| |
| |||||||
Log-Analyse und Auswertung: Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im InternetWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
31.03.2014, 14:47
| #1 |
 |  Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hallo, ich habe seit einigen Tagen das Problem, dass sich mein Laptop verselbstständigt. Dh. die eingebaute Webcam ging von alleine an, ich bekam Tage später einen Anruf auf den Rechner (!?) und der Rechner hielt alle paar Sekunden an wenn ich im Internet war (der Curser bewegte sich auch nicht mehr). Malware Protection hat 18 Infektionen gefunden, ich habe schon mal ein paar Logfiles erstellt, mit FRST und malware protector: malware: Code:
ATTFilter
FRST: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by Hasufel (administrator) on HASUFEL-PC on 31-03-2014 15:06:45
Running from C:\Users\Hasufel\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
() C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\Windows\system32\PnkBstrA.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
() C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
() C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
() C:\Program Files\P4P\P4P.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
() C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynAsus.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Nico Mak Computing) C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [7651328 2008-07-15] (ASUS)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6183456 2008-06-13] (Realtek Semiconductor)
HKLM\...\Run: [CognizanceTS] - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll [17920 2003-12-21] (Cognizance Corporation)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2008-06-24] (ASUS)
HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2012-07-16] (ASUS)
HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [47672 2012-07-16] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-11-16] (Synaptics, Inc.)
HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\MountPoints2: I - I:\LaunchU3.exe -a
HKU\S-1-5-21-4087618416-3944343460-3664847585-1001\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
AppInit_DLLs: APSHook.dll => C:\Windows\system32\APSHook.dll [56832 2006-07-12] (Cognizance Corporation)
Lsa: [Notification Packages] scecli ASWLNPkg
==================== Internet (Whitelisted) ====================
ProxyServer: 192.168.1.2:3128
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.asus.com
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-20]
Chrome:
=======
CHR HomePage:
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-08-05]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-04-20]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-04-20]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-08-05]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-27]
CHR Extension: (Google Wallet) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]
CHR Extension: (Anti-Banner) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-08-05]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Hasufel\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-27]
========================== Services (Whitelisted) =================
S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation)
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] ()
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-03-07] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()
==================== Drivers (Whitelisted) ====================
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2013-03-28] ()
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.)
R3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice.sys [474624 2007-09-06] (eMPIA Technology, Inc.)
R3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter.sys [206464 2008-02-05] (eMPIA Technology Inc.)
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] ()
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. )
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-12-15] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-12-15] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-23] (Kaspersky Lab ZAO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2013-03-28] ()
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan.sys [6528 2008-01-31] (eMPIA Technology, Inc.)
S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-23] (Kaspersky Lab ZAO)
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-31 15:06 - 2014-03-31 15:07 - 00023703 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-03-31 15:05 - 2014-03-31 15:06 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:56 - 2014-03-31 14:56 - 00008340 _____ () C:\Users\Hasufel\Desktop\log.xml
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:34 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-27 20:59 - 2014-03-31 11:32 - 00000644 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-03-27 20:59 - 2014-03-31 11:31 - 00000616 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-03-27 20:59 - 2014-03-31 11:31 - 00000446 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-03-27 20:59 - 2014-03-27 20:59 - 00001965 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-27 20:59 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:59 - 2013-09-20 11:49 - 00018968 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean.exe
2014-03-27 20:50 - 2014-03-27 20:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-13 13:55 - 2014-02-23 07:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 13:55 - 2014-02-23 07:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 13:55 - 2014-02-23 07:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 13:55 - 2014-02-23 07:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 13:55 - 2014-02-23 07:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 13:55 - 2014-02-23 07:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 13:55 - 2014-02-23 07:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-13 13:55 - 2014-02-23 07:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 13:55 - 2014-02-23 07:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-13 13:55 - 2014-02-23 07:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 13:55 - 2014-02-23 07:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-13 13:55 - 2014-02-23 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 11:05 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 11:05 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 11:05 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 11:05 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-07 20:32 - 2014-03-07 20:43 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
==================== One Month Modified Files and Folders =======
2014-03-31 15:07 - 2014-03-31 15:06 - 00023703 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-03-31 15:06 - 2014-03-31 15:05 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:58 - 2012-08-05 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-31 14:56 - 2014-03-31 14:56 - 00008340 _____ () C:\Users\Hasufel\Desktop\log.xml
2014-03-31 14:41 - 2012-07-27 14:56 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-31 14:39 - 2012-07-17 02:09 - 01990278 _____ () C:\Windows\WindowsUpdate.log
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-31 14:20 - 2012-08-05 21:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
2014-03-31 14:11 - 2012-07-16 19:39 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-03-31 13:31 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-31 13:31 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-31 12:10 - 2013-02-03 18:50 - 00000000 ____D () C:\Windows\pss
2014-03-31 11:41 - 2012-07-27 14:56 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-31 11:39 - 2006-11-02 12:33 - 01566088 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-31 11:32 - 2014-03-27 20:59 - 00000644 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-03-31 11:31 - 2014-03-27 20:59 - 00000616 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-03-31 11:31 - 2014-03-27 20:59 - 00000446 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-03-31 11:31 - 2012-10-07 20:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-03-31 11:31 - 2012-07-16 18:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-31 11:31 - 2008-01-21 04:47 - 00071148 _____ () C:\Windows\PFRO.log
2014-03-31 11:31 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-28 00:57 - 2012-07-17 02:09 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-03-28 00:57 - 2006-11-02 15:01 - 00032514 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-27 21:06 - 2012-10-07 20:17 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-03-27 20:59 - 2014-03-27 20:59 - 00001965 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-03-27 20:59 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:52 - 2014-03-27 20:50 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-27 20:26 - 2013-03-27 14:17 - 00000000 ____D () C:\Users\Hasufel\Documents\Eigene Scans
2014-03-24 16:19 - 2012-08-05 21:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
2014-03-23 15:51 - 2012-07-16 21:54 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-03-19 17:50 - 2013-10-04 16:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 17:48 - 2006-11-02 12:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-03-16 20:37 - 2012-08-05 21:05 - 00002051 _____ () C:\Users\Hasufel\Desktop\Google Chrome.lnk
2014-03-15 09:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-03-15 09:41 - 2006-11-02 14:47 - 01737456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 09:38 - 2012-07-20 22:48 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 13:57 - 2012-07-17 12:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-13 13:53 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-12 22:58 - 2012-07-24 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 22:58 - 2012-07-24 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-07 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-03-07 20:43 - 2014-03-07 20:32 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-07 19:08 - 2013-03-29 15:01 - 00189248 _____ () C:\Windows\system32\PnkBstrB.exe
2014-03-07 19:08 - 2013-03-29 15:01 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 19:08 - 2012-08-25 19:57 - 00000000 ____D () C:\Program Files\Ubisoft
2014-03-07 19:08 - 2012-07-16 18:30 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-07 19:03 - 2012-09-03 11:08 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\Ubisoft Game Launcher
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
2014-03-06 14:51 - 2012-07-16 18:54 - 00000000 ____D () C:\ProgramData\ASUS
Some content of TEMP:
====================
C:\Users\Hasufel\AppData\Local\Temp\ose00000.exe
C:\Users\Hasufel\AppData\Local\Temp\_is4FE3.exe
C:\Users\Hasufel\AppData\Local\Temp\_is685.exe
C:\Users\Hasufel\AppData\Local\Temp\_isB5B7.exe
C:\Users\Hasufel\AppData\Local\Temp\_isC4E4.exe
C:\Users\Hasufel\AppData\Local\Temp\_isCC05.exe
C:\Users\Hasufel\AppData\Local\Temp\_isEAAC.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-31 11:39
==================== End Of Log ============================
Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014 01
Ran by Hasufel at 2014-03-31 15:07:45
Running from C:\Users\Hasufel\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Kaspersky Internet Security (Enabled - Up to date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky Internet Security (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Kaspersky Internet Security (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
==================== Installed Programs ======================
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
4500_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
Adobe Acrobat 8 Professional - English, Français, Deutsch (Version: 8.1.0 - Adobe Systems) Hidden
Adobe After Effects CS3 (Version: 8 - Adobe Systems Incorporated) Hidden
Adobe After Effects CS3 Presets (Version: 8 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.5.0.1060 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.5.0.1060 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe BridgeTalk Plugin CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Recommended Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Extra Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Contribute CS3 (Version: 4.1 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection hinzufügen oder entfernen (HKLM\...\Adobe_67a7fb1e97aa14ee9ef0950eb6fd757) (Version: 1.0 - Adobe Systems Incorporated)
Adobe Default Language CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS3 (Version: 9 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 Codecs (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS3 (Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS3 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS3 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (HKLM\...\{BC4F8E84-5E29-49EC-B4E7-E6F9CB50986C}) (Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Flash Video Encoder (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fonts All (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS3 (Version: 13.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 (Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 Icon Handler (Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe MotionPicture Color Files (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 Functional Content (Version: 8 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 Third Party Content (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Reader 8.1.2 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A81200000003}) (Version: 8.1.2 - Adobe Systems Incorporated)
Adobe Reader X (10.1.3) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Adobe Setup (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS3 (Version: 0.1 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 Codecs (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Server (Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Video Profiles (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WAS CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP DVA Panels CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Agere Systems HDA Modem (HKLM\...\Agere Systems Soft Modem) (Version: - Agere Systems)
AHV content for Acrobat and Flash (Version: 1 - Adobe Systems Incorporated) Hidden
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed Brotherhood (HKLM\...\{BE4BA698-8533-4F77-9559-C7F3F78C0B05}) (Version: 1.03 - Ubisoft)
Assassin's Creed II (HKLM\...\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}) (Version: 1.01 - Ubisoft)
Assassin's Creed Revelations 1.03 (HKLM\...\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}) (Version: 1.03 - Ubisoft)
Assassin's Creed(R) III v1.06 (HKLM\...\{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}) (Version: 1.06 - Ubisoft)
ASUS CopyProtect (HKLM\...\{6B77A7F6-DD63-4F13-A6FF-83137A5AC354}) (Version: 1.0.0007 - ASUS)
ASUS LifeFrame3 (HKLM\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.9 - ASUS)
ASUS Live Update (HKLM\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.6 - ASUS)
ASUS MultiFrame (HKLM\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0017 - )
ASUS Power4Gear eXtreme (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.0.19 - ASUS)
ASUS Security Protect Manager (HKLM\...\{D8D4AF9A-6ADE-4B14-A7F5-BA858792729E}) (Version: 2.1.0.880.20 - ASUSTeK Computer Inc.)
ASUS SmartLogon (HKLM\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0005 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0021 - ASUS)
ASUS Virtual Camera (HKLM\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.11 - ASUS)
Asus_Camera_ScreenSaver (HKLM\...\Asus_Camera_ScreenSaver) (Version: 2.0.0008 - ASUS)
ATK Generic Function Service (HKLM\...\{D3D54F3E-C5C3-443D-978F-87A72E5616E8}) (Version: 1.00.0008 - ATK)
ATK Hotkey (HKLM\...\{7C05592D-424B-46CB-B505-E0013E8E75C9}) (Version: 1.0.0038 - ASUS)
ATK Media (HKLM\...\{D1E5870E-E3E5-4475-98A6-ADD614524ADF}) (Version: 2.0.0000 - ASUS)
ATKOSD2 (HKLM\...\{3B05F2FB-745B-4012-ADF2-439F36B2E70B}) (Version: 7.0.0001 - ASUS)
AuthenTec Fingerprint Sensor Minimum Install (Version: 7.8.1 - AuthenTec, Inc.) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_HPSU (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden
ChkMail (HKLM\...\{250F0996-1830-40C8-9B1D-6874D808DD95}) (Version: 2.0.0.16 - ChkMail)
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{92C42EDD-6524-4577-B2EB-6C68C63B6D4A}) (Version: - Microsoft)
Destination Component (Version: 100.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 100.0.190.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DocMgr (Version: 100.0.201.000 - Hewlett-Packard) Hidden
DocProc (Version: 11.0.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Dolby Control Center (HKLM\...\{DE66EFAD-B9CC-4FD4-9157-6C18E5100161}) (Version: 1.1.0503 - Dolby)
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Express Gate (HKLM\...\{27D51A76-371D-48B6-B06E-4137A15B7583}) (Version: 0.8.0.3 - Ihr Firmenname)
Extensis Suitcase 11.0.1 (HKLM\...\{7451C9B5-3E10-4E59-AD37-AB7438D84288}) (Version: 11.0.1 - Extensis)
Fax (Version: 100.0.187.000 - Hewlett-Packard) Hidden
FileZilla Client 3.7.3 (HKLM\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
Free Studio version 5.7.4.918 (HKLM\...\Free Studio_is1) (Version: 5.7.4.918 - DVDVideoSoft Ltd.)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP Document Manager 1.0 (HKLM\...\HP Document Manager) (Version: 1.0 - HP)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Officejet J4500 Series (HKLM\...\{CD0773D5-C18E-495c-B39B-21A96415EDD5}) (Version: 1.0 - HP)
HP Smart Web Printing (HKLM\...\HP Smart Web Printing) (Version: 3.5 - HP)
HP Solution Center 10.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 10.0 - HP)
HP Update (HKLM\...\{11B83AD3-7A46-4C2E-A568-9505981D4C6F}) (Version: 4.000.007.003 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
HPProductAssistant (Version: 100.0.170.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 100.0.170.000 - Hewlett-Packard) Hidden
ITECIR (HKLM\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.00.0000 - ITE)
iTunes (HKLM\...\{E05D82D8-FE70-4228-B073-B0C07FE27595}) (Version: 11.1.1.11 - Apple Inc.)
J4500 (Version: 50.0.165.000 - Ihr Firmenname) Hidden
Jacquie Lawson Alpine Advent Calendar (HKLM\...\JLAdventCalendarAlpine2012) (Version: 1.0.2 - MicroCourt Limited)
Jacquie Lawson Alpine Advent Calendar (Version: 1.0.2 - MicroCourt Limited) Hidden
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Kaspersky Internet Security 2013 (HKLM\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab)
Kaspersky Internet Security 2013 (Version: 13.0.1.4190 - Kaspersky Lab) Hidden
MarketResearch (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 25.0.1 (x86 de) (HKLM\...\Mozilla Firefox 25.0.1 (x86 de)) (Version: 25.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 25.0.1 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NB Probe (HKLM\...\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}) (Version: - )
NVIDIA 3D Vision Treiber 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 310.70 - NVIDIA Corporation)
NVIDIA Grafiktreiber 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 310.70 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.95.599 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.12.1031 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1070 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 310.70 (Version: 310.70 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
OCR Software by I.R.I.S. 10.0 (HKLM\...\HPOCR) (Version: 10.0 - HP)
P4P (HKLM\...\{FC3D290D-79BE-44B7-ABF9-FDD110925930}) (Version: 1.0.0.17 - P4P)
PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5645 - Realtek Semiconductor Corp.)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.01 (HKLM\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.55.01 - )
Risen (HKLM\...\{155F4A0E-76ED-45A2-91FB-FF2A2133C31A}) (Version: 1.00.0000 - Deep Silver)
Sacred 2 - Elite (HKLM\...\{2BB047B7-E613-4686-BE0C-E63BB26BE121}) (Version: 1.00.0000 - )
Sacred 2 (HKLM\...\{1023383E-D9F6-478C-A965-23A4657B3C9A}) (Version: 2.0.2.0 - Deep Silver)
Scan (Version: 10.1.0.0 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP)
SmartWebPrintingOC (Version: 100.0.189.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Status (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 10.1.6.0 - Synaptics)
Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TrayApp (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2878227) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5D357893-40BA-4323-86BA-D97C66CD72F4}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version: - Microsoft)
USB2.0 1.3M UVC WebCam (HKLM\...\USB2.0 1.3M UVC WebCam) (Version: - )
WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 5.2.0.500 - Broadcom Corporation)
WinFlash (HKLM\...\{DE10AB76-4756-4913-BE25-55D1C1051F9A}) (Version: - )
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
WinZip Malware Protector (HKLM\...\WinZip Malware Protector_is1) (Version: 2.1.1000.10798 - WinZip International LLC)
Wireless Console 2 (HKLM\...\{83F73CB1-7705-49D1-9852-84D839CA2A45}) (Version: 2.0.10 - ATK)
==================== Restore Points =========================
18-03-2014 12:30:15 Windows Update
19-03-2014 14:07:01 Geplanter Prüfpunkt
19-03-2014 15:48:06 Windows Update
23-03-2014 13:57:36 Windows Update
24-03-2014 15:35:05 Geplanter Prüfpunkt
27-03-2014 22:43:41 Geplanter Prüfpunkt
31-03-2014 09:39:37 Windows Update
==================== Hosts content: ==========================
2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {010F0C3A-F019-4B2E-96C1-AD25FD7E9FAA} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {0C4872EC-7955-438A-B9F6-FBAA8015DD29} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {0F78C8A7-B54B-4E49-A6BC-7488597F3874} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {13485182-D459-4625-A6C4-6D4089A87EBF} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2008-01-21] (Microsoft Corporation)
Task: {1818478A-EEBE-48C7-8B5D-0B8FD080CA62} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {6A284455-E32F-44CD-AF7C-A09222D02009} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {6BFF4512-D900-43DC-96BF-2C0700041F57} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Hasufel => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-10] (Microsoft Corporation)
Task: {6F8D0D18-8DF0-4264-A845-2D93A5DBEB52} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {757C8EE9-A6F1-4F3A-B5EB-C4E7128C6AE5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {81F93B87-E9F9-4689-BAF0-18019B621902} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {8466B438-95EE-45E6-A925-DC4F41E5236B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {A495236B-243E-4BC2-A630-AF66BC0F8D46} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe [2013-07-15] (Nico Mak Computing)
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {BE788D82-3534-45A5-B1A4-BAD0A17342FE} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files\ASUS\SmartLogon\sensorsrv.exe [2008-06-17] (ASUS)
Task: {C53F87A7-7209-4A1A-90B5-77AF388CBEDA} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {C71BE890-7876-4395-BCB5-5B99F023FE8E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-07-27] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job => C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
==================== Loaded Modules (whitelisted) =============
2007-10-02 21:53 - 2007-10-02 21:53 - 00094208 _____ () C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
2012-07-16 18:30 - 2007-08-08 00:08 - 00094208 _____ () C:\Program Files\ATKGFNEX\GFNEXSrv.exe
2012-07-16 22:32 - 2007-05-11 01:31 - 00921600 _____ () C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdistRes.DEU
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2012-08-17 21:39 - 2013-04-20 20:44 - 01310136 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll
2013-03-29 15:01 - 2014-03-07 19:08 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2008-04-10 11:25 - 2008-04-10 11:25 - 00126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2014-03-27 20:59 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-03-27 20:59 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2012-07-16 18:54 - 2007-11-30 11:20 - 00051768 _____ () C:\Program Files\ASUS\ASUS Live Update\ALU.exe
2007-11-04 19:48 - 2007-11-04 19:48 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
2008-01-11 22:40 - 2008-01-11 22:40 - 00098304 _____ () C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
2007-11-12 15:41 - 2007-11-12 15:41 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\MsgTran.dll
2004-05-27 18:13 - 2004-05-27 18:13 - 00057344 _____ () C:\Program Files\ASUS\ATK Hotkey\CMSSC.dll
2012-07-16 18:39 - 2007-07-05 16:53 - 01040384 _____ () C:\Program Files\Wireless Console 2\wcourier.exe
2007-07-09 22:48 - 2007-07-09 22:48 - 00009216 _____ () C:\Program Files\ASUS\Splendid\GLCDdll.dll
2012-07-16 18:55 - 2008-01-25 18:32 - 00778240 _____ () C:\Program Files\P4P\P4P.exe
2012-08-17 21:38 - 2012-08-17 21:38 - 00479160 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
2012-07-16 18:54 - 2007-08-03 12:24 - 00125496 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
2012-07-16 18:54 - 2007-09-14 10:00 - 00147456 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdiskex.dll
2012-07-16 18:54 - 2003-11-28 02:11 - 00135168 _____ () C:\Program Files\ASUS\NB Probe\SPM\spos.dll
2012-07-16 18:54 - 2005-08-29 15:24 - 00081920 _____ () C:\Program Files\ASUS\NB Probe\SPM\spnbacpi.dll
2012-07-16 18:54 - 2003-09-09 16:08 - 00049152 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdmi.dll
2012-07-16 18:54 - 2006-04-04 10:24 - 00036864 _____ () C:\Program Files\ASUS\NB Probe\SPM\ghadmi.dll
2012-07-16 18:54 - 2005-04-07 19:25 - 00077824 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmemory.dll
2014-03-27 20:59 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2007-08-15 11:20 - 2007-08-15 11:20 - 00106496 _____ () C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
2008-01-23 10:51 - 2008-01-23 10:51 - 00151552 _____ () C:\Program Files\ASUS\ATK Hotkey\WDC.exe
2014-03-27 20:59 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-03-27 20:59 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 00051016 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 01647432 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 13637448 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 04061000 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-16 20:37 - 2014-03-15 02:50 - 00394568 _____ () C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-31 14:34 - 2013-02-28 16:53 - 00886272 _____ () C:\Program Files\WinZip Malware Protector\System.Data.SQLite.dll
2014-03-31 14:34 - 2013-07-15 16:53 - 01717936 _____ () C:\Program Files\WinZip Malware Protector\aspsys.dll
2014-03-31 14:34 - 2013-02-28 16:53 - 00168448 _____ () C:\Program Files\WinZip Malware Protector\UNRAR.DLL
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Suitcase 11.0.lnk => C:\Windows\pss\Suitcase 11.0.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Hasufel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^JL Alpine Advent Calendar.lnk => C:\Windows\pss\JL Alpine Advent Calendar.lnk.Startup
MSCONFIG\startupreg: Adobe_ID0EYTHM => C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
MSCONFIG\startupreg: Google Update => "C:\Users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: PowerForPhone => "C:\Program Files\P4P\P4P.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Skytel => Skytel.exe
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11733210
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11733210
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11717610
Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11717610
Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11702009
Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11702009
Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (03/19/2014 09:56:51 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11686409
System errors:
=============
Error: (03/31/2014 11:35:56 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032
Error: (03/31/2014 11:33:49 AM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service
Error: (03/31/2014 11:32:15 AM) (Source: Service Control Manager) (User: )
Description: Spybot-S&D 2 Scanner Service%%1053
Error: (03/31/2014 11:32:15 AM) (Source: Service Control Manager) (User: )
Description: 30000Spybot-S&D 2 Scanner Service
Error: (03/27/2014 08:59:44 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032
Error: (03/27/2014 08:57:19 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service
Error: (03/27/2014 08:55:45 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 27.03.2014 um 19:53:25 unerwartet heruntergefahren.
Error: (03/27/2014 08:06:09 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032
Error: (03/27/2014 08:04:49 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service
Error: (03/25/2014 02:34:24 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT-AUTORITÄT)
Description: 0x80070032
Microsoft Office Sessions:
=========================
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11733210
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11733210
Error: (03/19/2014 09:57:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11717610
Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11717610
Error: (03/19/2014 09:57:23 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11702009
Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 11702009
Error: (03/19/2014 09:57:07 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (03/19/2014 09:56:51 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 11686409
CodeIntegrity Errors:
===================================
Date: 2014-03-31 15:07:26.519
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:26.376
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:26.233
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:26.091
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kneps.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:25.937
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:25.793
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:25.651
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:25.419
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\kltdi.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:25.200
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\klmouflt.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-31 15:07:25.045
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\klmouflt.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 65%
Total physical RAM: 3070.17 MB
Available physical RAM: 1046.01 MB
Total Pagefile: 6341.25 MB
Available Pagefile: 4020.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1893.37 MB
==================== Drives ================================
Drive c: (VistaOS) (Fixed) (Total:149.04 GB) (Free:35.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:149.04 GB) (Free:44.01 GB) NTFS
Drive e: (DATA) (Fixed) (Total:139.28 GB) (Free:73.57 GB) NTFS
Drive f: () (Fixed) (Total:149.04 GB) (Free:33.34 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 97646C29)
Partition 1: (Not Active) - (Size=10 GB) - (Type=1C)
Partition 2: (Active) - (Size=149 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=139 GB) - (Type=OF Extended)
========================================================
Disk: 1 (Size: 298 GB) (Disk ID: DF3905D1)
Partition: GPT Partition Type.
