| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Lästige Werbepopups wenn man mit der Maus über farbig unterstrichene Wörter fährtWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
15.10.2013, 09:58
| #16 |
 |  Lästige Werbepopups wenn man mit der Maus über farbig unterstrichene Wörter fährt Schritt 3 Der Scan mit ESET hat fast 3 Stunden gedauert. Den Virenscanner musste ich vor Scanstart deinstallieren, da er sich nicht ausschalten ließ. Trotzdem hat ESET beim Start einen Konflikt mit dem Deinstallierten Scanner??? Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ca6d76b929238840bbce6df67abc764f
# engine=15479
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-14 03:25:31
# local_time=2013-10-14 05:25:31 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 95 3340 5898131 0 0
# compatibility_mode=5893 16776573 100 94 69516 133395522 0 0
# scanned=1138
# found=5
# cleaned=0
# scan_time=100
sh=2AB31EBB3A4AD81B829C1C92B81C0BFAD16160A1 ft=0 fh=0000000000000000 vn="Win32/Adware.AddLyrics.L application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\130.crx.vir"
sh=07A47DF0BAB5AFFBBA802A701E424047D9206148 ft=0 fh=0000000000000000 vn="Win32/Adware.AddLyrics.L application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\130.xpi.vir"
sh=C2EA9473BD094CC986B4595F856EAB6665402169 ft=1 fh=7cf37194e0eea37e vn="a variant of Win32/AdWare.AddLyrics.T application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\LrcsCtrUpdr.exe.vir"
sh=4A25BFE06EBD1AEC4B65D1F9E4C047D42AE19BB1 ft=1 fh=a657b54476a4ebc3 vn="a variant of Win32/AdWare.AddLyrics.T application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\Lyrics_Monkey\LyrMonkeyUpd.exe.vir"
sh=7893C95AF3889B07582A52D653AC7FD98351D6CE ft=0 fh=0000000000000000 vn="Win32/Adware.AddLyrics.L application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Papa\AppData\Roaming\Mozilla\Firefox\Profiles\dfus4sez.default\Extensions\128\chrome\content\main.js.vir"
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=ca6d76b929238840bbce6df67abc764f
# engine=15479
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-14 06:59:25
# local_time=2013-10-14 08:59:25 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1797 16774142 0 3 11653 1154468 0 0
# compatibility_mode=5893 16776573 100 94 82350 133408356 0 0
# scanned=280119
# found=8
# cleaned=0
# scan_time=10245
sh=820D80713F6768DB64BE25CB338A3231A79D6BD4 ft=1 fh=3adebeb776ca89eb vn="a variant of Win32/AdWare.AddLyrics.S application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\128.dll.vir"
sh=2AB31EBB3A4AD81B829C1C92B81C0BFAD16160A1 ft=0 fh=0000000000000000 vn="Win32/Adware.AddLyrics.L application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\130.crx.vir"
sh=07A47DF0BAB5AFFBBA802A701E424047D9206148 ft=0 fh=0000000000000000 vn="Win32/Adware.AddLyrics.L application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\130.xpi.vir"
sh=C2EA9473BD094CC986B4595F856EAB6665402169 ft=1 fh=7cf37194e0eea37e vn="a variant of Win32/AdWare.AddLyrics.T application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\LyricsContainer\LrcsCtrUpdr.exe.vir"
sh=276D2B610569DEFE3556B6E3BF9CDDBC957314B1 ft=1 fh=e78fc6e29922bf24 vn="a variant of Win32/AdWare.AddLyrics.S application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\Lyrics_Monkey\128.dll.vir"
sh=4A25BFE06EBD1AEC4B65D1F9E4C047D42AE19BB1 ft=1 fh=a657b54476a4ebc3 vn="a variant of Win32/AdWare.AddLyrics.T application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files\Lyrics_Monkey\LyrMonkeyUpd.exe.vir"
sh=7893C95AF3889B07582A52D653AC7FD98351D6CE ft=0 fh=0000000000000000 vn="Win32/Adware.AddLyrics.L application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Papa\AppData\Roaming\Mozilla\Firefox\Profiles\dfus4sez.default\Extensions\128\chrome\content\main.js.vir"
sh=623704DB7A6A04F28AE8EC9C7555C109324FB2D7 ft=1 fh=b66c729283c0f376 vn="Win32/StartPage.OPH trojan" ac=I fn="C:\Installationsfähige Software und sonstige Downloads\VLC Mediaplayer\vlc-2.0.0-win32.exe"
Ich habe wie angeboten die aktuellste Version heruntergeladen. Code:
ATTFilter
21:23:27.0429 0x04c4 TDSS rootkit removing tool 3.0.0.12 Oct 9 2013 14:59:22
21:23:27.0663 0x04c4 ============================================================
21:23:27.0663 0x04c4 Current date / time: 2013/10/14 21:23:27.0663
21:23:27.0663 0x04c4 SystemInfo:
21:23:27.0663 0x04c4
21:23:27.0663 0x04c4 OS Version: 6.1.7601 ServicePack: 1.0
21:23:27.0663 0x04c4 Product type: Workstation
21:23:27.0663 0x04c4 ComputerName: TOWER-PAPA
21:23:27.0663 0x04c4 UserName: Papa
21:23:27.0663 0x04c4 Windows directory: C:\Windows
21:23:27.0663 0x04c4 System windows directory: C:\Windows
21:23:27.0663 0x04c4 Processor architecture: Intel x86
21:23:27.0663 0x04c4 Number of processors: 3
21:23:27.0663 0x04c4 Page size: 0x1000
21:23:27.0663 0x04c4 Boot type: Normal boot
21:23:27.0663 0x04c4 ============================================================
21:23:29.0395 0x04c4 System UUID: {D536DACC-B3D7-EB05-BEE7-626600EB4606}
21:23:30.0206 0x04c4 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:23:30.0221 0x04c4 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:23:30.0237 0x04c4 ============================================================
21:23:30.0237 0x04c4 \Device\Harddisk0\DR0:
21:23:30.0237 0x04c4 MBR partitions:
21:23:30.0237 0x04c4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800
21:23:30.0237 0x04c4 \Device\Harddisk1\DR1:
21:23:30.0237 0x04c4 MBR partitions:
21:23:30.0237 0x04c4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x18000
21:23:30.0237 0x04c4 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x18800, BlocksNum 0x3A36D800
21:23:30.0237 0x04c4 ============================================================
21:23:30.0253 0x04c4 C: <-> \Device\Harddisk1\DR1\Partition2
21:23:30.0253 0x04c4 D: <-> \Device\Harddisk0\DR0\Partition1
21:23:30.0253 0x04c4 ============================================================
21:23:30.0253 0x04c4 Initialize success
21:23:30.0253 0x04c4 ============================================================
21:24:59.0329 0x018c ============================================================
21:24:59.0329 0x018c Scan started
21:24:59.0329 0x018c Mode: Manual; SigCheck; TDLFS;
21:24:59.0329 0x018c ============================================================
21:24:59.0329 0x018c KSN ping started
21:25:13.0852 0x018c KSN ping finished: true
21:25:14.0851 0x018c ================ Scan system memory ========================
21:25:14.0851 0x018c System memory - ok
21:25:14.0851 0x018c ================ Scan services =============================
21:25:15.0054 0x018c [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:25:15.0163 0x018c 1394ohci - ok
21:25:15.0256 0x018c [ A6FE70357A68AD1E279CD1012419CCE6, 561B0E21383600F9A0BFB8562AAE648BBC48A320F58E4189C508123B8F106A29 ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
21:25:15.0693 0x018c acedrv11 - ok
21:25:15.0787 0x018c [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:25:15.0834 0x018c ACPI - ok
21:25:15.0865 0x018c [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:25:15.0927 0x018c AcpiPmi - ok
21:25:16.0052 0x018c [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:25:16.0068 0x018c AdobeARMservice - ok
21:25:16.0146 0x018c [ 476BB014F3F68C0C15EDDD5B444DA8FF, 94E8FDC4390672C31081EACF3B3AE57486ED06669C4120F139DB3A62AAE77071 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:25:16.0161 0x018c AdobeFlashPlayerUpdateSvc - ok
21:25:16.0192 0x018c [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:25:16.0224 0x018c adp94xx - ok
21:25:16.0255 0x018c [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:25:16.0270 0x018c adpahci - ok
21:25:16.0286 0x018c [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:25:16.0302 0x018c adpu320 - ok
21:25:16.0317 0x018c [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:25:16.0380 0x018c AeLookupSvc - ok
21:25:16.0520 0x018c [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
21:25:16.0660 0x018c AFD - ok
21:25:16.0707 0x018c [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
21:25:16.0723 0x018c agp440 - ok
21:25:16.0770 0x018c [ 4F104D2C68E39E5282E8E47DCF07BF25, E20B074D1EFDC6B299373617C8FD875B353185504E557196EDB322D176089DA0 ] ahcix86s C:\Windows\system32\DRIVERS\ahcix86s.sys
21:25:16.0785 0x018c ahcix86s - ok
21:25:16.0816 0x018c [ CB387D65D0D73CAD4D6661C389BD676C, CE5AB01FA6557061E4E63B2D477A69BDC38BA96E5005850E87E8F04A3B3108E1 ] aic78xx C:\Windows\system32\DRIVERS\aic78xx.sys
21:25:16.0848 0x018c aic78xx - detected UnsignedFile.Multi.Generic ( 1 )
