
02:32:23.0293 0x063c [ E075CC071022BD4E9BE7C024717C0E0A ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:32:23.0295 0x063c PptpMiniport - ok
02:32:23.0597 0x063c [ B7DB57A000D46D4DE75BC0C563E58072 ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
02:32:23.0657 0x063c PrintNotify - ok
02:32:23.0908 0x063c [ ECD373F9571C745894367CC2635EA44F ] Processor C:\Windows\System32\drivers\processr.sys
02:32:23.0909 0x063c Processor - ok
02:32:24.0142 0x063c [ 9E5A3A3B702ECB9E88AA07731F0E65EB ] ProfSvc C:\Windows\system32\profsvc.dll
02:32:24.0149 0x063c ProfSvc - ok
02:32:24.0367 0x063c [ 8528BB05E4D4E25945F78B00B2555FB7 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
02:32:24.0371 0x063c Psched - ok
02:32:24.0637 0x063c [ AF90BB44C99D6820BE52C9BBAA523283 ] QWAVE C:\Windows\system32\qwave.dll
02:32:24.0644 0x063c QWAVE - ok
02:32:24.0853 0x063c [ 3FB466684609A4329858CF2EBD62E0FD ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:32:24.0855 0x063c QWAVEdrv - ok
02:32:25.0044 0x063c [ 2C56F0EE27E4EF70CA4B4983D3638905 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:32:25.0044 0x063c RasAcd - ok
02:32:25.0235 0x063c [ B91EB769A3EB9F44BA7439451B7E1A7F ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
02:32:25.0236 0x063c RasAgileVpn - ok
02:32:25.0481 0x063c [ 5F061AC45266841A2860C1858ED863B8 ] RasAuto C:\Windows\System32\rasauto.dll
02:32:25.0485 0x063c RasAuto - ok
02:32:25.0747 0x063c [ BBB6272B7F46C4640A8CDB8A70C3450F ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:32:25.0749 0x063c Rasl2tp - ok
02:32:25.0960 0x063c [ BF3B17016764F20F9D28CF1A8DC210C0 ] RasMan C:\Windows\System32\rasmans.dll
02:32:25.0970 0x063c RasMan - ok
02:32:26.0203 0x063c [ 5247F308C4103CDC4FE12AE1D235800A ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:32:26.0204 0x063c RasPppoe - ok
02:32:26.0383 0x063c [ 2B0F1677CDD08967005F34488559BC6F ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:32:26.0384 0x063c RasSstp - ok
02:32:26.0595 0x063c [ B939A2A0F9D6C6C186721E268EB6FA93 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:32:26.0602 0x063c rdbss - ok
02:32:26.0955 0x063c [ 6B21EBF892CD8CACB71669B35AB5DE32 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
02:32:26.0956 0x063c rdpbus - ok
02:32:27.0156 0x063c [ 680C1DAE268B6FB67FA21B389A8B79EF ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
02:32:27.0159 0x063c RDPDR - ok
02:32:27.0694 0x063c [ 858776908AF838E3790F3261B799CDA6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:32:27.0695 0x063c RdpVideoMiniport - ok
02:32:27.0909 0x063c [ 2C915EFFF23EA65D1E760FA397BCA6AB ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
02:32:27.0914 0x063c rdyboost - ok
02:32:28.0178 0x063c [ 036746D54347FD2D0385668E2A4064E4 ] ReFS C:\Windows\system32\drivers\ReFS.sys
02:32:28.0191 0x063c ReFS - ok
02:32:28.0624 0x063c [ BFFB40FBE6D2C3469F8D06EE5E4934AB ] RemoteAccess C:\Windows\System32\mprdim.dll
02:32:28.0629 0x063c RemoteAccess - ok
02:32:28.0861 0x063c [ 4DCCABE03D06955ED61BABBD8EF9F30F ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:32:28.0866 0x063c RemoteRegistry - ok
02:32:29.0117 0x063c [ D894CBD7DA753C881EE8D5E33B583225 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
02:32:29.0121 0x063c RpcEptMapper - ok
02:32:29.0332 0x063c [ 5CAE8F47B31D5CFC322B5B898C19E0FE ] RpcLocator C:\Windows\system32\locator.exe
02:32:29.0335 0x063c RpcLocator - ok
02:32:29.0591 0x063c [ 3FD5AE42EC87C6F532A931F96BE731DD ] RpcSs C:\Windows\system32\rpcss.dll
02:32:29.0602 0x063c RpcSs - ok
02:32:29.0837 0x063c [ 2D05A5508F4685412F2B89E8C2189ABC ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:32:29.0838 0x063c rspndr - ok
02:32:30.0051 0x063c [ 1A063730F221B2746FF00457AE17E4F0 ] s3cap C:\Windows\System32\drivers\vms3cap.sys
02:32:30.0052 0x063c s3cap - ok