==================== End Of Log ============================
Vielen Dank schon mal für die Hilfe! LG |
|
31.03.2014, 17:47
| #2 |
| /// the machine /// TB-Ausbilder    | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet hi,
__________________Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ |
|
31.03.2014, 21:23
| #3 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hey,
__________________vielen vielen Dank für die schnelle Hilfe! MalwareBytes hat allerdings nichts gefunden. |
|
01.04.2014, 12:44
| #4 |
| /// the machine /// TB-Ausbilder | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hi, Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.04.2014, 15:41
| #5 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hey, tut mir leid, hier der erste Teil von TDSSKiller: Code:
ATTFilter 21:19:19.0459 0x0f68 TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
21:19:30.0520 0x0f68 ============================================================
21:19:30.0520 0x0f68 Current date / time: 2014/03/31 21:19:30.0520
21:19:30.0520 0x0f68 SystemInfo:
21:19:30.0520 0x0f68
21:19:30.0520 0x0f68 OS Version: 6.0.6002 ServicePack: 2.0
21:19:30.0520 0x0f68 Product type: Workstation
21:19:30.0520 0x0f68 ComputerName: HASUFEL-PC
21:19:30.0520 0x0f68 UserName: Hasufel
21:19:30.0520 0x0f68 Windows directory: C:\Windows
21:19:30.0520 0x0f68 System windows directory: C:\Windows
21:19:30.0520 0x0f68 Processor architecture: Intel x86
21:19:30.0520 0x0f68 Number of processors: 2
21:19:30.0520 0x0f68 Page size: 0x1000
21:19:30.0520 0x0f68 Boot type: Normal boot
21:19:30.0520 0x0f68 ============================================================
21:19:50.0771 0x0f68 KLMD registered as C:\Windows\system32\drivers\27719891.sys
21:19:51.0239 0x0f68 System UUID: {990693BB-593F-37F4-54DB-E177D1C1CBCC}
21:19:52.0182 0x0f68 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:19:52.0498 0x0f68 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x97695, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000050
21:19:52.0500 0x0f68 ============================================================
21:19:52.0500 0x0f68 \Device\Harddisk0\DR0:
21:19:52.0515 0x0f68 MBR partitions:
21:19:52.0516 0x0f68 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388B3B, BlocksNum 0x12A14C00
21:19:52.0581 0x0f68 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13D9D77A, BlocksNum 0x1168FF47
21:19:52.0581 0x0f68 \Device\Harddisk1\DR1:
21:19:52.0581 0x0f68 MBR partitions:
21:19:52.0581 0x0f68 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A17000
21:19:52.0581 0x0f68 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x12A17800, BlocksNum 0x12A17000
21:19:52.0581 0x0f68 ============================================================
21:19:52.0704 0x0f68 C: <-> \Device\Harddisk0\DR0\Partition1
21:19:52.0732 0x0f68 D: <-> \Device\Harddisk1\DR1\Partition1
21:19:52.0789 0x0f68 E: <-> \Device\Harddisk0\DR0\Partition2
21:19:52.0839 0x0f68 F: <-> \Device\Harddisk1\DR1\Partition2
21:19:52.0839 0x0f68 ============================================================
21:19:52.0839 0x0f68 Initialize success
21:19:52.0839 0x0f68 ============================================================
21:19:58.0306 0x1114 ============================================================
21:19:58.0306 0x1114 Scan started
21:19:58.0306 0x1114 Mode: Manual;
21:19:58.0306 0x1114 ============================================================
21:19:58.0306 0x1114 KSN ping started
21:19:58.0512 0x1114 KSN ping finished: true
21:20:00.0913 0x1114 ================ Scan system memory ========================
21:20:00.0913 0x1114 System memory - ok
21:20:00.0914 0x1114 ================ Scan services =============================
21:20:01.0407 0x1114 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:20:01.0501 0x1114 ACPI - ok
21:20:01.0831 0x1114 [ 14C23516C990DCD6052152CF034DDE40, 1EC8AAD6AA6D68A17A9D04AECDB716BD0DD4BFF93641BD96D01855AF1232A5FB ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
21:20:01.0836 0x1114 Adobe Version Cue CS3 - ok
21:20:02.0064 0x1114 [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:20:02.0065 0x1114 AdobeARMservice - ok
21:20:02.0274 0x1114 [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:20:02.0283 0x1114 AdobeFlashPlayerUpdateSvc - ok
21:20:02.0598 0x1114 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:20:02.0655 0x1114 adp94xx - ok
21:20:02.0755 0x1114 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:20:02.0834 0x1114 adpahci - ok
21:20:02.0855 0x1114 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:20:02.0860 0x1114 adpu160m - ok
21:20:02.0896 0x1114 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:20:02.0902 0x1114 adpu320 - ok
21:20:03.0080 0x1114 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:20:03.0124 0x1114 AeLookupSvc - ok
21:20:03.0251 0x1114 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
21:20:03.0256 0x1114 AFD - ok
21:20:03.0339 0x1114 [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:20:03.0340 0x1114 AgereModemAudio - ok
21:20:03.0497 0x1114 [ 1CFEBA39FC613E45B49D3EDDFBCDA289, 15E8102FD9C50DBC16DDC523FC9C17DBE21F2C5C4E081C54901379C0D99277AA ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
21:20:03.0745 0x1114 AgereSoftModem - ok
21:20:03.0839 0x1114 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:20:03.0843 0x1114 agp440 - ok
21:20:03.0890 0x1114 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:20:03.0894 0x1114 aic78xx - ok
21:20:03.0904 0x1114 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
21:20:03.0906 0x1114 ALG - ok
21:20:03.0938 0x1114 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
21:20:03.0948 0x1114 aliide - ok
21:20:04.0046 0x1114 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:20:04.0049 0x1114 amdagp - ok
21:20:04.0078 0x1114 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
21:20:04.0083 0x1114 amdide - ok
21:20:04.0178 0x1114 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:20:04.0180 0x1114 AmdK7 - ok
21:20:04.0232 0x1114 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:20:04.0239 0x1114 AmdK8 - ok
21:20:04.0334 0x1114 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
21:20:04.0335 0x1114 Appinfo - ok
21:20:04.0615 0x1114 [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:20:04.0622 0x1114 Apple Mobile Device - ok
21:20:04.0652 0x1114 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
21:20:04.0659 0x1114 arc - ok
21:20:04.0735 0x1114 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:20:04.0740 0x1114 arcsas - ok
21:20:04.0932 0x1114 [ 2EEDA27C19259C2340324EF7180D086B, 5426BF8EED7F87CEEA4D3EE1E721305A3703B0C490E01DE97DE5AFA0003C93D6 ] ASBroker C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:20:04.0933 0x1114 ASBroker - ok
21:20:05.0093 0x1114 [ BB3C0521ECCA4BB17AC55EB640DF0FA5, 125B285960B45E0384EB1770B10488BEBB87F6CD1785EA83C0C24CDD9B9EDEAF ] ASChannel C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:20:05.0096 0x1114 ASChannel - ok
21:20:05.0266 0x1114 [ 5A055A4777CBBC8845DD598CB2EEBF69, AF58FF2D58DA807869531A645ED4AD078FC411554EE18366949D27FF0C28829D ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:20:05.0268 0x1114 ASLDRService - ok
21:20:05.0307 0x1114 [ 7B4D08D2017AC06689D422E06C43F0AA, 42BACCEA0FCEB60B79F78098163147A8DD1DED24CB2F0DBB93EDC07DAB66135C ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
21:20:05.0307 0x1114 ASMMAP - ok
21:20:05.0768 0x1114 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:20:05.0865 0x1114 aspnet_state - ok
21:20:05.0893 0x1114 ASUSProcObsrv - ok
21:20:05.0978 0x1114 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:20:05.0985 0x1114 AsyncMac - ok
21:20:06.0012 0x1114 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
21:20:06.0015 0x1114 atapi - ok
21:20:06.0133 0x1114 [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:20:06.0135 0x1114 ATKGFNEXSrv - ok
21:20:06.0270 0x1114 [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
21:20:06.0275 0x1114 atksgt - ok
21:20:06.0322 0x1114 [ F70D2392158CB68E775F8C4CD3D12FBB, C4D8274D34CFAD1DA9166C35BA41E063B9A085834E014A014E17A26C7DD216DE ] ATSWPDRV C:\Windows\system32\DRIVERS\ATSwpDrv.sys
21:20:06.0330 0x1114 ATSWPDRV - ok
21:20:06.0414 0x1114 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:20:06.0420 0x1114 AudioEndpointBuilder - ok
21:20:06.0431 0x1114 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:20:06.0437 0x1114 Audiosrv - ok
21:20:06.0669 0x1114 [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:20:06.0677 0x1114 AVP - ok
21:20:06.0833 0x1114 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
21:20:06.0833 0x1114 Beep - ok
21:20:06.0958 0x1114 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
21:20:06.0964 0x1114 BFE - ok
21:20:07.0181 0x1114 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
21:20:07.0259 0x1114 BITS - ok
21:20:07.0384 0x1114 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:20:07.0392 0x1114 blbdrive - ok
21:20:07.0510 0x1114 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:20:07.0516 0x1114 Bonjour Service - ok
21:20:07.0572 0x1114 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:20:07.0573 0x1114 bowser - ok
21:20:07.0630 0x1114 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:20:07.0632 0x1114 BrFiltLo - ok
21:20:07.0647 0x1114 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:20:07.0649 0x1114 BrFiltUp - ok
21:20:07.0674 0x1114 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
21:20:07.0676 0x1114 Browser - ok
21:20:07.0707 0x1114 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:20:07.0718 0x1114 Brserid - ok
21:20:07.0749 0x1114 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:20:07.0753 0x1114 BrSerWdm - ok
21:20:07.0808 0x1114 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:20:07.0811 0x1114 BrUsbMdm - ok
21:20:07.0837 0x1114 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:20:07.0844 0x1114 BrUsbSer - ok
21:20:07.0937 0x1114 [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:20:07.0939 0x1114 BthEnum - ok
21:20:08.0051 0x1114 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:20:08.0055 0x1114 BTHMODEM - ok
21:20:08.0172 0x1114 [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:20:08.0176 0x1114 BthPan - ok
21:20:08.0358 0x1114 [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:20:08.0423 0x1114 BTHPORT - ok
21:20:08.0522 0x1114 [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ C:\Windows\System32\bthserv.dll
21:20:08.0523 0x1114 BthServ - ok
21:20:08.0628 0x1114 [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:20:08.0631 0x1114 BTHUSB - ok
21:20:08.0806 0x1114 [ F2F7342742180D5060285499DEE50F99, 48EEDB0BEE52924E5FA3BE4FF21058C6FDB5987486A5AF138453F186AB3FD2C1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:20:08.0813 0x1114 btwaudio - ok
21:20:08.0862 0x1114 [ 32F59F26A30CFC508DA11DB3EA0F8B77, 0B8B2B8799891D783AF1C3D84F4D86BE3235865CF639AF131249661FD9E610B9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
21:20:08.0868 0x1114 btwavdt - ok
21:20:09.0090 0x1114 [ 09CB316DB9D61ED9FC9A7B07A1A301F6, BCB2750469F6A9980A1A32FB883BE67FEB9C82FA17A36C27C55A8D28E0D5D0EC ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:20:09.0136 0x1114 btwdins - ok
21:20:09.0180 0x1114 [ ECB98391C756A7B9CFBAE89D9D1235E1, 0A639D2187BDCD64320A7FB72627ED8AF2AF7CC8AAEF6E0991BDEF28BA080442 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:20:09.0184 0x1114 btwl2cap - ok
21:20:09.0269 0x1114 [ 03658734EF7D0F3B3F4636D3E8A38964, 514E42B4D13A740BD8125E9947D9B9ADC3A2DDA5AF4F0CC07B515839E9F3848A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:20:09.0297 0x1114 btwrchid - ok
21:20:09.0363 0x1114 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:20:09.0370 0x1114 cdfs - ok
21:20:09.0422 0x1114 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:20:09.0428 0x1114 cdrom - ok
21:20:09.0712 0x1114 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
21:20:09.0713 0x1114 CertPropSvc - ok
21:20:09.0784 0x1114 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:20:09.0787 0x1114 circlass - ok
21:20:09.0807 0x1114 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
21:20:09.0812 0x1114 CLFS - ok
21:20:09.0958 0x1114 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:20:09.0967 0x1114 clr_optimization_v2.0.50727_32 - ok
21:20:10.0047 0x1114 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:20:10.0316 0x1114 clr_optimization_v4.0.30319_32 - ok
21:20:10.0370 0x1114 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:20:10.0373 0x1114 CmBatt - ok
21:20:10.0462 0x1114 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:20:10.0468 0x1114 cmdide - ok
21:20:10.0536 0x1114 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:20:10.0537 0x1114 Compbatt - ok
21:20:10.0541 0x1114 COMSysApp - ok
21:20:10.0545 0x1114 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:20:10.0546 0x1114 crcdisk - ok
21:20:10.0678 0x1114 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:20:10.0682 0x1114 Crusoe - ok
21:20:10.0721 0x1114 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:20:10.0724 0x1114 CryptSvc - ok
21:20:10.0980 0x1114 [ 699CE24FE6B5120AF709A0B91582A02D, CADD9583A3A728F8E71C67F00EF24435DA689CF35434693B0BBA99367B4A8BA0 ] DCamUSBET C:\Windows\system32\DRIVERS\etDevice.sys
21:20:11.0245 0x1114 DCamUSBET - ok
21:20:11.0622 0x1114 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:20:11.0773 0x1114 DcomLaunch - ok
21:20:11.0895 0x1114 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:20:11.0896 0x1114 DfsC - ok
21:20:12.0307 0x1114 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
21:20:12.0981 0x1114 DFSR - ok
21:20:13.0144 0x1114 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:20:13.0149 0x1114 Dhcp - ok
21:20:13.0184 0x1114 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
21:20:13.0188 0x1114 disk - ok
21:20:13.0344 0x1114 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:20:13.0346 0x1114 Dnscache - ok
21:20:13.0465 0x1114 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
21:20:13.0469 0x1114 dot3svc - ok
21:20:13.0569 0x1114 [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:20:13.0574 0x1114 Dot4 - ok
21:20:13.0626 0x1114 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:20:13.0627 0x1114 Dot4Print - ok
21:20:13.0753 0x1114 [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:20:13.0758 0x1114 dot4usb - ok
21:20:13.0903 0x1114 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
21:20:13.0906 0x1114 DPS - ok
21:20:14.0131 0x1114 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:20:14.0133 0x1114 drmkaud - ok
21:20:14.0212 0x1114 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:20:14.0295 0x1114 DXGKrnl - ok
21:20:14.0454 0x1114 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:20:14.0459 0x1114 E1G60 - ok
21:20:14.0588 0x1114 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
21:20:14.0590 0x1114 EapHost - ok
21:20:14.0711 0x1114 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
21:20:14.0714 0x1114 Ecache - ok
21:20:14.0885 0x1114 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:20:14.0892 0x1114 ehRecvr - ok
21:20:14.0952 0x1114 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
21:20:14.0955 0x1114 ehSched - ok
21:20:15.0108 0x1114 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
21:20:15.0109 0x1114 ehstart - ok
21:20:15.0261 0x1114 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:20:15.0318 0x1114 elxstor - ok
21:20:15.0533 0x1114 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:20:15.0546 0x1114 EMDMgmt - ok
21:20:15.0639 0x1114 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:20:15.0642 0x1114 ErrDev - ok
21:20:15.0864 0x1114 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
21:20:15.0930 0x1114 EventSystem - ok
21:20:16.0059 0x1114 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
21:20:16.0081 0x1114 exfat - ok
21:20:16.0192 0x1114 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:20:16.0195 0x1114 fastfat - ok
21:20:16.0222 0x1114 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:20:16.0225 0x1114 fdc - ok
21:20:16.0443 0x1114 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
21:20:16.0444 0x1114 fdPHost - ok
21:20:16.0449 0x1114 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
21:20:16.0450 0x1114 FDResPub - ok
21:20:16.0530 0x1114 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:20:16.0531 0x1114 FileInfo - ok
21:20:16.0547 0x1114 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:20:16.0583 0x1114 Filetrace - ok
21:20:16.0731 0x1114 [ FD7CB14845A7F91BE11F80635B2CD8A6, CBAAE671814281AE305C47A06D23B3E1C54B0BCFFDA7CF092F0B1C198CFF51A8 ] FiltUSBET C:\Windows\system32\DRIVERS\etFilter.sys
21:20:16.0738 0x1114 FiltUSBET - ok
21:20:16.0813 0x1114 [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:20:17.0046 0x1114 FLEXnet Licensing Service - ok
21:20:17.0107 0x1114 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:20:17.0111 0x1114 flpydisk - ok
21:20:17.0178 0x1114 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:20:17.0182 0x1114 FltMgr - ok
21:20:17.0331 0x1114 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
21:20:17.0388 0x1114 FontCache - ok
21:20:17.0569 0x1114 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:20:17.0580 0x1114 FontCache3.0.0.0 - ok
21:20:17.0647 0x1114 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:20:17.0648 0x1114 Fs_Rec - ok
21:20:17.0728 0x1114 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:20:17.0730 0x1114 gagp30kx - ok
21:20:17.0849 0x1114 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:20:17.0852 0x1114 GEARAspiWDM - ok
21:20:18.0075 0x1114 [ 31B40F40E09513ADDC460F6A297AD474, C3A2A29E32F07BA6534380DE5A1EA7EFCB39B288B9541696DA65FA20DE20AFC4 ] ghaio C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:20:18.0076 0x1114 ghaio - ok
21:20:18.0189 0x1114 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
21:20:18.0253 0x1114 gpsvc - ok
21:20:18.0533 0x1114 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:20:18.0536 0x1114 gupdate - ok
21:20:18.0542 0x1114 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:20:18.0544 0x1114 gupdatem - ok
21:20:18.0690 0x1114 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:20:18.0697 0x1114 HdAudAddService - ok
21:20:18.0803 0x1114 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:20:18.0995 0x1114 HDAudBus - ok
21:20:19.0213 0x1114 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:20:19.0220 0x1114 HidBth - ok
21:20:19.0244 0x1114 [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:20:19.0246 0x1114 HidIr - ok
21:20:19.0301 0x1114 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
21:20:19.0303 0x1114 hidserv - ok
21:20:19.0712 0x1114 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:20:19.0715 0x1114 HidUsb - ok
21:20:19.0856 0x1114 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
21:20:19.0858 0x1114 hkmsvc - ok
21:20:19.0975 0x1114 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:20:19.0978 0x1114 HpCISSs - ok
21:20:20.0629 0x1114 [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:20:20.0636 0x1114 hpqcxs08 - ok
21:20:20.0703 0x1114 [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:20:20.0705 0x1114 hpqddsvc - ok
21:20:20.0844 0x1114 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:20:20.0851 0x1114 HTTP - ok
21:20:20.0880 0x1114 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:20:20.0884 0x1114 i2omp - ok
21:20:21.0056 0x1114 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:20:21.0066 0x1114 i8042prt - ok
21:20:21.0254 0x1114 [ 80C633722DA72E97F3F5B3B11325696D, 1255DC28801438E21AA9D3EAE6F40A9625FCEA99709A7ABCBBEA906DB34AFB6C ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:20:21.0260 0x1114 iaStor - ok
21:20:21.0365 0x1114 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:20:21.0373 0x1114 iaStorV - ok
21:20:21.0646 0x1114 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:20:22.0031 0x1114 idsvc - ok
21:20:22.0118 0x1114 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:20:22.0127 0x1114 iirsp - ok
21:20:22.0316 0x1114 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
21:20:22.0385 0x1114 IKEEXT - ok
21:20:22.0900 0x1114 [ 58072F5FD95ECE78F9FA7BDA1210A9E7, 2AC11995689239C861763EC665C7EF6CA37CFAFD6893AEB3296B77F3D70B9E82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:20:23.0422 0x1114 IntcAzAudAddService - ok
21:20:23.0564 0x1114 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
21:20:23.0567 0x1114 intelide - ok
21:20:23.0678 0x1114 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:20:23.0679 0x1114 intelppm - ok
21:20:23.0853 0x1114 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:20:23.0856 0x1114 IPBusEnum - ok
21:20:23.0917 0x1114 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:20:23.0924 0x1114 IpFilterDriver - ok
21:20:24.0082 0x1114 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:20:24.0088 0x1114 iphlpsvc - ok
21:20:24.0092 0x1114 IpInIp - ok
21:20:24.0139 0x1114 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:20:24.0148 0x1114 IPMIDRV - ok
21:20:24.0160 0x1114 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:20:24.0177 0x1114 IPNAT - ok
21:20:24.0428 0x1114 [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:20:24.0608 0x1114 iPod Service - ok
21:20:24.0649 0x1114 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:20:24.0657 0x1114 IRENUM - ok
21:20:24.0716 0x1114 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:20:24.0719 0x1114 isapnp - ok
21:20:24.0872 0x1114 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:20:24.0943 0x1114 iScsiPrt - ok
21:20:25.0138 0x1114 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:20:25.0150 0x1114 iteatapi - ok
21:20:25.0243 0x1114 [ 8BCD857C7932AD005D5F9C89329DA2E1, B2091CEA5D3D0D06E49D71E7D40E993D5653A0D8F5DC5CE5C9CEFB1242887E0D ] itecir C:\Windows\system32\DRIVERS\itecir.sys
21:20:25.0246 0x1114 itecir - ok
21:20:25.0307 0x1114 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:20:25.0390 0x1114 iteraid - ok
21:20:25.0449 0x1114 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:20:25.0458 0x1114 kbdclass - ok
21:20:25.0482 0x1114 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:20:25.0488 0x1114 kbdhid - ok
21:20:25.0506 0x1114 [ 27BD4AC228EF6C0D490617C32E86A672, A2259B4E78AE5D3158B0FC4F3694EEF9825B9FF782F09ED828E80E7B23E07D16 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
21:20:25.0508 0x1114 kbfiltr - ok
21:20:25.0693 0x1114 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
21:20:25.0695 0x1114 KeyIso - ok
21:20:25.0863 0x1114 [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
21:20:25.0865 0x1114 kl1 - ok
21:20:26.0303 0x1114 [ 8C547EB6709BF41E0625EFCDF13C63CE, ECD36806745748D110964C8D332D5FED235C5423885A6E33C733568AEC15FD80 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
21:20:26.0636 0x1114 KLIF - ok
21:20:26.0843 0x1114 [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
21:20:26.0844 0x1114 KLIM6 - ok
21:20:26.0873 0x1114 [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
21:20:26.0874 0x1114 klkbdflt - ok
21:20:26.0914 0x1114 [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
21:20:26.0915 0x1114 klmouflt - ok
21:20:26.0963 0x1114 [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
21:20:26.0964 0x1114 kltdi - ok
21:20:27.0062 0x1114 [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps C:\Windows\system32\DRIVERS\kneps.sys
21:20:27.0065 0x1114 kneps - ok
21:20:27.0109 0x1114 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:20:27.0117 0x1114 KSecDD - ok
21:20:27.0293 0x1114 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:20:27.0383 0x1114 KtmRm - ok
21:20:27.0475 0x1114 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
21:20:27.0485 0x1114 LanmanServer - ok
21:20:27.0605 0x1114 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:20:27.0610 0x1114 LanmanWorkstation - ok
21:20:27.0684 0x1114 [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
21:20:27.0684 0x1114 lirsgt - ok
21:20:27.0759 0x1114 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:20:27.0760 0x1114 lltdio - ok
21:20:27.0888 0x1114 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:20:27.0930 0x1114 lltdsvc - ok
21:20:28.0020 0x1114 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:20:28.0022 0x1114 lmhosts - ok
21:20:28.0178 0x1114 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:20:28.0182 0x1114 LSI_FC - ok
21:20:28.0205 0x1114 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:20:28.0296 0x1114 LSI_SAS - ok
21:20:28.0319 0x1114 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:20:28.0322 0x1114 LSI_SCSI - ok
21:20:28.0368 0x1114 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
21:20:28.0370 0x1114 luafv - ok
21:20:28.0422 0x1114 [ 8039F480C192DD99FED4EBC71FFBF795, D02A1E4AAD5413B8F154E21C5B2C8FDD18F10A01197F44792BBDC1651E06F2A8 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
21:20:28.0423 0x1114 lullaby - ok
21:20:28.0527 0x1114 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:20:28.0536 0x1114 Mcx2Svc - ok
21:20:28.0630 0x1114 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
21:20:28.0634 0x1114 megasas - ok
21:20:28.0927 0x1114 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:20:29.0060 0x1114 MegaSR - ok
21:20:29.0103 0x1114 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
21:20:29.0105 0x1114 MMCSS - ok
21:20:29.0125 0x1114 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
21:20:29.0126 0x1114 Modem - ok
21:20:29.0151 0x1114 [ CBB59C41F19EFEA1A000793E08070A62, 4C3C01210DF9D00C05FA14FF5CEFB60C444CAEBFF3F49409EDE434D63F19B9F2 ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys
21:20:29.0156 0x1114 MODEMCSA - ok
21:20:29.0180 0x1114 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:20:29.0181 0x1114 monitor - ok
21:20:29.0273 0x1114 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:20:29.0281 0x1114 mouclass - ok
21:20:29.0339 0x1114 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:20:29.0347 0x1114 mouhid - ok
21:20:29.0405 0x1114 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:20:29.0407 0x1114 MountMgr - ok
21:20:29.0496 0x1114 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:20:29.0501 0x1114 MozillaMaintenance - ok
21:20:29.0584 0x1114 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
21:20:29.0588 0x1114 mpio - ok
21:20:29.0633 0x1114 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:20:29.0635 0x1114 mpsdrv - ok
21:20:29.0748 0x1114 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:20:29.0833 0x1114 MpsSvc - ok
21:20:29.0981 0x1114 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:20:29.0985 0x1114 Mraid35x - ok
21:20:30.0092 0x1114 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:20:30.0094 0x1114 MRxDAV - ok
21:20:30.0130 0x1114 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:20:30.0132 0x1114 mrxsmb - ok
21:20:30.0244 0x1114 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:20:30.0248 0x1114 mrxsmb10 - ok
21:20:30.0255 0x1114 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:20:30.0257 0x1114 mrxsmb20 - ok
21:20:30.0381 0x1114 [ DE77526BDE93142BDC90CFA9F5CEAD36, 783A6991982C077D8C3218E507CE098F6112809282633B0280E1228115572153 ] msahci C:\Windows\system32\drivers\msahci.sys
21:20:30.0382 0x1114 msahci - ok
21:20:30.0402 0x1114 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:20:30.0406 0x1114 msdsm - ok
21:20:30.0471 0x1114 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
21:20:30.0518 0x1114 MSDTC - ok
21:20:30.0684 0x1114 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:20:30.0685 0x1114 Msfs - ok