21:25:19.0281 0x018c Detect skipped due to KSN trusted
21:25:19.0281 0x018c aic78xx - ok
21:25:19.0312 0x018c [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
21:25:19.0375 0x018c ALG - ok
21:25:19.0390 0x018c [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
21:25:19.0406 0x018c aliide - ok
21:25:19.0484 0x018c [ 17806DC9487A0731F82D7B81A2C3287C, 52C7767DE29EAE1EBE252D51C5FAAD9B0F90286311D72D9B5BCD458165694AD5 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:25:19.0578 0x018c AMD External Events Utility - ok
21:25:19.0687 0x018c AMD FUEL Service - ok
21:25:19.0702 0x018c [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:25:19.0718 0x018c amdagp - ok
21:25:19.0749 0x018c [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
21:25:19.0765 0x018c amdide - ok
21:25:19.0780 0x018c amdiox86 - ok
21:25:19.0796 0x018c [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:25:19.0843 0x018c AmdK8 - ok
21:25:20.0186 0x018c [ 1FDC2B137008627BD11195706231EEF6, B93F675591B5DBE25FAD5BE694DFFB7171AD38C89EA7EBEAC48AF87A7308E3D9 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:25:20.0654 0x018c amdkmdag - ok
21:25:20.0701 0x018c [ 5FF6ADC3DE4FFF320FFB1DD53850602F, 32EB51EDD43F1BE4561A9E4C42B7C06DBD38DCCB23F35055961F97F646F1834F ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:25:20.0748 0x018c amdkmdap - ok
21:25:20.0794 0x018c [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:25:20.0826 0x018c AmdPPM - ok
21:25:20.0872 0x018c [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:25:20.0904 0x018c amdsata - ok
21:25:20.0935 0x018c [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:25:20.0950 0x018c amdsbs - ok
21:25:20.0966 0x018c [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:25:20.0966 0x018c amdxata - ok
21:25:21.0075 0x018c [ 67FB6EC7C1232FA350D12378D41B742A, 7A92E3144A0C08D428D1524370C178528B62F40D9CFD856E39E1C490A0AC7F33 ] AMD_RAIDXpert C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
21:25:21.0091 0x018c AMD_RAIDXpert - ok
21:25:21.0122 0x018c AODDriver4.0 - ok
21:25:21.0153 0x018c [ 66F4DE5876DC1A47BA1ACE909FA9AEEF, 2194C4323081E30E93DCA3602F276CBD6BE25256094E62332FA03B397962CE28 ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
21:25:21.0169 0x018c AODDriver4.2 - ok
21:25:21.0231 0x018c [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
21:25:21.0294 0x018c AppID - ok
21:25:21.0340 0x018c [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:25:21.0372 0x018c AppIDSvc - ok
21:25:21.0403 0x018c [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
21:25:21.0418 0x018c Appinfo - ok
21:25:21.0512 0x018c [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:25:21.0528 0x018c Apple Mobile Device - ok
21:25:21.0574 0x018c [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
21:25:21.0590 0x018c arc - ok
21:25:21.0606 0x018c [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:25:21.0621 0x018c arcsas - ok
21:25:21.0793 0x018c [ 2FE0D5DB69014980A970D3BF9A85D2B1, 3837F176B0CB7FEA2689D90B50B62F660FE579A5EB1E47C827DFA95596B72D1E ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:25:21.0824 0x018c aspnet_state - ok
21:25:21.0886 0x018c [ 46658EE12F6924E832697581FDD0E659, FA850ECF832DEDF22DCA3E1777B8F65E5AAE9508BCBF77CAD4D28F3147B87D2B ] AsrAppCharger C:\Windows\system32\DRIVERS\AsrAppCharger.sys
21:25:21.0918 0x018c AsrAppCharger - ok
21:25:21.0964 0x018c [ EB35FF3A9903C5C7A94484724A5EADF9, 00CA7F04810750B7D07B6BCEEA6C9A36EC6FD8FF177D0A54E3F22EC58A978B43 ] AsrRamDisk C:\Windows\system32\DRIVERS\AsrRamDisk.sys
21:25:21.0996 0x018c AsrRamDisk - ok
21:25:22.0011 0x018c [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:25:22.0105 0x018c AsyncMac - ok
21:25:22.0136 0x018c [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
21:25:22.0136 0x018c atapi - ok
21:25:22.0198 0x018c [ 9E65DC266E8289116790599DD7D69087, DB84BD9F88878248D05C6DBCC61D701B296BEE154B9CCF2FF9F1EADE84CE6F10 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
21:25:22.0261 0x018c AtiHDAudioService - ok
21:25:22.0308 0x018c [ BF10613B3E16C1B4D7DE59DB564314CD, E610CA1278492323B7C825D5C978B7D40A8DB0F89AB42840645746BF82AAC4E3 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
21:25:22.0323 0x018c AtiHdmiService - ok
21:25:22.0713 0x018c [ 1FDC2B137008627BD11195706231EEF6, B93F675591B5DBE25FAD5BE694DFFB7171AD38C89EA7EBEAC48AF87A7308E3D9 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:25:22.0963 0x018c atikmdag - ok
21:25:23.0025 0x018c [ B73C832088DD54B55E04FF6F9646AD8C, 52A9F9240FAFB2F50E48579F02221CC0D6872F834104F91EF63ADC6AA82A2CD0 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
21:25:23.0025 0x018c AtiPcie - ok
21:25:23.0072 0x018c [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
21:25:23.0088 0x018c atksgt - ok
21:25:23.0150 0x018c [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:25:23.0197 0x018c AudioEndpointBuilder - ok
21:25:23.0228 0x018c [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:25:23.0259 0x018c Audiosrv - ok
21:25:23.0306 0x018c [ 728C4A6C722535C16D1025F51AA31E22, F6A49A0B87E9A2D39C6CC0A80CBCA514822E3B423AAB7C831FF17A753F2F4975 ] avmaudio C:\Windows\system32\DRIVERS\avmaudio.sys
21:25:23.0337 0x018c avmaudio - ok
21:25:23.0384 0x018c [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:25:23.0462 0x018c AxInstSV - ok
21:25:23.0509 0x018c [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
21:25:23.0540 0x018c b06bdrv - ok
21:25:23.0571 0x018c [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
21:25:23.0587 0x018c b57nd60x - ok
21:25:23.0602 0x018c [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
21:25:23.0634 0x018c BDESVC - ok
21:25:23.0665 0x018c [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
21:25:23.0712 0x018c Beep - ok
21:25:23.0790 0x018c [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
21:25:23.0852 0x018c BFE - ok
21:25:23.0899 0x018c [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\system32\qmgr.dll
21:25:23.0930 0x018c BITS - ok
21:25:23.0946 0x018c [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:25:23.0961 0x018c blbdrive - ok
21:25:23.0992 0x018c [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:25:24.0055 0x018c bowser - ok
21:25:24.0055 0x018c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:25:24.0117 0x018c BrFiltLo - ok
21:25:24.0133 0x018c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:25:24.0148 0x018c BrFiltUp - ok
21:25:24.0211 0x018c [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:25:24.0289 0x018c BridgeMP - ok
21:25:24.0351 0x018c [ C711ED965009BDCFF9AA62CEB6FF1AAD, 083E981F983653329C2B8361963CA81D5D88E164C7738035F701A10CCB1C85CC ] Brother XP spl Service C:\Windows\system32\brsvc01a.exe
21:25:24.0367 0x018c Brother XP spl Service - detected UnsignedFile.Multi.Generic ( 1 )
21:25:26.0816 0x018c Detect skipped due to KSN trusted
21:25:26.0816 0x018c Brother XP spl Service - ok
21:25:26.0878 0x018c [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
21:25:26.0925 0x018c Browser - ok
21:25:26.0956 0x018c [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:25:27.0019 0x018c Brserid - ok
21:25:27.0034 0x018c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:25:27.0066 0x018c BrSerWdm - ok
21:25:27.0081 0x018c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:25:27.0112 0x018c BrUsbMdm - ok
21:25:27.0112 0x018c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:25:27.0144 0x018c BrUsbSer - ok
21:25:27.0175 0x018c [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:25:27.0206 0x018c BTHMODEM - ok
21:25:27.0237 0x018c [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
21:25:27.0315 0x018c bthserv - ok
21:25:27.0424 0x018c catchme - ok
21:25:27.0440 0x018c [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:25:27.0487 0x018c cdfs - ok
21:25:27.0549 0x018c [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:25:27.0580 0x018c cdrom - ok
21:25:27.0627 0x018c [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
21:25:27.0705 0x018c CertPropSvc - ok
21:25:27.0721 0x018c [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:25:27.0736 0x018c circlass - ok
21:25:27.0783 0x018c [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
21:25:27.0799 0x018c CLFS - ok
21:25:27.0846 0x018c [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:25:27.0877 0x018c clr_optimization_v2.0.50727_32 - ok
21:25:27.0924 0x018c [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:25:27.0986 0x018c clr_optimization_v4.0.30319_32 - ok
21:25:28.0002 0x018c [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:25:28.0033 0x018c CmBatt - ok