02:32:30.0318 0x063c [ F6F209DDB94959BA104FC8FC87C53759 ] SamSs C:\Windows\system32\lsass.exe
02:32:30.0320 0x063c SamSs - ok
02:32:30.0588 0x063c SANDRA - ok
02:32:30.0868 0x063c [ C624A1B32211C3166EDB3F4AB02A30B7 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:32:30.0870 0x063c sbp2port - ok
02:32:31.0210 0x063c [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
02:32:31.0222 0x063c SBSDWSCService - ok
02:32:31.0495 0x063c [ 47C497FA4DDEA908633CAA60CEBE6805 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:32:31.0501 0x063c SCardSvr - ok
02:32:31.0797 0x063c [ E76C4E98302AE39CC6FA5D20FC8B5438 ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll
02:32:31.0802 0x063c ScDeviceEnum - ok
02:32:32.0056 0x063c [ ABD0237B15DBD2B4695F4B7D734A58F7 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
02:32:32.0058 0x063c scfilter - ok
02:32:32.0308 0x063c [ 888A30EAB651502352C18745367FD179 ] Schedule C:\Windows\system32\schedsvc.dll
02:32:32.0354 0x063c Schedule - ok
02:32:32.0639 0x063c [ AB285CE3431FF3D2ACE669245874C1C7 ] SCPolicySvc C:\Windows\System32\certprop.dll
02:32:32.0641 0x063c SCPolicySvc - ok
02:32:32.0918 0x063c [ C6A6F8921B94BC1673AC9AB485DF9A18 ] sdbus C:\Windows\System32\drivers\sdbus.sys
02:32:32.0923 0x063c sdbus - ok
02:32:33.0197 0x063c [ 4EAF4DCF9DBD9A56952A58F56D61C005 ] sdstor C:\Windows\System32\drivers\sdstor.sys
02:32:33.0198 0x063c sdstor - ok
02:32:33.0442 0x063c [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:32:33.0443 0x063c secdrv - ok
02:32:33.0705 0x063c [ C49009F897BA4F2F4F31043663AA1485 ] seclogon C:\Windows\system32\seclogon.dll
02:32:33.0709 0x063c seclogon - ok
02:32:33.0964 0x063c [ A88882E64BDC1D8E8D6E727B71CCCC53 ] SENS C:\Windows\System32\sens.dll
02:32:33.0968 0x063c SENS - ok
02:32:34.0240 0x063c [ E66A7C8CE7ED22DED6DF1CA479FB4790 ] SensrSvc C:\Windows\system32\sensrsvc.dll
02:32:34.0247 0x063c SensrSvc - ok
02:32:34.0552 0x063c [ DB2FF24CE0BDD15FE75870AFE312BA89 ] SerCx C:\Windows\system32\drivers\SerCx.sys
02:32:34.0554 0x063c SerCx - ok
02:32:34.0817 0x063c [ 53BDBF04ECAF943CBF6359E3BCB2445E ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys
02:32:34.0819 0x063c SerCx2 - ok
02:32:35.0018 0x063c [ 3CD600C089C1251BEEB4CD4CD5164F9E ] Serenum C:\Windows\System32\drivers\serenum.sys
02:32:35.0019 0x063c Serenum - ok
02:32:35.0275 0x063c [ D864381BC9C725FAB01D94C060660166 ] Serial C:\Windows\System32\drivers\serial.sys
02:32:35.0277 0x063c Serial - ok
02:32:35.0546 0x063c [ 0BD2B65DCE756FDE95A2E5CCCBF7705D ] sermouse C:\Windows\System32\drivers\sermouse.sys
02:32:35.0547 0x063c sermouse - ok
02:32:36.0501 0x063c [ 438CFF94FC90A571389FE49CDC913E49 ] SessionEnv C:\Windows\system32\sessenv.dll
02:32:36.0509 0x063c SessionEnv - ok
02:32:36.0782 0x063c [ 472B7A5AC181C050888DB454663DD764 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
02:32:36.0783 0x063c sfloppy - ok
02:32:37.0007 0x063c [ 08A08EC17F1874802A8BC6D083BF1C55 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:32:37.0015 0x063c SharedAccess - ok
02:32:37.0319 0x063c [ 0D190D8B4B20446BE6299AC734DFADF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:32:37.0330 0x063c ShellHWDetection - ok
02:32:37.0601 0x063c [ 2F518D13DD6F3053837FE606F1A2EA1F ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
02:32:37.0602 0x063c SiSRaid2 - ok
02:32:37.0827 0x063c [ 1AC9A200A9C49C4508F04AAFFCA34A3F ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
02:32:37.0828 0x063c SiSRaid4 - ok
02:32:38.0101 0x063c [ 587ACA15210D1B01FBF272E07A08F91A ] smphost C:\Windows\System32\smphost.dll
02:32:38.0104 0x063c smphost - ok
02:32:38.0719 0x063c [ 49EEB92DE930B8566EF615D600781DB4 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:32:38.0723 0x063c SNMPTRAP - ok