21:20:30.0767 0x1114 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:20:30.0768 0x1114 msisadrv - ok
21:20:30.0795 0x1114 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:20:30.0837 0x1114 MSiSCSI - ok
21:20:30.0840 0x1114 msiserver - ok
21:20:30.0896 0x1114 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:20:30.0903 0x1114 MSKSSRV - ok
21:20:30.0971 0x1114 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:20:30.0985 0x1114 MSPCLOCK - ok
21:20:31.0051 0x1114 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:20:31.0059 0x1114 MSPQM - ok
21:20:31.0151 0x1114 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:20:31.0154 0x1114 MsRPC - ok
21:20:31.0166 0x1114 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:20:31.0167 0x1114 mssmbios - ok
21:20:31.0186 0x1114 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:20:31.0357 0x1114 MSTEE - ok
21:20:31.0430 0x1114 [ 97AFFA9D95FFE20EEE6229BC6BE166CF, 6E13230AF96A3A5C518EFA21B9B1833E3DE9D6DA05A6E664E305EF18B162E1B9 ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
21:20:31.0435 0x1114 MTsensor - ok
21:20:31.0507 0x1114 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
21:20:31.0508 0x1114 Mup - ok
21:20:31.0812 0x1114 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
21:20:31.0818 0x1114 napagent - ok
21:20:32.0083 0x1114 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:20:32.0086 0x1114 NativeWifiP - ok
21:20:32.0412 0x1114 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:20:32.0422 0x1114 NDIS - ok
21:20:32.0545 0x1114 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:20:32.0554 0x1114 NdisTapi - ok
21:20:32.0575 0x1114 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:20:32.0575 0x1114 Ndisuio - ok
21:20:32.0694 0x1114 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:20:32.0704 0x1114 NdisWan - ok
21:20:32.0866 0x1114 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:20:32.0874 0x1114 NDProxy - ok
21:20:33.0098 0x1114 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:20:33.0100 0x1114 Net Driver HPZ12 - ok
21:20:33.0139 0x1114 [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
21:20:33.0148 0x1114 Netaapl - ok
21:20:33.0215 0x1114 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:20:33.0216 0x1114 NetBIOS - ok
21:20:33.0294 0x1114 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:20:33.0297 0x1114 netbt - ok
21:20:33.0312 0x1114 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
21:20:33.0313 0x1114 Netlogon - ok
21:20:33.0572 0x1114 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
21:20:33.0578 0x1114 Netman - ok
21:20:33.0686 0x1114 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:33.0976 0x1114 NetMsmqActivator - ok
21:20:34.0032 0x1114 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:34.0035 0x1114 NetPipeActivator - ok
21:20:34.0068 0x1114 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
21:20:34.0074 0x1114 netprofm - ok
21:20:34.0080 0x1114 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:34.0083 0x1114 NetTcpActivator - ok
21:20:34.0089 0x1114 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:20:34.0092 0x1114 NetTcpPortSharing - ok
21:20:34.0635 0x1114 [ F0C42E0CDCE558D658FA53A222B4CCB1, 50AC8D9CCFB319EC03AB0F6AC2F70ED2EF3D746B8A8C7CC7A0606B592A3042DC ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
21:20:35.0382 0x1114 NETw5v32 - ok
21:20:35.0447 0x1114 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:20:35.0451 0x1114 nfrd960 - ok
21:20:35.0629 0x1114 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
21:20:35.0634 0x1114 NlaSvc - ok
21:20:35.0691 0x1114 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:20:35.0693 0x1114 Npfs - ok
21:20:35.0731 0x1114 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
21:20:35.0733 0x1114 nsi - ok
21:20:35.0895 0x1114 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:20:35.0896 0x1114 nsiproxy - ok
21:20:36.0119 0x1114 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:20:36.0138 0x1114 Ntfs - ok
21:20:36.0277 0x1114 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:20:36.0282 0x1114 ntrigdigi - ok
21:20:36.0372 0x1114 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
21:20:36.0372 0x1114 Null - ok
21:20:36.0417 0x1114 [ 77F9F9A199B87FE3F852E12F5419240B, BE9C05F2AC12BB41EC71A596039F2116E5A0F454D32E5A618112296721001473 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
21:20:36.0421 0x1114 NVHDA - ok
21:20:38.0219 0x1114 [ C1E661888C719FC2E12C057F233FB238, FAC74D6644686F3A6CC4852BFC0EC1AD36212F6E45F466CDEF9A36C2FD23316C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:20:39.0866 0x1114 nvlddmkm - ok
21:20:39.0961 0x1114 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:20:39.0967 0x1114 nvraid - ok
21:20:39.0984 0x1114 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:20:39.0987 0x1114 nvstor - ok
21:20:40.0154 0x1114 [ 31D7E63B62BC4680B5D1358F91DA104E, 8DF37F4AD73CBA597783E272603C17336C48F7BFFD7DDE55B0736F9A52BDFEDB ] nvsvc C:\Windows\system32\nvvsvc.exe
21:20:40.0454 0x1114 nvsvc - ok
21:20:40.0930 0x1114 [ 143B429F2D19A0F123ED8E4BCA8DB751, F0CC7D4C6AF1557E70CC6D5C2CD03BBBDBE27B3AC6D95962A8722C75850FF627 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:20:41.0577 0x1114 nvUpdatusService - ok
21:20:41.0625 0x1114 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:20:41.0629 0x1114 nv_agp - ok
21:20:41.0633 0x1114 NwlnkFlt - ok
21:20:41.0636 0x1114 NwlnkFwd - ok
21:20:41.0710 0x1114 [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:20:41.0711 0x1114 ohci1394 - ok
21:20:41.0793 0x1114 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:20:41.0798 0x1114 ose - ok
21:20:42.0868 0x1114 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:20:44.0135 0x1114 osppsvc - ok
21:20:44.0502 0x1114 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:20:44.0892 0x1114 p2pimsvc - ok
21:20:45.0333 0x1114 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
21:20:45.0345 0x1114 p2psvc - ok
21:20:45.0418 0x1114 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
21:20:45.0423 0x1114 Parport - ok
21:20:45.0501 0x1114 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:20:45.0502 0x1114 partmgr - ok
21:20:45.0557 0x1114 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:20:45.0559 0x1114 Parvdm - ok
21:20:45.0664 0x1114 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
21:20:45.0667 0x1114 PcaSvc - ok
21:20:45.0718 0x1114 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
21:20:45.0723 0x1114 pci - ok
21:20:45.0747 0x1114 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
21:20:45.0751 0x1114 pciide - ok
21:20:45.0843 0x1114 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:20:45.0909 0x1114 pcmcia - ok
21:20:46.0071 0x1114 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:20:46.0086 0x1114 PEAUTH - ok
21:20:46.0532 0x1114 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
21:20:46.0668 0x1114 pla - ok
21:20:46.0884 0x1114 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:20:46.0894 0x1114 PlugPlay - ok
21:20:47.0068 0x1114 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:20:47.0070 0x1114 Pml Driver HPZ12 - ok
21:20:47.0297 0x1114 [ 3A2BDD76E7D2A5F40A7174793D1BA794, 029EE2C2F71AEC7906600EEC4F855DC5648C1ECF53F11426079B04591F24D067 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
21:20:47.0300 0x1114 PnkBstrA - ok
21:20:47.0385 0x1114 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:20:47.0398 0x1114 PNRPAutoReg - ok
21:20:47.0459 0x1114 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:20:47.0472 0x1114 PNRPsvc - ok
21:20:47.0591 0x1114 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:20:47.0601 0x1114 PolicyAgent - ok
21:20:47.0670 0x1114 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:20:47.0681 0x1114 PptpMiniport - ok
21:20:47.0717 0x1114 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
21:20:47.0732 0x1114 Processor - ok
21:20:47.0787 0x1114 [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
21:20:47.0793 0x1114 ProfSvc - ok
21:20:47.0859 0x1114 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:20:47.0865 0x1114 ProtectedStorage - ok
21:20:48.0009 0x1114 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:20:48.0011 0x1114 PSched - ok
21:20:48.0312 0x1114 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:20:48.0736 0x1114 ql2300 - ok
21:20:48.0801 0x1114 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:20:48.0806 0x1114 ql40xx - ok
21:20:48.0853 0x1114 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
21:20:48.0859 0x1114 QWAVE - ok
21:20:48.0949 0x1114 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:20:48.0950 0x1114 QWAVEdrv - ok
21:20:48.0972 0x1114 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:20:48.0973 0x1114 RasAcd - ok
21:20:48.0993 0x1114 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
21:20:48.0996 0x1114 RasAuto - ok
21:20:49.0025 0x1114 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:20:49.0085 0x1114 Rasl2tp - ok
21:20:49.0196 0x1114 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
21:20:49.0204 0x1114 RasMan - ok
21:20:49.0237 0x1114 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:20:49.0255 0x1114 RasPppoe - ok
21:20:49.0282 0x1114 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:20:49.0293 0x1114 RasSstp - ok
21:20:49.0387 0x1114 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:20:49.0391 0x1114 rdbss - ok
21:20:49.0421 0x1114 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:20:49.0421 0x1114 RDPCDD - ok
21:20:49.0517 0x1114 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:20:49.0597 0x1114 rdpdr - ok
21:20:49.0606 0x1114 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:20:49.0607 0x1114 RDPENCDD - ok
21:20:49.0743 0x1114 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:20:49.0761 0x1114 RDPWD - ok
21:20:49.0829 0x1114 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
21:20:49.0832 0x1114 RemoteAccess - ok
21:20:49.0859 0x1114 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:20:49.0863 0x1114 RemoteRegistry - ok
21:20:49.0961 0x1114 [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:20:49.0966 0x1114 RFCOMM - ok
21:20:49.0986 0x1114 [ A5B12A4B3B774432DB9B9FA221190E59, 1DAAB43A2429035BAB8403E5D24F50F82BD41B5B478B344C3C58D49F1E15C2AE ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
21:20:49.0989 0x1114 rimmptsk - ok
21:20:50.0172 0x1114 [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
21:20:50.0184 0x1114 rimsptsk - ok
21:20:50.0304 0x1114 [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
21:20:50.0311 0x1114 rismxdp - ok
21:20:50.0454 0x1114 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
21:20:50.0456 0x1114 RpcLocator - ok
21:20:50.0647 0x1114 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
21:20:50.0658 0x1114 RpcSs - ok
21:20:50.0843 0x1114 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:20:50.0844 0x1114 rspndr - ok
21:20:50.0947 0x1114 [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
21:20:50.0955 0x1114 RTL8169 - ok
21:20:51.0091 0x1114 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
21:20:51.0095 0x1114 SamSs - ok
21:20:51.0145 0x1114 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:20:51.0149 0x1114 sbp2port - ok
21:20:51.0219 0x1114 [ 2393ED056AE02F5DBB3A7D6E40A5FDC2, AC73452C892ABE7B98A0762BC7BD26CD712FF2E899E157F2A5119335E3E41B49 ] ScanUSBET C:\Windows\system32\DRIVERS\etScan.sys
21:20:51.0226 0x1114 ScanUSBET - ok
21:20:51.0294 0x1114 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:20:51.0297 0x1114 SCardSvr - ok
21:20:51.0461 0x1114 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
21:20:51.0575 0x1114 Schedule - ok
21:20:51.0670 0x1114 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
21:20:51.0670 0x1114 SCPolicySvc - ok
21:20:51.0721 0x1114 [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:20:51.0725 0x1114 sdbus - ok
21:20:51.0811 0x1114 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:20:51.0814 0x1114 SDRSVC - ok
21:20:52.0960 0x1114 [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:20:53.0029 0x1114 SDScannerService - ok
21:20:53.0404 0x1114 [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:20:53.0422 0x1114 SDUpdateService - ok
21:20:53.0493 0x1114 [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:20:53.0496 0x1114 SDWSCService - ok
21:20:53.0545 0x1114 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:20:53.0546 0x1114 secdrv - ok
21:20:53.0623 0x1114 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
21:20:53.0625 0x1114 seclogon - ok
21:20:53.0690 0x1114 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
21:20:53.0692 0x1114 SENS - ok
21:20:53.0743 0x1114 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:20:53.0747 0x1114 Serenum - ok
21:20:53.0784 0x1114 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
21:20:53.0789 0x1114 Serial - ok
21:20:53.0844 0x1114 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:20:53.0849 0x1114 sermouse - ok
21:20:53.0884 0x1114 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
21:20:53.0888 0x1114 SessionEnv - ok
21:20:53.0959 0x1114 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:20:54.0126 0x1114 sffdisk - ok
21:20:54.0165 0x1114 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:20:54.0169 0x1114 sffp_mmc - ok
21:20:54.0187 0x1114 [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:20:54.0190 0x1114 sffp_sd - ok
21:20:54.0252 0x1114 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:20:54.0258 0x1114 sfloppy - ok
21:20:54.0350 0x1114 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:20:54.0505 0x1114 SharedAccess - ok
21:20:54.0600 0x1114 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:20:54.0606 0x1114 ShellHWDetection - ok
21:20:54.0657 0x1114 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:20:54.0662 0x1114 sisagp - ok
21:20:54.0743 0x1114 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:20:54.0743 0x1114 SiSRaid2 - ok
21:20:54.0747 0x1114 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:20:54.0753 0x1114 SiSRaid4 - ok
21:20:55.0329 0x1114 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
21:20:56.0049 0x1114 slsvc - ok
21:20:56.0161 0x1114 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:20:56.0164 0x1114 SLUINotify - ok
21:20:56.0192 0x1114 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:20:56.0193 0x1114 Smb - ok
21:20:56.0417 0x1114 [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial C:\Windows\system32\DRIVERS\smserial.sys
21:20:56.0752 0x1114 smserial - ok
21:20:56.0868 0x1114 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:20:56.0871 0x1114 SNMPTRAP - ok
21:20:56.0939 0x1114 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
21:20:56.0940 0x1114 spldr - ok
21:20:56.0974 0x1114 [ 739DB668DBD812285ECC553E64A5E212, 08E99CD042232CEB20BB5A808E914C9F2F0C154099BF921BA40E661B08472CF5 ] spmgr C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:20:56.0976 0x1114 spmgr - ok
21:20:56.0990 0x1114 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
21:20:56.0994 0x1114 Spooler - ok
21:20:57.0127 0x1114 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
21:20:57.0133 0x1114 srv - ok
21:20:57.0495 0x1114 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:20:57.0498 0x1114 srv2 - ok
21:20:57.0688 0x1114 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:20:57.0690 0x1114 srvnet - ok
21:20:57.0904 0x1114 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:20:57.0909 0x1114 SSDPSRV - ok
21:20:58.0140 0x1114 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:20:58.0144 0x1114 SstpSvc - ok
21:20:58.0615 0x1114 [ 0632004181860960CF6E10DE8DDEF78B, FB4714CB6C795C106C4777835490DC9F68FA656107DDB54A425666BE293FDC0B ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:20:58.0624 0x1114 Stereo Service - ok
21:20:58.0789 0x1114 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
21:20:58.0800 0x1114 stisvc - ok
21:20:58.0977 0x1114 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:20:58.0990 0x1114 swenum - ok
21:20:59.0201 0x1114 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
21:20:59.0209 0x1114 swprv - ok
21:20:59.0278 0x1114 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:20:59.0282 0x1114 Symc8xx - ok
21:20:59.0349 0x1114 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:20:59.0352 0x1114 Sym_hi - ok
21:20:59.0431 0x1114 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:20:59.0656 0x1114 Sym_u3 - ok
21:20:59.0782 0x1114 [ A59457258DC236F63D6EAC759EF6C08B, C407AF5171A3F2C8F7E1F68E472D4F9E835BDEC50A8E0D4D8F2A6854F2AE0346 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:20:59.0790 0x1114 SynTP - ok
21:20:59.0853 0x1114 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
21:20:59.0866 0x1114 SysMain - ok
21:21:00.0041 0x1114 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:21:00.0044 0x1114 TabletInputService - ok
21:21:00.0172 0x1114 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:21:00.0178 0x1114 TapiSrv - ok
21:21:00.0238 0x1114 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
21:21:00.0241 0x1114 TBS - ok
21:21:00.0546 0x1114 [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:21:00.0562 0x1114 Tcpip - ok
21:21:00.0735 0x1114 [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:21:00.0751 0x1114 Tcpip6 - ok
21:21:00.0780 0x1114 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:21:00.0781 0x1114 tcpipreg - ok
21:21:00.0886 0x1114 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:21:00.0890 0x1114 TDPIPE - ok
21:21:01.0087 0x1114 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:21:01.0104 0x1114 TDTCP - ok
21:21:01.0233 0x1114 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:21:01.0235 0x1114 tdx - ok
21:21:01.0347 0x1114 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:21:01.0357 0x1114 TermDD - ok
21:21:01.0464 0x1114 [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
21:21:01.0474 0x1114 TermService - ok
21:21:01.0529 0x1114 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
21:21:01.0538 0x1114 Themes - ok
21:21:01.0730 0x1114 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
21:21:01.0735 0x1114 THREADORDER - ok
21:21:01.0866 0x1114 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
21:21:01.0869 0x1114 TrkWks - ok
21:21:02.0026 0x1114 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:21:02.0027 0x1114 TrustedInstaller - ok
21:21:02.0053 0x1114 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:21:02.0067 0x1114 tssecsrv - ok
21:21:02.0267 0x1114 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:21:02.0292 0x1114 tunmp - ok
21:21:02.0410 0x1114 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:21:02.0429 0x1114 tunnel - ok
21:21:02.0467 0x1114 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:21:02.0473 0x1114 uagp35 - ok
21:21:02.0663 0x1114 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:21:02.0679 0x1114 udfs - ok
21:21:02.0767 0x1114 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:21:02.0770 0x1114 UI0Detect - ok
21:21:02.0790 0x1114 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:21:02.0796 0x1114 uliagpkx - ok
21:21:02.0831 0x1114 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:21:02.0852 0x1114 uliahci - ok
21:21:02.0896 0x1114 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:21:02.0912 0x1114 UlSata - ok
21:21:03.0104 0x1114 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:21:03.0109 0x1114 ulsata2 - ok
21:21:03.0173 0x1114 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:21:03.0177 0x1114 umbus - ok
21:21:03.0179 0x1114 Scan was interrupted by user!
21:21:03.0180 0x1114 Waiting for KSN requests completion. In queue: 126
21:21:04.0246 0x1114 AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:21:04.0274 0x1114 FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
21:21:04.0473 0x1114 ============================================================
21:21:04.0473 0x1114 Scan finished
21:21:04.0473 0x1114 ============================================================
21:21:04.0482 0x14a4 Detected object count: 0
21:21:04.0482 0x14a4 Actual detected object count: 0
21:21:28.0994 0x0aa4 ============================================================
21:21:28.0994 0x0aa4 Scan started
21:21:28.0994 0x0aa4 Mode: Manual; SigCheck; TDLFS;
21:21:28.0994 0x0aa4 ============================================================
21:21:28.0994 0x0aa4 KSN ping started
21:21:29.0160 0x0aa4 KSN ping finished: true
21:21:34.0143 0x0aa4 ================ Scan system memory ========================
21:21:34.0143 0x0aa4 System memory - ok
21:21:34.0144 0x0aa4 ================ Scan services =============================
21:21:34.0515 0x0aa4 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:21:34.0599 0x0aa4 ACPI - ok
21:21:35.0313 0x0aa4 [ 14C23516C990DCD6052152CF034DDE40, 1EC8AAD6AA6D68A17A9D04AECDB716BD0DD4BFF93641BD96D01855AF1232A5FB ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
21:21:35.0326 0x0aa4 Adobe Version Cue CS3 - ok
21:21:35.0458 0x0aa4 [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:21:35.0468 0x0aa4 AdobeARMservice - ok
21:21:35.0613 0x0aa4 [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:21:35.0656 0x0aa4 AdobeFlashPlayerUpdateSvc - ok
21:21:35.0797 0x0aa4 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:21:35.0812 0x0aa4 adp94xx - ok
21:21:35.0906 0x0aa4 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:21:35.0921 0x0aa4 adpahci - ok
21:21:35.0953 0x0aa4 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:21:35.0968 0x0aa4 adpu160m - ok
21:21:36.0015 0x0aa4 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:21:36.0031 0x0aa4 adpu320 - ok
21:21:36.0124 0x0aa4 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:21:36.0748 0x0aa4 AeLookupSvc - ok
21:21:36.0920 0x0aa4 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
21:21:36.0982 0x0aa4 AFD - ok
21:21:37.0060 0x0aa4 [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:21:37.0263 0x0aa4 AgereModemAudio - ok
21:21:37.0575 0x0aa4 [ 1CFEBA39FC613E45B49D3EDDFBCDA289, 15E8102FD9C50DBC16DDC523FC9C17DBE21F2C5C4E081C54901379C0D99277AA ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
21:21:37.0731 0x0aa4 AgereSoftModem - ok
21:21:37.0809 0x0aa4 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:21:37.0825 0x0aa4 agp440 - ok
21:21:37.0903 0x0aa4 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:21:37.0918 0x0aa4 aic78xx - ok
21:21:37.0981 0x0aa4 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
21:21:39.0224 0x0aa4 ALG - ok
21:21:39.0376 0x0aa4 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
21:21:39.0386 0x0aa4 aliide - ok
21:21:39.0461 0x0aa4 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:21:39.0472 0x0aa4 amdagp - ok
21:21:39.0504 0x0aa4 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
21:21:39.0514 0x0aa4 amdide - ok
21:21:39.0549 0x0aa4 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:21:39.0751 0x0aa4 AmdK7 - ok
21:21:40.0002 0x0aa4 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:21:40.0092 0x0aa4 AmdK8 - ok
21:21:40.0231 0x0aa4 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
21:21:40.0324 0x0aa4 Appinfo - ok
21:21:40.0480 0x0aa4 [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:21:40.0496 0x0aa4 Apple Mobile Device - ok
21:21:40.0527 0x0aa4 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
21:21:40.0543 0x0aa4 arc - ok
21:21:40.0652 0x0aa4 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:21:40.0667 0x0aa4 arcsas - ok
21:21:40.0855 0x0aa4 [ 2EEDA27C19259C2340324EF7180D086B, 5426BF8EED7F87CEEA4D3EE1E721305A3703B0C490E01DE97DE5AFA0003C93D6 ] ASBroker C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:21:40.0964 0x0aa4 ASBroker - detected UnsignedFile.Multi.Generic ( 1 )
21:21:40.0964 0x0aa4 Detect skipped due to KSN trusted
21:21:40.0964 0x0aa4 ASBroker - ok
21:21:40.0979 0x0aa4 [ BB3C0521ECCA4BB17AC55EB640DF0FA5, 125B285960B45E0384EB1770B10488BEBB87F6CD1785EA83C0C24CDD9B9EDEAF ] ASChannel C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:21:41.0089 0x0aa4 ASChannel - detected UnsignedFile.Multi.Generic ( 1 )
21:21:41.0089 0x0aa4 Detect skipped due to KSN trusted
21:21:41.0089 0x0aa4 ASChannel - ok
21:21:41.0198 0x0aa4 [ 5A055A4777CBBC8845DD598CB2EEBF69, AF58FF2D58DA807869531A645ED4AD078FC411554EE18366949D27FF0C28829D ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:21:41.0323 0x0aa4 ASLDRService - detected UnsignedFile.Multi.Generic ( 1 )
21:21:41.0323 0x0aa4 Detect skipped due to KSN trusted
21:21:41.0323 0x0aa4 ASLDRService - ok
21:21:41.0385 0x0aa4 [ 7B4D08D2017AC06689D422E06C43F0AA, 42BACCEA0FCEB60B79F78098163147A8DD1DED24CB2F0DBB93EDC07DAB66135C ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
21:21:41.0385 0x0aa4 ASMMAP - ok
21:21:42.0290 0x0aa4 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:21:42.0290 0x0aa4 aspnet_state - ok
21:21:42.0305 0x0aa4 ASUSProcObsrv - ok
21:21:42.0337 0x0aa4 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:21:42.0461 0x0aa4 AsyncMac - ok
21:21:42.0524 0x0aa4 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
21:21:42.0539 0x0aa4 atapi - ok
21:21:42.0586 0x0aa4 [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:21:42.0664 0x0aa4 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:21:42.0664 0x0aa4 Detect skipped due to KSN trusted
21:21:42.0664 0x0aa4 ATKGFNEXSrv - ok
21:21:42.0883 0x0aa4 [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
21:21:42.0898 0x0aa4 atksgt - ok
21:21:42.0976 0x0aa4 [ F70D2392158CB68E775F8C4CD3D12FBB, C4D8274D34CFAD1DA9166C35BA41E063B9A085834E014A014E17A26C7DD216DE ] ATSWPDRV C:\Windows\system32\DRIVERS\ATSwpDrv.sys
21:21:42.0992 0x0aa4 ATSWPDRV - ok
21:21:43.0148 0x0aa4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:21:43.0226 0x0aa4 AudioEndpointBuilder - ok
21:21:43.0460 0x0aa4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:21:43.0631 0x0aa4 Audiosrv - ok
21:21:44.0068 0x0aa4 [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:21:44.0099 0x0aa4 AVP - ok
21:21:44.0162 0x0aa4 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
21:21:44.0209 0x0aa4 Beep - ok
21:21:44.0349 0x0aa4 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
21:21:44.0474 0x0aa4 BFE - ok
21:21:44.0833 0x0aa4 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
21:21:45.0035 0x0aa4 BITS - ok
21:21:45.0113 0x0aa4 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:21:45.0176 0x0aa4 blbdrive - ok
21:21:45.0706 0x0aa4 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:21:45.0737 0x0aa4 Bonjour Service - ok
21:21:45.0831 0x0aa4 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:21:45.0956 0x0aa4 bowser - ok
21:21:45.0971 0x0aa4 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:21:46.0034 0x0aa4 BrFiltLo - ok
21:21:46.0096 0x0aa4 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:21:46.0159 0x0aa4 BrFiltUp - ok
21:21:46.0190 0x0aa4 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
21:21:46.0221 0x0aa4 Browser - ok
21:21:46.0315 0x0aa4 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:21:48.0094 0x0aa4 Brserid - ok
21:21:48.0174 0x0aa4 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:21:48.0243 0x0aa4 BrSerWdm - ok
21:21:48.0266 0x0aa4 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:21:48.0302 0x0aa4 BrUsbMdm - ok
21:21:48.0428 0x0aa4 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:21:48.0693 0x0aa4 BrUsbSer - ok
21:21:48.0828 0x0aa4 [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:21:48.0923 0x0aa4 BthEnum - ok
21:21:48.0964 0x0aa4 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:21:49.0093 0x0aa4 BTHMODEM - ok
21:21:49.0175 0x0aa4 [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:21:49.0213 0x0aa4 BthPan - ok