21:25:28.0064 0x018c [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:25:28.0080 0x018c cmdide - ok
21:25:28.0126 0x018c [ 42F158036BD4C2FF3122BF142E60E6FD, BE7671C6FCE488A625DBA4F4F507664A12A31CF5CA564CC38E4C05FD8A86FB5D ] CNG C:\Windows\system32\Drivers\cng.sys
21:25:28.0158 0x018c CNG - ok
21:25:28.0173 0x018c [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:25:28.0189 0x018c Compbatt - ok
21:25:28.0236 0x018c [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:25:28.0282 0x018c CompositeBus - ok
21:25:28.0298 0x018c COMSysApp - ok
21:25:28.0314 0x018c cpuz130 - ok
21:25:28.0329 0x018c [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:25:28.0345 0x018c crcdisk - ok
21:25:28.0392 0x018c [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:25:28.0454 0x018c CryptSvc - ok
21:25:28.0548 0x018c [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
21:25:28.0610 0x018c DcomLaunch - ok
21:25:28.0641 0x018c [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
21:25:28.0688 0x018c defragsvc - ok
21:25:28.0719 0x018c [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:25:28.0782 0x018c DfsC - ok
21:25:28.0860 0x018c [ 7F19DBA1A467B838CCB23124A2C55568, 9D7C81AD7C4AAC69E8B263029F292B46FD8BFF9721349C2AB8A111C8CB670BB2 ] DgiVecp C:\Windows\system32\Drivers\DgiVecp.sys
21:25:28.0875 0x018c DgiVecp - detected UnsignedFile.Multi.Generic ( 1 )
21:25:31.0324 0x018c Detect skipped due to KSN trusted
21:25:31.0324 0x018c DgiVecp - ok
21:25:31.0402 0x018c [ 54D0B8343CE8C22412A5F29D32EFD211, D78BF09680FF19523C84E862593B45637D91A079C79CAB63A13726E7ACA8ABBF ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
21:25:31.0434 0x018c dg_ssudbus - ok
21:25:31.0480 0x018c [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
21:25:31.0558 0x018c Dhcp - ok
21:25:31.0574 0x018c [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
21:25:31.0621 0x018c discache - ok
21:25:31.0652 0x018c [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:25:31.0668 0x018c Disk - ok
21:25:31.0699 0x018c [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:25:31.0746 0x018c Dnscache - ok
21:25:31.0808 0x018c [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
21:25:31.0870 0x018c dot3svc - ok
21:25:31.0917 0x018c [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
21:25:31.0964 0x018c DPS - ok
21:25:31.0995 0x018c [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:25:32.0026 0x018c drmkaud - ok
21:25:32.0073 0x018c [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:25:32.0089 0x018c DXGKrnl - ok
21:25:32.0120 0x018c [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
21:25:32.0167 0x018c EapHost - ok
21:25:32.0323 0x018c [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
21:25:32.0494 0x018c ebdrv - ok
21:25:32.0541 0x018c [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] EFS C:\Windows\System32\lsass.exe
21:25:32.0572 0x018c EFS - ok
21:25:32.0650 0x018c [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:25:32.0697 0x018c ehRecvr - ok
21:25:32.0713 0x018c [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
21:25:32.0744 0x018c ehSched - ok
21:25:32.0775 0x018c [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:25:32.0791 0x018c elxstor - ok
21:25:32.0822 0x018c [ 16EBD8BF1D5090923694CC972C7CE1B4, 0D40EBFEBCD78FA72CB82F9BAD22A2872EB81DCC072BE1BB61BEBE074D6A4A21 ] ENTECH C:\Windows\system32\DRIVERS\ENTECH.sys
21:25:32.0822 0x018c ENTECH - ok
21:25:32.0853 0x018c [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:25:32.0900 0x018c ErrDev - ok
21:25:32.0962 0x018c [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
21:25:33.0025 0x018c EventSystem - ok
21:25:33.0040 0x018c [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
21:25:33.0056 0x018c exfat - ok
21:25:33.0165 0x018c [ E1C954057935D51D85077A57012554B2, 30FD06B4D491B8D98FACA38A4AD228B115037FB543EA96B2FC2A240ED4D2B217 ] Ext2Fsd C:\Windows\system32\drivers\Ext2Fsd.sys
21:25:33.0196 0x018c Ext2Fsd - ok
21:25:33.0212 0x018c [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:25:33.0243 0x018c fastfat - ok
21:25:33.0306 0x018c [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
21:25:33.0384 0x018c Fax - ok
21:25:33.0399 0x018c [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:25:33.0430 0x018c fdc - ok
21:25:33.0446 0x018c [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
21:25:33.0477 0x018c fdPHost - ok
21:25:33.0477 0x018c [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
21:25:33.0508 0x018c FDResPub - ok
21:25:33.0540 0x018c [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:25:33.0540 0x018c FileInfo - ok
21:25:33.0555 0x018c [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:25:33.0571 0x018c Filetrace - ok
21:25:33.0571 0x018c [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:25:33.0602 0x018c flpydisk - ok
21:25:33.0633 0x018c [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:25:33.0649 0x018c FltMgr - ok
21:25:33.0711 0x018c [ 4BD9964632325802F8DC971F6987CD1B, 6C8B08FACF6B2F5FC02787942D5BF9317697845362A8F048B22B9715410444E1 ] FNETTBOH_305 C:\Windows\system32\drivers\FNETTBOH_305.SYS
21:25:33.0711 0x018c FNETTBOH_305 - ok
21:25:33.0758 0x018c [ 47BDA10316324CFA540F25AB7021F0D8, 6719FEEB3ADED6F199171D2B496A29A55169BD2C7111B66EEE91383FAEA4C893 ] FNETURPX C:\Windows\system32\drivers\FNETURPX.SYS
21:25:33.0774 0x018c FNETURPX - ok
21:25:33.0820 0x018c [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
21:25:33.0867 0x018c FontCache - ok
21:25:33.0898 0x018c [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:25:33.0914 0x018c FontCache3.0.0.0 - ok
21:25:33.0945 0x018c [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:25:33.0961 0x018c FsDepends - ok
21:25:34.0008 0x018c [ B0082808A6856A252F7CDD939892CE50, 3A069239629C4F54049A2CFC6642AC5102ECEAA74470BAA9DDB1AB108D1060EE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
21:25:34.0039 0x018c fssfltr - ok
21:25:34.0195 0x018c [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:25:34.0257 0x018c fsssvc - ok
21:25:34.0304 0x018c [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:25:34.0335 0x018c Fs_Rec - ok
21:25:34.0382 0x018c [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:25:34.0398 0x018c fvevol - ok
21:25:34.0413 0x018c [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:25:34.0429 0x018c gagp30kx - ok
21:25:34.0491 0x018c [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:25:34.0491 0x018c GEARAspiWDM - ok
21:25:34.0569 0x018c [ CE8F5B65D6CFE435FB9BF875EDA99D55, D47D6A64BDEA5215CC87F5379640E9671A2FCE8B9F2C13019855B6F438A66568 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
21:25:34.0585 0x018c getPlusHelper - ok
21:25:34.0663 0x018c [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
21:25:34.0741 0x018c gpsvc - ok
21:25:34.0866 0x018c [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:25:34.0881 0x018c gupdate - ok
21:25:34.0897 0x018c [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:25:34.0912 0x018c gupdatem - ok
21:25:34.0944 0x018c [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:25:34.0975 0x018c gusvc - ok
21:25:34.0990 0x018c [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:25:35.0037 0x018c hcw85cir - ok
21:25:35.0131 0x018c [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:25:35.0162 0x018c HdAudAddService - ok
21:25:35.0193 0x018c [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:25:35.0224 0x018c HDAudBus - ok
21:25:35.0256 0x018c [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:25:35.0302 0x018c HidBatt - ok
21:25:35.0318 0x018c [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:25:35.0365 0x018c HidBth - ok
21:25:35.0396 0x018c [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:25:35.0412 0x018c HidIr - ok
21:25:35.0427 0x018c [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\System32\hidserv.dll
21:25:35.0474 0x018c hidserv - ok
21:25:35.0505 0x018c [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
21:25:35.0536 0x018c HidUsb - ok
21:25:35.0568 0x018c [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
21:25:35.0614 0x018c hkmsvc - ok
21:25:35.0646 0x018c [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:25:35.0692 0x018c HomeGroupListener - ok
21:25:35.0739 0x018c [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:25:35.0786 0x018c HomeGroupProvider - ok
21:25:35.0802 0x018c [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:25:35.0817 0x018c HpSAMD - ok
21:25:35.0895 0x018c [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:25:35.0989 0x018c HTTP - ok