02:32:39.0018 0x063c [ 349059B0C9EAED5A951D1693132A2EA8 ] spaceport C:\Windows\system32\drivers\spaceport.sys
02:32:39.0026 0x063c spaceport - ok
02:32:39.0294 0x063c [ F337BE11071818FC3F5DC2940B6BDE34 ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
02:32:39.0295 0x063c SpbCx - ok
02:32:39.0543 0x063c [ FE0CB40F36D3FCDD3A1B312EF72C38D5 ] Spooler C:\Windows\System32\spoolsv.exe
02:32:39.0557 0x063c Spooler - ok
02:32:39.0966 0x063c [ 4F68F08D3AF5AAE315800338932AF042 ] sppsvc C:\Windows\system32\sppsvc.exe
02:32:40.0104 0x063c sppsvc - ok
02:32:40.0397 0x063c [ CD7534BA5BA92086B1BC10ADF880FC49 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:32:40.0404 0x063c srv - ok
02:32:40.0719 0x063c [ 59F15EFD74FDE8A1D9278F2C04F5D0B9 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:32:40.0729 0x063c srv2 - ok
02:32:41.0010 0x063c [ 96A7F9E8B3E0DD0355067D894C71A8F7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:32:41.0014 0x063c srvnet - ok
02:32:41.0311 0x063c [ BB9ED3EDD8E85008215A7250D325A72E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:32:41.0317 0x063c SSDPSRV - ok
02:32:41.0626 0x063c [ 3911418AFDE10EA6823B7799E4815524 ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:32:41.0631 0x063c SstpSvc - ok
02:32:41.0894 0x063c [ 366DEA74BBA65B362BCCFC6FC2ADFD8B ] stexstor C:\Windows\system32\drivers\stexstor.sys
02:32:41.0895 0x063c stexstor - ok
02:32:42.0172 0x063c [ D638904FE86A5FE542A1BA13A9D68E5C ] stisvc C:\Windows\System32\wiaservc.dll
02:32:42.0185 0x063c stisvc - ok
02:32:42.0471 0x063c [ 0ED2E318ABB68C1A35A8B8038BDB4C90 ] storahci C:\Windows\system32\drivers\storahci.sys
02:32:42.0473 0x063c storahci - ok
02:32:42.0722 0x063c [ 7A08CEE1535F5A448215634C5EA74E50 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
02:32:42.0723 0x063c storflt - ok
02:32:42.0996 0x063c [ D57AEE34C7C0DD1DC8B6B54B7A89649C ] stornvme C:\Windows\system32\drivers\stornvme.sys
02:32:42.0997 0x063c stornvme - ok
02:32:43.0231 0x063c [ 3118058E3D07021A55324A943C6D722B ] StorSvc C:\Windows\system32\storsvc.dll
02:32:43.0235 0x063c StorSvc - ok
02:32:43.0516 0x063c [ 548759755BC73DAD663250239D7E0B9F ] storvsc C:\Windows\system32\drivers\storvsc.sys
02:32:43.0517 0x063c storvsc - ok
02:32:43.0784 0x063c [ 03618F935379614837F915D04C45FC0E ] storvsp C:\Windows\System32\drivers\storvsp.sys
02:32:43.0785 0x063c storvsp - ok
02:32:44.0068 0x063c [ D8E1AE075AB3E8AD56F69C44AA978596 ] svsvc C:\Windows\system32\svsvc.dll
02:32:44.0072 0x063c svsvc - ok
02:32:44.0346 0x063c [ 84E0F5D41C138C5CC975137A2A98F6D3 ] swenum C:\Windows\System32\drivers\swenum.sys
02:32:44.0347 0x063c swenum - ok
02:32:44.0643 0x063c [ A5DC2E63F5E5D3C0B843307374998479 ] swprv C:\Windows\System32\swprv.dll
02:32:44.0656 0x063c swprv - ok
02:32:44.0958 0x063c [ 3C2B9C8EA210F014563BF6391596D8F7 ] SysMain C:\Windows\system32\sysmain.dll
02:32:44.0990 0x063c SysMain - ok
02:32:45.0291 0x063c [ 373382005ACB27CB16ED16722FBE946A ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
02:32:45.0298 0x063c SystemEventsBroker - ok
02:32:45.0594 0x063c [ BA6DD39266A5E15515C8C14DA2DA3E5C ] TabletInputService C:\Windows\System32\TabSvc.dll
02:32:45.0600 0x063c TabletInputService - ok
02:32:45.0926 0x063c [ F0B9D3ED88E56D3CD713DFF21E42AAF0 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
02:32:45.0927 0x063c tap0901 - ok
02:32:46.0222 0x063c [ B517410F157693043DACA21B19B258A6 ] TapiSrv C:\Windows\System32\tapisrv.dll
02:32:46.0230 0x063c TapiSrv - ok
02:32:46.0589 0x063c [ C9436791C9DD3B5206DDBB1F75EE3E54 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:32:46.0657 0x063c Tcpip - ok
02:32:47.0010 0x063c [ C9436791C9DD3B5206DDBB1F75EE3E54 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
02:32:47.0034 0x063c TCPIP6 - ok