21:21:49.0365 0x0aa4 [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:21:49.0455 0x0aa4 BTHPORT - ok
21:21:49.0490 0x0aa4 [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ C:\Windows\System32\bthserv.dll
21:21:49.0603 0x0aa4 BthServ - ok
21:21:49.0706 0x0aa4 [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:21:49.0815 0x0aa4 BTHUSB - ok
21:21:49.0940 0x0aa4 [ F2F7342742180D5060285499DEE50F99, 48EEDB0BEE52924E5FA3BE4FF21058C6FDB5987486A5AF138453F186AB3FD2C1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:21:49.0956 0x0aa4 btwaudio - ok
21:21:49.0987 0x0aa4 [ 32F59F26A30CFC508DA11DB3EA0F8B77, 0B8B2B8799891D783AF1C3D84F4D86BE3235865CF639AF131249661FD9E610B9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
21:21:50.0002 0x0aa4 btwavdt - ok
21:21:50.0096 0x0aa4 [ 09CB316DB9D61ED9FC9A7B07A1A301F6, BCB2750469F6A9980A1A32FB883BE67FEB9C82FA17A36C27C55A8D28E0D5D0EC ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:21:50.0112 0x0aa4 btwdins - ok
21:21:50.0190 0x0aa4 [ ECB98391C756A7B9CFBAE89D9D1235E1, 0A639D2187BDCD64320A7FB72627ED8AF2AF7CC8AAEF6E0991BDEF28BA080442 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:21:50.0205 0x0aa4 btwl2cap - ok
21:21:50.0221 0x0aa4 [ 03658734EF7D0F3B3F4636D3E8A38964, 514E42B4D13A740BD8125E9947D9B9ADC3A2DDA5AF4F0CC07B515839E9F3848A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:21:50.0221 0x0aa4 btwrchid - ok
21:21:50.0268 0x0aa4 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:21:50.0377 0x0aa4 cdfs - ok
21:21:50.0408 0x0aa4 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:21:50.0517 0x0aa4 cdrom - ok
21:21:50.0564 0x0aa4 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
21:21:50.0611 0x0aa4 CertPropSvc - ok
21:21:50.0704 0x0aa4 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:21:50.0767 0x0aa4 circlass - ok
21:21:50.0845 0x0aa4 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
21:21:50.0860 0x0aa4 CLFS - ok
21:21:51.0032 0x0aa4 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:21:51.0032 0x0aa4 clr_optimization_v2.0.50727_32 - ok
21:21:51.0110 0x0aa4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:21:51.0126 0x0aa4 clr_optimization_v4.0.30319_32 - ok
21:21:51.0157 0x0aa4 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:21:51.0188 0x0aa4 CmBatt - ok
21:21:51.0360 0x0aa4 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:21:51.0360 0x0aa4 cmdide - ok
21:21:51.0375 0x0aa4 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:21:51.0391 0x0aa4 Compbatt - ok
21:21:51.0391 0x0aa4 COMSysApp - ok
21:21:51.0438 0x0aa4 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:21:51.0453 0x0aa4 crcdisk - ok
21:21:51.0484 0x0aa4 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:21:51.0547 0x0aa4 Crusoe - ok
21:21:51.0625 0x0aa4 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:21:51.0687 0x0aa4 CryptSvc - ok
21:21:51.0874 0x0aa4 [ 699CE24FE6B5120AF709A0B91582A02D, CADD9583A3A728F8E71C67F00EF24435DA689CF35434693B0BBA99367B4A8BA0 ] DCamUSBET C:\Windows\system32\DRIVERS\etDevice.sys
21:21:51.0937 0x0aa4 DCamUSBET - ok
21:21:51.0999 0x0aa4 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:21:52.0233 0x0aa4 DcomLaunch - ok
21:21:52.0296 0x0aa4 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:21:52.0374 0x0aa4 DfsC - ok
21:21:52.0842 0x0aa4 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
21:21:53.0138 0x0aa4 DFSR - ok
21:21:53.0185 0x0aa4 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:21:53.0247 0x0aa4 Dhcp - ok
21:21:53.0278 0x0aa4 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
21:21:53.0294 0x0aa4 disk - ok
21:21:53.0450 0x0aa4 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:21:53.0559 0x0aa4 Dnscache - ok
21:21:53.0606 0x0aa4 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
21:21:53.0622 0x0aa4 dot3svc - ok
21:21:53.0778 0x0aa4 [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:21:53.0824 0x0aa4 Dot4 - ok
21:21:53.0918 0x0aa4 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:21:53.0980 0x0aa4 Dot4Print - ok
21:21:53.0996 0x0aa4 [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:21:54.0027 0x0aa4 dot4usb - ok
21:21:54.0058 0x0aa4 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
21:21:54.0090 0x0aa4 DPS - ok
21:21:54.0152 0x0aa4 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:21:54.0183 0x0aa4 drmkaud - ok
21:21:54.0292 0x0aa4 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:21:54.0324 0x0aa4 DXGKrnl - ok
21:21:54.0386 0x0aa4 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:21:54.0495 0x0aa4 E1G60 - ok
21:21:54.0511 0x0aa4 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
21:21:54.0542 0x0aa4 EapHost - ok
21:21:54.0573 0x0aa4 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
21:21:54.0589 0x0aa4 Ecache - ok
21:21:54.0760 0x0aa4 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:21:54.0838 0x0aa4 ehRecvr - ok
21:21:54.0854 0x0aa4 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
21:21:54.0901 0x0aa4 ehSched - ok
21:21:54.0948 0x0aa4 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
21:21:55.0026 0x0aa4 ehstart - ok
21:21:55.0057 0x0aa4 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:21:55.0072 0x0aa4 elxstor - ok
21:21:55.0213 0x0aa4 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:21:55.0384 0x0aa4 EMDMgmt - ok
21:21:55.0416 0x0aa4 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:21:55.0462 0x0aa4 ErrDev - ok
21:21:55.0494 0x0aa4 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
21:21:55.0556 0x0aa4 EventSystem - ok
21:21:55.0603 0x0aa4 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
21:21:55.0681 0x0aa4 exfat - ok
21:21:55.0712 0x0aa4 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:21:55.0790 0x0aa4 fastfat - ok
21:21:55.0821 0x0aa4 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:21:55.0852 0x0aa4 fdc - ok
21:21:55.0884 0x0aa4 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
|
|
01.04.2014, 15:43
| #6 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hier der zweite Teil von TDSSKiller: Code:
ATTFilter 21:21:55.0899 0x0aa4 fdPHost - ok
21:21:55.0899 0x0aa4 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
21:21:55.0993 0x0aa4 FDResPub - ok
21:21:55.0993 0x0aa4 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:21:56.0008 0x0aa4 FileInfo - ok
21:21:56.0024 0x0aa4 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:21:56.0102 0x0aa4 Filetrace - ok
21:21:56.0133 0x0aa4 [ FD7CB14845A7F91BE11F80635B2CD8A6, CBAAE671814281AE305C47A06D23B3E1C54B0BCFFDA7CF092F0B1C198CFF51A8 ] FiltUSBET C:\Windows\system32\DRIVERS\etFilter.sys
21:21:56.0164 0x0aa4 FiltUSBET - ok
21:21:56.0211 0x0aa4 [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:21:56.0289 0x0aa4 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
21:21:56.0289 0x0aa4 Detect skipped due to KSN trusted
21:21:56.0289 0x0aa4 FLEXnet Licensing Service - ok
21:21:56.0320 0x0aa4 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:21:56.0336 0x0aa4 flpydisk - ok
21:21:56.0476 0x0aa4 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:21:56.0492 0x0aa4 FltMgr - ok
21:21:56.0726 0x0aa4 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
21:21:56.0820 0x0aa4 FontCache - ok
21:21:56.0913 0x0aa4 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:21:56.0929 0x0aa4 FontCache3.0.0.0 - ok
21:21:57.0007 0x0aa4 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:21:57.0085 0x0aa4 Fs_Rec - ok
21:21:57.0267 0x0aa4 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:21:57.0279 0x0aa4 gagp30kx - ok
21:21:57.0386 0x0aa4 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:21:57.0394 0x0aa4 GEARAspiWDM - ok
21:21:57.0490 0x0aa4 [ 31B40F40E09513ADDC460F6A297AD474, C3A2A29E32F07BA6534380DE5A1EA7EFCB39B288B9541696DA65FA20DE20AFC4 ] ghaio C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:21:57.0500 0x0aa4 ghaio - ok
21:21:57.0737 0x0aa4 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
21:21:57.0811 0x0aa4 gpsvc - ok
21:21:57.0881 0x0aa4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:21:57.0890 0x0aa4 gupdate - ok
21:21:57.0895 0x0aa4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:21:57.0904 0x0aa4 gupdatem - ok
21:21:57.0938 0x0aa4 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:21:58.0041 0x0aa4 HdAudAddService - ok
21:21:58.0194 0x0aa4 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:21:58.0297 0x0aa4 HDAudBus - ok
21:21:58.0361 0x0aa4 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:21:58.0410 0x0aa4 HidBth - ok
21:21:58.0459 0x0aa4 [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:21:58.0519 0x0aa4 HidIr - ok
21:21:58.0560 0x0aa4 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
21:21:58.0585 0x0aa4 hidserv - ok
21:21:58.0605 0x0aa4 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:21:58.0634 0x0aa4 HidUsb - ok
21:21:58.0715 0x0aa4 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
21:21:58.0752 0x0aa4 hkmsvc - ok
21:21:58.0801 0x0aa4 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:21:58.0813 0x0aa4 HpCISSs - ok
21:21:59.0033 0x0aa4 [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:21:59.0079 0x0aa4 hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
21:21:59.0079 0x0aa4 Detect skipped due to KSN trusted
21:21:59.0079 0x0aa4 hpqcxs08 - ok
21:21:59.0153 0x0aa4 [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:21:59.0222 0x0aa4 hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:21:59.0222 0x0aa4 Detect skipped due to KSN trusted
21:21:59.0222 0x0aa4 hpqddsvc - ok
21:21:59.0427 0x0aa4 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:21:59.0551 0x0aa4 HTTP - ok
21:21:59.0567 0x0aa4 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:21:59.0583 0x0aa4 i2omp - ok
21:21:59.0598 0x0aa4 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:21:59.0661 0x0aa4 i8042prt - ok
21:21:59.0832 0x0aa4 [ 80C633722DA72E97F3F5B3B11325696D, 1255DC28801438E21AA9D3EAE6F40A9625FCEA99709A7ABCBBEA906DB34AFB6C ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:21:59.0973 0x0aa4 iaStor - ok
21:22:00.0019 0x0aa4 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:22:00.0035 0x0aa4 iaStorV - ok
21:22:00.0300 0x0aa4 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:22:00.0363 0x0aa4 idsvc - ok
21:22:00.0394 0x0aa4 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:22:00.0409 0x0aa4 iirsp - ok
21:22:00.0597 0x0aa4 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
21:22:00.0675 0x0aa4 IKEEXT - ok
21:22:01.0065 0x0aa4 [ 58072F5FD95ECE78F9FA7BDA1210A9E7, 2AC11995689239C861763EC665C7EF6CA37CFAFD6893AEB3296B77F3D70B9E82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:22:01.0361 0x0aa4 IntcAzAudAddService - ok
21:22:01.0408 0x0aa4 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
21:22:01.0423 0x0aa4 intelide - ok
21:22:01.0455 0x0aa4 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:22:01.0564 0x0aa4 intelppm - ok
21:22:01.0657 0x0aa4 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:22:01.0735 0x0aa4 IPBusEnum - ok
21:22:01.0751 0x0aa4 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:22:01.0813 0x0aa4 IpFilterDriver - ok
21:22:01.0829 0x0aa4 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:22:01.0891 0x0aa4 iphlpsvc - ok
21:22:01.0907 0x0aa4 IpInIp - ok
21:22:01.0938 0x0aa4 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:22:02.0001 0x0aa4 IPMIDRV - ok
21:22:02.0047 0x0aa4 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:22:02.0063 0x0aa4 IPNAT - ok
21:22:02.0125 0x0aa4 [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:22:02.0157 0x0aa4 iPod Service - ok
21:22:02.0235 0x0aa4 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:22:02.0250 0x0aa4 IRENUM - ok
21:22:02.0313 0x0aa4 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:22:02.0328 0x0aa4 isapnp - ok
21:22:02.0469 0x0aa4 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:22:02.0515 0x0aa4 iScsiPrt - ok
21:22:02.0547 0x0aa4 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:22:02.0562 0x0aa4 iteatapi - ok
21:22:02.0609 0x0aa4 [ 8BCD857C7932AD005D5F9C89329DA2E1, B2091CEA5D3D0D06E49D71E7D40E993D5653A0D8F5DC5CE5C9CEFB1242887E0D ] itecir C:\Windows\system32\DRIVERS\itecir.sys
21:22:02.0718 0x0aa4 itecir - ok
21:22:02.0749 0x0aa4 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:22:02.0765 0x0aa4 iteraid - ok
21:22:02.0781 0x0aa4 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:22:02.0796 0x0aa4 kbdclass - ok
21:22:02.0812 0x0aa4 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:22:02.0937 0x0aa4 kbdhid - ok
21:22:02.0952 0x0aa4 [ 27BD4AC228EF6C0D490617C32E86A672, A2259B4E78AE5D3158B0FC4F3694EEF9825B9FF782F09ED828E80E7B23E07D16 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
21:22:02.0968 0x0aa4 kbfiltr - ok
21:22:03.0030 0x0aa4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
21:22:03.0124 0x0aa4 KeyIso - ok
21:22:03.0155 0x0aa4 [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
21:22:03.0171 0x0aa4 kl1 - ok
21:22:03.0249 0x0aa4 [ 8C547EB6709BF41E0625EFCDF13C63CE, ECD36806745748D110964C8D332D5FED235C5423885A6E33C733568AEC15FD80 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
21:22:03.0389 0x0aa4 KLIF - ok
21:22:03.0451 0x0aa4 [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
21:22:03.0467 0x0aa4 KLIM6 - ok
21:22:03.0529 0x0aa4 [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
21:22:03.0529 0x0aa4 klkbdflt - ok
21:22:03.0607 0x0aa4 [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
21:22:03.0623 0x0aa4 klmouflt - ok
21:22:03.0654 0x0aa4 [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
21:22:03.0670 0x0aa4 kltdi - ok
21:22:03.0717 0x0aa4 [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps C:\Windows\system32\DRIVERS\kneps.sys
21:22:03.0732 0x0aa4 kneps - ok
21:22:03.0857 0x0aa4 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:22:03.0951 0x0aa4 KSecDD - ok
21:22:04.0091 0x0aa4 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:22:04.0185 0x0aa4 KtmRm - ok
21:22:04.0247 0x0aa4 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
21:22:04.0309 0x0aa4 LanmanServer - ok
21:22:04.0356 0x0aa4 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:22:04.0481 0x0aa4 LanmanWorkstation - ok
21:22:04.0528 0x0aa4 [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
21:22:04.0543 0x0aa4 lirsgt - ok
21:22:04.0590 0x0aa4 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:22:04.0653 0x0aa4 lltdio - ok
21:22:04.0715 0x0aa4 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:22:04.0793 0x0aa4 lltdsvc - ok
21:22:04.0809 0x0aa4 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:22:04.0840 0x0aa4 lmhosts - ok
21:22:04.0855 0x0aa4 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:22:04.0855 0x0aa4 LSI_FC - ok
21:22:04.0871 0x0aa4 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:22:04.0887 0x0aa4 LSI_SAS - ok
21:22:04.0918 0x0aa4 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:22:04.0933 0x0aa4 LSI_SCSI - ok
21:22:04.0965 0x0aa4 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
21:22:05.0043 0x0aa4 luafv - ok
21:22:05.0121 0x0aa4 [ 8039F480C192DD99FED4EBC71FFBF795, D02A1E4AAD5413B8F154E21C5B2C8FDD18F10A01197F44792BBDC1651E06F2A8 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
21:22:05.0121 0x0aa4 lullaby - ok
21:22:05.0199 0x0aa4 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:22:05.0230 0x0aa4 Mcx2Svc - ok
21:22:05.0245 0x0aa4 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
21:22:05.0261 0x0aa4 megasas - ok
21:22:05.0292 0x0aa4 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:22:05.0370 0x0aa4 MegaSR - ok
21:22:05.0448 0x0aa4 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
21:22:05.0511 0x0aa4 MMCSS - ok
21:22:05.0620 0x0aa4 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
21:22:05.0667 0x0aa4 Modem - ok
21:22:05.0682 0x0aa4 [ CBB59C41F19EFEA1A000793E08070A62, 4C3C01210DF9D00C05FA14FF5CEFB60C444CAEBFF3F49409EDE434D63F19B9F2 ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys
21:22:05.0745 0x0aa4 MODEMCSA - ok
21:22:05.0823 0x0aa4 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:22:05.0869 0x0aa4 monitor - ok
21:22:05.0901 0x0aa4 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:22:05.0947 0x0aa4 mouclass - ok
21:22:05.0963 0x0aa4 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:22:05.0994 0x0aa4 mouhid - ok
21:22:06.0010 0x0aa4 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:22:06.0072 0x0aa4 MountMgr - ok
21:22:06.0119 0x0aa4 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:22:06.0135 0x0aa4 MozillaMaintenance - ok
21:22:06.0197 0x0aa4 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
21:22:06.0213 0x0aa4 mpio - ok
21:22:06.0275 0x0aa4 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:22:06.0322 0x0aa4 mpsdrv - ok
21:22:06.0415 0x0aa4 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:22:06.0509 0x0aa4 MpsSvc - ok
21:22:06.0556 0x0aa4 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:22:06.0571 0x0aa4 Mraid35x - ok
21:22:06.0727 0x0aa4 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:22:06.0837 0x0aa4 MRxDAV - ok
21:22:06.0883 0x0aa4 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:22:06.0930 0x0aa4 mrxsmb - ok
21:22:06.0961 0x0aa4 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:22:06.0993 0x0aa4 mrxsmb10 - ok
21:22:07.0008 0x0aa4 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:22:07.0055 0x0aa4 mrxsmb20 - ok
21:22:07.0102 0x0aa4 [ DE77526BDE93142BDC90CFA9F5CEAD36, 783A6991982C077D8C3218E507CE098F6112809282633B0280E1228115572153 ] msahci C:\Windows\system32\drivers\msahci.sys
21:22:07.0117 0x0aa4 msahci - ok
21:22:07.0180 0x0aa4 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:22:07.0195 0x0aa4 msdsm - ok
21:22:07.0242 0x0aa4 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
21:22:07.0289 0x0aa4 MSDTC - ok
21:22:07.0367 0x0aa4 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:22:07.0429 0x0aa4 Msfs - ok
21:22:07.0554 0x0aa4 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:22:07.0570 0x0aa4 msisadrv - ok
21:22:07.0663 0x0aa4 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:22:07.0726 0x0aa4 MSiSCSI - ok
21:22:07.0726 0x0aa4 msiserver - ok
21:22:07.0741 0x0aa4 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:22:07.0773 0x0aa4 MSKSSRV - ok
21:22:07.0788 0x0aa4 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:22:07.0804 0x0aa4 MSPCLOCK - ok
21:22:07.0819 0x0aa4 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:22:07.0851 0x0aa4 MSPQM - ok
21:22:07.0882 0x0aa4 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:22:07.0897 0x0aa4 MsRPC - ok
21:22:07.0944 0x0aa4 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:22:07.0975 0x0aa4 mssmbios - ok
21:22:08.0007 0x0aa4 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:22:08.0022 0x0aa4 MSTEE - ok
21:22:08.0053 0x0aa4 [ 97AFFA9D95FFE20EEE6229BC6BE166CF, 6E13230AF96A3A5C518EFA21B9B1833E3DE9D6DA05A6E664E305EF18B162E1B9 ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
21:22:08.0100 0x0aa4 MTsensor - ok
21:22:08.0116 0x0aa4 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
21:22:08.0131 0x0aa4 Mup - ok
21:22:08.0163 0x0aa4 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
21:22:08.0194 0x0aa4 napagent - ok
21:22:08.0241 0x0aa4 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:22:08.0303 0x0aa4 NativeWifiP - ok
21:22:08.0443 0x0aa4 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:22:08.0490 0x0aa4 NDIS - ok
21:22:08.0521 0x0aa4 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:22:08.0553 0x0aa4 NdisTapi - ok
21:22:08.0631 0x0aa4 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:22:08.0662 0x0aa4 Ndisuio - ok
21:22:08.0787 0x0aa4 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:22:08.0802 0x0aa4 NdisWan - ok
21:22:08.0865 0x0aa4 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:22:08.0896 0x0aa4 NDProxy - ok
21:22:08.0943 0x0aa4 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:22:08.0958 0x0aa4 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:22:08.0958 0x0aa4 Detect skipped due to KSN trusted
21:22:08.0958 0x0aa4 Net Driver HPZ12 - ok
21:22:08.0989 0x0aa4 [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
21:22:09.0083 0x0aa4 Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
21:22:09.0083 0x0aa4 Detect skipped due to KSN trusted
21:22:09.0083 0x0aa4 Netaapl - ok
21:22:09.0114 0x0aa4 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:22:09.0161 0x0aa4 NetBIOS - ok
21:22:09.0192 0x0aa4 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:22:09.0208 0x0aa4 netbt - ok
21:22:09.0223 0x0aa4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
21:22:09.0223 0x0aa4 Netlogon - ok
21:22:09.0317 0x0aa4 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
21:22:09.0457 0x0aa4 Netman - ok
21:22:09.0551 0x0aa4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0613 0x0aa4 NetMsmqActivator - ok
21:22:09.0613 0x0aa4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0629 0x0aa4 NetPipeActivator - ok
21:22:09.0645 0x0aa4 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
21:22:09.0738 0x0aa4 netprofm - ok
21:22:09.0738 0x0aa4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0754 0x0aa4 NetTcpActivator - ok
21:22:09.0754 0x0aa4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:22:09.0769 0x0aa4 NetTcpPortSharing - ok
21:22:10.0581 0x0aa4 [ F0C42E0CDCE558D658FA53A222B4CCB1, 50AC8D9CCFB319EC03AB0F6AC2F70ED2EF3D746B8A8C7CC7A0606B592A3042DC ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
21:22:10.0846 0x0aa4 NETw5v32 - ok
21:22:10.0893 0x0aa4 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:22:10.0893 0x0aa4 nfrd960 - ok
21:22:10.0986 0x0aa4 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
21:22:11.0095 0x0aa4 NlaSvc - ok
21:22:11.0189 0x0aa4 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:22:11.0267 0x0aa4 Npfs - ok
21:22:11.0314 0x0aa4 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
21:22:11.0361 0x0aa4 nsi - ok
21:22:11.0376 0x0aa4 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:22:11.0423 0x0aa4 nsiproxy - ok
21:22:11.0517 0x0aa4 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:22:11.0579 0x0aa4 Ntfs - ok
21:22:11.0626 0x0aa4 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:22:11.0735 0x0aa4 ntrigdigi - ok
21:22:11.0782 0x0aa4 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
21:22:11.0860 0x0aa4 Null - ok
21:22:11.0907 0x0aa4 [ 77F9F9A199B87FE3F852E12F5419240B, BE9C05F2AC12BB41EC71A596039F2116E5A0F454D32E5A618112296721001473 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
21:22:11.0907 0x0aa4 NVHDA - ok
21:22:13.0045 0x0aa4 [ C1E661888C719FC2E12C057F233FB238, FAC74D6644686F3A6CC4852BFC0EC1AD36212F6E45F466CDEF9A36C2FD23316C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:22:13.0591 0x0aa4 nvlddmkm - ok
21:22:13.0669 0x0aa4 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:22:13.0685 0x0aa4 nvraid - ok
21:22:13.0701 0x0aa4 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:22:13.0716 0x0aa4 nvstor - ok
21:22:13.0810 0x0aa4 [ 31D7E63B62BC4680B5D1358F91DA104E, 8DF37F4AD73CBA597783E272603C17336C48F7BFFD7DDE55B0736F9A52BDFEDB ] nvsvc C:\Windows\system32\nvvsvc.exe
21:22:13.0888 0x0aa4 nvsvc - ok
21:22:14.0184 0x0aa4 [ 143B429F2D19A0F123ED8E4BCA8DB751, F0CC7D4C6AF1557E70CC6D5C2CD03BBBDBE27B3AC6D95962A8722C75850FF627 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:22:14.0215 0x0aa4 nvUpdatusService - ok
21:22:14.0559 0x0aa4 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:22:14.0574 0x0aa4 nv_agp - ok
21:22:14.0574 0x0aa4 NwlnkFlt - ok
21:22:14.0574 0x0aa4 NwlnkFwd - ok
21:22:14.0605 0x0aa4 [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:22:14.0652 0x0aa4 ohci1394 - ok
21:22:14.0730 0x0aa4 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:22:14.0746 0x0aa4 ose - ok
21:22:15.0619 0x0aa4 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:22:15.0963 0x0aa4 osppsvc - ok
21:22:16.0087 0x0aa4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:22:16.0384 0x0aa4 p2pimsvc - ok
21:22:16.0477 0x0aa4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
21:22:16.0618 0x0aa4 p2psvc - ok
21:22:16.0711 0x0aa4 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
21:22:16.0821 0x0aa4 Parport - ok
21:22:16.0883 0x0aa4 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:22:16.0899 0x0aa4 partmgr - ok
21:22:16.0961 0x0aa4 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:22:17.0039 0x0aa4 Parvdm - ok
21:22:17.0101 0x0aa4 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
21:22:17.0195 0x0aa4 PcaSvc - ok
21:22:17.0242 0x0aa4 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
21:22:17.0257 0x0aa4 pci - ok
21:22:17.0273 0x0aa4 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
21:22:17.0289 0x0aa4 pciide - ok
21:22:17.0304 0x0aa4 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:22:17.0320 0x0aa4 pcmcia - ok
21:22:17.0429 0x0aa4 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:22:17.0538 0x0aa4 PEAUTH - ok
21:22:17.0796 0x0aa4 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
21:22:18.0078 0x0aa4 pla - ok
21:22:18.0115 0x0aa4 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:22:18.0182 0x0aa4 PlugPlay - ok
21:22:18.0221 0x0aa4 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:22:18.0227 0x0aa4 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:22:18.0227 0x0aa4 Detect skipped due to KSN trusted
21:22:18.0227 0x0aa4 Pml Driver HPZ12 - ok
21:22:18.0283 0x0aa4 [ 3A2BDD76E7D2A5F40A7174793D1BA794, 029EE2C2F71AEC7906600EEC4F855DC5648C1ECF53F11426079B04591F24D067 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
21:22:18.0303 0x0aa4 PnkBstrA - ok
21:22:18.0380 0x0aa4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:22:18.0431 0x0aa4 PNRPAutoReg - ok
21:22:18.0530 0x0aa4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:22:18.0561 0x0aa4 PNRPsvc - ok
21:22:18.0775 0x0aa4 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:22:19.0084 0x0aa4 PolicyAgent - ok
21:22:19.0156 0x0aa4 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:22:19.0179 0x0aa4 PptpMiniport - ok
21:22:19.0315 0x0aa4 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
21:22:19.0651 0x0aa4 Processor - ok
21:22:19.0718 0x0aa4 [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
21:22:19.0741 0x0aa4 ProfSvc - ok
21:22:19.0757 0x0aa4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:22:19.0769 0x0aa4 ProtectedStorage - ok
21:22:19.0862 0x0aa4 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:22:19.0909 0x0aa4 PSched - ok
21:22:20.0001 0x0aa4 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:22:20.0044 0x0aa4 ql2300 - ok
21:22:20.0121 0x0aa4 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:22:20.0132 0x0aa4 ql40xx - ok
21:22:20.0207 0x0aa4 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
21:22:20.0230 0x0aa4 QWAVE - ok
21:22:20.0258 0x0aa4 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:22:20.0342 0x0aa4 QWAVEdrv - ok
21:22:20.0373 0x0aa4 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:22:20.0466 0x0aa4 RasAcd - ok
21:22:20.0498 0x0aa4 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
21:22:20.0529 0x0aa4 RasAuto - ok
21:22:20.0576 0x0aa4 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:22:20.0622 0x0aa4 Rasl2tp - ok
21:22:20.0685 0x0aa4 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
21:22:20.0732 0x0aa4 RasMan - ok
21:22:20.0856 0x0aa4 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:22:20.0888 0x0aa4 RasPppoe - ok
21:22:20.0903 0x0aa4 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:22:20.0919 0x0aa4 RasSstp - ok
21:22:21.0029 0x0aa4 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:22:21.0101 0x0aa4 rdbss - ok