21:25:36.0036 0x018c [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:25:36.0036 0x018c hwpolicy - ok
21:25:36.0098 0x018c [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:25:36.0129 0x018c i8042prt - ok
21:25:36.0192 0x018c [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:25:36.0223 0x018c iaStorV - ok
21:25:36.0332 0x018c [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:25:36.0379 0x018c idsvc - ok
21:25:36.0410 0x018c [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:25:36.0426 0x018c iirsp - ok
21:25:36.0457 0x018c [ F95622F161474511B8D80D6B093AA610, F2320E25EB9B4AA9A8366BD3AA23EABEBE111A5610D3A62EBA47D90427D5BC26 ] IKEEXT C:\Windows\System32\ikeext.dll
21:25:36.0519 0x018c IKEEXT - ok
21:25:36.0660 0x018c [ 047320DAC8428C859920E8040F1A7B53, 3E36B40CC9911A393332211DFD75EFCCE63E8640A75FE4D48159A576EE6417B3 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:25:36.0800 0x018c IntcAzAudAddService - ok
21:25:36.0816 0x018c [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
21:25:36.0831 0x018c intelide - ok
21:25:36.0847 0x018c [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:25:36.0878 0x018c intelppm - ok
21:25:36.0909 0x018c [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:25:36.0956 0x018c IPBusEnum - ok
21:25:36.0972 0x018c [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:25:37.0003 0x018c IpFilterDriver - ok
21:25:37.0096 0x018c [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:25:37.0190 0x018c iphlpsvc - ok
21:25:37.0221 0x018c [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:25:37.0237 0x018c IPMIDRV - ok
21:25:37.0252 0x018c [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:25:37.0299 0x018c IPNAT - ok
21:25:37.0408 0x018c [ FE56897B27ED266F9C4E7D90A0B5DA47, 6B39D25FAFBA886ACF3ABC0A2946E053914B80C3F4769AD36279126C5D4970B6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:25:37.0455 0x018c iPod Service - ok
21:25:37.0471 0x018c [ 9F7E491FB0BA0F9E370163834FC1FE31, 313D81BEBEC8C3F370FD1C9CC49931F0F178E6BA0581E6594EE1C64275FC157D ] irda C:\Windows\system32\DRIVERS\irda.sys
21:25:37.0533 0x018c irda - ok
21:25:37.0564 0x018c [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:25:37.0564 0x018c IRENUM - ok
21:25:37.0580 0x018c [ 4220D2F03D5C4226D0A1AA4B84025E45, 9002F4CB026CB0D71FFF4CC420C0F3573DA9F70B574A18AE7EF84D5B0A64D472 ] Irmon C:\Windows\System32\irmon.dll
21:25:37.0611 0x018c Irmon - ok
21:25:37.0642 0x018c [ 5896B5FF6332AB2BE1582523E9656A67, EA61CF0B108DDA2D32A2A9B28B2AD296E6941839114C99384D343B883ECAB7F8 ] irsir C:\Windows\system32\DRIVERS\irsir.sys
21:25:37.0674 0x018c irsir - ok
21:25:37.0720 0x018c [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:25:37.0736 0x018c isapnp - ok
21:25:37.0783 0x018c [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:25:37.0798 0x018c iScsiPrt - ok
21:25:37.0814 0x018c [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:25:37.0830 0x018c kbdclass - ok
21:25:37.0876 0x018c [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:25:37.0923 0x018c kbdhid - ok
21:25:37.0939 0x018c [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] KeyIso C:\Windows\system32\lsass.exe
21:25:37.0954 0x018c KeyIso - ok
21:25:37.0986 0x018c [ B7895B4182C0D16F6EFADEB8081E8D36, BAC3BAD22207C8826125FD7721C96F2C7A238960FD9398A3D4573E14648E9DB9 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:25:38.0017 0x018c KSecDD - ok
21:25:38.0064 0x018c [ 5FE1ABF1AF591A3458C9CF24ED9A4D35, CD50885B37F66EFEAE82158EC78AE1D0B58D1F6901E16A1B27D061DE266A09EF ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:25:38.0079 0x018c KSecPkg - ok
21:25:38.0188 0x018c [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:25:38.0282 0x018c KtmRm - ok
21:25:38.0313 0x018c [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:25:38.0344 0x018c LanmanServer - ok
21:25:38.0376 0x018c [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:25:38.0438 0x018c LanmanWorkstation - ok
21:25:38.0469 0x018c [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
21:25:38.0469 0x018c lirsgt - ok
21:25:38.0500 0x018c [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:25:38.0563 0x018c lltdio - ok
21:25:38.0610 0x018c [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:25:38.0672 0x018c lltdsvc - ok
21:25:38.0703 0x018c [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:25:38.0719 0x018c lmhosts - ok
21:25:38.0750 0x018c [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:25:38.0766 0x018c LSI_FC - ok
21:25:38.0781 0x018c [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:25:38.0781 0x018c LSI_SAS - ok
21:25:38.0797 0x018c [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:25:38.0812 0x018c LSI_SAS2 - ok
21:25:38.0828 0x018c [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:25:38.0844 0x018c LSI_SCSI - ok
21:25:38.0859 0x018c [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
21:25:38.0875 0x018c luafv - ok
21:25:38.0922 0x018c [ BA1347822D01B2D29C14CF09663A6457, AF300C059017CA06FA7D0DC5E148159A6EE509CEF9DC6E90557BA38ACF3185E8 ] LVRS C:\Windows\system32\DRIVERS\lvrs.sys
21:25:38.0937 0x018c LVRS - ok
21:25:39.0124 0x018c [ E2C99D3B692BA2173114C9DF79313B70, D2B1F052198EFBFAA49D52EFAE2614D7CBE25AE5DA9B4008602483B4A128512A ] LVUVC C:\Windows\system32\DRIVERS\lvuvc.sys
21:25:39.0312 0x018c LVUVC - ok
21:25:39.0343 0x018c [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:25:39.0358 0x018c Mcx2Svc - ok
21:25:39.0374 0x018c [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:25:39.0374 0x018c megasas - ok
21:25:39.0405 0x018c [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:25:39.0421 0x018c MegaSR - ok
21:25:39.0468 0x018c [ 68B005AF0BC4F8823EAB5B105A40CC28, B92605200BD4AAAAC3F4FE7D9A636A6DA11FD94749719EAD8DC609E86BD38402 ] Megatech-Software-Protection C:\Megatech\MProtect\MPSERV.EXE
21:25:39.0483 0x018c Megatech-Software-Protection - detected UnsignedFile.Multi.Generic ( 1 )
21:25:41.0917 0x018c Detect skipped due to KSN trusted
21:25:41.0917 0x018c Megatech-Software-Protection - ok
21:25:41.0948 0x018c [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
21:25:42.0010 0x018c MMCSS - ok
21:25:42.0042 0x018c [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
21:25:42.0104 0x018c Modem - ok
21:25:42.0151 0x018c [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:25:42.0182 0x018c monitor - ok
21:25:42.0182 0x018c motccgp - ok
21:25:42.0213 0x018c motccgpfl - ok
21:25:42.0229 0x018c MotDev - ok
21:25:42.0229 0x018c motmodem - ok
21:25:42.0276 0x018c [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:25:42.0291 0x018c mouclass - ok
21:25:42.0322 0x018c [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:25:42.0354 0x018c mouhid - ok
21:25:42.0385 0x018c [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:25:42.0400 0x018c mountmgr - ok
21:25:42.0510 0x018c [ 0329A45C849C9D77901094B8FFE8BBB9, 2151C15A4185FABBC3367B8213017B45E08C43E26E1D8942E707E217C6A5EDA7 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:25:42.0525 0x018c MozillaMaintenance - ok
21:25:42.0556 0x018c [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
21:25:42.0572 0x018c mpio - ok
21:25:42.0603 0x018c [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:25:42.0650 0x018c mpsdrv - ok
21:25:42.0681 0x018c [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:25:42.0744 0x018c MpsSvc - ok
21:25:42.0790 0x018c [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:25:42.0853 0x018c MRxDAV - ok
21:25:42.0900 0x018c [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:25:42.0962 0x018c mrxsmb - ok
21:25:43.0009 0x018c [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:25:43.0040 0x018c mrxsmb10 - ok
21:25:43.0071 0x018c [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:25:43.0102 0x018c mrxsmb20 - ok
21:25:43.0118 0x018c [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
21:25:43.0134 0x018c msahci - ok
21:25:43.0165 0x018c [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:25:43.0165 0x018c msdsm - ok
21:25:43.0196 0x018c [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
21:25:43.0258 0x018c MSDTC - ok
21:25:43.0305 0x018c [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:25:43.0336 0x018c Msfs - ok
21:25:43.0336 0x018c [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:25:43.0368 0x018c mshidkmdf - ok
21:25:43.0399 0x018c [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:25:43.0399 0x018c msisadrv - ok
21:25:43.0430 0x018c [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:25:43.0461 0x018c MSiSCSI - ok
21:25:43.0461 0x018c msiserver - ok