02:32:47.0465 0x063c [ 33A7D83EEB15431773A6E186CFAABA21 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:32:47.0466 0x063c tcpipreg - ok
02:32:47.0964 0x063c [ FFF28F9F6823EB1756C60F1649560BBF ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:32:47.0966 0x063c tdx - ok
02:32:48.0251 0x063c [ 232D185D2337F141311D0CF1983E1431 ] terminpt C:\Windows\System32\drivers\terminpt.sys
02:32:48.0253 0x063c terminpt - ok
02:32:48.0535 0x063c [ 2C77831737491F4D684D315B95C62883 ] TermService C:\Windows\System32\termsrv.dll
02:32:48.0576 0x063c TermService - ok
02:32:48.0875 0x063c [ 05FBE1F7C13E87AF7A414CDF288B1F62 ] Themes C:\Windows\system32\themeservice.dll
02:32:48.0879 0x063c Themes - ok
02:32:49.0173 0x063c [ FD788C2D96EA91469A3C1D13E80D7473 ] THREADORDER C:\Windows\system32\mmcss.dll
02:32:49.0176 0x063c THREADORDER - ok
02:32:49.0486 0x063c [ 347A3E49CE18402305B8119A6EC7CFEB ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
02:32:49.0491 0x063c TimeBroker - ok
02:32:49.0794 0x063c [ 82F909359600D3603FE852DB7F135626 ] TPM C:\Windows\system32\drivers\tpm.sys
02:32:49.0797 0x063c TPM - ok
02:32:50.0097 0x063c [ C97E14BB6A196B0554D6EB67D8818175 ] TrkWks C:\Windows\System32\trkwks.dll
02:32:50.0102 0x063c TrkWks - ok
02:32:50.0429 0x063c [ DA56FFA46030E6FEB215E3D5DAA65B11 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:32:50.0431 0x063c TrustedInstaller - ok
02:32:50.0963 0x063c [ BF8F54CA37E9C9D6582C31C5761F8C93 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
02:32:50.0965 0x063c TsUsbFlt - ok
02:32:51.0251 0x063c [ E0088068DCE2EE82897027DDB8E05254 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
02:32:51.0252 0x063c TsUsbGD - ok
02:32:51.0589 0x063c [ 17127AFE9FE87C7BC3B3BEFBA71FF121 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
02:32:51.0610 0x063c TuneUp.UtilitiesSvc - ok
02:32:51.0912 0x063c [ 45427C4B8CAC6B241478F149B935CD80 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys
02:32:51.0913 0x063c TuneUpUtilitiesDrv - ok
02:32:52.0231 0x063c [ C8E0E78B5D284C2FF59BDFFDAF997242 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:32:52.0234 0x063c tunnel - ok
02:32:52.0531 0x063c [ F6EEAD052943B5A3104C1405BB856C54 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
02:32:52.0532 0x063c uagp35 - ok
02:32:52.0841 0x063c [ FE6067B1FD4E63650C667B33D080565B ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
02:32:52.0842 0x063c UASPStor - ok
02:32:53.0091 0x063c [ 5D1B430EA11064C56E7C8F84B90DEB6A ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
02:32:53.0094 0x063c UCX01000 - ok
02:32:53.0405 0x063c [ 1EC649F112896FAE33250F0B97AC5D0B ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:32:53.0409 0x063c udfs - ok
02:32:53.0698 0x063c [ 9578691F297E1B1F519970FE6D47CB21 ] UEFI C:\Windows\System32\drivers\UEFI.sys
02:32:53.0699 0x063c UEFI - ok
02:32:54.0440 0x063c [ 320878AFECDBBD61BBE98624A6CAAC08 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:32:54.0444 0x063c UI0Detect - ok
02:32:54.0735 0x063c [ 5EAB5117DDB24FC4D39E6FFFCF1837B9 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:32:54.0736 0x063c uliagpkx - ok
02:32:55.0029 0x063c [ DA34C39A18E60E7C3FA0630566408034 ] umbus C:\Windows\System32\drivers\umbus.sys
02:32:55.0030 0x063c umbus - ok
02:32:55.0277 0x063c [ AE8294875E5446E359B1E8035D40C05E ] UmPass C:\Windows\System32\drivers\umpass.sys
02:32:55.0278 0x063c UmPass - ok
02:32:55.0643 0x063c [ E3DDF7D43E05784FAA5E042605EEE528 ] UmRdpService C:\Windows\System32\umrdp.dll
02:32:55.0652 0x063c UmRdpService - ok
02:32:56.0212 0x063c [ 4A2FFDAC45F317E17DF642C7160EB633 ] upnphost C:\Windows\System32\upnphost.dll
02:32:56.0221 0x063c upnphost - ok
02:32:56.0584 0x063c [ 3432E857B8EC1C1316AB098F2BCCDFB6 ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
02:32:56.0587 0x063c usbccgp - ok