21:22:21.0152 0x0aa4 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:22:21.0176 0x0aa4 RDPCDD - ok
21:22:21.0292 0x0aa4 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:22:21.0318 0x0aa4 rdpdr - ok
21:22:21.0412 0x0aa4 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:22:21.0474 0x0aa4 RDPENCDD - ok
21:22:21.0507 0x0aa4 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:22:21.0566 0x0aa4 RDPWD - ok
21:22:21.0649 0x0aa4 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
21:22:21.0699 0x0aa4 RemoteAccess - ok
21:22:21.0723 0x0aa4 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:22:21.0763 0x0aa4 RemoteRegistry - ok
21:22:21.0878 0x0aa4 [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:22:21.0916 0x0aa4 RFCOMM - ok
21:22:22.0001 0x0aa4 [ A5B12A4B3B774432DB9B9FA221190E59, 1DAAB43A2429035BAB8403E5D24F50F82BD41B5B478B344C3C58D49F1E15C2AE ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
21:22:22.0079 0x0aa4 rimmptsk - ok
21:22:22.0110 0x0aa4 [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
21:22:22.0141 0x0aa4 rimsptsk - ok
21:22:22.0157 0x0aa4 [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
21:22:22.0188 0x0aa4 rismxdp - ok
21:22:22.0204 0x0aa4 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
21:22:22.0235 0x0aa4 RpcLocator - ok
21:22:22.0266 0x0aa4 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
21:22:22.0297 0x0aa4 RpcSs - ok
21:22:22.0329 0x0aa4 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:22:22.0360 0x0aa4 rspndr - ok
21:22:22.0453 0x0aa4 [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
21:22:22.0469 0x0aa4 RTL8169 - ok
21:22:22.0531 0x0aa4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
21:22:22.0547 0x0aa4 SamSs - ok
21:22:22.0578 0x0aa4 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:22:22.0578 0x0aa4 sbp2port - ok
21:22:22.0656 0x0aa4 [ 2393ED056AE02F5DBB3A7D6E40A5FDC2, AC73452C892ABE7B98A0762BC7BD26CD712FF2E899E157F2A5119335E3E41B49 ] ScanUSBET C:\Windows\system32\DRIVERS\etScan.sys
21:22:22.0719 0x0aa4 ScanUSBET - ok
21:22:22.0781 0x0aa4 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:22:22.0797 0x0aa4 SCardSvr - ok
21:22:23.0031 0x0aa4 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
21:22:23.0077 0x0aa4 Schedule - ok
21:22:23.0124 0x0aa4 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
21:22:23.0140 0x0aa4 SCPolicySvc - ok
21:22:23.0171 0x0aa4 [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:22:23.0249 0x0aa4 sdbus - ok
21:22:23.0358 0x0aa4 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:22:23.0421 0x0aa4 SDRSVC - ok
21:22:23.0998 0x0aa4 [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:22:24.0310 0x0aa4 SDScannerService - ok
21:22:24.0481 0x0aa4 [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:22:24.0793 0x0aa4 SDUpdateService - ok
21:22:24.0918 0x0aa4 [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:22:24.0934 0x0aa4 SDWSCService - ok
21:22:25.0031 0x0aa4 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:22:25.0146 0x0aa4 secdrv - ok
21:22:25.0342 0x0aa4 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
21:22:25.0380 0x0aa4 seclogon - ok
21:22:25.0398 0x0aa4 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
21:22:25.0529 0x0aa4 SENS - ok
21:22:25.0563 0x0aa4 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:22:25.0603 0x0aa4 Serenum - ok
21:22:25.0904 0x0aa4 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
21:22:26.0047 0x0aa4 Serial - ok
21:22:26.0078 0x0aa4 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:22:26.0109 0x0aa4 sermouse - ok
21:22:26.0140 0x0aa4 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
21:22:26.0218 0x0aa4 SessionEnv - ok
21:22:26.0281 0x0aa4 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:22:26.0296 0x0aa4 sffdisk - ok
21:22:26.0327 0x0aa4 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:22:26.0390 0x0aa4 sffp_mmc - ok
21:22:26.0421 0x0aa4 [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:22:26.0499 0x0aa4 sffp_sd - ok
21:22:26.0515 0x0aa4 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:22:26.0561 0x0aa4 sfloppy - ok
21:22:26.0671 0x0aa4 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:22:26.0780 0x0aa4 SharedAccess - ok
21:22:26.0811 0x0aa4 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:22:26.0873 0x0aa4 ShellHWDetection - ok
21:22:26.0905 0x0aa4 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:22:26.0920 0x0aa4 sisagp - ok
21:22:26.0998 0x0aa4 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:22:27.0014 0x0aa4 SiSRaid2 - ok
21:22:27.0033 0x0aa4 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:22:27.0045 0x0aa4 SiSRaid4 - ok
21:22:27.0811 0x0aa4 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
21:22:28.0174 0x0aa4 slsvc - ok
21:22:28.0190 0x0aa4 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:22:28.0206 0x0aa4 SLUINotify - ok
21:22:28.0221 0x0aa4 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:22:28.0237 0x0aa4 Smb - ok
21:22:28.0408 0x0aa4 [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial C:\Windows\system32\DRIVERS\smserial.sys
21:22:28.0486 0x0aa4 smserial - ok
21:22:28.0627 0x0aa4 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:22:28.0658 0x0aa4 SNMPTRAP - ok
21:22:28.0674 0x0aa4 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
21:22:28.0705 0x0aa4 spldr - ok
21:22:28.0876 0x0aa4 [ 739DB668DBD812285ECC553E64A5E212, 08E99CD042232CEB20BB5A808E914C9F2F0C154099BF921BA40E661B08472CF5 ] spmgr C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:22:28.0876 0x0aa4 spmgr - ok
21:22:28.0970 0x0aa4 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
21:22:29.0045 0x0aa4 Spooler - ok
21:22:29.0364 0x0aa4 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
21:22:29.0509 0x0aa4 srv - ok
21:22:29.0524 0x0aa4 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:22:29.0581 0x0aa4 srv2 - ok
21:22:29.0663 0x0aa4 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:22:29.0687 0x0aa4 srvnet - ok
21:22:29.0781 0x0aa4 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:22:29.0826 0x0aa4 SSDPSRV - ok
21:22:29.0859 0x0aa4 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:22:29.0893 0x0aa4 SstpSvc - ok
21:22:30.0286 0x0aa4 [ 0632004181860960CF6E10DE8DDEF78B, FB4714CB6C795C106C4777835490DC9F68FA656107DDB54A425666BE293FDC0B ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:22:30.0379 0x0aa4 Stereo Service - ok
21:22:30.0520 0x0aa4 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
21:22:30.0644 0x0aa4 stisvc - ok
21:22:30.0676 0x0aa4 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:22:30.0691 0x0aa4 swenum - ok
21:22:30.0769 0x0aa4 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
21:22:30.0811 0x0aa4 swprv - ok
21:22:30.0830 0x0aa4 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:22:30.0840 0x0aa4 Symc8xx - ok
21:22:30.0857 0x0aa4 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:22:30.0867 0x0aa4 Sym_hi - ok
21:22:30.0894 0x0aa4 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:22:30.0905 0x0aa4 Sym_u3 - ok
21:22:30.0979 0x0aa4 [ A59457258DC236F63D6EAC759EF6C08B, C407AF5171A3F2C8F7E1F68E472D4F9E835BDEC50A8E0D4D8F2A6854F2AE0346 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:22:30.0997 0x0aa4 SynTP - ok
21:22:31.0327 0x0aa4 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
21:22:31.0546 0x0aa4 SysMain - ok
21:22:31.0582 0x0aa4 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:22:31.0608 0x0aa4 TabletInputService - ok
21:22:31.0708 0x0aa4 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:22:31.0789 0x0aa4 TapiSrv - ok
21:22:31.0824 0x0aa4 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
21:22:31.0847 0x0aa4 TBS - ok
21:22:32.0143 0x0aa4 [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:22:32.0218 0x0aa4 Tcpip - ok
21:22:32.0391 0x0aa4 [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:22:32.0454 0x0aa4 Tcpip6 - ok
21:22:32.0488 0x0aa4 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:22:32.0523 0x0aa4 tcpipreg - ok
21:22:32.0594 0x0aa4 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:22:32.0634 0x0aa4 TDPIPE - ok
21:22:32.0707 0x0aa4 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:22:32.0754 0x0aa4 TDTCP - ok
21:22:32.0830 0x0aa4 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:22:32.0873 0x0aa4 tdx - ok
21:22:32.0911 0x0aa4 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:22:32.0930 0x0aa4 TermDD - ok
21:22:33.0136 0x0aa4 [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
21:22:33.0238 0x0aa4 TermService - ok
21:22:33.0282 0x0aa4 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
21:22:33.0300 0x0aa4 Themes - ok
21:22:33.0349 0x0aa4 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
21:22:33.0371 0x0aa4 THREADORDER - ok
21:22:33.0496 0x0aa4 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
21:22:33.0606 0x0aa4 TrkWks - ok
21:22:33.0734 0x0aa4 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:22:33.0806 0x0aa4 TrustedInstaller - ok
21:22:33.0849 0x0aa4 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:22:33.0920 0x0aa4 tssecsrv - ok
21:22:33.0937 0x0aa4 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:22:33.0987 0x0aa4 tunmp - ok
21:22:34.0002 0x0aa4 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:22:34.0019 0x0aa4 tunnel - ok
21:22:34.0031 0x0aa4 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:22:34.0042 0x0aa4 uagp35 - ok
21:22:34.0077 0x0aa4 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:22:34.0098 0x0aa4 udfs - ok
21:22:34.0210 0x0aa4 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:22:34.0316 0x0aa4 UI0Detect - ok
21:22:34.0344 0x0aa4 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:22:34.0355 0x0aa4 uliagpkx - ok
21:22:34.0460 0x0aa4 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:22:34.0474 0x0aa4 uliahci - ok
21:22:34.0494 0x0aa4 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:22:34.0506 0x0aa4 UlSata - ok
21:22:34.0625 0x0aa4 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:22:34.0636 0x0aa4 ulsata2 - ok
21:22:34.0727 0x0aa4 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:22:34.0768 0x0aa4 umbus - ok
21:22:34.0804 0x0aa4 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
21:22:34.0879 0x0aa4 upnphost - ok
21:22:34.0933 0x0aa4 [ 8BF5D980CDCE35FB26F05047144BB57E, 8A770DD649FA0D6F574651E5525B983261B823C5778764598D89C453E68ED3F1 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
21:22:34.0953 0x0aa4 USBAAPL - detected UnsignedFile.Multi.Generic ( 1 )
21:22:35.0231 0x0aa4 Detect skipped due to KSN trusted
21:22:35.0231 0x0aa4 USBAAPL - ok
21:22:35.0681 0x0aa4 [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:22:35.0770 0x0aa4 usbaudio - ok
21:22:35.0914 0x0aa4 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:22:35.0930 0x0aa4 usbccgp - ok
21:22:36.0504 0x0aa4 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:22:36.0589 0x0aa4 usbcir - ok
21:22:36.0666 0x0aa4 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:22:36.0679 0x0aa4 usbehci - ok
21:22:36.0761 0x0aa4 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:22:36.0873 0x0aa4 usbhub - ok
21:22:36.0903 0x0aa4 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:22:36.0988 0x0aa4 usbohci - ok
21:22:37.0016 0x0aa4 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:22:37.0121 0x0aa4 usbprint - ok
21:22:37.0152 0x0aa4 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:22:37.0168 0x0aa4 usbscan - ok
21:22:37.0230 0x0aa4 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:22:37.0308 0x0aa4 USBSTOR - ok
21:22:37.0339 0x0aa4 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:22:37.0355 0x0aa4 usbuhci - ok
21:22:37.0433 0x0aa4 [ E67998E8F14CB0627A769F6530BCB352, 60982F168E9BF13954328C728F55F4D3ADDC572CACB65289B0E895A63DAA08C1 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:22:37.0464 0x0aa4 usbvideo - ok
21:22:37.0495 0x0aa4 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
21:22:37.0526 0x0aa4 UxSms - ok
21:22:37.0651 0x0aa4 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
21:22:37.0682 0x0aa4 vds - ok
21:22:37.0745 0x0aa4 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:22:37.0792 0x0aa4 vga - ok
21:22:37.0838 0x0aa4 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:22:37.0854 0x0aa4 VgaSave - ok
21:22:37.0901 0x0aa4 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:22:37.0901 0x0aa4 viaagp - ok
21:22:37.0948 0x0aa4 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:22:37.0963 0x0aa4 ViaC7 - ok
21:22:37.0994 0x0aa4 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
21:22:38.0010 0x0aa4 viaide - ok
21:22:38.0010 0x0aa4 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:22:38.0026 0x0aa4 volmgr - ok
21:22:38.0166 0x0aa4 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:22:38.0182 0x0aa4 volmgrx - ok
21:22:38.0572 0x0aa4 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:22:38.0587 0x0aa4 volsnap - ok
21:22:38.0650 0x0aa4 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:22:38.0665 0x0aa4 vsmraid - ok
21:22:38.0962 0x0aa4 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
21:22:39.0164 0x0aa4 VSS - ok
21:22:39.0274 0x0aa4 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
21:22:39.0367 0x0aa4 W32Time - ok
21:22:39.0398 0x0aa4 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:22:39.0445 0x0aa4 WacomPen - ok
21:22:39.0492 0x0aa4 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:22:39.0570 0x0aa4 Wanarp - ok
21:22:39.0570 0x0aa4 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:22:39.0586 0x0aa4 Wanarpv6 - ok
21:22:39.0664 0x0aa4 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:22:39.0742 0x0aa4 wcncsvc - ok
21:22:39.0773 0x0aa4 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:22:39.0866 0x0aa4 WcsPlugInService - ok
21:22:39.0913 0x0aa4 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
21:22:39.0944 0x0aa4 Wd - ok
21:22:40.0054 0x0aa4 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:22:40.0069 0x0aa4 Wdf01000 - ok
21:22:40.0085 0x0aa4 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:22:40.0132 0x0aa4 WdiServiceHost - ok
21:22:40.0132 0x0aa4 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:22:40.0163 0x0aa4 WdiSystemHost - ok
21:22:40.0381 0x0aa4 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
21:22:40.0397 0x0aa4 WebClient - ok
21:22:40.0459 0x0aa4 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:22:40.0537 0x0aa4 Wecsvc - ok
21:22:40.0568 0x0aa4 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:22:40.0584 0x0aa4 wercplsupport - ok
21:22:40.0646 0x0aa4 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
21:22:40.0662 0x0aa4 WerSvc - ok
21:22:40.0849 0x0aa4 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:22:40.0880 0x0aa4 WinDefend - ok
21:22:40.0880 0x0aa4 WinHttpAutoProxySvc - ok
21:22:41.0146 0x0aa4 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:22:41.0161 0x0aa4 Winmgmt - ok
21:22:41.0380 0x0aa4 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
21:22:41.0520 0x0aa4 WinRM - ok
21:22:41.0785 0x0aa4 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:22:42.0097 0x0aa4 Wlansvc - ok
21:22:42.0175 0x0aa4 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:22:42.0206 0x0aa4 WmiAcpi - ok
21:22:42.0238 0x0aa4 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:22:42.0316 0x0aa4 wmiApSrv - ok
21:22:42.0503 0x0aa4 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:22:42.0643 0x0aa4 WMPNetworkSvc - ok
21:22:42.0721 0x0aa4 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:22:42.0846 0x0aa4 WPCSvc - ok
21:22:42.0893 0x0aa4 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:22:42.0908 0x0aa4 WPDBusEnum - ok
21:22:42.0955 0x0aa4 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
21:22:42.0971 0x0aa4 WpdUsb - ok
21:22:43.0267 0x0aa4 [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:22:43.0454 0x0aa4 WPFFontCache_v0400 - ok
21:22:43.0470 0x0aa4 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:22:43.0579 0x0aa4 ws2ifsl - ok
21:22:43.0610 0x0aa4 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
21:22:43.0688 0x0aa4 wscsvc - ok
21:22:43.0688 0x0aa4 WSearch - ok
21:22:44.0032 0x0aa4 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
21:22:44.0203 0x0aa4 wuauserv - ok
21:22:44.0250 0x0aa4 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:22:44.0266 0x0aa4 WudfPf - ok
21:22:44.0328 0x0aa4 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:22:44.0359 0x0aa4 WUDFRd - ok
21:22:44.0390 0x0aa4 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:22:44.0406 0x0aa4 wudfsvc - ok
21:22:44.0468 0x0aa4 [ 7D1F3B131D503EF43EE594B5A2B9B427, 307DEC572FBC171D68ED098D73CB6F06754F26E51F8F7DB48035A8CF97AB37D0 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
21:22:44.0609 0x0aa4 yukonwlh - ok
21:22:44.0609 0x0aa4 ================ Scan global ===============================
21:22:44.0671 0x0aa4 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
21:22:44.0843 0x0aa4 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:22:44.0983 0x0aa4 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:22:45.0108 0x0aa4 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
21:22:45.0202 0x0aa4 [ Global ] - ok
21:22:45.0202 0x0aa4 ================ Scan MBR ==================================
21:22:45.0217 0x0aa4 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
21:22:46.0817 0x0aa4 \Device\Harddisk0\DR0 - ok
21:22:47.0137 0x0aa4 [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk1\DR1
21:22:47.0314 0x0aa4 \Device\Harddisk1\DR1 - ok
21:22:47.0314 0x0aa4 ================ Scan VBR ==================================
21:22:47.0361 0x0aa4 [ B5E8C5FD67063E8018CA1B4A2508A485 ] \Device\Harddisk0\DR0\Partition1
21:22:47.0392 0x0aa4 \Device\Harddisk0\DR0\Partition1 - ok
21:22:47.0439 0x0aa4 [ B4F9E8484D792D6D5F37CF57E4F80AE1 ] \Device\Harddisk0\DR0\Partition2
21:22:47.0454 0x0aa4 \Device\Harddisk0\DR0\Partition2 - ok
21:22:47.0454 0x0aa4 [ 6599E8079B52BFC8A1BED094B1D60C87 ] \Device\Harddisk1\DR1\Partition1
21:22:47.0502 0x0aa4 \Device\Harddisk1\DR1\Partition1 - ok
21:22:47.0502 0x0aa4 [ 67175C26A39AEE28EDEBB2BAFA46F08E ] \Device\Harddisk1\DR1\Partition2
21:22:47.0544 0x0aa4 \Device\Harddisk1\DR1\Partition2 - ok
21:22:47.0550 0x0aa4 AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:22:47.0552 0x0aa4 FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
21:22:47.0745 0x0aa4 ============================================================
21:22:47.0745 0x0aa4 Scan finished
21:22:47.0745 0x0aa4 ============================================================
21:22:47.0751 0x0f30 Detected object count: 0
21:22:47.0751 0x0f30 Actual detected object count: 0
21:23:35.0860 0x0e4c ============================================================
21:23:35.0860 0x0e4c Scan started
21:23:35.0860 0x0e4c Mode: Manual; SigCheck; TDLFS;
21:23:35.0860 0x0e4c ============================================================
21:23:35.0860 0x0e4c KSN ping started
21:23:39.0332 0x0e4c KSN ping finished: true
21:23:41.0434 0x0e4c ================ Scan system memory ========================
21:23:41.0434 0x0e4c System memory - ok
21:23:41.0434 0x0e4c ================ Scan services =============================
21:23:42.0092 0x0e4c [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:23:42.0133 0x0e4c ACPI - ok
21:23:42.0482 0x0e4c [ 14C23516C990DCD6052152CF034DDE40, 1EC8AAD6AA6D68A17A9D04AECDB716BD0DD4BFF93641BD96D01855AF1232A5FB ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
21:23:42.0535 0x0e4c Adobe Version Cue CS3 - ok
21:23:42.0638 0x0e4c [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:23:42.0647 0x0e4c AdobeARMservice - ok
21:23:42.0792 0x0e4c [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:23:42.0813 0x0e4c AdobeFlashPlayerUpdateSvc - ok
21:23:42.0850 0x0e4c [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:23:42.0876 0x0e4c adp94xx - ok
21:23:42.0951 0x0e4c [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:23:43.0017 0x0e4c adpahci - ok
21:23:43.0040 0x0e4c [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:23:43.0054 0x0e4c adpu160m - ok
21:23:43.0080 0x0e4c [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:23:43.0095 0x0e4c adpu320 - ok
21:23:43.0154 0x0e4c [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:23:43.0174 0x0e4c AeLookupSvc - ok
21:23:43.0237 0x0e4c [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
21:23:43.0278 0x0e4c AFD - ok
21:23:43.0302 0x0e4c [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:23:43.0328 0x0e4c AgereModemAudio - ok
21:23:43.0424 0x0e4c [ 1CFEBA39FC613E45B49D3EDDFBCDA289, 15E8102FD9C50DBC16DDC523FC9C17DBE21F2C5C4E081C54901379C0D99277AA ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
21:23:43.0471 0x0e4c AgereSoftModem - ok
21:23:43.0547 0x0e4c [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:23:43.0558 0x0e4c agp440 - ok
21:23:43.0609 0x0e4c [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:23:43.0619 0x0e4c aic78xx - ok
21:23:43.0689 0x0e4c [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
21:23:43.0716 0x0e4c ALG - ok
21:23:43.0735 0x0e4c [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
21:23:43.0745 0x0e4c aliide - ok
21:23:43.0765 0x0e4c [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:23:43.0777 0x0e4c amdagp - ok
21:23:43.0797 0x0e4c [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
21:23:43.0808 0x0e4c amdide - ok
21:23:43.0819 0x0e4c [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:23:43.0840 0x0e4c AmdK7 - ok
21:23:43.0873 0x0e4c [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:23:43.0895 0x0e4c AmdK8 - ok
21:23:43.0942 0x0e4c [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
21:23:43.0961 0x0e4c Appinfo - ok
21:23:44.0023 0x0e4c [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:23:44.0033 0x0e4c Apple Mobile Device - ok
21:23:44.0082 0x0e4c [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
21:23:44.0095 0x0e4c arc - ok
21:23:44.0120 0x0e4c [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:23:44.0133 0x0e4c arcsas - ok
21:23:44.0162 0x0e4c [ 2EEDA27C19259C2340324EF7180D086B, 5426BF8EED7F87CEEA4D3EE1E721305A3703B0C490E01DE97DE5AFA0003C93D6 ] ASBroker C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:23:44.0168 0x0e4c ASBroker - detected UnsignedFile.Multi.Generic ( 1 )
21:23:44.0228 0x0e4c ASBroker ( UnsignedFile.Multi.Generic ) - warning
21:23:44.0228 0x0e4c Force sending object to P2P due to detect: C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
21:23:55.0293 0x0e4c Object send P2P result: true
21:23:55.0574 0x0e4c [ BB3C0521ECCA4BB17AC55EB640DF0FA5, 125B285960B45E0384EB1770B10488BEBB87F6CD1785EA83C0C24CDD9B9EDEAF ] ASChannel C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:23:55.0574 0x0e4c ASChannel - detected UnsignedFile.Multi.Generic ( 1 )
21:23:55.0574 0x0e4c ASChannel ( UnsignedFile.Multi.Generic ) - warning
21:23:55.0574 0x0e4c Force sending object to P2P due to detect: C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll
21:24:07.0742 0x0e4c Object send P2P result: true
21:24:08.0428 0x0e4c [ 5A055A4777CBBC8845DD598CB2EEBF69, AF58FF2D58DA807869531A645ED4AD078FC411554EE18366949D27FF0C28829D ] ASLDRService C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:24:08.0428 0x0e4c ASLDRService - detected UnsignedFile.Multi.Generic ( 1 )
21:24:08.0428 0x0e4c ASLDRService ( UnsignedFile.Multi.Generic ) - warning
21:24:08.0428 0x0e4c Force sending object to P2P due to detect: C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
21:24:16.0025 0x0e4c Object send P2P result: true
21:24:16.0259 0x0e4c [ 7B4D08D2017AC06689D422E06C43F0AA, 42BACCEA0FCEB60B79F78098163147A8DD1DED24CB2F0DBB93EDC07DAB66135C ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
21:24:16.0275 0x0e4c ASMMAP - ok
21:24:16.0368 0x0e4c [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:24:16.0446 0x0e4c aspnet_state - ok
21:24:16.0446 0x0e4c ASUSProcObsrv - ok
21:24:16.0478 0x0e4c [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:24:16.0493 0x0e4c AsyncMac - ok
21:24:16.0509 0x0e4c [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
21:24:16.0524 0x0e4c atapi - ok
21:24:16.0556 0x0e4c [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:24:16.0556 0x0e4c ATKGFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:24:16.0556 0x0e4c ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
21:24:16.0805 0x0e4c [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
21:24:16.0821 0x0e4c atksgt - ok
21:24:16.0868 0x0e4c [ F70D2392158CB68E775F8C4CD3D12FBB, C4D8274D34CFAD1DA9166C35BA41E063B9A085834E014A014E17A26C7DD216DE ] ATSWPDRV C:\Windows\system32\DRIVERS\ATSwpDrv.sys
21:24:16.0883 0x0e4c ATSWPDRV - ok
21:24:16.0899 0x0e4c [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:24:16.0930 0x0e4c AudioEndpointBuilder - ok
21:24:16.0946 0x0e4c [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:24:16.0961 0x0e4c Audiosrv - ok
21:24:17.0055 0x0e4c [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
21:24:17.0070 0x0e4c AVP - ok
21:24:17.0102 0x0e4c [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
21:24:17.0117 0x0e4c Beep - ok
21:24:17.0164 0x0e4c [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
21:24:17.0195 0x0e4c BFE - ok
21:24:17.0289 0x0e4c [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
21:24:17.0336 0x0e4c BITS - ok
21:24:17.0382 0x0e4c [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:24:17.0414 0x0e4c blbdrive - ok
21:24:17.0476 0x0e4c [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:24:17.0492 0x0e4c Bonjour Service - ok
21:24:17.0538 0x0e4c [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:24:17.0601 0x0e4c bowser - ok
21:24:17.0616 0x0e4c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:24:17.0648 0x0e4c BrFiltLo - ok
21:24:17.0663 0x0e4c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:24:17.0679 0x0e4c BrFiltUp - ok
21:24:17.0694 0x0e4c [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
21:24:17.0726 0x0e4c Browser - ok
21:24:17.0804 0x0e4c [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:24:17.0850 0x0e4c Brserid - ok
21:24:17.0882 0x0e4c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:24:17.0913 0x0e4c BrSerWdm - ok
21:24:17.0944 0x0e4c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:24:18.0038 0x0e4c BrUsbMdm - ok
21:24:18.0069 0x0e4c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:24:18.0100 0x0e4c BrUsbSer - ok
21:24:18.0131 0x0e4c [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:24:18.0162 0x0e4c BthEnum - ok
21:24:18.0162 0x0e4c [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:24:18.0209 0x0e4c BTHMODEM - ok
21:24:18.0225 0x0e4c [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:24:18.0256 0x0e4c BthPan - ok
21:24:18.0287 0x0e4c [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:24:18.0334 0x0e4c BTHPORT - ok
21:24:18.0365 0x0e4c [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ C:\Windows\System32\bthserv.dll
21:24:18.0381 0x0e4c BthServ - ok
21:24:18.0428 0x0e4c [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:24:18.0428 0x0e4c BTHUSB - ok
21:24:18.0459 0x0e4c [ F2F7342742180D5060285499DEE50F99, 48EEDB0BEE52924E5FA3BE4FF21058C6FDB5987486A5AF138453F186AB3FD2C1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:24:18.0474 0x0e4c btwaudio - ok
21:24:18.0506 0x0e4c [ 32F59F26A30CFC508DA11DB3EA0F8B77, 0B8B2B8799891D783AF1C3D84F4D86BE3235865CF639AF131249661FD9E610B9 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
21:24:18.0506 0x0e4c btwavdt - ok
21:24:18.0552 0x0e4c [ 09CB316DB9D61ED9FC9A7B07A1A301F6, BCB2750469F6A9980A1A32FB883BE67FEB9C82FA17A36C27C55A8D28E0D5D0EC ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