21:25:43.0492 0x018c [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:25:43.0508 0x018c MSKSSRV - ok
21:25:43.0524 0x018c [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:25:43.0555 0x018c MSPCLOCK - ok
21:25:43.0586 0x018c [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:25:43.0633 0x018c MSPQM - ok
21:25:43.0680 0x018c [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:25:43.0695 0x018c MsRPC - ok
21:25:43.0711 0x018c [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:25:43.0711 0x018c mssmbios - ok
21:25:43.0804 0x018c MSSQL$SQLEXPRESS - ok
21:25:43.0898 0x018c [ F1761C8FB2B25A32C6D63E36BB88C3AE, C88F5EF7B547DAA2394888362916FA18F07241E0BF2B938297428A1C04FFD806 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
21:25:43.0898 0x018c MSSQLServerADHelper100 - ok
21:25:43.0914 0x018c [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:25:43.0945 0x018c MSTEE - ok
21:25:43.0945 0x018c [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:25:43.0960 0x018c MTConfig - ok
21:25:43.0976 0x018c [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
21:25:43.0976 0x018c Mup - ok
21:25:44.0023 0x018c [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
21:25:44.0054 0x018c napagent - ok
21:25:44.0085 0x018c [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:25:44.0101 0x018c NativeWifiP - ok
21:25:44.0148 0x018c [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:25:44.0179 0x018c NDIS - ok
21:25:44.0194 0x018c [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:25:44.0226 0x018c NdisCap - ok
21:25:44.0257 0x018c [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:25:44.0319 0x018c NdisTapi - ok
21:25:44.0366 0x018c [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:25:44.0413 0x018c Ndisuio - ok
21:25:44.0444 0x018c [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:25:44.0491 0x018c NdisWan - ok
21:25:44.0522 0x018c [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:25:44.0569 0x018c NDProxy - ok
21:25:44.0600 0x018c [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:25:44.0616 0x018c NetBIOS - ok
21:25:44.0647 0x018c [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:25:44.0678 0x018c NetBT - ok
21:25:44.0678 0x018c [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] Netlogon C:\Windows\system32\lsass.exe
21:25:44.0694 0x018c Netlogon - ok
21:25:44.0725 0x018c [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
21:25:44.0772 0x018c Netman - ok
21:25:44.0865 0x018c [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:25:44.0912 0x018c NetMsmqActivator - ok
21:25:44.0943 0x018c [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:25:44.0959 0x018c NetPipeActivator - ok
21:25:45.0037 0x018c [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
21:25:45.0099 0x018c netprofm - ok
21:25:45.0115 0x018c [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:25:45.0115 0x018c NetTcpActivator - ok
21:25:45.0130 0x018c [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:25:45.0146 0x018c NetTcpPortSharing - ok
21:25:45.0162 0x018c [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:25:45.0177 0x018c nfrd960 - ok
21:25:45.0240 0x018c [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:25:45.0302 0x018c NlaSvc - ok
21:25:45.0364 0x018c [ 25D6B2EB0A1FC4AB413AFE7EC4793EC1, 25A1789C6C5F9276FC1AAF20809A2BCF33AC1050913CCAA42B1E783F03103DFE ] nosGetPlusHelper C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
21:25:45.0380 0x018c nosGetPlusHelper - ok
21:25:45.0380 0x018c [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:25:45.0396 0x018c Npfs - ok
21:25:45.0411 0x018c [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
21:25:45.0427 0x018c nsi - ok
21:25:45.0442 0x018c [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:25:45.0458 0x018c nsiproxy - ok
21:25:45.0520 0x018c [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:25:45.0567 0x018c Ntfs - ok
21:25:45.0583 0x018c [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
21:25:45.0614 0x018c Null - ok
21:25:45.0645 0x018c [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:25:45.0661 0x018c nvraid - ok
21:25:45.0692 0x018c [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:25:45.0708 0x018c nvstor - ok
21:25:45.0739 0x018c [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:25:45.0754 0x018c nv_agp - ok
21:25:45.0801 0x018c [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:25:45.0848 0x018c ohci1394 - ok
21:25:45.0926 0x018c [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:25:45.0942 0x018c ose - ok
21:25:45.0973 0x018c [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:25:46.0020 0x018c p2pimsvc - ok
21:25:46.0051 0x018c [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
21:25:46.0113 0x018c p2psvc - ok
21:25:46.0129 0x018c [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:25:46.0144 0x018c Parport - ok
21:25:46.0176 0x018c [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:25:46.0207 0x018c partmgr - ok
21:25:46.0222 0x018c [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
21:25:46.0269 0x018c Parvdm - ok
21:25:46.0300 0x018c [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:25:46.0316 0x018c PcaSvc - ok
21:25:46.0378 0x018c [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
21:25:46.0410 0x018c pci - ok
21:25:46.0441 0x018c [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
21:25:46.0441 0x018c pciide - ok
21:25:46.0472 0x018c [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:25:46.0488 0x018c pcmcia - ok
21:25:46.0503 0x018c [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
21:25:46.0503 0x018c pcw - ok
21:25:46.0534 0x018c [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:25:46.0581 0x018c PEAUTH - ok
21:25:46.0690 0x018c [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
21:25:46.0800 0x018c pla - ok
21:25:46.0831 0x018c [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:25:46.0893 0x018c PlugPlay - ok
21:25:46.0893 0x018c [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:25:46.0909 0x018c PNRPAutoReg - ok
21:25:46.0924 0x018c [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:25:46.0940 0x018c PNRPsvc - ok
21:25:46.0987 0x018c [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:25:47.0018 0x018c PolicyAgent - ok
21:25:47.0049 0x018c [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
21:25:47.0080 0x018c Power - ok
21:25:47.0096 0x018c [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:25:47.0127 0x018c PptpMiniport - ok
21:25:47.0143 0x018c [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:25:47.0174 0x018c Processor - ok
21:25:47.0205 0x018c [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:25:47.0252 0x018c ProfSvc - ok
21:25:47.0252 0x018c [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] ProtectedStorage C:\Windows\system32\lsass.exe
21:25:47.0268 0x018c ProtectedStorage - ok
21:25:47.0283 0x018c [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:25:47.0330 0x018c Psched - ok
21:25:47.0408 0x018c [ E7483BE1E7A6FB16FC9AD6B54F99DEE4, 40D35902C3EBBAEEDDF0149F22544E2F16A57CFAC3C3C23778F6C318937F3813 ] PSI_SVC_2 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
21:25:47.0439 0x018c PSI_SVC_2 - ok
21:25:47.0533 0x018c [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:25:47.0580 0x018c ql2300 - ok
21:25:47.0611 0x018c [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:25:47.0611 0x018c ql40xx - ok
21:25:47.0642 0x018c [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
21:25:47.0673 0x018c QWAVE - ok
21:25:47.0689 0x018c [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:25:47.0704 0x018c QWAVEdrv - ok
21:25:47.0782 0x018c [ 8F97D374AD1857E1EED85A79F29A1D3D, 4B2D1DBB60C0890E3CB497F534D8DE74952AF8774579B62B0F4ED14912CA583C ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
21:25:47.0798 0x018c RapiMgr - ok
21:25:47.0814 0x018c [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:25:47.0860 0x018c RasAcd - ok
21:25:47.0907 0x018c [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:25:47.0954 0x018c RasAgileVpn - ok
21:25:47.0985 0x018c [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
21:25:48.0032 0x018c RasAuto - ok
21:25:48.0063 0x018c [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:25:48.0094 0x018c Rasl2tp - ok
21:25:48.0141 0x018c [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
21:25:48.0172 0x018c RasMan - ok
21:25:48.0188 0x018c [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:25:48.0219 0x018c RasPppoe - ok