02:32:56.0875 0x063c [ B3D6457D841A0CAEF4C52D88621715F2 ] usbcir C:\Windows\System32\drivers\usbcir.sys
02:32:56.0876 0x063c usbcir - ok
02:32:57.0158 0x063c [ 5477D6E27C7D266EF8C152B9A25ADE5E ] usbehci C:\Windows\System32\drivers\usbehci.sys
02:32:57.0159 0x063c usbehci - ok
02:32:57.0460 0x063c [ DF56C2C04EFA328D7A66B69007130266 ] usbhub C:\Windows\System32\drivers\usbhub.sys
02:32:57.0469 0x063c usbhub - ok
02:32:57.0782 0x063c [ 4475096DAB15E613A95D6A53F800B377 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
02:32:57.0792 0x063c USBHUB3 - ok
02:32:58.0085 0x063c [ 3019097FB6C985EF24C058090FF3BDBD ] usbohci C:\Windows\System32\drivers\usbohci.sys
02:32:58.0086 0x063c usbohci - ok
02:32:58.0375 0x063c [ 4D655E3B684BE9B0F7FFD8A2935C348C ] usbprint C:\Windows\System32\drivers\usbprint.sys
02:32:58.0376 0x063c usbprint - ok
02:32:58.0677 0x063c [ B1230E9813B5C7E762DF27756AA23917 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
02:32:58.0680 0x063c USBSTOR - ok
02:32:58.0964 0x063c [ BA4FA655E0FC577DB7436FC963932CE4 ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
02:32:58.0965 0x063c usbuhci - ok
02:32:59.0277 0x063c [ 18F744E8CCEB2670040EBAF7AD77B8C6 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
02:32:59.0281 0x063c usbvideo - ok
02:32:59.0581 0x063c [ BCD8FC0A47AA31889C94168A4E56BB26 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
02:32:59.0589 0x063c USBXHCI - ok
02:32:59.0887 0x063c [ 1916F1E9258188AF73865FDA87DDD19C ] UxTuneUp C:\Windows\System32\uxtuneup.dll
02:32:59.0891 0x063c UxTuneUp - ok
02:33:00.0217 0x063c [ F6F209DDB94959BA104FC8FC87C53759 ] VaultSvc C:\Windows\system32\lsass.exe
02:33:00.0220 0x063c VaultSvc - ok
02:33:00.0559 0x063c [ FEB26E3B8345A7E8D62F945C4AE86562 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
02:33:00.0561 0x063c vdrvroot - ok
02:33:00.0913 0x063c [ CFBAD6B48EDFAA0828A52646B7C4C08D ] vds C:\Windows\System32\vds.exe
02:33:00.0958 0x063c vds - ok
02:33:01.0363 0x063c [ 2582B87082A935ACB76F949F760AF236 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
02:33:01.0366 0x063c VerifierExt - ok
02:33:01.0731 0x063c [ 041D3EF364E624DBB2703A64A5AADF89 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
02:33:01.0743 0x063c vhdmp - ok
02:33:02.0064 0x063c [ 06D38968028E9AB19DE9B618C7B6D199 ] viaide C:\Windows\system32\drivers\viaide.sys
02:33:02.0064 0x063c viaide - ok
02:33:02.0360 0x063c [ 3CE922E34DB12D9F3C0EA856BC09687C ] Vid C:\Windows\System32\drivers\Vid.sys
02:33:02.0363 0x063c Vid - ok
02:33:02.0657 0x063c [ C6305BDFC4F7CE51F72BB072C03D4ACE ] vmbus C:\Windows\system32\drivers\vmbus.sys
02:33:02.0659 0x063c vmbus - ok
02:33:02.0965 0x063c [ DA40BEA0A863CE768C940CA9723BF81F ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
02:33:02.0966 0x063c VMBusHID - ok
02:33:03.0280 0x063c [ 68F8C26DEA2D42E8DEC0778943433C80 ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
02:33:03.0283 0x063c vmbusr - ok
02:33:03.0617 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicguestinterface C:\Windows\System32\ICSvc.dll
02:33:03.0627 0x063c vmicguestinterface - ok
02:33:03.0974 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicheartbeat C:\Windows\System32\ICSvc.dll
02:33:03.0981 0x063c vmicheartbeat - ok
02:33:04.0288 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmickvpexchange C:\Windows\System32\ICSvc.dll
02:33:04.0295 0x063c vmickvpexchange - ok
02:33:04.0617 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicrdv C:\Windows\System32\ICSvc.dll
02:33:04.0624 0x063c vmicrdv - ok
02:33:04.0944 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicshutdown C:\Windows\System32\ICSvc.dll
02:33:04.0950 0x063c vmicshutdown - ok
02:33:05.0251 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmictimesync C:\Windows\System32\ICSvc.dll