21:24:18.0584 0x0e4c btwdins - ok
21:24:18.0599 0x0e4c [ ECB98391C756A7B9CFBAE89D9D1235E1, 0A639D2187BDCD64320A7FB72627ED8AF2AF7CC8AAEF6E0991BDEF28BA080442 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:24:18.0599 0x0e4c btwl2cap - ok
21:24:18.0646 0x0e4c [ 03658734EF7D0F3B3F4636D3E8A38964, 514E42B4D13A740BD8125E9947D9B9ADC3A2DDA5AF4F0CC07B515839E9F3848A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:24:18.0662 0x0e4c btwrchid - ok
21:24:18.0677 0x0e4c [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:24:18.0708 0x0e4c cdfs - ok
21:24:18.0724 0x0e4c [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:24:18.0740 0x0e4c cdrom - ok
21:24:18.0755 0x0e4c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
21:24:18.0771 0x0e4c CertPropSvc - ok
21:24:18.0802 0x0e4c [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:24:18.0818 0x0e4c circlass - ok
21:24:18.0849 0x0e4c [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
21:24:18.0864 0x0e4c CLFS - ok
21:24:18.0911 0x0e4c [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:24:18.0911 0x0e4c clr_optimization_v2.0.50727_32 - ok
21:24:18.0942 0x0e4c [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:24:18.0958 0x0e4c clr_optimization_v4.0.30319_32 - ok
21:24:18.0958 0x0e4c [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:24:19.0036 0x0e4c CmBatt - ok
21:24:19.0052 0x0e4c [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:24:19.0067 0x0e4c cmdide - ok
21:24:19.0083 0x0e4c [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:24:19.0098 0x0e4c Compbatt - ok
21:24:19.0098 0x0e4c COMSysApp - ok
21:24:19.0114 0x0e4c [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:24:19.0114 0x0e4c crcdisk - ok
21:24:19.0145 0x0e4c [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:24:19.0161 0x0e4c Crusoe - ok
21:24:19.0192 0x0e4c [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:24:19.0223 0x0e4c CryptSvc - ok
21:24:19.0254 0x0e4c [ 699CE24FE6B5120AF709A0B91582A02D, CADD9583A3A728F8E71C67F00EF24435DA689CF35434693B0BBA99367B4A8BA0 ] DCamUSBET C:\Windows\system32\DRIVERS\etDevice.sys
21:24:19.0286 0x0e4c DCamUSBET - ok
21:24:19.0317 0x0e4c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:24:19.0364 0x0e4c DcomLaunch - ok
21:24:19.0395 0x0e4c [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:24:19.0426 0x0e4c DfsC - ok
21:24:19.0520 0x0e4c [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
21:24:19.0878 0x0e4c DFSR - ok
21:24:19.0956 0x0e4c [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:24:19.0988 0x0e4c Dhcp - ok
21:24:20.0034 0x0e4c [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
21:24:20.0050 0x0e4c disk - ok
21:24:20.0066 0x0e4c [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:24:20.0097 0x0e4c Dnscache - ok
21:24:20.0112 0x0e4c [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
21:24:20.0144 0x0e4c dot3svc - ok
21:24:20.0159 0x0e4c [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:24:20.0190 0x0e4c Dot4 - ok
21:24:20.0206 0x0e4c [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:24:20.0237 0x0e4c Dot4Print - ok
21:24:20.0253 0x0e4c [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:24:20.0268 0x0e4c dot4usb - ok
21:24:20.0300 0x0e4c [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
21:24:20.0331 0x0e4c DPS - ok
21:24:20.0346 0x0e4c [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:24:20.0378 0x0e4c drmkaud - ok
21:24:20.0424 0x0e4c [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:24:20.0471 0x0e4c DXGKrnl - ok
21:24:20.0487 0x0e4c [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:24:20.0502 0x0e4c E1G60 - ok
21:24:20.0518 0x0e4c [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
21:24:20.0534 0x0e4c EapHost - ok
21:24:20.0565 0x0e4c [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
21:24:20.0580 0x0e4c Ecache - ok
21:24:20.0643 0x0e4c [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:24:20.0674 0x0e4c ehRecvr - ok
21:24:20.0705 0x0e4c [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
21:24:20.0721 0x0e4c ehSched - ok
21:24:20.0721 0x0e4c [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
21:24:20.0736 0x0e4c ehstart - ok
21:24:20.0768 0x0e4c [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:24:20.0783 0x0e4c elxstor - ok
21:24:20.0830 0x0e4c [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:24:20.0892 0x0e4c EMDMgmt - ok
21:24:20.0924 0x0e4c [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
|
|
01.04.2014, 15:45
| #7 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Und hier ist der letzte Teil: Code:
ATTFilter 21:24:20.0939 0x0e4c ErrDev - ok
21:24:20.0970 0x0e4c [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
21:24:20.0986 0x0e4c EventSystem - ok
21:24:21.0033 0x0e4c [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
21:24:21.0048 0x0e4c exfat - ok
21:24:21.0080 0x0e4c [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:24:21.0111 0x0e4c fastfat - ok
21:24:21.0111 0x0e4c [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:24:21.0142 0x0e4c fdc - ok
21:24:21.0158 0x0e4c [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
21:24:21.0189 0x0e4c fdPHost - ok
21:24:21.0204 0x0e4c [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
21:24:21.0236 0x0e4c FDResPub - ok
21:24:21.0236 0x0e4c [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:24:21.0251 0x0e4c FileInfo - ok
21:24:21.0282 0x0e4c [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:24:21.0298 0x0e4c Filetrace - ok
21:24:21.0329 0x0e4c [ FD7CB14845A7F91BE11F80635B2CD8A6, CBAAE671814281AE305C47A06D23B3E1C54B0BCFFDA7CF092F0B1C198CFF51A8 ] FiltUSBET C:\Windows\system32\DRIVERS\etFilter.sys
21:24:21.0345 0x0e4c FiltUSBET - ok
21:24:21.0392 0x0e4c [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:24:21.0423 0x0e4c FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
21:24:21.0423 0x0e4c FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
21:24:21.0641 0x0e4c [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:24:21.0672 0x0e4c flpydisk - ok
21:24:21.0704 0x0e4c [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:24:21.0719 0x0e4c FltMgr - ok
21:24:21.0844 0x0e4c [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
21:24:21.0906 0x0e4c FontCache - ok
21:24:21.0984 0x0e4c [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:24:22.0000 0x0e4c FontCache3.0.0.0 - ok
21:24:22.0062 0x0e4c [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:24:22.0094 0x0e4c Fs_Rec - ok
21:24:22.0125 0x0e4c [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:24:22.0140 0x0e4c gagp30kx - ok
21:24:22.0172 0x0e4c [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:24:22.0172 0x0e4c GEARAspiWDM - ok
21:24:22.0203 0x0e4c [ 31B40F40E09513ADDC460F6A297AD474, C3A2A29E32F07BA6534380DE5A1EA7EFCB39B288B9541696DA65FA20DE20AFC4 ] ghaio C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
21:24:22.0218 0x0e4c ghaio - ok
21:24:22.0250 0x0e4c [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
21:24:22.0296 0x0e4c gpsvc - ok
21:24:22.0374 0x0e4c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:24:22.0390 0x0e4c gupdate - ok
21:24:22.0390 0x0e4c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:24:22.0406 0x0e4c gupdatem - ok
21:24:22.0437 0x0e4c [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:24:22.0484 0x0e4c HdAudAddService - ok
21:24:22.0515 0x0e4c [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:24:22.0562 0x0e4c HDAudBus - ok
21:24:22.0608 0x0e4c [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:24:22.0640 0x0e4c HidBth - ok
21:24:22.0671 0x0e4c [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:24:22.0686 0x0e4c HidIr - ok
21:24:22.0702 0x0e4c [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
21:24:22.0718 0x0e4c hidserv - ok
21:24:22.0733 0x0e4c [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:24:22.0749 0x0e4c HidUsb - ok
21:24:22.0764 0x0e4c [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
21:24:22.0780 0x0e4c hkmsvc - ok
21:24:22.0811 0x0e4c [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:24:22.0827 0x0e4c HpCISSs - ok
21:24:22.0920 0x0e4c [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:24:22.0936 0x0e4c hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
21:24:22.0936 0x0e4c hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
21:24:23.0154 0x0e4c [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:24:23.0170 0x0e4c hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
21:24:23.0170 0x0e4c hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
21:24:23.0404 0x0e4c [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:24:23.0466 0x0e4c HTTP - ok
21:24:23.0513 0x0e4c [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:24:23.0529 0x0e4c i2omp - ok
21:24:23.0529 0x0e4c [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:24:23.0544 0x0e4c i8042prt - ok
21:24:23.0592 0x0e4c [ 80C633722DA72E97F3F5B3B11325696D, 1255DC28801438E21AA9D3EAE6F40A9625FCEA99709A7ABCBBEA906DB34AFB6C ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:24:23.0592 0x0e4c iaStor - ok
21:24:23.0623 0x0e4c [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:24:23.0639 0x0e4c iaStorV - ok
21:24:23.0717 0x0e4c [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:24:23.0764 0x0e4c idsvc - ok
21:24:23.0811 0x0e4c [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:24:23.0811 0x0e4c iirsp - ok
21:24:23.0904 0x0e4c [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
21:24:23.0935 0x0e4c IKEEXT - ok
21:24:24.0060 0x0e4c [ 58072F5FD95ECE78F9FA7BDA1210A9E7, 2AC11995689239C861763EC665C7EF6CA37CFAFD6893AEB3296B77F3D70B9E82 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:24:24.0216 0x0e4c IntcAzAudAddService - ok
21:24:24.0294 0x0e4c [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
21:24:24.0310 0x0e4c intelide - ok
21:24:24.0325 0x0e4c [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:24:24.0357 0x0e4c intelppm - ok
21:24:24.0372 0x0e4c [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:24:24.0403 0x0e4c IPBusEnum - ok
21:24:24.0419 0x0e4c [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:24:24.0435 0x0e4c IpFilterDriver - ok
21:24:24.0466 0x0e4c [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:24:24.0481 0x0e4c iphlpsvc - ok
21:24:24.0497 0x0e4c IpInIp - ok
21:24:24.0497 0x0e4c [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:24:24.0528 0x0e4c IPMIDRV - ok
21:24:24.0544 0x0e4c [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:24:24.0560 0x0e4c IPNAT - ok
21:24:24.0623 0x0e4c [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:24:24.0654 0x0e4c iPod Service - ok
21:24:24.0670 0x0e4c [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:24:24.0701 0x0e4c IRENUM - ok
21:24:24.0732 0x0e4c [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:24:24.0732 0x0e4c isapnp - ok
21:24:24.0763 0x0e4c [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:24:24.0779 0x0e4c iScsiPrt - ok
21:24:24.0810 0x0e4c [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:24:24.0810 0x0e4c iteatapi - ok
21:24:24.0826 0x0e4c [ 8BCD857C7932AD005D5F9C89329DA2E1, B2091CEA5D3D0D06E49D71E7D40E993D5653A0D8F5DC5CE5C9CEFB1242887E0D ] itecir C:\Windows\system32\DRIVERS\itecir.sys
21:24:24.0857 0x0e4c itecir - ok
21:24:24.0857 0x0e4c [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:24:24.0872 0x0e4c iteraid - ok
21:24:24.0888 0x0e4c [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:24:24.0888 0x0e4c kbdclass - ok
21:24:24.0919 0x0e4c [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:24:24.0935 0x0e4c kbdhid - ok
21:24:24.0950 0x0e4c [ 27BD4AC228EF6C0D490617C32E86A672, A2259B4E78AE5D3158B0FC4F3694EEF9825B9FF782F09ED828E80E7B23E07D16 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
21:24:24.0950 0x0e4c kbfiltr - ok
21:24:24.0966 0x0e4c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
21:24:24.0997 0x0e4c KeyIso - ok
21:24:25.0028 0x0e4c [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
21:24:25.0044 0x0e4c kl1 - ok
21:24:25.0075 0x0e4c [ 8C547EB6709BF41E0625EFCDF13C63CE, ECD36806745748D110964C8D332D5FED235C5423885A6E33C733568AEC15FD80 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
21:24:25.0153 0x0e4c KLIF - ok
21:24:25.0169 0x0e4c [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
21:24:25.0169 0x0e4c KLIM6 - ok
21:24:25.0200 0x0e4c [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
21:24:25.0216 0x0e4c klkbdflt - ok
21:24:25.0231 0x0e4c [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
21:24:25.0231 0x0e4c klmouflt - ok
21:24:25.0247 0x0e4c [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
21:24:25.0262 0x0e4c kltdi - ok
21:24:25.0278 0x0e4c [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps C:\Windows\system32\DRIVERS\kneps.sys
21:24:25.0294 0x0e4c kneps - ok
21:24:25.0340 0x0e4c [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:24:25.0356 0x0e4c KSecDD - ok
21:24:25.0387 0x0e4c [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:24:25.0434 0x0e4c KtmRm - ok
21:24:25.0465 0x0e4c [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
21:24:25.0481 0x0e4c LanmanServer - ok
21:24:25.0512 0x0e4c [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:24:25.0543 0x0e4c LanmanWorkstation - ok
21:24:25.0574 0x0e4c [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
21:24:25.0574 0x0e4c lirsgt - ok
21:24:25.0607 0x0e4c [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:24:25.0622 0x0e4c lltdio - ok
21:24:25.0653 0x0e4c [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:24:25.0716 0x0e4c lltdsvc - ok
21:24:25.0747 0x0e4c [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:24:25.0872 0x0e4c lmhosts - ok
21:24:25.0887 0x0e4c [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:24:25.0903 0x0e4c LSI_FC - ok
21:24:25.0919 0x0e4c [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:24:25.0934 0x0e4c LSI_SAS - ok
21:24:25.0950 0x0e4c [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:24:25.0965 0x0e4c LSI_SCSI - ok
21:24:25.0997 0x0e4c [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
21:24:26.0012 0x0e4c luafv - ok
21:24:26.0043 0x0e4c [ 8039F480C192DD99FED4EBC71FFBF795, D02A1E4AAD5413B8F154E21C5B2C8FDD18F10A01197F44792BBDC1651E06F2A8 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
21:24:26.0059 0x0e4c lullaby - ok
21:24:26.0075 0x0e4c [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:24:26.0090 0x0e4c Mcx2Svc - ok
21:24:26.0121 0x0e4c [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
21:24:26.0137 0x0e4c megasas - ok
21:24:26.0153 0x0e4c [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:24:26.0184 0x0e4c MegaSR - ok
21:24:26.0246 0x0e4c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
21:24:26.0262 0x0e4c MMCSS - ok
21:24:26.0277 0x0e4c [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
21:24:26.0309 0x0e4c Modem - ok
21:24:26.0324 0x0e4c [ CBB59C41F19EFEA1A000793E08070A62, 4C3C01210DF9D00C05FA14FF5CEFB60C444CAEBFF3F49409EDE434D63F19B9F2 ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys
21:24:26.0355 0x0e4c MODEMCSA - ok
21:24:26.0371 0x0e4c [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:24:26.0387 0x0e4c monitor - ok
21:24:26.0402 0x0e4c [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:24:26.0418 0x0e4c mouclass - ok
21:24:26.0433 0x0e4c [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:24:26.0465 0x0e4c mouhid - ok
21:24:26.0465 0x0e4c [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:24:26.0480 0x0e4c MountMgr - ok
21:24:26.0543 0x0e4c [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:24:26.0558 0x0e4c MozillaMaintenance - ok
21:24:26.0574 0x0e4c [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
21:24:26.0589 0x0e4c mpio - ok
21:24:26.0590 0x0e4c [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:24:26.0622 0x0e4c mpsdrv - ok
21:24:26.0653 0x0e4c [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:24:26.0684 0x0e4c MpsSvc - ok
21:24:26.0715 0x0e4c [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:24:26.0731 0x0e4c Mraid35x - ok
21:24:26.0762 0x0e4c [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:24:26.0778 0x0e4c MRxDAV - ok
21:24:26.0824 0x0e4c [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:24:26.0840 0x0e4c mrxsmb - ok
21:24:26.0856 0x0e4c [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:24:26.0871 0x0e4c mrxsmb10 - ok
21:24:26.0871 0x0e4c [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:24:26.0887 0x0e4c mrxsmb20 - ok
21:24:26.0918 0x0e4c [ DE77526BDE93142BDC90CFA9F5CEAD36, 783A6991982C077D8C3218E507CE098F6112809282633B0280E1228115572153 ] msahci C:\Windows\system32\drivers\msahci.sys
21:24:26.0918 0x0e4c msahci - ok
21:24:26.0949 0x0e4c [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:24:26.0965 0x0e4c msdsm - ok
21:24:26.0980 0x0e4c [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
21:24:27.0012 0x0e4c MSDTC - ok
21:24:27.0027 0x0e4c [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:24:27.0043 0x0e4c Msfs - ok
21:24:27.0058 0x0e4c [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:24:27.0074 0x0e4c msisadrv - ok
21:24:27.0090 0x0e4c [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:24:27.0121 0x0e4c MSiSCSI - ok
21:24:27.0121 0x0e4c msiserver - ok
21:24:27.0152 0x0e4c [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:24:27.0168 0x0e4c MSKSSRV - ok
21:24:27.0183 0x0e4c [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:24:27.0199 0x0e4c MSPCLOCK - ok
21:24:27.0214 0x0e4c [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:24:27.0246 0x0e4c MSPQM - ok
21:24:27.0261 0x0e4c [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:24:27.0277 0x0e4c MsRPC - ok
21:24:27.0292 0x0e4c [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:24:27.0292 0x0e4c mssmbios - ok
21:24:27.0308 0x0e4c [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:24:27.0324 0x0e4c MSTEE - ok
21:24:27.0370 0x0e4c [ 97AFFA9D95FFE20EEE6229BC6BE166CF, 6E13230AF96A3A5C518EFA21B9B1833E3DE9D6DA05A6E664E305EF18B162E1B9 ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
21:24:27.0386 0x0e4c MTsensor - ok
21:24:27.0402 0x0e4c [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
21:24:27.0417 0x0e4c Mup - ok
21:24:27.0448 0x0e4c [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
21:24:27.0480 0x0e4c napagent - ok
21:24:27.0511 0x0e4c [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:24:27.0526 0x0e4c NativeWifiP - ok
21:24:27.0542 0x0e4c [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:24:27.0573 0x0e4c NDIS - ok
21:24:27.0589 0x0e4c [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:24:27.0605 0x0e4c NdisTapi - ok
21:24:27.0637 0x0e4c [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:24:27.0652 0x0e4c Ndisuio - ok
21:24:27.0668 0x0e4c [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:24:27.0683 0x0e4c NdisWan - ok
21:24:27.0683 0x0e4c [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:24:27.0715 0x0e4c NDProxy - ok
21:24:27.0730 0x0e4c [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:24:27.0746 0x0e4c Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:24:27.0746 0x0e4c Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:24:27.0980 0x0e4c [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
21:24:27.0995 0x0e4c Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
21:24:27.0995 0x0e4c Netaapl ( UnsignedFile.Multi.Generic ) - warning
21:24:28.0214 0x0e4c [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:24:28.0245 0x0e4c NetBIOS - ok
21:24:28.0245 0x0e4c [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:24:28.0276 0x0e4c netbt - ok
21:24:28.0276 0x0e4c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
21:24:28.0292 0x0e4c Netlogon - ok
21:24:28.0323 0x0e4c [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
21:24:28.0354 0x0e4c Netman - ok
21:24:28.0385 0x0e4c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0401 0x0e4c NetMsmqActivator - ok
21:24:28.0417 0x0e4c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0432 0x0e4c NetPipeActivator - ok
21:24:28.0463 0x0e4c [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
21:24:28.0479 0x0e4c netprofm - ok
21:24:28.0495 0x0e4c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0510 0x0e4c NetTcpActivator - ok
21:24:28.0510 0x0e4c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:24:28.0526 0x0e4c NetTcpPortSharing - ok
21:24:28.0697 0x0e4c [ F0C42E0CDCE558D658FA53A222B4CCB1, 50AC8D9CCFB319EC03AB0F6AC2F70ED2EF3D746B8A8C7CC7A0606B592A3042DC ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
21:24:28.0931 0x0e4c NETw5v32 - ok
21:24:28.0963 0x0e4c [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:24:28.0978 0x0e4c nfrd960 - ok
21:24:28.0994 0x0e4c [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
21:24:29.0025 0x0e4c NlaSvc - ok
21:24:29.0056 0x0e4c [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:24:29.0072 0x0e4c Npfs - ok
21:24:29.0072 0x0e4c [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
21:24:29.0103 0x0e4c nsi - ok
21:24:29.0103 0x0e4c [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:24:29.0119 0x0e4c nsiproxy - ok
21:24:29.0197 0x0e4c [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:24:29.0243 0x0e4c Ntfs - ok
21:24:29.0243 0x0e4c [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:24:29.0290 0x0e4c ntrigdigi - ok
21:24:29.0321 0x0e4c [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
21:24:29.0337 0x0e4c Null - ok
21:24:29.0368 0x0e4c [ 77F9F9A199B87FE3F852E12F5419240B, BE9C05F2AC12BB41EC71A596039F2116E5A0F454D32E5A618112296721001473 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
21:24:29.0384 0x0e4c NVHDA - ok
21:24:29.0696 0x0e4c [ C1E661888C719FC2E12C057F233FB238, FAC74D6644686F3A6CC4852BFC0EC1AD36212F6E45F466CDEF9A36C2FD23316C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:24:30.0148 0x0e4c nvlddmkm - ok
21:24:30.0211 0x0e4c [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:24:30.0226 0x0e4c nvraid - ok
21:24:30.0242 0x0e4c [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:24:30.0257 0x0e4c nvstor - ok
21:24:30.0320 0x0e4c [ 31D7E63B62BC4680B5D1358F91DA104E, 8DF37F4AD73CBA597783E272603C17336C48F7BFFD7DDE55B0736F9A52BDFEDB ] nvsvc C:\Windows\system32\nvvsvc.exe
21:24:30.0367 0x0e4c nvsvc - ok
21:24:30.0476 0x0e4c [ 143B429F2D19A0F123ED8E4BCA8DB751, F0CC7D4C6AF1557E70CC6D5C2CD03BBBDBE27B3AC6D95962A8722C75850FF627 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:24:30.0538 0x0e4c nvUpdatusService - ok
21:24:30.0601 0x0e4c [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:24:30.0616 0x0e4c nv_agp - ok
21:24:30.0616 0x0e4c NwlnkFlt - ok
21:24:30.0616 0x0e4c NwlnkFwd - ok
21:24:30.0632 0x0e4c [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:24:30.0647 0x0e4c ohci1394 - ok
21:24:30.0694 0x0e4c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:24:30.0710 0x0e4c ose - ok
21:24:30.0862 0x0e4c [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:24:31.0088 0x0e4c osppsvc - ok
21:24:31.0140 0x0e4c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:24:31.0226 0x0e4c p2pimsvc - ok
21:24:31.0262 0x0e4c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
21:24:31.0294 0x0e4c p2psvc - ok
21:24:31.0326 0x0e4c [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
21:24:31.0368 0x0e4c Parport - ok
21:24:31.0397 0x0e4c [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:24:31.0408 0x0e4c partmgr - ok
21:24:31.0420 0x0e4c [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:24:31.0456 0x0e4c Parvdm - ok
21:24:31.0482 0x0e4c [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
21:24:31.0496 0x0e4c PcaSvc - ok
21:24:31.0514 0x0e4c [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
21:24:31.0530 0x0e4c pci - ok
21:24:31.0554 0x0e4c [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
21:24:31.0565 0x0e4c pciide - ok
21:24:31.0583 0x0e4c [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:24:31.0598 0x0e4c pcmcia - ok
21:24:31.0641 0x0e4c [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:24:31.0701 0x0e4c PEAUTH - ok
21:24:31.0761 0x0e4c [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
21:24:31.0959 0x0e4c pla - ok
21:24:32.0003 0x0e4c [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:24:32.0029 0x0e4c PlugPlay - ok
21:24:32.0054 0x0e4c [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:24:32.0060 0x0e4c Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:24:32.0060 0x0e4c Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:24:32.0316 0x0e4c [ 3A2BDD76E7D2A5F40A7174793D1BA794, 029EE2C2F71AEC7906600EEC4F855DC5648C1ECF53F11426079B04591F24D067 ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
21:24:32.0327 0x0e4c PnkBstrA - ok
21:24:32.0362 0x0e4c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:24:32.0393 0x0e4c PNRPAutoReg - ok
21:24:32.0473 0x0e4c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:24:32.0504 0x0e4c PNRPsvc - ok
21:24:32.0532 0x0e4c [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:24:32.0565 0x0e4c PolicyAgent - ok
21:24:32.0600 0x0e4c [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:24:32.0630 0x0e4c PptpMiniport - ok
21:24:32.0647 0x0e4c [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
21:24:32.0670 0x0e4c Processor - ok
21:24:32.0705 0x0e4c [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
21:24:32.0729 0x0e4c ProfSvc - ok
21:24:32.0745 0x0e4c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:24:32.0757 0x0e4c ProtectedStorage - ok
21:24:32.0784 0x0e4c [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:24:32.0802 0x0e4c PSched - ok
21:24:32.0855 0x0e4c [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:24:32.0921 0x0e4c ql2300 - ok
21:24:32.0965 0x0e4c [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:24:32.0978 0x0e4c ql40xx - ok
21:24:33.0017 0x0e4c [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
21:24:33.0038 0x0e4c QWAVE - ok
21:24:33.0047 0x0e4c [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:24:33.0059 0x0e4c QWAVEdrv - ok
21:24:33.0069 0x0e4c [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:24:33.0090 0x0e4c RasAcd - ok
21:24:33.0101 0x0e4c [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
21:24:33.0133 0x0e4c RasAuto - ok
21:24:33.0155 0x0e4c [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:24:33.0179 0x0e4c Rasl2tp - ok
21:24:33.0216 0x0e4c [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
21:24:33.0244 0x0e4c RasMan - ok
21:24:33.0268 0x0e4c [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:24:33.0287 0x0e4c RasPppoe - ok
21:24:33.0302 0x0e4c [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:24:33.0332 0x0e4c RasSstp - ok
21:24:33.0362 0x0e4c [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:24:33.0384 0x0e4c rdbss - ok
21:24:33.0407 0x0e4c [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:24:33.0428 0x0e4c RDPCDD - ok
21:24:33.0459 0x0e4c [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:24:33.0488 0x0e4c rdpdr - ok
21:24:33.0491 0x0e4c [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:24:33.0512 0x0e4c RDPENCDD - ok
21:24:33.0552 0x0e4c [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:24:33.0588 0x0e4c RDPWD - ok
21:24:33.0616 0x0e4c [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
21:24:33.0640 0x0e4c RemoteAccess - ok
21:24:33.0668 0x0e4c [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:24:33.0690 0x0e4c RemoteRegistry - ok
21:24:33.0725 0x0e4c [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:24:33.0751 0x0e4c RFCOMM - ok