21:25:48.0235 0x018c [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:25:48.0266 0x018c RasSstp - ok
21:25:48.0313 0x018c [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:25:48.0360 0x018c rdbss - ok
21:25:48.0375 0x018c [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:25:48.0391 0x018c rdpbus - ok
21:25:48.0422 0x018c [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:25:48.0453 0x018c RDPCDD - ok
21:25:48.0469 0x018c [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:25:48.0484 0x018c RDPENCDD - ok
21:25:48.0500 0x018c [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:25:48.0516 0x018c RDPREFMP - ok
21:25:48.0562 0x018c [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:25:48.0594 0x018c RdpVideoMiniport - ok
21:25:48.0640 0x018c [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:25:48.0687 0x018c RDPWD - ok
21:25:48.0718 0x018c [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:25:48.0750 0x018c rdyboost - ok
21:25:48.0843 0x018c [ A0FF419B61AE47E26ADF3BB15DB4F2FE, 974FF9751D123E212BD3CE8DAE70D4BCCC988A01431A1BD91A532849E492BBD8 ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
21:25:48.0874 0x018c RealNetworks Downloader Resolver Service - ok
21:25:48.0906 0x018c [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:25:48.0984 0x018c RemoteAccess - ok
21:25:49.0030 0x018c [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:25:49.0077 0x018c RemoteRegistry - ok
21:25:49.0108 0x018c [ 564297827D213F52C7A3A2FF749568CA, B09A78D3B3F0BF47818BBEEDEF73BD6ACB9C5E367592BB90C85FD262BE521876 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
21:25:49.0186 0x018c ROOTMODEM - ok
21:25:49.0218 0x018c [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:25:49.0249 0x018c RpcEptMapper - ok
21:25:49.0264 0x018c [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
21:25:49.0280 0x018c RpcLocator - ok
21:25:49.0327 0x018c [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
21:25:49.0342 0x018c RpcSs - ok
21:25:49.0405 0x018c [ 6A7360E36CBD636972AEEF0DD292A946, 08A0DE7819D781B082E2D1A8961B675501F56F62680B0C7117EC547B4A5CB10A ] RsFx0105 C:\Windows\system32\DRIVERS\RsFx0105.sys
21:25:49.0436 0x018c RsFx0105 - ok
21:25:49.0452 0x018c [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:25:49.0483 0x018c rspndr - ok
21:25:49.0545 0x018c [ BCB84B430A92AE31940870DF304AE659, 19851270FCB35F958ACE00FA835B44BF31BFE52E0AF8EACC161B217756B6B769 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
21:25:49.0576 0x018c RTL8167 - ok
21:25:49.0592 0x018c [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] SamSs C:\Windows\system32\lsass.exe
21:25:49.0608 0x018c SamSs - ok
21:25:49.0654 0x018c [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:25:49.0686 0x018c sbp2port - ok
21:25:49.0701 0x018c [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:25:49.0717 0x018c SCardSvr - ok
21:25:49.0732 0x018c [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:25:49.0764 0x018c scfilter - ok
21:25:49.0873 0x018c [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
21:25:49.0951 0x018c Schedule - ok
21:25:49.0998 0x018c [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:25:50.0060 0x018c SCPolicySvc - ok
21:25:50.0154 0x018c [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:25:50.0200 0x018c SDRSVC - ok
21:25:50.0216 0x018c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:25:50.0247 0x018c secdrv - ok
21:25:50.0263 0x018c [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
21:25:50.0310 0x018c seclogon - ok
21:25:50.0341 0x018c [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\system32\sens.dll
21:25:50.0403 0x018c SENS - ok
21:25:50.0419 0x018c [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:25:50.0481 0x018c SensrSvc - ok
21:25:50.0497 0x018c [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:25:50.0528 0x018c Serenum - ok
21:25:50.0544 0x018c [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:25:50.0590 0x018c Serial - ok
21:25:50.0606 0x018c [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:25:50.0622 0x018c sermouse - ok
21:25:50.0684 0x018c [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
21:25:50.0731 0x018c SessionEnv - ok
21:25:50.0762 0x018c [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:25:50.0809 0x018c sffdisk - ok
21:25:50.0824 0x018c [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:25:50.0856 0x018c sffp_mmc - ok
21:25:50.0871 0x018c [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:25:50.0887 0x018c sffp_sd - ok
21:25:50.0902 0x018c [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:25:50.0902 0x018c sfloppy - ok
21:25:50.0934 0x018c [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:25:50.0980 0x018c SharedAccess - ok
21:25:51.0012 0x018c [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:25:51.0043 0x018c ShellHWDetection - ok
21:25:51.0058 0x018c [ 3EAD8E1668CE42A0AFE41D56E7157BCF, 90A1AA6372356046B28C079954458F42849779FFC48C93AF0549A7673B276EB3 ] silabenm C:\Windows\system32\DRIVERS\silabenm.sys
21:25:51.0121 0x018c silabenm - ok
21:25:51.0168 0x018c [ F5C9A3F239BCE2F588A5A6F86B2A4003, CE8614AA50D77960AC44E14BD6B7E5EDC5A917C589D19EF55289635B3ECEF392 ] silabser C:\Windows\system32\DRIVERS\silabser.sys
21:25:51.0199 0x018c silabser - ok
21:25:51.0214 0x018c [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:25:51.0230 0x018c sisagp - ok
21:25:51.0246 0x018c [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:25:51.0261 0x018c SiSRaid2 - ok
21:25:51.0277 0x018c [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:25:51.0277 0x018c SiSRaid4 - ok
21:25:51.0402 0x018c [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:25:51.0433 0x018c SkypeUpdate - ok
21:25:51.0480 0x018c [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:25:51.0511 0x018c Smb - ok
21:25:51.0542 0x018c [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:25:51.0542 0x018c SNMPTRAP - ok
21:25:51.0558 0x018c [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
21:25:51.0573 0x018c spldr - ok
21:25:51.0604 0x018c [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
21:25:51.0682 0x018c Spooler - ok
21:25:51.0823 0x018c [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
21:25:51.0979 0x018c sppsvc - ok
21:25:52.0026 0x018c [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:25:52.0057 0x018c sppuinotify - ok
21:25:52.0150 0x018c [ A892134C28777978ECDE8283DC57AC0F, 00D3663C38C82AC8EFF1E2731E7BCD1F3F16B126DDF7FC0DC88C4A5136F05D2D ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
21:25:52.0166 0x018c SQLAgent$SQLEXPRESS - ok
21:25:52.0244 0x018c [ 10D936DCED9EACD1A1B3FCDDA6D7A4EB, EE66162AEAF6A583A04BB5AF1220318C9ADD3A62987CDCEE0505C6FF37AB30FF ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:25:52.0260 0x018c SQLBrowser - ok
21:25:52.0322 0x018c [ 90A07229992B24FC4C419D56E58CF075, 7B3D3ACBDFB5FCC2B73E166DCD594F9F193A24EB8937755FD684338811028846 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:25:52.0369 0x018c SQLWriter - ok
21:25:52.0416 0x018c [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:25:52.0494 0x018c srv - ok
21:25:52.0540 0x018c [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:25:52.0587 0x018c srv2 - ok
21:25:52.0603 0x018c [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:25:52.0634 0x018c srvnet - ok
21:25:52.0681 0x018c [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:25:52.0790 0x018c SSDPSRV - ok
21:25:52.0852 0x018c [ EF3458337D7341A05169CEFC73709264, C9D0AE966CFA02F7B72586C2A6E2AFA9818C9F4856A4E9625B79BC5A886FC193 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
21:25:52.0852 0x018c SSPORT - detected UnsignedFile.Multi.Generic ( 1 )
21:25:55.0302 0x018c Detect skipped due to KSN trusted
21:25:55.0302 0x018c SSPORT - ok
21:25:55.0348 0x018c [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:25:55.0426 0x018c SstpSvc - ok
21:25:55.0489 0x018c [ D2C02234E3E87EA5FE420F045068099B, A5BFB342FFF50E6EAF5586A72BCBE56E9DA4F7AE612EDE7D20D77DB59472D3FE ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
21:25:55.0520 0x018c ssudmdm - ok
21:25:55.0582 0x018c [ 306521935042FC0A6988D528643619B3, 6FCC06EA71F5C83A8C3A8B7152E9FF48BCFBD35ED8C134A0879735F9135BB20C ] StarOpen C:\Windows\system32\drivers\StarOpen.sys
21:25:55.0598 0x018c StarOpen - detected UnsignedFile.Multi.Generic ( 1 )
21:25:58.0047 0x018c Detect skipped due to KSN trusted
21:25:58.0047 0x018c StarOpen - ok
21:25:58.0078 0x018c Steam Client Service - ok
21:25:58.0094 0x018c [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:25:58.0110 0x018c stexstor - ok
21:25:58.0141 0x018c [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