02:33:05.0258 0x063c vmictimesync - ok
02:33:05.0573 0x063c [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicvss C:\Windows\System32\ICSvc.dll
02:33:05.0580 0x063c vmicvss - ok
02:33:05.0908 0x063c [ 55D7D963DE85162F1C49721E502F9744 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:33:05.0910 0x063c volmgr - ok
02:33:06.0199 0x063c [ CCB9E901F7254BF96D28EB1B0E5329B7 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:33:06.0205 0x063c volmgrx - ok
02:33:06.0517 0x063c [ 9F9CE33B50611A1C61A46B8911E0B30B ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:33:06.0524 0x063c volsnap - ok
02:33:06.0820 0x063c [ 01355C98B5C3ED1EC446743CDA848FCE ] vpci C:\Windows\System32\drivers\vpci.sys
02:33:06.0821 0x063c vpci - ok
02:33:07.0144 0x063c [ ADBE96C33D1A5BB1BBAF90B4BC84F523 ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
02:33:07.0146 0x063c vpcivsp - ok
02:33:07.0457 0x063c [ 4539F45F9F4C9757A86A56C949421E07 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
02:33:07.0460 0x063c vsmraid - ok
02:33:07.0818 0x063c [ D51D7EF1EA5ED2BB01E9D07E6E0533BC ] VSS C:\Windows\system32\vssvc.exe
02:33:07.0862 0x063c VSS - ok
02:33:08.0213 0x063c [ 0849B7260F26FE05EA56DED0672E2F4B ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
02:33:08.0218 0x063c VSTXRAID - ok
02:33:08.0533 0x063c [ BE970C369E43B509C1EDA2B8FA7CECB0 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
02:33:08.0534 0x063c vwifibus - ok
02:33:08.0834 0x063c [ 6B26AD573CCDD5209DF4397438B76354 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
02:33:08.0836 0x063c vwififlt - ok
02:33:09.0143 0x063c [ 0B48E0DFB44EE475F4FD8A8EE599AF30 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
02:33:09.0145 0x063c vwifimp - ok
02:33:09.0451 0x063c [ 7599E582CA3A6AAA95A18FFE1172D339 ] W32Time C:\Windows\system32\w32time.dll
02:33:09.0460 0x063c W32Time - ok
02:33:09.0755 0x063c [ 0910AB9ED404C1434E2D0376C2AD5D8B ] WacomPen C:\Windows\System32\drivers\wacompen.sys
02:33:09.0756 0x063c WacomPen - ok
02:33:10.0090 0x063c [ AFCD4054D61BD708B82991348ED1C763 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
02:33:10.0091 0x063c Wanarp - ok
02:33:10.0424 0x063c [ AFCD4054D61BD708B82991348ED1C763 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:33:10.0425 0x063c Wanarpv6 - ok
02:33:10.0735 0x063c [ 92BF4B3EBD6F163B94B7A20C65E7B698 ] wbengine C:\Windows\system32\wbengine.exe
02:33:10.0787 0x063c wbengine - ok
02:33:11.0211 0x063c [ CE9E5A541CB4203B4930CE89766D4E5C ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
02:33:11.0218 0x063c WbioSrvc - ok
02:33:11.0565 0x063c [ 5A619483E21DAAF186DF23270D226A7D ] Wcmsvc C:\Windows\System32\wcmsvc.dll
02:33:11.0574 0x063c Wcmsvc - ok
02:33:11.0940 0x063c [ 8AF411E94155BF44DD4E878B42AA455B ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:33:11.0950 0x063c wcncsvc - ok
02:33:12.0282 0x063c [ 846C02A8B48CBD921A3D6AB521AA0DC4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:33:12.0287 0x063c WcsPlugInService - ok
02:33:12.0613 0x063c [ 694B28DE12AD47031FFB4B052662131A ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
02:33:12.0614 0x063c WdBoot - ok
02:33:12.0959 0x063c [ CB6C63FF8342B467E2EF76E98D5B934D ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:33:12.0971 0x063c Wdf01000 - ok
02:33:13.0307 0x063c [ 0B99529A3BECC3528D865DDECB62503B ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
02:33:13.0311 0x063c WdFilter - ok
02:33:13.0630 0x063c [ 40C67D1A4891120874767F6E6604D6C5 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:33:13.0636 0x063c WdiServiceHost - ok
02:33:13.0953 0x063c [ 40C67D1A4891120874767F6E6604D6C5 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:33:13.0957 0x063c WdiSystemHost - ok