21:24:33.0772 0x0e4c [ A5B12A4B3B774432DB9B9FA221190E59, 1DAAB43A2429035BAB8403E5D24F50F82BD41B5B478B344C3C58D49F1E15C2AE ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
21:24:33.0875 0x0e4c rimmptsk - ok
21:24:33.0892 0x0e4c [ C398BCA91216755B098679A8DA8A2300, 1FDDC3D927509AB10C3B0B7900DCE78DEC6B1C3CAE80F78EFCFBB628673B2143 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
21:24:33.0918 0x0e4c rimsptsk - ok
21:24:33.0935 0x0e4c [ 2A2554CB24506E0A0508FC395C4A1B42, B989AE65727C971D508E7284707258FCCC9213B510F4C2A257D3069A3DABE20B ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
21:24:33.0961 0x0e4c rismxdp - ok
21:24:33.0986 0x0e4c [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
21:24:33.0998 0x0e4c RpcLocator - ok
21:24:34.0029 0x0e4c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
21:24:34.0088 0x0e4c RpcSs - ok
21:24:34.0107 0x0e4c [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:24:34.0130 0x0e4c rspndr - ok
21:24:34.0178 0x0e4c [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
21:24:34.0197 0x0e4c RTL8169 - ok
21:24:34.0211 0x0e4c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
21:24:34.0224 0x0e4c SamSs - ok
21:24:34.0254 0x0e4c [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:24:34.0266 0x0e4c sbp2port - ok
21:24:34.0284 0x0e4c [ 2393ED056AE02F5DBB3A7D6E40A5FDC2, AC73452C892ABE7B98A0762BC7BD26CD712FF2E899E157F2A5119335E3E41B49 ] ScanUSBET C:\Windows\system32\DRIVERS\etScan.sys
21:24:34.0308 0x0e4c ScanUSBET - ok
21:24:34.0336 0x0e4c [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:24:34.0358 0x0e4c SCardSvr - ok
21:24:34.0421 0x0e4c [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
21:24:34.0484 0x0e4c Schedule - ok
21:24:34.0546 0x0e4c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
21:24:34.0562 0x0e4c SCPolicySvc - ok
21:24:34.0577 0x0e4c [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:24:34.0609 0x0e4c sdbus - ok
21:24:34.0624 0x0e4c [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:24:34.0655 0x0e4c SDRSVC - ok
21:24:34.0828 0x0e4c [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:24:35.0040 0x0e4c SDScannerService - ok
21:24:35.0134 0x0e4c [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:24:35.0221 0x0e4c SDUpdateService - ok
21:24:35.0236 0x0e4c [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:24:35.0249 0x0e4c SDWSCService - ok
21:24:35.0320 0x0e4c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:24:35.0355 0x0e4c secdrv - ok
21:24:35.0376 0x0e4c [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
21:24:35.0399 0x0e4c seclogon - ok
21:24:35.0410 0x0e4c [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
21:24:35.0434 0x0e4c SENS - ok
21:24:35.0452 0x0e4c [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:24:35.0488 0x0e4c Serenum - ok
21:24:35.0515 0x0e4c [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
21:24:35.0554 0x0e4c Serial - ok
21:24:35.0575 0x0e4c [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:24:35.0597 0x0e4c sermouse - ok
21:24:35.0616 0x0e4c [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
21:24:35.0641 0x0e4c SessionEnv - ok
21:24:35.0657 0x0e4c [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:24:35.0676 0x0e4c sffdisk - ok
21:24:35.0685 0x0e4c [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:24:35.0707 0x0e4c sffp_mmc - ok
21:24:35.0730 0x0e4c [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:24:35.0747 0x0e4c sffp_sd - ok
21:24:35.0762 0x0e4c [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:24:35.0784 0x0e4c sfloppy - ok
21:24:35.0881 0x0e4c [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:24:35.0912 0x0e4c SharedAccess - ok
21:24:35.0953 0x0e4c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:24:35.0991 0x0e4c ShellHWDetection - ok
21:24:36.0011 0x0e4c [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:24:36.0023 0x0e4c sisagp - ok
21:24:36.0037 0x0e4c [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:24:36.0049 0x0e4c SiSRaid2 - ok
21:24:36.0068 0x0e4c [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:24:36.0081 0x0e4c SiSRaid4 - ok
21:24:36.0231 0x0e4c [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
21:24:36.0465 0x0e4c slsvc - ok
21:24:36.0543 0x0e4c [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:24:36.0558 0x0e4c SLUINotify - ok
21:24:36.0590 0x0e4c [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:24:36.0605 0x0e4c Smb - ok
21:24:36.0668 0x0e4c [ C8A58FC905C9184FA70E37F71060C64D, 3D913E0F7B02EEAC15971DB15608912A96E4FD9BDFBF09E8F8FA4B6390A9B4DE ] smserial C:\Windows\system32\DRIVERS\smserial.sys
21:24:36.0761 0x0e4c smserial - ok
21:24:36.0824 0x0e4c [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:24:36.0839 0x0e4c SNMPTRAP - ok
21:24:36.0855 0x0e4c [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
21:24:36.0855 0x0e4c spldr - ok
21:24:36.0886 0x0e4c [ 739DB668DBD812285ECC553E64A5E212, 08E99CD042232CEB20BB5A808E914C9F2F0C154099BF921BA40E661B08472CF5 ] spmgr C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
21:24:36.0902 0x0e4c spmgr - ok
21:24:36.0917 0x0e4c [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
21:24:36.0933 0x0e4c Spooler - ok
21:24:36.0980 0x0e4c [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
21:24:36.0995 0x0e4c srv - ok
21:24:37.0011 0x0e4c [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:24:37.0042 0x0e4c srv2 - ok
21:24:37.0058 0x0e4c [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:24:37.0073 0x0e4c srvnet - ok
21:24:37.0120 0x0e4c [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:24:37.0136 0x0e4c SSDPSRV - ok
21:24:37.0167 0x0e4c [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:24:37.0182 0x0e4c SstpSvc - ok
21:24:37.0229 0x0e4c [ 0632004181860960CF6E10DE8DDEF78B, FB4714CB6C795C106C4777835490DC9F68FA656107DDB54A425666BE293FDC0B ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:24:37.0245 0x0e4c Stereo Service - ok
21:24:37.0292 0x0e4c [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
21:24:37.0323 0x0e4c stisvc - ok
21:24:37.0338 0x0e4c [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:24:37.0370 0x0e4c swenum - ok
21:24:37.0416 0x0e4c [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
21:24:37.0448 0x0e4c swprv - ok
21:24:37.0479 0x0e4c [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:24:37.0494 0x0e4c Symc8xx - ok
21:24:37.0510 0x0e4c [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:24:37.0510 0x0e4c Sym_hi - ok
21:24:37.0541 0x0e4c [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:24:37.0557 0x0e4c Sym_u3 - ok
21:24:37.0588 0x0e4c [ A59457258DC236F63D6EAC759EF6C08B, C407AF5171A3F2C8F7E1F68E472D4F9E835BDEC50A8E0D4D8F2A6854F2AE0346 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:24:37.0588 0x0e4c SynTP - ok
21:24:37.0635 0x0e4c [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
21:24:37.0682 0x0e4c SysMain - ok
21:24:37.0728 0x0e4c [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:24:37.0744 0x0e4c TabletInputService - ok
21:24:37.0775 0x0e4c [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:24:37.0806 0x0e4c TapiSrv - ok
21:24:37.0838 0x0e4c [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
21:24:37.0869 0x0e4c TBS - ok
21:24:37.0962 0x0e4c [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:24:37.0994 0x0e4c Tcpip - ok
21:24:38.0072 0x0e4c [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:24:38.0103 0x0e4c Tcpip6 - ok
21:24:38.0118 0x0e4c [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:24:38.0196 0x0e4c tcpipreg - ok
21:24:38.0228 0x0e4c [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:24:38.0259 0x0e4c TDPIPE - ok
21:24:38.0259 0x0e4c [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:24:38.0290 0x0e4c TDTCP - ok
21:24:38.0321 0x0e4c [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:24:38.0337 0x0e4c tdx - ok
21:24:38.0368 0x0e4c [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:24:38.0384 0x0e4c TermDD - ok
21:24:38.0430 0x0e4c [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
21:24:38.0462 0x0e4c TermService - ok
21:24:38.0524 0x0e4c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
21:24:38.0540 0x0e4c Themes - ok
21:24:38.0555 0x0e4c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
21:24:38.0571 0x0e4c THREADORDER - ok
21:24:38.0602 0x0e4c [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
21:24:38.0618 0x0e4c TrkWks - ok
21:24:38.0664 0x0e4c [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:24:38.0680 0x0e4c TrustedInstaller - ok
21:24:38.0696 0x0e4c [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:24:38.0711 0x0e4c tssecsrv - ok
21:24:38.0742 0x0e4c [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:24:38.0758 0x0e4c tunmp - ok
21:24:38.0774 0x0e4c [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:24:38.0789 0x0e4c tunnel - ok
21:24:38.0805 0x0e4c [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:24:38.0820 0x0e4c uagp35 - ok
21:24:38.0852 0x0e4c [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:24:38.0867 0x0e4c udfs - ok
21:24:38.0898 0x0e4c [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:24:38.0930 0x0e4c UI0Detect - ok
21:24:38.0930 0x0e4c [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:24:38.0945 0x0e4c uliagpkx - ok
21:24:38.0976 0x0e4c [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:24:38.0992 0x0e4c uliahci - ok
21:24:39.0023 0x0e4c [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:24:39.0039 0x0e4c UlSata - ok
21:24:39.0054 0x0e4c [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:24:39.0070 0x0e4c ulsata2 - ok
21:24:39.0086 0x0e4c [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:24:39.0101 0x0e4c umbus - ok
21:24:39.0132 0x0e4c [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
21:24:39.0164 0x0e4c upnphost - ok
21:24:39.0210 0x0e4c [ 8BF5D980CDCE35FB26F05047144BB57E, 8A770DD649FA0D6F574651E5525B983261B823C5778764598D89C453E68ED3F1 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
21:24:39.0210 0x0e4c USBAAPL - detected UnsignedFile.Multi.Generic ( 1 )
21:24:39.0210 0x0e4c USBAAPL ( UnsignedFile.Multi.Generic ) - warning
21:24:39.0444 0x0e4c [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:24:39.0460 0x0e4c usbaudio - ok
21:24:39.0491 0x0e4c [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:24:39.0522 0x0e4c usbccgp - ok
21:24:39.0554 0x0e4c [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:24:39.0585 0x0e4c usbcir - ok
21:24:39.0616 0x0e4c [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:24:39.0632 0x0e4c usbehci - ok
21:24:39.0647 0x0e4c [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:24:39.0663 0x0e4c usbhub - ok
21:24:39.0678 0x0e4c [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:24:39.0725 0x0e4c usbohci - ok
21:24:39.0756 0x0e4c [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:24:39.0772 0x0e4c usbprint - ok
21:24:39.0803 0x0e4c [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:24:39.0819 0x0e4c usbscan - ok
21:24:39.0850 0x0e4c [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:24:39.0866 0x0e4c USBSTOR - ok
21:24:39.0912 0x0e4c [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:24:39.0928 0x0e4c usbuhci - ok
21:24:39.0944 0x0e4c [ E67998E8F14CB0627A769F6530BCB352, 60982F168E9BF13954328C728F55F4D3ADDC572CACB65289B0E895A63DAA08C1 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:24:39.0959 0x0e4c usbvideo - ok
21:24:39.0990 0x0e4c [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
21:24:40.0006 0x0e4c UxSms - ok
21:24:40.0022 0x0e4c [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
21:24:40.0068 0x0e4c vds - ok
21:24:40.0115 0x0e4c [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:24:40.0146 0x0e4c vga - ok
21:24:40.0146 0x0e4c [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:24:40.0162 0x0e4c VgaSave - ok
21:24:40.0193 0x0e4c [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:24:40.0193 0x0e4c viaagp - ok
21:24:40.0224 0x0e4c [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:24:40.0240 0x0e4c ViaC7 - ok
21:24:40.0256 0x0e4c [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
21:24:40.0271 0x0e4c viaide - ok
21:24:40.0271 0x0e4c [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:24:40.0287 0x0e4c volmgr - ok
21:24:40.0302 0x0e4c [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:24:40.0334 0x0e4c volmgrx - ok
21:24:40.0349 0x0e4c [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:24:40.0365 0x0e4c volsnap - ok
21:24:40.0396 0x0e4c [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:24:40.0396 0x0e4c vsmraid - ok
21:24:40.0458 0x0e4c [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
21:24:40.0521 0x0e4c VSS - ok
21:24:40.0583 0x0e4c [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
21:24:40.0614 0x0e4c W32Time - ok
21:24:40.0630 0x0e4c [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:24:40.0661 0x0e4c WacomPen - ok
21:24:40.0692 0x0e4c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:24:40.0708 0x0e4c Wanarp - ok
21:24:40.0708 0x0e4c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:24:40.0739 0x0e4c Wanarpv6 - ok
21:24:40.0755 0x0e4c [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:24:40.0802 0x0e4c wcncsvc - ok
21:24:40.0833 0x0e4c [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:24:40.0864 0x0e4c WcsPlugInService - ok
21:24:40.0895 0x0e4c [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
21:24:40.0895 0x0e4c Wd - ok
21:24:40.0926 0x0e4c [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:24:40.0973 0x0e4c Wdf01000 - ok
21:24:40.0989 0x0e4c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:24:41.0004 0x0e4c WdiServiceHost - ok
21:24:41.0020 0x0e4c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:24:41.0036 0x0e4c WdiSystemHost - ok
21:24:41.0067 0x0e4c [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
21:24:41.0082 0x0e4c WebClient - ok
21:24:41.0114 0x0e4c [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:24:41.0129 0x0e4c Wecsvc - ok
21:24:41.0160 0x0e4c [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:24:41.0176 0x0e4c wercplsupport - ok
21:24:41.0207 0x0e4c [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
21:24:41.0238 0x0e4c WerSvc - ok
21:24:41.0285 0x0e4c [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:24:41.0301 0x0e4c WinDefend - ok
21:24:41.0316 0x0e4c WinHttpAutoProxySvc - ok
21:24:41.0348 0x0e4c [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:24:41.0379 0x0e4c Winmgmt - ok
21:24:41.0426 0x0e4c [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
21:24:41.0550 0x0e4c WinRM - ok
21:24:41.0597 0x0e4c [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:24:41.0691 0x0e4c Wlansvc - ok
21:24:41.0706 0x0e4c [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:24:41.0722 0x0e4c WmiAcpi - ok
21:24:41.0753 0x0e4c [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:24:41.0784 0x0e4c wmiApSrv - ok
21:24:41.0847 0x0e4c [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:24:41.0956 0x0e4c WMPNetworkSvc - ok
21:24:42.0034 0x0e4c [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:24:42.0050 0x0e4c WPCSvc - ok
21:24:42.0081 0x0e4c [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:24:42.0096 0x0e4c WPDBusEnum - ok
21:24:42.0128 0x0e4c [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
21:24:42.0143 0x0e4c WpdUsb - ok
21:24:42.0221 0x0e4c [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:24:42.0268 0x0e4c WPFFontCache_v0400 - ok
21:24:42.0284 0x0e4c [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:24:42.0299 0x0e4c ws2ifsl - ok
21:24:42.0330 0x0e4c [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
21:24:42.0346 0x0e4c wscsvc - ok
21:24:42.0346 0x0e4c WSearch - ok
21:24:42.0440 0x0e4c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
21:24:42.0533 0x0e4c wuauserv - ok
21:24:42.0580 0x0e4c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:24:42.0596 0x0e4c WudfPf - ok
21:24:42.0627 0x0e4c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:24:42.0642 0x0e4c WUDFRd - ok
21:24:42.0674 0x0e4c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:24:42.0689 0x0e4c wudfsvc - ok
21:24:42.0705 0x0e4c [ 7D1F3B131D503EF43EE594B5A2B9B427, 307DEC572FBC171D68ED098D73CB6F06754F26E51F8F7DB48035A8CF97AB37D0 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
21:24:42.0752 0x0e4c yukonwlh - ok
21:24:42.0767 0x0e4c ================ Scan global ===============================
21:24:42.0783 0x0e4c [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
21:24:42.0830 0x0e4c [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:24:42.0861 0x0e4c [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:24:42.0908 0x0e4c [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
21:24:42.0923 0x0e4c [ Global ] - ok
21:24:42.0923 0x0e4c ================ Scan MBR ==================================
21:24:42.0939 0x0e4c [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk0\DR0
21:24:43.0407 0x0e4c \Device\Harddisk0\DR0 - ok
21:24:43.0719 0x0e4c [ 64B1E91C5C6C2157642651010728F90F ] \Device\Harddisk1\DR1
21:24:43.0890 0x0e4c \Device\Harddisk1\DR1 - ok
21:24:43.0890 0x0e4c ================ Scan VBR ==================================
21:24:43.0890 0x0e4c [ B5E8C5FD67063E8018CA1B4A2508A485 ] \Device\Harddisk0\DR0\Partition1
21:24:43.0984 0x0e4c \Device\Harddisk0\DR0\Partition1 - ok
21:24:43.0984 0x0e4c [ B4F9E8484D792D6D5F37CF57E4F80AE1 ] \Device\Harddisk0\DR0\Partition2
21:24:43.0984 0x0e4c \Device\Harddisk0\DR0\Partition2 - ok
21:24:43.0984 0x0e4c [ 6599E8079B52BFC8A1BED094B1D60C87 ] \Device\Harddisk1\DR1\Partition1
21:24:44.0046 0x0e4c \Device\Harddisk1\DR1\Partition1 - ok
21:24:44.0046 0x0e4c [ 67175C26A39AEE28EDEBB2BAFA46F08E ] \Device\Harddisk1\DR1\Partition2
21:24:44.0093 0x0e4c \Device\Harddisk1\DR1\Partition2 - ok
21:24:44.0109 0x0e4c AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
21:24:44.0109 0x0e4c FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
21:24:44.0764 0x0e4c ============================================================
21:24:44.0764 0x0e4c Scan finished
21:24:44.0764 0x0e4c ============================================================
21:24:44.0764 0x09e8 Detected object count: 11
21:24:44.0764 0x09e8 Actual detected object count: 11
21:25:14.0144 0x09e8 ASBroker ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0144 0x09e8 ASBroker ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0144 0x09e8 ASChannel ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0144 0x09e8 ASChannel ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 ASLDRService ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 ASLDRService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 Netaapl ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 Netaapl ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:25:14.0159 0x09e8 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
21:25:14.0159 0x09e8 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org
Database version: v2014.03.31.08
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Hasufel :: HASUFEL-PC [administrator]
31.03.2014 21:32:33
mbar-log-2014-03-31 (21-32-33).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 263947
Time elapsed: 17 minute(s), 36 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
LG |
|
02.04.2014, 11:52
| #8 |
| /// the machine /// TB-Ausbilder | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.04.2014, 19:39
| #9 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hey, hier ist das Logfile: Code:
ATTFilter ComboFix 14-03-24.01 - Hasufel 02.04.2014 20:11:01.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3070.1805 [GMT 2:00]
ausgeführt von:: c:\users\Hasufel\Downloads\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Common Files\ASPG_icon.ico
c:\windows\msvcr71.dll
c:\windows\wininit.ini
.
Infizierte Kopie von c:\windows\system32\userinit.exe wurde gefunden und desinfiziert
Kopie von - c:\windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe wurde wiederhergestellt
.
.
((((((((((((((((((((((( Dateien erstellt von 2014-03-02 bis 2014-04-02 ))))))))))))))))))))))))))))))
.
.
2014-04-01 07:33 . 2014-03-07 04:35 7969936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8610321D-882F-4A1C-BEFF-340D02B8A0A8}\mpengine.dll
2014-03-31 19:52 . 2014-03-31 19:52 107224 ----a-w- c:\windows\system32\drivers\48230029.sys
2014-03-31 19:52 . 2014-03-31 19:52 75480 ----a-w- c:\windows\system32\drivers\4B647691.sys
2014-03-31 19:32 . 2014-03-31 19:32 -------- d-----w- c:\programdata\Malwarebytes
2014-03-31 19:32 . 2014-03-31 20:44 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2014-03-31 19:32 . 2014-03-31 19:32 107224 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-03-31 19:30 . 2014-03-31 19:30 75480 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-03-31 13:06 . 2014-03-31 13:17 -------- d-----w- C:\FRST
2014-03-31 12:34 . 2014-03-31 12:34 -------- d-----w- c:\users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 12:34 . 2014-03-31 12:34 -------- d-----w- c:\program files\WinZip Malware Protector
2014-03-31 12:34 . 2014-03-31 12:34 -------- d-----w- c:\programdata\Nico Mak Computing
2014-03-31 12:34 . 2013-03-15 15:01 16384 ----a-w- c:\windows\system32\wsusnative32.exe
2014-03-27 18:59 . 2014-04-02 18:22 -------- d-----w- c:\program files\Spybot - Search & Destroy 2
2014-03-13 09:05 . 2014-02-07 10:38 2050560 ----a-w- c:\windows\system32\win32k.sys
2014-03-13 09:05 . 2014-02-03 10:37 505344 ----a-w- c:\windows\system32\qedit.dll
2014-03-13 09:05 . 2014-01-30 07:46 876032 ----a-w- c:\windows\system32\wer.dll
2014-03-13 09:05 . 2013-11-13 00:30 2048 ----a-w- c:\windows\system32\tzres.dll
2014-03-06 12:51 . 2014-03-06 12:51 -------- d-----w- c:\users\Hasufel\AppData\Local\ASUS
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-02 18:23 . 2012-07-16 19:54 45056 ----a-w- c:\windows\system32\acovcnt.exe
2014-03-12 20:58 . 2012-07-24 14:11 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 20:58 . 2012-07-24 14:11 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-07 17:08 . 2013-03-29 13:01 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-03-07 17:08 . 2013-03-29 13:01 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2008-07-01 17:28 . 2008-07-01 17:28 61440 ----a-w- c:\program files\Common Files\CPInstallAction.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HControlUser"="c:\program files\ASUS\ATK Hotkey\HControlUser.exe" [2008-01-11 98304]
"ATKOSD2"="c:\program files\ASUS\ATKOSD2\ATKOSD2.exe" [2008-07-15 7651328]
"RtHDVCpl"="RtHDVCpl.exe" [2008-06-13 6183456]
"CognizanceTS"="c:\progra~1\ASUSSE~1\ASUSSE~1\Bin\ASTSVCC.dll" [2003-12-21 17920]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMedia.exe" [2008-06-24 159744]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2012-07-16 3054136]
"ASUS Camera ScreenSaver"="c:\windows\AsScrProlog.exe" [2012-07-16 47672]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-11-16 1029416]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2007-05-10 624248]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2013-10-10 356128]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-4-10 752168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Suitcase 11.0.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Suitcase 11.0.lnk
backup=c:\windows\pss\Suitcase 11.0.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^Hasufel^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^JL Alpine Advent Calendar.lnk]
path=c:\users\Hasufel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\JL Alpine Advent Calendar.lnk
backup=c:\windows\pss\JL Alpine Advent Calendar.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0EYTHM]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2012-07-27 13:01 116648 ----atw- c:\users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-10-14 20:17 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2013-10-01 00:23 152392 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerForPhone]
2008-01-25 16:32 778240 ----a-w- c:\program files\P4P\P4P.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel]
2007-11-20 10:15 1826816 ----a-w- c:\windows\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
Cognizance REG_MULTI_SZ ASBroker ASChannel
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Inhalt des "geplante Tasks" Ordners
.
2014-04-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-24 20:58]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-07-27 12:56]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-07-27 12:56]
.
2014-03-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
- c:\users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-05 13:01]
.
2014-04-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
- c:\users\Hasufel\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-05 13:01]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
mStart Page = about:blank
uInternet Settings,ProxyOverride = *.local
IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: An vorhandenes PDF anfügen - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Auswahl in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Auswahl in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Free YouTube Download - c:\users\Hasufel\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - c:\users\Hasufel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: In Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Verknüpfungsziel in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-SDTray - c:\program files\Spybot - Search & Destroy 2\SDTray.exe
MSConfigStartUp-SpybotSD TeaTimer - c:\program files\Spybot - Search & Destroy\TeaTimer.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2014-04-02 20:25
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-4087618416-3944343460-3664847585-1000\Software\SecuROM\License information*]
"datasecu"=hex:92,33,cd,f3,65,6e,9a,9d,29,dd,26,17,47,67,81,4e,7e,a8,dc,29,40,
a3,a1,69,37,d3,34,b8,ca,58,8c,e8,19,42,e8,0b,8d,26,40,b2,03,d9,f8,b6,0b,cd,\
"rkeysecu"=hex:d8,49,c7,cc,6c,f4,d5,b5,c3,fd,d0,c2,d9,41,ae,6c
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'lsass.exe'(876)
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItMsg.dll
.
- - - - - - - > 'Explorer.exe'(6428)
c:\windows\system32\APSHook.dll
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItClient.dll
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
c:\program files\ASUS\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\windows\System32\lpksetup.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\agrsmsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\program files\Kaspersky Lab\Kaspersky Internet Security 2013\wmi32.exe
c:\program files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
c:\program files\WinZip Malware Protector\WinZipMalwareProtector.exe
c:\program files\ASUS\SmartLogon\sensorsrv.exe
c:\program files\ASUS\ATK Hotkey\MsgTranAgt.exe
c:\program files\ASUS\ATK Hotkey\HControl.exe
c:\program files\Wireless Console 2\wcourier.exe
c:\program files\P4G\BatteryLife.exe
c:\program files\ASUS\Splendid\ACMON.exe
c:\program files\ASUS\ASUS CopyProtect\aspg.exe
c:\windows\System32\ACEngSvr.exe
c:\program files\ASUS\ATK Hotkey\ATKOSD.exe
c:\program files\ASUS\ATK Hotkey\KBFiltr.exe
c:\program files\ASUS\ATK Hotkey\WDC.exe
c:\windows\servicing\TrustedInstaller.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\conime.exe
c:\program files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-04-02 20:30:04 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2014-04-02 18:30
.
Vor Suchlauf: 8 Verzeichnis(se), 38.280.192.000 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 38.058.819.584 Bytes frei
.