21:25:58.0172 0x018c StillCam - ok
21:25:58.0250 0x018c [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
21:25:58.0312 0x018c StiSvc - ok
21:25:58.0344 0x018c [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
21:25:58.0375 0x018c swenum - ok
21:25:58.0422 0x018c [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
21:25:58.0453 0x018c swprv - ok
21:25:58.0578 0x018c [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
21:25:58.0640 0x018c SysMain - ok
21:25:58.0671 0x018c [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
21:25:58.0687 0x018c TabletInputService - ok
21:25:58.0734 0x018c [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
21:25:58.0765 0x018c TapiSrv - ok
21:25:58.0780 0x018c [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
21:25:58.0812 0x018c TBS - ok
21:25:58.0890 0x018c [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:25:58.0921 0x018c Tcpip - ok
21:25:59.0014 0x018c [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:25:59.0061 0x018c TCPIP6 - ok
21:25:59.0077 0x018c [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:25:59.0124 0x018c tcpipreg - ok
21:25:59.0155 0x018c [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:25:59.0202 0x018c TDPIPE - ok
21:25:59.0248 0x018c [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:25:59.0280 0x018c TDTCP - ok
21:25:59.0311 0x018c [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:25:59.0342 0x018c tdx - ok
21:25:59.0358 0x018c [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:25:59.0373 0x018c TermDD - ok
21:25:59.0420 0x018c [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
21:25:59.0467 0x018c TermService - ok
21:25:59.0467 0x018c [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
21:25:59.0482 0x018c Themes - ok
21:25:59.0529 0x018c [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
21:25:59.0592 0x018c THREADORDER - ok
21:25:59.0623 0x018c [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
21:25:59.0654 0x018c TrkWks - ok
21:25:59.0732 0x018c [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:25:59.0779 0x018c TrustedInstaller - ok
21:25:59.0810 0x018c [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:25:59.0826 0x018c tssecsrv - ok
21:25:59.0872 0x018c [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:25:59.0919 0x018c TsUsbFlt - ok
21:25:59.0966 0x018c [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:26:00.0013 0x018c tunnel - ok
21:26:00.0044 0x018c [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:26:00.0044 0x018c uagp35 - ok
21:26:00.0106 0x018c [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:26:00.0153 0x018c udfs - ok
21:26:00.0184 0x018c [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:26:00.0184 0x018c UI0Detect - ok
21:26:00.0216 0x018c [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:26:00.0231 0x018c uliagpkx - ok
21:26:00.0262 0x018c [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:26:00.0294 0x018c umbus - ok
21:26:00.0325 0x018c [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:26:00.0340 0x018c UmPass - ok
21:26:00.0356 0x018c [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
21:26:00.0387 0x018c upnphost - ok
21:26:00.0418 0x018c [ A1977C315BF5691DA99235AA4A6907AF, 34B52FBA83F0E1C6B001D0AD1808B00152F731D18AAECC3C53B9918AA89BACEC ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:26:00.0481 0x018c usbaudio - ok
21:26:00.0496 0x018c [ 71D97F1A3CC47A56728F7A400A3F8295, ED3FDB73D8A98D9BAF702C0F5C7AD79D525D19DCE1487D442536913BEA5C7F15 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:26:00.0543 0x018c usbccgp - ok
21:26:00.0590 0x018c [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:26:00.0606 0x018c usbcir - ok
21:26:00.0637 0x018c [ C4FB8E7ADEA9B5CEEA885A1B504B7E40, 3E0AE5D236890452F2EA33504309A7E5FE49C567FF6F68A83A5987F05ED01BF0 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:26:00.0668 0x018c usbehci - ok
21:26:00.0730 0x018c [ 78BA6C76EAB8AEECD43C06E0E63FAD3D, 2F9D4E895B5943A770B72EF56865B05284CBC42ADD23B613D732C828A7412DDA ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
21:26:00.0746 0x018c usbfilter - ok
21:26:00.0793 0x018c [ 86AA95ACB611001E26CD2C0145F2225A, 584D26E8C9407A4E717DCBF2D3819DB441C2D455B5FDA6654FBA3794E19B4D51 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:26:00.0824 0x018c usbhub - ok
21:26:00.0840 0x018c [ DCDF9855145A14DFCA0AB32308871961, 9A21013AD032195D54CE655DE5363E78BB74CC55C40B889520B478892F4BA40A ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:26:00.0855 0x018c usbohci - ok
21:26:00.0902 0x018c [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:26:00.0933 0x018c usbprint - ok
21:26:00.0980 0x018c [ BE444D443F424E3146534BA98978D68A, 6EF9B6121EACE54AB7CA569549F1403A9E14DC33633D6F3A61A13B10878432AC ] usbrndis6 C:\Windows\system32\DRIVERS\usb80236.sys
21:26:01.0058 0x018c usbrndis6 - ok
21:26:01.0058 0x018c [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:26:01.0105 0x018c USBSTOR - ok
21:26:01.0120 0x018c [ 8E51D04175BAA14C4F79AA5F6D248770, 6CE2E45E272734A5D1D0C4CE2BD7B61C61C7538903E87203E376495D198EFBD0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:26:01.0136 0x018c usbuhci - ok
21:26:01.0167 0x018c [ AF77716205C97E902E6C5B78DECE2CCA, ED99EABED1C7F323EE2A76413E2B260F8EE1D76FDF1E60EE35136D060E756735 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
21:26:01.0198 0x018c usb_rndisx - ok
21:26:01.0230 0x018c [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
21:26:01.0261 0x018c UxSms - ok
21:26:01.0261 0x018c [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] VaultSvc C:\Windows\system32\lsass.exe
21:26:01.0276 0x018c VaultSvc - ok
21:26:01.0323 0x018c [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:26:01.0323 0x018c vdrvroot - ok
21:26:01.0386 0x018c [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
21:26:01.0432 0x018c vds - ok
21:26:01.0464 0x018c [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:26:01.0479 0x018c vga - ok
21:26:01.0495 0x018c [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:26:01.0510 0x018c VgaSave - ok
21:26:01.0542 0x018c [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:26:01.0557 0x018c vhdmp - ok
21:26:01.0588 0x018c [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:26:01.0588 0x018c viaagp - ok
21:26:01.0604 0x018c [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
21:26:01.0620 0x018c ViaC7 - ok
21:26:01.0635 0x018c [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
21:26:01.0651 0x018c viaide - ok
21:26:01.0651 0x018c [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:26:01.0666 0x018c volmgr - ok
21:26:01.0682 0x018c [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:26:01.0698 0x018c volmgrx - ok
21:26:01.0713 0x018c [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:26:01.0729 0x018c volsnap - ok
21:26:01.0744 0x018c [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:26:01.0760 0x018c vsmraid - ok
21:26:01.0838 0x018c [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
21:26:01.0916 0x018c VSS - ok
21:26:01.0916 0x018c [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:26:01.0947 0x018c vwifibus - ok
21:26:01.0978 0x018c [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
21:26:02.0025 0x018c W32Time - ok
21:26:02.0056 0x018c [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:26:02.0088 0x018c WacomPen - ok
21:26:02.0119 0x018c [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:26:02.0150 0x018c WANARP - ok
21:26:02.0150 0x018c [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:26:02.0166 0x018c Wanarpv6 - ok
21:26:02.0212 0x018c [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
21:26:02.0275 0x018c wbengine - ok
21:26:02.0306 0x018c [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:26:02.0322 0x018c WbioSrvc - ok
21:26:02.0384 0x018c [ 59E19BD13C3BDB857646B9E436BA27F7, CC84C607E15F5F29D93510387D5486BAF320BDAF79026A0BECE0D242F7B1DF3E ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
21:26:02.0431 0x018c WcesComm - ok
21:26:02.0462 0x018c [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:26:02.0509 0x018c wcncsvc - ok
21:26:02.0524 0x018c [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:26:02.0540 0x018c WcsPlugInService - ok
21:26:02.0556 0x018c [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:26:02.0571 0x018c Wd - ok
21:26:02.0618 0x018c [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:26:02.0634 0x018c Wdf01000 - ok
21:26:02.0649 0x018c [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:26:02.0696 0x018c WdiServiceHost - ok