02:33:14.0248 0x063c [ 282E7D46310338FF4A6B7680440EB0DA ] WdNisDrv C:\Windows\system32\Drivers\WdNisDrv.sys
02:33:14.0250 0x063c WdNisDrv - ok
02:33:14.0570 0x063c WdNisSvc - ok
02:33:14.0898 0x063c [ 6588A957873326361AB1CAC4E76F8394 ] WebClient C:\Windows\System32\webclnt.dll
02:33:14.0905 0x063c WebClient - ok
02:33:15.0233 0x063c [ 3274312F263882B51B964329FAF49734 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:33:15.0240 0x063c Wecsvc - ok
02:33:15.0563 0x063c [ 7CDD84E0023A0C5C230B06A7965EC65E ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll
02:33:15.0567 0x063c WEPHOSTSVC - ok
02:33:15.0910 0x063c [ AA1315B87D9B2E39584165318A59F15D ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:33:15.0927 0x063c wercplsupport - ok
02:33:16.0276 0x063c [ 22B4C24AB921BFF7827FFBCA1F4E1BB3 ] WerSvc C:\Windows\System32\WerSvc.dll
02:33:16.0281 0x063c WerSvc - ok
02:33:16.0578 0x063c [ 011F431624366917180C904CE17FEA1A ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
02:33:16.0580 0x063c WFPLWFS - ok
02:33:16.0910 0x063c [ E06AFE2F94BA7CFA2FE4FD2A449E60E2 ] WiaRpc C:\Windows\System32\wiarpc.dll
02:33:16.0914 0x063c WiaRpc - ok
02:33:17.0255 0x063c [ 867BCC69ED9C31C501465EB0E8BA9DFA ] WIMMount C:\Windows\system32\drivers\wimmount.sys
02:33:17.0256 0x063c WIMMount - ok
02:33:17.0578 0x063c WinDefend - ok
02:33:18.0487 0x063c [ DD079EC8F44DCA3A176B345C6ADEFB66 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
02:33:18.0502 0x063c WinHttpAutoProxySvc - ok
02:33:18.0856 0x063c [ 9DB490F3E823C5C3C070644B96CB9D59 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:33:18.0861 0x063c Winmgmt - ok
02:33:19.0301 0x063c [ 690C3FC5C9DBD6B9AEDF8341EC720E41 ] WinRM C:\Windows\system32\WsmSvc.dll
02:33:19.0371 0x063c WinRM - ok
02:33:20.0266 0x063c [ 191294664E1397B5B0C95218A545250F ] WlanSvc C:\Windows\System32\wlansvc.dll
02:33:20.0299 0x063c WlanSvc - ok
02:33:20.0716 0x063c [ 02A13DB2D44B17A1C37769246694C7CD ] wlidsvc C:\Windows\system32\wlidsvc.dll
02:33:20.0773 0x063c wlidsvc - ok
02:33:21.0067 0x063c [ 2834D9D3B4F554A39C72F00EA3F0E128 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
02:33:21.0068 0x063c WmiAcpi - ok
02:33:21.0739 0x063c [ 7AFAC828F52D62F304A911EC32F42EEE ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:33:21.0743 0x063c wmiApSrv - ok
02:33:22.0008 0x063c WMPNetworkSvc - ok
02:33:22.0549 0x063c [ A1314F0CD51E8F7CF613A17D8B0724F7 ] workfolderssvc C:\Windows\system32\workfolderssvc.dll
02:33:22.0573 0x063c workfolderssvc - ok
02:33:22.0857 0x063c [ E746BCDBA2E02CF6B8D6B26FB167FBE0 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
02:33:22.0858 0x063c wpcfltr - ok
02:33:23.0154 0x063c [ 4E6A0F60DA7EF050D3D26417CD4D24E9 ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:33:23.0158 0x063c WPCSvc - ok
02:33:23.0433 0x063c [ D27491CFCE452C154CECFA155AD0EBC8 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:33:23.0438 0x063c WPDBusEnum - ok
02:33:23.0739 0x063c [ 9F2904B55F6CECCD1A8D986B5CE2609A ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
02:33:23.0740 0x063c WpdUpFltr - ok
02:33:24.0017 0x063c [ AE072B0339D0A18E455DC21666CAD572 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:33:24.0018 0x063c ws2ifsl - ok
02:33:24.0302 0x063c [ 5CFA46C4ACB2FD70572017052378DAE5 ] wscsvc C:\Windows\System32\wscsvc.dll
02:33:24.0308 0x063c wscsvc - ok
02:33:24.0576 0x063c WSearch - ok
02:33:25.0133 0x063c [ DD988D37D33574D02642E528C8CD8808 ] WSService C:\Windows\System32\WSService.dll
02:33:25.0224 0x063c WSService - ok
02:33:25.0615 0x063c [ B957B92C79A4CD138D5CFF1D20A9CF7B ] wuauserv C:\Windows\system32\wuaueng.dll
02:33:25.0728 0x063c wuauserv - ok
02:33:26.0058 0x063c [ 2FEAE33E9B2B56104596E1BA444405A9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:33:26.0061 0x063c WudfPf - ok