- - End Of File - - FCFD71C420748EA1E36E02BBD4FE2E5F
64B1E91C5C6C2157642651010728F90F
LG und vielen vielen Dank!!! |
|
03.04.2014, 11:13
| #10 |
| /// the machine /// TB-Ausbilder | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet nee wir haben noch Arbeit. Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.04.2014, 21:52
| #11 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hey, hier die neuen logfiles: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 03.04.2014 Suchlauf-Zeit: 22:10:07 Logdatei: mbam.txt Administrator: Ja Version: 2.00.0.1000 Malware Datenbank: v2014.04.03.08 Rootkit Datenbank: v2014.03.27.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Chameleon: Deaktiviert Betriebssystem: Windows Vista Service Pack 2 CPU: x86 Dateisystem: NTFS Benutzer: Hasufel Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 274591 Verstrichene Zeit: 18 Min, 49 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Shuriken: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 0 (No malicious items detected) Physische Sektoren: 0 (No malicious items detected) (end) Code:
ATTFilter # AdwCleaner v3.023 - Bericht erstellt am 03/04/2014 um 22:15:48
# Aktualisiert 01/04/2014 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : Hasufel - HASUFEL-PC
# Gestartet von : C:\Users\Hasufel\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Program Files\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\Hasufel\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Hasufel\AppData\Roaming\OpenCandy
Datei Gelöscht : C:\Windows\Uninstall.exe
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\Software\DeviceVM
***** [ Browser ] *****
-\\ Internet Explorer v9.0.8112.16540
-\\ Mozilla Firefox v25.0.1 (de)
[ Datei : C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\prefs.js ]
-\\ Google Chrome v
[ Datei : C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1223 octets] - [03/04/2014 22:11:55]
AdwCleaner[S0].txt - [1150 octets] - [03/04/2014 22:15:48]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1210 octets] ##########
JRT: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Hasufel on 03.04.2014 at 22:35:42,80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ FireFox
Emptied folder: C:\Users\Hasufel\AppData\Roaming\mozilla\firefox\profiles\1iouri8t.default\minidumps [7 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.04.2014 at 22:39:53,16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Und das neue FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01 Ran by Hasufel (administrator) on HASUFEL-PC on 03-04-2014 22:44:22 Running from C:\Users\Hasufel\Downloads Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Microsoft Corporation) C:\Windows\system32\SLsvc.exe () C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe () C:\Program Files\ATKGFNEX\GFNEXSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Agere Systems) C:\Windows\system32\agrsmsvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe () C:\Windows\system32\PnkBstrA.exe () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe (Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe () C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe () C:\Program Files\Wireless Console 2\wcourier.exe (ATK) C:\Program Files\P4G\BatteryLife.exe (ATK) C:\Program Files\ASUS\Splendid\ACMON.exe (ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe (ASUSTeK) C:\Windows\System32\ACEngSvr.exe (ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe () C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe () C:\Program Files\ASUS\ATK Hotkey\WDC.exe (ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe () C:\Program Files\ASUS\ASUS Live Update\ALU.exe (Nico Mak Computing) C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe () C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe (ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUS) C:\Windows\AsScrPro.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynAsus.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Microsoft Corporation) C:\Windows\system32\conime.exe (Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] () HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [7651328 2008-07-15] (ASUS) HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6183456 2008-06-13] (Realtek Semiconductor) HKLM\...\Run: [CognizanceTS] - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll [17920 2003-12-21] (Cognizance Corporation) HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2008-06-24] (ASUS) HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2012-07-16] (ASUS) HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [47672 2012-07-16] () HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-11-16] (Synaptics, Inc.) HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation) HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation) HKU\S-1-5-21-4087618416-3944343460-3664847585-1001\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM - DefaultScope value is missing. BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.) BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.) BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.) Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default FF Homepage: hxxp://www.google.de/ FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-30] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [] FF HKLM\...\Firefox\Extensions: - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-20] FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-20] FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-20] FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-20] FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-20] Chrome: ======= CHR HomePage: CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File CHR Plugin: (Remoting Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll () CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll No File CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll No File CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-08-05] CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-04-20] CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-04-20] CHR Extension: (Virtuelle Tastatur) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-08-05] CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-27] CHR Extension: (Google Wallet) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04] CHR Extension: (Anti-Banner) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-08-05] CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25] CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25] CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25] CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25] CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25] CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Hasufel\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-27] ========================== Services (Whitelisted) ================= S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated) R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation) R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation) R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] () R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] () R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO) R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-03-07] () R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] () ==================== Drivers (Whitelisted) ==================== R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] () R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2013-03-28] () R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.) R3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice.sys [474624 2007-09-06] (eMPIA Technology, Inc.) R3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter.sys [206464 2008-02-05] (eMPIA Technology Inc.) R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] () R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. ) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( ) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-12-15] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-10] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-12-15] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-23] (Kaspersky Lab ZAO) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2013-03-28] () R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-03-05] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [107736 2014-04-03] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51416 2014-03-05] (Malwarebytes Corporation) R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100) R3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan.sys [6528 2008-01-31] (eMPIA Technology, Inc.) U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation) S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X] S3 catchme; \??\C:\ComboFix\catchme.sys [X] S3 IpInIp; system32\DRIVERS\ipinip.sys [X] U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-23] (Kaspersky Lab ZAO) S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt 2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT 2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe 2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt 2014-04-03 22:11 - 2014-04-03 22:15 - 00000000 ____D () C:\AdwCleaner 2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe 2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt 2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-04-03 21:48 - 2014-03-05 09:26 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-04-03 21:48 - 2014-03-05 09:26 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-04-03 21:46 - 2014-04-03 21:47 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe 2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles 2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt 2014-04-02 20:08 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe 2014-04-02 20:08 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe 2014-04-02 20:08 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2014-04-02 20:08 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2014-04-02 20:08 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2014-04-02 20:08 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe 2014-04-02 20:08 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe 2014-04-02 20:08 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe 2014-04-02 20:01 - 2014-04-02 20:30 - 00000000 ____D () C:\Qoobox 2014-04-02 20:01 - 2014-04-02 20:29 - 00000000 ____D () C:\Windows\erdnt 2014-04-02 19:59 - 2014-04-02 20:00 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe 2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip 2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys 2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys 2014-03-31 21:32 - 2014-04-03 22:31 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-03-31 21:32 - 2014-04-03 21:48 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-03-31 21:32 - 2014-03-31 22:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2014-03-31 21:30 - 2014-03-05 09:26 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe 2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip 2014-03-31 21:17 - 2014-03-31 21:18 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe 2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log 2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log 2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable 2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe 2014-03-31 15:07 - 2014-03-31 15:08 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt 2014-03-31 15:06 - 2014-04-03 22:44 - 00022254 _____ () C:\Users\Hasufel\Downloads\FRST.txt 2014-03-31 15:06 - 2014-04-03 22:44 - 00000000 ____D () C:\FRST 2014-03-31 15:05 - 2014-03-31 15:06 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe 2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk 2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing 2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing 2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector 2014-03-31 14:34 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe 2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe 2014-03-27 20:59 - 2014-04-02 20:22 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2 2014-03-27 20:50 - 2014-03-27 20:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe 2014-03-13 13:55 - 2014-02-23 07:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-03-13 13:55 - 2014-02-23 07:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-03-13 13:55 - 2014-02-23 07:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-03-13 13:55 - 2014-02-23 07:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-03-13 13:55 - 2014-02-23 07:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-03-13 13:55 - 2014-02-23 07:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-03-13 13:55 - 2014-02-23 07:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2014-03-13 13:55 - 2014-02-23 07:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-03-13 13:55 - 2014-02-23 07:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-03-13 13:55 - 2014-02-23 07:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-03-13 13:55 - 2014-02-23 07:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-03-13 13:55 - 2014-02-23 07:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-03-13 13:55 - 2014-02-23 07:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-03-13 13:55 - 2014-02-23 07:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-03-13 13:55 - 2014-02-23 07:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-03-13 13:55 - 2014-02-23 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-03-13 11:05 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-03-13 11:05 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2014-03-13 11:05 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2014-03-13 11:05 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-03-07 20:32 - 2014-03-07 20:43 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III 2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS 2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS ==================== One Month Modified Files and Folders ======= 2014-04-03 22:44 - 2014-03-31 15:06 - 00022254 _____ () C:\Users\Hasufel\Downloads\FRST.txt 2014-04-03 22:44 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST 2014-04-03 22:41 - 2012-07-27 14:56 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt 2014-04-03 22:34 - 2006-11-02 12:33 - 01566088 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-04-03 22:31 - 2014-03-31 21:32 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-04-03 22:31 - 2012-07-16 19:39 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-04-03 22:29 - 2012-07-27 14:56 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-04-03 22:28 - 2012-07-16 21:54 - 00045056 _____ () C:\Windows\system32\acovcnt.exe 2014-04-03 22:28 - 2012-07-16 18:52 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-04-03 22:28 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-04-03 22:28 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-04-03 22:28 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-04-03 22:27 - 2012-08-05 21:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job 2014-04-03 22:27 - 2012-07-17 02:09 - 01076867 _____ () C:\Windows\WindowsUpdate.log 2014-04-03 22:27 - 2012-07-17 02:09 - 00000012 _____ () C:\Windows\bthservsdp.dat 2014-04-03 22:27 - 2006-11-02 15:01 - 00032584 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT 2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe 2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt 2014-04-03 22:15 - 2014-04-03 22:11 - 00000000 ____D () C:\AdwCleaner 2014-04-03 22:15 - 2012-09-27 16:23 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft 2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe 2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt 2014-04-03 21:58 - 2012-08-05 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-04-03 21:48 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-04-03 21:47 - 2014-04-03 21:46 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe 2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles 2014-04-02 21:27 - 2012-08-05 21:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job 2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt 2014-04-02 20:30 - 2014-04-02 20:01 - 00000000 ____D () C:\Qoobox 2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 __RHD () C:\Users\Default 2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 ___RD () C:\Users\Public 2014-04-02 20:29 - 2014-04-02 20:01 - 00000000 ____D () C:\Windows\erdnt 2014-04-02 20:24 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini 2014-04-02 20:22 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2 2014-04-02 20:22 - 2008-01-21 04:47 - 00074968 _____ () C:\Windows\PFRO.log 2014-04-02 20:21 - 2006-11-02 12:22 - 72876032 _____ () C:\Windows\system32\config\SYSTEM.bak 2014-04-02 20:21 - 2006-11-02 12:22 - 58982400 _____ () C:\Windows\system32\config\COMPON~1.bak 2014-04-02 20:21 - 2006-11-02 12:22 - 57671680 _____ () C:\Windows\system32\config\SOFTWARE.bak 2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak 2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SAM.bak 2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak 2014-04-02 20:07 - 2012-10-07 20:17 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy 2014-04-02 20:00 - 2014-04-02 19:59 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe 2014-04-01 18:24 - 2013-12-08 13:46 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-04-01 18:24 - 2012-07-16 20:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-03-31 22:44 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip 2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys 2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys 2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe 2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip 2014-03-31 21:18 - 2014-03-31 21:17 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe 2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log 2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log 2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable 2014-03-31 15:15 - 2012-07-16 17:34 - 00000000 ____D () C:\Users\Hasufel 2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe 2014-03-31 15:08 - 2014-03-31 15:07 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt 2014-03-31 15:06 - 2014-03-31 15:05 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe 2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk 2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing 2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing 2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector 2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe 2014-03-31 12:10 - 2013-02-03 18:50 - 00000000 ____D () C:\Windows\pss 2014-03-31 11:31 - 2012-10-07 20:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2014-03-27 20:52 - 2014-03-27 20:50 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe 2014-03-27 20:26 - 2013-03-27 14:17 - 00000000 ____D () C:\Users\Hasufel\Documents\Eigene Scans 2014-03-19 17:50 - 2013-10-04 16:19 - 00000000 ____D () C:\Windows\system32\MRT 2014-03-19 17:48 - 2006-11-02 12:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2014-03-16 20:37 - 2012-08-05 21:05 - 00002051 _____ () C:\Users\Hasufel\Desktop\Google Chrome.lnk 2014-03-15 09:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache 2014-03-15 09:41 - 2006-11-02 14:47 - 01737456 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-03-15 09:38 - 2012-07-20 22:48 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-03-13 13:57 - 2012-07-17 12:52 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-03-13 13:53 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE 2014-03-12 22:58 - 2012-07-24 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-03-12 22:58 - 2012-07-24 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-03-07 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\LiveKernelReports 2014-03-07 20:43 - 2014-03-07 20:32 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III 2014-03-07 19:08 - 2013-03-29 15:01 - 00189248 _____ () C:\Windows\system32\PnkBstrB.exe 2014-03-07 19:08 - 2013-03-29 15:01 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe 2014-03-07 19:08 - 2012-08-25 19:57 - 00000000 ____D () C:\Program Files\Ubisoft 2014-03-07 19:08 - 2012-07-16 18:30 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-03-07 19:03 - 2012-09-03 11:08 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\Ubisoft Game Launcher 2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS 2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS 2014-03-06 14:51 - 2012-07-16 18:54 - 00000000 ____D () C:\ProgramData\ASUS 2014-03-05 09:26 - 2014-04-03 21:48 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-03-05 09:26 - 2014-04-03 21:48 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-03-05 09:26 - 2014-03-31 21:30 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys Some content of TEMP: ==================== C:\Users\Hasufel\AppData\Local\temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\system32\winlogon.exe => MD5 is legit C:\Windows\system32\wininit.exe => MD5 is legit C:\Windows\system32\svchost.exe => MD5 is legit C:\Windows\system32\services.exe => MD5 is legit C:\Windows\system32\User32.dll => MD5 is legit C:\Windows\system32\userinit.exe => MD5 is legit C:\Windows\system32\rpcss.dll => MD5 is legit C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-04-03 22:35 ==================== End Of Log ============================ --- --- --- --- --- --- Danke für Deine Mühe!!! LG |
|
04.04.2014, 11:53
| #12 |
| /// the machine /// TB-Ausbilder | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im InternetESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.04.2014, 17:09
| #13 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Hey, puh da hab ich mir ja ganz schön was eingefangen... Logfile von ESET: Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=4e3ecdc75d2f9b4a9c188365f10df292
# engine=17754
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-04-04 03:34:20
# local_time=2014-04-04 05:34:20 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1286 16777213 100 98 24449 51395582 0 0
# compatibility_mode=5892 16776574 100 100 288058 234158388 0 0
# scanned=455324
# found=1
# cleaned=1
# scan_time=15600
sh=9CD00DC38A2F5C8DC131AD18A19B7AACB121CE19 ft=1 fh=5615e6591fd23565 vn="a variant of Win32/Adware.CiDHelp application (cleaned by deleting - quarantined)" ac=C fn="F:\Festplatte\Nina\Alles vom Dell\sämtliche exe Dateien\MsgPlusLive-460326.exe"
Code:
ATTFilter Results of screen317's Security Check version 0.99.80
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Kaspersky Internet Security
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Java 7 Update 51
Adobe Flash Player 9 Flash Player out of Date!
Adobe Flash Player 12.0.0.77
Adobe Reader 8 Adobe Reader out of Date!
Mozilla Firefox 25.0.1 Firefox out of Date!
Google Chrome 33.0.1750.146
Google Chrome 33.0.1750.154
````````Process Check: objlist.exe by Laurent````````
ESET ESET Online Scanner OnlineScannerApp.exe
ESET ESET Online Scanner OnlineCmdLineScanner.exe
Kaspersky Lab Kaspersky Internet Security 2013 avp.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01
Ran by Hasufel (administrator) on HASUFEL-PC on 04-04-2014 18:02:49
Running from C:\Users\Hasufel\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
() C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
() C:\Program Files\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Agere Systems) C:\Windows\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
() C:\Windows\system32\PnkBstrA.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(Cognizance Corporation) C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsGHost.exe
() C:\Program Files\ASUS\ATK Hotkey\MsgTranAgt.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
() C:\Program Files\Wireless Console 2\wcourier.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\ASUS CopyProtect\aspg.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
() C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
(ASUS) C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files\ASUS\ATK Hotkey\KBFiltr.exe
() C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ASUS) C:\Windows\AsScrPro.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynAsus.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Users\Hasufel\Downloads\SecurityCheck.exe
(Microsoft Corporation) C:\Windows\system32\cmd.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] ()
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [7651328 2008-07-15] (ASUS)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6183456 2008-06-13] (Realtek Semiconductor)
HKLM\...\Run: [CognizanceTS] - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASTSVCC.dll [17920 2003-12-21] (Cognizance Corporation)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [159744 2008-06-24] (ASUS)
HKLM\...\Run: [ASUS Screen Saver Protector] - C:\Windows\AsScrPro.exe [3054136 2012-07-16] (ASUS)
HKLM\...\Run: [ASUS Camera ScreenSaver] - C:\Windows\AsScrProlog.exe [47672 2012-07-16] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-11-16] (Synaptics, Inc.)
HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624248 2007-05-10] (Adobe Systems Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-4087618416-3944343460-3664847585-1001\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ASUS Security Protect Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Hasufel\AppData\Local\Google\Update\1.3.22.5\npGoogleUpdate3.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Hasufel\AppData\Roaming\Mozilla\Firefox\Profiles\1iouri8t.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\url_advisor@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\virtual_keyboard@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\content_blocker@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\anti_banner@kaspersky.com [2013-04-20]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\FFExt\online_banking@kaspersky.com [2013-04-20]
Chrome:
=======
CHR HomePage:
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Hasufel\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\plugin/npABPlugin.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.477_0\plugin/npUrlAdvisor.dll No File
CHR Plugin: (Kaspersky Anti-Virus) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.477_0\plugin/npVKPlugin.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Modul zur Link-Untersuchung) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2012-08-05]
CHR Extension: (Sicherer Zahlungsverkehr) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-04-20]
CHR Extension: (Modul für das Blockieren gefährlicher Webseiten) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-04-20]
CHR Extension: (Virtuelle Tastatur) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2012-08-05]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-27]
CHR Extension: (Google Wallet) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]
CHR Extension: (Anti-Banner) - C:\Users\Hasufel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2012-08-05]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\urladvisor.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\online_banking_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\content_blocker_chrome.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\virtkbd.crx [2012-10-25]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ChromeExt\ab.crx [2012-10-25]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Hasufel\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-27]
========================== Services (Whitelisted) =================
S3 Adobe Version Cue CS3; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe [153792 2007-03-20] (Adobe Systems Incorporated)
R2 ASBroker; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\ASWLNPkg.dll [74240 2007-02-06] (Cognizance Corporation)
R2 ASChannel; C:\Program Files\ASUS Security Center\ASUS Security Protect Manager\Bin\AsChnl.dll [131584 2006-06-21] (Cognizance Corporation)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] ()
R2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128 2013-10-10] (Kaspersky Lab ZAO)
S2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-03-05] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-03-05] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2014-03-07] ()
R2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()
==================== Drivers (Whitelisted) ====================
R2 ASMMAP; C:\Program Files\ATKGFNEX\ASMMAP.sys [13880 2007-07-24] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2013-03-28] ()
R3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146824 2007-06-16] (AuthenTec, Inc.)
R3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice.sys [474624 2007-09-06] (eMPIA Technology, Inc.)
R3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter.sys [206464 2008-02-05] (eMPIA Technology Inc.)
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [20936 2007-08-03] ()
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [54784 2007-12-18] (ITE Tech. Inc. )
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15928 2008-06-03] ( )
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-12-15] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [595552 2013-10-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-12-15] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-10] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-06-18] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-04-23] (Kaspersky Lab ZAO)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2013-03-28] ()
R0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [15416 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-03-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2006-12-14] (ATK0100)
R3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan.sys [6528 2008-01-31] (eMPIA Technology, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 ASUSProcObsrv; \??\G:\I386\AsProcOb.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74848 2013-04-23] (Kaspersky Lab ZAO)
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-04 18:02 - 2014-04-04 18:02 - 00001146 _____ () C:\Users\Hasufel\Desktop\checkup.txt
2014-04-04 17:53 - 2014-04-04 17:53 - 00987442 _____ () C:\Users\Hasufel\Downloads\SecurityCheck.exe
2014-04-04 13:11 - 2014-04-04 13:11 - 02347384 _____ (ESET) C:\Users\Hasufel\Downloads\esetsmartinstaller_enu.exe
2014-04-04 13:11 - 2014-04-04 13:11 - 00000000 ____D () C:\Program Files\ESET
2014-04-03 22:45 - 2014-04-03 22:45 - 00039937 _____ () C:\Users\Hasufel\Desktop\FRST.txt
2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt
2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe
2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt
2014-04-03 22:11 - 2014-04-03 22:15 - 00000000 ____D () C:\AdwCleaner
2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe
2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt
2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-04-03 21:48 - 2014-03-05 09:26 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 21:48 - 2014-03-05 09:26 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 21:46 - 2014-04-03 21:47 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles
2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt
2014-04-02 20:08 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-02 20:08 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-02 20:08 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-02 20:08 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-02 20:01 - 2014-04-02 20:30 - 00000000 ____D () C:\Qoobox
2014-04-02 20:01 - 2014-04-02 20:29 - 00000000 ____D () C:\Windows\erdnt
2014-04-02 19:59 - 2014-04-02 20:00 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe
2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip
2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys
2014-03-31 21:32 - 2014-04-04 10:55 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-03-31 21:32 - 2014-04-03 21:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-31 21:32 - 2014-03-31 22:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-03-31 21:30 - 2014-03-05 09:26 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe
2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip
2014-03-31 21:17 - 2014-03-31 21:18 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe
2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable
2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe
2014-03-31 15:07 - 2014-03-31 15:08 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt
2014-03-31 15:06 - 2014-04-04 18:02 - 00021988 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-03-31 15:06 - 2014-04-04 18:02 - 00000000 ____D () C:\FRST
2014-03-31 15:05 - 2014-03-31 15:06 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:34 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-27 20:59 - 2014-04-02 20:22 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-03-27 20:50 - 2014-03-27 20:52 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-13 13:55 - 2014-02-23 07:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-13 13:55 - 2014-02-23 07:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-13 13:55 - 2014-02-23 07:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-13 13:55 - 2014-02-23 07:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-13 13:55 - 2014-02-23 07:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-13 13:55 - 2014-02-23 07:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-13 13:55 - 2014-02-23 07:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-13 13:55 - 2014-02-23 07:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-13 13:55 - 2014-02-23 07:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-13 13:55 - 2014-02-23 07:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-13 13:55 - 2014-02-23 07:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-13 13:55 - 2014-02-23 07:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-13 13:55 - 2014-02-23 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-13 11:05 - 2014-02-07 12:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 11:05 - 2014-02-03 12:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 11:05 - 2014-01-30 09:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 11:05 - 2013-11-13 02:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-07 20:32 - 2014-03-07 20:43 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
==================== One Month Modified Files and Folders =======
2014-04-04 18:03 - 2014-03-31 15:06 - 00021988 _____ () C:\Users\Hasufel\Downloads\FRST.txt
2014-04-04 18:02 - 2014-04-04 18:02 - 00001146 _____ () C:\Users\Hasufel\Desktop\checkup.txt
2014-04-04 18:02 - 2014-03-31 15:06 - 00000000 ____D () C:\FRST
2014-04-04 17:58 - 2012-08-05 20:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-04 17:53 - 2014-04-04 17:53 - 00987442 _____ () C:\Users\Hasufel\Downloads\SecurityCheck.exe
2014-04-04 17:41 - 2012-07-27 14:56 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-04 17:27 - 2012-08-05 21:04 - 00001128 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000UA.job
2014-04-04 17:08 - 2012-07-16 19:39 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-04-04 16:46 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-04 16:46 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-04 16:44 - 2012-07-17 02:09 - 01120820 _____ () C:\Windows\WindowsUpdate.log
2014-04-04 13:11 - 2014-04-04 13:11 - 02347384 _____ (ESET) C:\Users\Hasufel\Downloads\esetsmartinstaller_enu.exe
2014-04-04 13:11 - 2014-04-04 13:11 - 00000000 ____D () C:\Program Files\ESET
2014-04-04 11:41 - 2012-07-27 14:56 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-04 10:55 - 2014-03-31 21:32 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-04 10:54 - 2006-11-02 12:33 - 01566088 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-04 10:47 - 2012-07-16 21:54 - 00045056 _____ () C:\Windows\system32\acovcnt.exe
2014-04-04 10:46 - 2012-07-16 18:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-04 10:46 - 2006-11-02 15:01 - 00032578 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-04 10:46 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-03 22:55 - 2012-07-17 02:09 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-04-03 22:45 - 2014-04-03 22:45 - 00039937 _____ () C:\Users\Hasufel\Desktop\FRST.txt
2014-04-03 22:39 - 2014-04-03 22:39 - 00000769 _____ () C:\Users\Hasufel\Desktop\JRT.txt
2014-04-03 22:26 - 2014-04-03 22:26 - 00000000 ____D () C:\Windows\ERUNT
2014-04-03 22:24 - 2014-04-03 22:24 - 01038974 _____ (Thisisu) C:\Users\Hasufel\Downloads\JRT.exe
2014-04-03 22:20 - 2014-04-03 22:20 - 00001290 _____ () C:\Users\Hasufel\Desktop\AdwCleaner[S0].txt
2014-04-03 22:15 - 2014-04-03 22:11 - 00000000 ____D () C:\AdwCleaner
2014-04-03 22:15 - 2012-09-27 16:23 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-04-03 22:10 - 2014-04-03 22:10 - 01426178 _____ () C:\Users\Hasufel\Downloads\adwcleaner.exe
2014-04-03 22:10 - 2014-04-03 22:10 - 00001153 _____ () C:\Users\Hasufel\Desktop\mbam.txt
2014-04-03 21:48 - 2014-04-03 21:48 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-03 21:48 - 2014-04-03 21:48 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-04-03 21:48 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-03 21:47 - 2014-04-03 21:46 - 17523384 _____ (Malwarebytes Corporation ) C:\Users\Hasufel\Downloads\mbam-setup-2.0.0.1000.exe
2014-04-03 21:46 - 2014-04-03 21:46 - 00000000 ____D () C:\Users\Hasufel\Desktop\alte Logfiles
2014-04-02 21:27 - 2012-08-05 21:04 - 00001076 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4087618416-3944343460-3664847585-1000Core.job
2014-04-02 20:30 - 2014-04-02 20:30 - 00014806 _____ () C:\ComboFix.txt
2014-04-02 20:30 - 2014-04-02 20:01 - 00000000 ____D () C:\Qoobox
2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 __RHD () C:\Users\Default
2014-04-02 20:30 - 2006-11-02 13:18 - 00000000 ___RD () C:\Users\Public
2014-04-02 20:29 - 2014-04-02 20:01 - 00000000 ____D () C:\Windows\erdnt
2014-04-02 20:24 - 2006-11-02 12:23 - 00000215 _____ () C:\Windows\system.ini
2014-04-02 20:22 - 2014-03-27 20:59 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-04-02 20:22 - 2008-01-21 04:47 - 00074968 _____ () C:\Windows\PFRO.log
2014-04-02 20:21 - 2006-11-02 12:22 - 72876032 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 58982400 _____ () C:\Windows\system32\config\COMPON~1.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 57671680 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-04-02 20:21 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-04-02 20:07 - 2012-10-07 20:17 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-02 20:00 - 2014-04-02 19:59 - 05192353 ____R (Swearware) C:\Users\Hasufel\Downloads\ComboFix.exe
2014-04-01 18:24 - 2013-12-08 13:46 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-01 18:24 - 2012-07-16 20:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-03-31 22:44 - 2014-03-31 21:32 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-03-31 22:22 - 2014-03-31 22:22 - 00128888 _____ () C:\Users\Hasufel\Downloads\Logfiles.zip
2014-03-31 21:52 - 2014-03-31 21:52 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys
2014-03-31 21:52 - 2014-03-31 21:52 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4B647691.sys
2014-03-31 21:27 - 2014-03-31 21:27 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Hasufel\Downloads\mbar-1.07.0.1009.exe
2014-03-31 21:18 - 2014-03-31 21:18 - 04113320 _____ () C:\Users\Hasufel\Downloads\tdsskiller.zip
2014-03-31 21:18 - 2014-03-31 21:17 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\Hasufel\Downloads\tdsskiller.exe
2014-03-31 15:18 - 2014-03-31 15:18 - 00000476 _____ () C:\Windows\system32\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000476 _____ () C:\Users\Hasufel\Downloads\defogger_disable.log
2014-03-31 15:15 - 2014-03-31 15:15 - 00000000 _____ () C:\Users\Hasufel\defogger_reenable
2014-03-31 15:15 - 2012-07-16 17:34 - 00000000 ____D () C:\Users\Hasufel
2014-03-31 15:13 - 2014-03-31 15:13 - 00050477 _____ () C:\Users\Hasufel\Downloads\Defogger.exe
2014-03-31 15:08 - 2014-03-31 15:07 - 00043603 _____ () C:\Users\Hasufel\Downloads\Addition.txt
2014-03-31 15:06 - 2014-03-31 15:05 - 01145856 _____ (Farbar) C:\Users\Hasufel\Downloads\FRST.exe
2014-03-31 14:34 - 2014-03-31 14:34 - 00000993 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Users\Hasufel\AppData\Roaming\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-03-31 14:34 - 2014-03-31 14:34 - 00000000 ____D () C:\Program Files\WinZip Malware Protector
2014-03-31 14:33 - 2014-03-31 14:33 - 04892480 _____ (WinZip International LLC ) C:\Users\Hasufel\Downloads\wzmp_8.exe
2014-03-31 12:10 - 2013-02-03 18:50 - 00000000 ____D () C:\Windows\pss
2014-03-31 11:31 - 2012-10-07 20:17 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-03-27 20:52 - 2014-03-27 20:50 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Hasufel\Downloads\spybot-2.2.25.exe
2014-03-27 20:26 - 2013-03-27 14:17 - 00000000 ____D () C:\Users\Hasufel\Documents\Eigene Scans
2014-03-19 17:50 - 2013-10-04 16:19 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 17:48 - 2006-11-02 12:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-03-16 20:37 - 2012-08-05 21:05 - 00002051 _____ () C:\Users\Hasufel\Desktop\Google Chrome.lnk
2014-03-15 09:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\rescache
2014-03-15 09:41 - 2006-11-02 14:47 - 01737456 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-15 09:38 - 2012-07-20 22:48 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-13 13:57 - 2012-07-17 12:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-13 13:53 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-12 22:58 - 2012-07-24 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-12 22:58 - 2012-07-24 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-07 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-03-07 20:43 - 2014-03-07 20:32 - 00000000 ____D () C:\Users\Hasufel\Documents\Assassin's Creed III
2014-03-07 19:08 - 2013-03-29 15:01 - 00189248 _____ () C:\Windows\system32\PnkBstrB.exe
2014-03-07 19:08 - 2013-03-29 15:01 - 00075136 _____ () C:\Windows\system32\PnkBstrA.exe
2014-03-07 19:08 - 2012-08-25 19:57 - 00000000 ____D () C:\Program Files\Ubisoft
2014-03-07 19:08 - 2012-07-16 18:30 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-03-07 19:03 - 2012-09-03 11:08 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\Ubisoft Game Launcher
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\Documents\ASUS
2014-03-06 14:51 - 2014-03-06 14:51 - 00000000 ____D () C:\Users\Hasufel\AppData\Local\ASUS
2014-03-06 14:51 - 2012-07-16 18:54 - 00000000 ____D () C:\ProgramData\ASUS
2014-03-05 09:26 - 2014-04-03 21:48 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-03-05 09:26 - 2014-04-03 21:48 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-05 09:26 - 2014-03-31 21:30 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
Some content of TEMP:
====================
C:\Users\Hasufel\AppData\Local\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-04 10:58
==================== End Of Log ============================
--- --- --- So wie ich das sehe war Kaspersky hier nicht ganz so hilfreich, gibt es ein Programm, dass Du eher empfehlen würdest?? Und tausend Dank für die ganze Arbeit und Mühe, ich hätte nicht gedacht, dass das so viel ist... LG |
|
05.04.2014, 10:54
| #14 |
| /// the machine /// TB-Ausbilder | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Ich empfehle immer Emsisoft Java, Adobe und Firefox updaten. Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.04.2014, 22:09
| #15 |
| | Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet Vielen vielen Dank!!!!! Ich habe alles fertig gemacht, ich danke Dir sehr für Deine Hilfe und für die ganze Mühe. Ich wäre alleine mehr als aufgeschmissen gewesen!! LG |
|
| Themen zu Vista: Webcam schaltet sich ein; Anruf auf PC; PC stockt im Internet |
| bonjour, browser, desktop, device driver, dvdvideosoft ltd., ebanking, entfernen, excel, flash player, google, home, homepage, installation, internet, kaspersky, mozilla, mp3, officejet, problem, realtek, refresh, registry, safer networking, scan, sekunden, software, svchost.exe, system, tastatur, vista, windows, winzip malware protector |
Linear-Darstellung