21:26:02.0696 0x018c [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:26:02.0712 0x018c WdiSystemHost - ok
21:26:02.0743 0x018c [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
21:26:02.0774 0x018c WebClient - ok
21:26:02.0805 0x018c [ F56A25B240391620B6E31ACF656F2018, 38FEF5616E68FCAFF7B573611EEFEC1B330424BD39D88364E44C4C125FF7E235 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:26:02.0821 0x018c Wecsvc - ok
21:26:02.0836 0x018c [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:26:02.0883 0x018c wercplsupport - ok
21:26:02.0946 0x018c [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
21:26:03.0024 0x018c WerSvc - ok
21:26:03.0055 0x018c [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:26:03.0086 0x018c WfpLwf - ok
21:26:03.0102 0x018c [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:26:03.0102 0x018c WIMMount - ok
21:26:03.0195 0x018c [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:26:03.0304 0x018c WinDefend - ok
21:26:03.0320 0x018c WinHttpAutoProxySvc - ok
21:26:03.0382 0x018c [ 2E099C98A64F891DE47A28FB8B9455FC, 010C86E9F4B27C8780EB8E34F93634F063F5635F341C2DFB631ED8480DB4B619 ] WinisoCDBus C:\Windows\system32\drivers\WinisoCDBus.sys
21:26:03.0398 0x018c WinisoCDBus - ok
21:26:03.0460 0x018c [ 320B13F43726EB73B2D7AE8869AFAACE, 56E882AA2749F401C28EE3DE2D23088C479CDE54E4CD4FBCC18374F348332607 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:26:03.0492 0x018c Winmgmt - ok
21:26:03.0616 0x018c [ 895AD0D039FAAE12D4C25E028051344C, 49FCB06EF59846CAC665BCFA1D0B0CCB7A52B414FA80FE97438B5CE2AD60C31D ] WinRM C:\Windows\system32\WsmSvc.dll
21:26:03.0726 0x018c WinRM - ok
21:26:03.0772 0x018c [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:26:03.0788 0x018c WinUsb - ok
21:26:03.0819 0x018c [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:26:03.0882 0x018c Wlansvc - ok
21:26:03.0991 0x018c [ FB01D4AE207B9EFDBABFC55DC95C7E31, E0EFDBBE0BAC275230C8C1A053948C21BCF20B99B92E50939E95FFB9DC87F6BA ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:26:04.0069 0x018c wlidsvc - ok
21:26:04.0100 0x018c [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:26:04.0131 0x018c WmiAcpi - ok
21:26:04.0162 0x018c [ A1BCA34F741D285E8A7CD3F3E734BBBD, 0BD51632576ECDBF99560AD3F57B1A819C7216840818328C44C471471009AA8B ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:26:04.0194 0x018c wmiApSrv - ok
21:26:04.0303 0x018c [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:26:04.0381 0x018c WMPNetworkSvc - ok
21:26:04.0396 0x018c [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:26:04.0459 0x018c WPCSvc - ok
21:26:04.0506 0x018c [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:26:04.0584 0x018c WPDBusEnum - ok
21:26:04.0615 0x018c [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:26:04.0630 0x018c ws2ifsl - ok
21:26:04.0693 0x018c [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\system32\wscsvc.dll
21:26:04.0724 0x018c wscsvc - ok
21:26:04.0740 0x018c WSearch - ok
21:26:04.0880 0x018c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
21:26:04.0927 0x018c wuauserv - ok
21:26:04.0974 0x018c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:26:04.0989 0x018c WudfPf - ok
21:26:05.0020 0x018c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:26:05.0036 0x018c WUDFRd - ok
21:26:05.0083 0x018c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:26:05.0130 0x018c wudfsvc - ok
21:26:05.0161 0x018c [ 3C5E51C05BE9B56EAFF4E388C3AB25E4, 10D9FDEDAB1FB2E76D54661AFA5C1A6B1B0980525F38F5D061537077841C6AEE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:26:05.0208 0x018c WwanSvc - ok
21:26:05.0239 0x018c ================ Scan global ===============================
21:26:05.0286 0x018c [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
21:26:05.0332 0x018c [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
21:26:05.0364 0x018c [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
21:26:05.0395 0x018c [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
21:26:05.0426 0x018c [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
21:26:05.0426 0x018c [ Global ] - ok
21:26:05.0426 0x018c ================ Scan MBR ==================================
21:26:05.0426 0x018c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:26:05.0972 0x018c \Device\Harddisk0\DR0 - ok
21:26:05.0972 0x018c [ 3E3318301A6E144EC408FD8DB50F51D4 ] \Device\Harddisk1\DR1
21:26:06.0253 0x018c \Device\Harddisk1\DR1 - ok
21:26:06.0253 0x018c ================ Scan VBR ==================================
21:26:06.0268 0x018c [ C38957C3262F5FF102F310EA14B40700 ] \Device\Harddisk0\DR0\Partition1
21:26:06.0268 0x018c \Device\Harddisk0\DR0\Partition1 - ok
21:26:06.0268 0x018c [ 0067D08AB9C318BEBE6A2561CFCAC143 ] \Device\Harddisk1\DR1\Partition1
21:26:06.0284 0x018c \Device\Harddisk1\DR1\Partition1 - ok
21:26:06.0300 0x018c [ 0D590967600B46ACF33AF9A052D310E5 ] \Device\Harddisk1\DR1\Partition2
21:26:06.0300 0x018c \Device\Harddisk1\DR1\Partition2 - ok
21:26:06.0315 0x018c Waiting for KSN requests completion. In queue: 97
21:26:07.0329 0x018c Waiting for KSN requests completion. In queue: 97
21:26:08.0343 0x018c Waiting for KSN requests completion. In queue: 97
21:26:09.0420 0x018c Win FW state via NFP2: disabled
21:26:11.0962 0x018c ============================================================
21:26:11.0962 0x018c Scan finished
21:26:11.0962 0x018c ============================================================
21:26:11.0978 0x0584 Detected object count: 0
21:26:11.0978 0x0584 Actual detected object count: 0
Code:
ATTFilter
Ich hoffe wir sind einen Schritt weiter. Uwe Hallo M-K-B-D, eine zusättliche Info. Habe Heute ein Phishing-Mail bekommen in der vorgegeben wurde mein Amazon-Konto sei gehackt worden und es wären Bestellungen an eine neue Versandadresse verschickt worden (soweit ich das im Mailvorschaufenster lesen konnte). Das ganze war schlecht gemacht und ich habe natürlich nicht auf den angegebenen Link geklickt sonder die Mail gleich gelöscht. Sicherheitshalber habe ich telefonisch mit Amazon geklärt, dass mit meinem Amazon-Konto alles in Ordnung ist. Uwe |
|
15.10.2013, 14:12
| #17 |
| /// TB-Ausbilder   | Lästige Werbepopups wenn man mit der Maus über farbig unterstrichene Wörter fährt Servus,
__________________lösche bitte die folgende Datei per Hand: C:\Installationsfähige Software und sonstige Downloads\VLC Mediaplayer\vlc-2.0.0-win32.exe Diese Datei ist mit Adware infiziert.  Lade dir  TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.
Wenn du keine Probleme mehr hast, dann sind wir hier fertig. Deine Logdateien sind sauber.  Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern. Schritt 1 Die Reihenfolge ist hier entscheidend.
Schritt 2 Abschließend habe ich noch ein paar Tipps zur Absicherung deines Systems. Ich kann gar nicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von Registry Cleanern. Diese Schaden deinem System mehr als dass sie helfen. Hier ein englischer Link: Miekemoes Blogspot ( MVP ) Was du vermeiden solltest:
Nun bleibt mir nur noch dir viel Spaß beim sicheren Surfen zu wünschen... ... und vielleicht möchtest du ja das Trojaner-Board unterstützen? Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
15.10.2013, 21:17
| #18 |
| | Lästige Werbepopups wenn man mit der Maus über farbig unterstrichene Wörter fährt Hallo M-K-D-B,
__________________erst mal vielen Dank. ich bin dabei die Schritte Stück für Stück abzuarbeiten. Habe aber ein Problem mit Secunia. Es bleiben 3 Programme (Oracle Virtuel Box 4.x; Oracle Virtuel Box 4.x (64-Bit); VLC Media Player) übrig die ich bisher nicht aktualisieren konnte. Ich vermute, dass es sich dabei um Reste alter Installationen handelt. Ich bleibe jedenfalls dran. ICh melde mich hier nochmal wenn ich das Problem im Griff habe. Uwe |
|
16.10.2013, 15:40
| #19 |
| /// TB-Ausbilder | Lästige Werbepopups wenn man mit der Maus über farbig unterstrichene Wörter fährt Servus, ggf. musst du neue Versionen der von dir genannten Programme manuell runterladen und installieren. Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank!  Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu Lästige Werbepopups wenn man mit der Maus über farbig unterstrichene Wörter fährt |
| 32 bit, abschalten, adblock, aktualisierung, avira, deaktivieren, eingeschränkt, festgestellt, firefox, free, funktionieren, funktioniert, home, ie 10, installieren, javascript, langsam, maus, natürlich, nichts, problem, ratlos, recht, stimmen, unterstrichen, virus, virus?, wichtig, win |
Linear-Darstellung