02:33:26.0351 0x063c [ 19240C13F526125554B5370566F21A0A ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
02:33:26.0354 0x063c WUDFRd - ok
02:33:26.0628 0x063c [ 19240C13F526125554B5370566F21A0A ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys
02:33:26.0631 0x063c WUDFSensorLP - ok
02:33:26.0933 0x063c [ BB73CBC65AABC4EA0A5C6A1474A0A743 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:33:26.0939 0x063c wudfsvc - ok
02:33:27.0251 0x063c [ 19240C13F526125554B5370566F21A0A ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
02:33:27.0254 0x063c WUDFWpdFs - ok
02:33:27.0592 0x063c [ 2FA9794CA36147756F3FDFD6CA29B46F ] WwanSvc C:\Windows\System32\wwansvc.dll
02:33:27.0603 0x063c WwanSvc - ok
02:33:29.0288 0x063c ================ Scan global ===============================
02:33:29.0375 0x063c [ C89780A6F58D113C28A96D85D1261DC5 ] C:\Windows\system32\basesrv.dll
02:33:29.0414 0x063c [ 599F1244C60E3D6C28A8DA7FBA7A2C13 ] C:\Windows\system32\winsrv.dll
02:33:29.0440 0x063c [ 9C1833ABD62876856836C5AE55C7CE86 ] C:\Windows\system32\sxssrv.dll
02:33:29.0470 0x063c [ B4B610BBCB002EC478C6FD80CF915697 ] C:\Windows\system32\services.exe
02:33:29.0480 0x063c [Global] - ok
02:33:29.0481 0x063c ================ Scan MBR ==================================
02:33:29.0505 0x063c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:33:29.0852 0x063c \Device\Harddisk0\DR0 - ok
02:33:29.0864 0x063c [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk1\DR1
02:33:34.0542 0x063c \Device\Harddisk1\DR1 - ok
02:33:34.0543 0x063c ================ Scan VBR ==================================
02:33:34.0556 0x063c [ D53FA4AEB6EC11D7A739DA532D821896 ] \Device\Harddisk0\DR0\Partition1
02:33:34.0558 0x063c \Device\Harddisk0\DR0\Partition1 - ok
02:33:34.0569 0x063c [ AE1A1F49F8A706319ECC12C634B1C5D7 ] \Device\Harddisk0\DR0\Partition2
02:33:34.0572 0x063c \Device\Harddisk0\DR0\Partition2 - ok
02:33:34.0577 0x063c [ 7A898B6B68B44F3E815B811CDAACFCD2 ] \Device\Harddisk1\DR1\Partition1
02:33:34.0579 0x063c \Device\Harddisk1\DR1\Partition1 - ok
02:33:34.0580 0x063c ============================================================
02:33:34.0580 0x063c Scan finished
02:33:34.0580 0x063c ============================================================
02:33:34.0592 0x0e70 Detected object count: 1
02:33:34.0593 0x0e70 Actual detected object count: 1
02:36:02.0293 0x0e70 C:\Windows\system32\drivers\30439020.sys - copied to quarantine
02:36:02.0294 0x0e70 80117480 ( ForgedFile.Multi.Generic ) - User select action: Quarantine
02:36:09.0419 0x0c7c Deinitialize success
|
|
23.09.2013, 07:20
| #2 |
| /// the machine /// TB-Ausbilder    | Tdss killer auswertung hi,
__________________google spuckt nicht wirklich was aus, sieht generisch aus. Lässt sich nur mit diesem Log schlecht sagen.
__________________ |
|
23.09.2013, 11:36
| #3 |
| | Tdss killer auswertung hier die in quarantäne gestellte .sys datei .
__________________interessanterweise hat sich nach einem erneuten scan der Name (nummer) der sys Datei im system32 ordner geändert. |
|
23.09.2013, 17:47
| #4 |
| /// the machine /// TB-Ausbilder | Tdss killer auswertung hi, Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
23.09.2013, 22:35
| #5 |
| | Tdss killer auswertung problem hat sich erledigt. sys datei stammt vom VPN Programm Security Kiss |
|
24.09.2013, 11:25
| #6 |
| /// the machine /// TB-Ausbilder | Tdss killer auswertung ok.
__________________ --> Tdss killer auswertung |
|
| Themen zu Tdss killer auswertung |
| amd, auswertung, boot, browser, cdrom, comodo, computer, datei, detected, down, dxgkrnl, fake, file, fontcache, google, harddisk, malwarebytes, modem, object, policyagent, rootkit, scan, security, spybot, system32, tdss, trustedinstaller, tunnel, windows, wlansvc, wmp, wsearch |
Linear-Darstellung
