| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuftWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.06.2014, 17:11
| #1 |
| |  Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Hallo Wenn Minecraft läuft meldet avast free in 2 Speicherblöcken die dem Prozess javaw.exe zugeornet sind den Trojaner Win32:Banker-KDL. Auf den Festplatten jedoch nichts. Beende ich Minekraft findet er auch im Speicher nichts mehr. Diese Verhalten ist reproduzierbar. Java (v 7.60 in W32 und W64)und Minekraft (v1.7.4)habe ich schon neu installiert. Di Kaspersky Rescue Disk findet auf den Platten auch nichts (weil ja MC nicht läuft). Ist das vielleicht eine Falschmeldung und avast springt auf eine Codestelle in Minecraft an oder habe ich mir wirklich einen Trojaner eingefangen. Bitte um Hilfe Danke Zecka |
|
16.06.2014, 17:22
| #2 |
| /// the machine /// TB-Ausbilder    | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
16.06.2014, 20:22
| #3 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Bitte hier die FRST.TXT
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2014
Ran by Zecka (administrator) on BIGBLUE on 16-06-2014 21:17:49
Running from D:\Eigene Dateien\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation) D:\Program Files (x86)\Zune\ZuneLauncher.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) D:\Program Files (x86)\Zune\ZuneNss.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [Zune Launcher] => D:\Program Files (x86)\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM-x32\...\Run: [CTXFIREG] => CTxfiReg.exe
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [GrooveMonitor] => D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [CLMLServer] => D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe [107816 2010-08-20] (CyberLink)
HKLM-x32\...\Run: [UpdateLBPShortCut] => D:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [InstantBurn] => D:\Program Files (x86)\CyberLink\InstantBurn\Win2K\IBurn.exe [697640 2010-11-12] (CyberLink Corporation.)
HKLM-x32\...\Run: [RemoteControl10] => D:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [87336 2011-03-30] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-11-12] (cyberlink)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [4934880 2013-04-09] (FNet Co., Ltd.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-15] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Run: [Fatal1tySTU] => [X]
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Run: [Power2GoExpress] => NA
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Run: [Google Update] => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-09-03] (Google Inc.)
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\MountPoints2: {1c5b4b7a-dd53-11e0-9126-002522d3e1cd} - H:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xEDF87229C469CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-at
SearchScopes: HKCU - DefaultScope {39A81EE2-5205-48B4-84E7-3E14B5CFED5B} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {39A81EE2-5205-48B4-84E7-3E14B5CFED5B} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {F8917DBD-0A37-4A76-AE5A-A2956A897D4D} URL = hxxp://www.google.at/search?q={searchTerms}&rlz=
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker64.dll (AVAST Software)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker32.dll (AVAST Software)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Users\Zecka\AppData\Roaming\Mozilla\Firefox\Profiles\8k0o6nag.default
FF NewTab: hxxp://www.google.com/firefox
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com/firefox
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Zecka\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Zecka\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\Zecka\AppData\Roaming\Mozilla\Firefox\Profiles\8k0o6nag.default\user.js
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-09-03]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-04-10]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-09-03]
FF StartMenuInternet: FIREFOX.EXE - d:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-15] (AVAST Software)
S2 CLKMSVC10_58664B3D; D:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2010-11-12] (CyberLink)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-06-01] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [294912 2010-12-28] (Creative Technology Ltd) [File not signed]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165664 2012-08-23] (Intel Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-08-16] (Hewlett-Packard Company) [File not signed]
S3 Microsoft Office Groove Audit Service; D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 WMZuneComm; D:\Program Files (x86)\Zune\WMZuneComm.exe [306400 2011-08-05] (Microsoft Corporation)
R2 ZuneNetworkSvc; D:\Program Files (x86)\Zune\ZuneNss.exe [8277728 2011-08-05] (Microsoft Corporation)
S3 ZuneWlanCfgSvc; D:\Program Files (x86)\Zune\ZuneWlanCfgSvc.exe [467680 2011-08-05] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S3 AsrHidFilter; C:\Windows\System32\DRIVERS\AsrHidFilter.sys [17928 2011-02-17] (ASRock Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-15] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-15] ()
S1 cdrbsdrv; C:\Windows\SysWow64\Drivers\cdrbsdrv.sys [33408 2013-06-05] (B.H.A Corporation) [File not signed]
R1 CLBStor; C:\Windows\System32\Drivers\CLBStor.sys [24560 2010-07-15] (Cyberlink Co.,Ltd.)
S2 CLBUDFbk; No ImagePath
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2014-02-13] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2013-04-09] (FNet Co., Ltd.)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2013-01-26] ()
S3 COMMONFX.DLL; system32\COMMONFX.DLL [X]
S3 CT20XUT.DLL; system32\CT20XUT.DLL [X]
S3 CTAUDFX; system32\drivers\CTAUDFX.SYS [X]
S3 CTAUDFX.DLL; system32\CTAUDFX.DLL [X]
S3 CTAUDFX.SYS; \SystemRoot\System32\drivers\CTAUDFX.SYS [X]
S3 CTEAPSFX.DLL; system32\CTEAPSFX.DLL [X]
S3 CTEDSPFX.DLL; system32\CTEDSPFX.DLL [X]
S3 CTEDSPIO.DLL; system32\CTEDSPIO.DLL [X]
S3 CTEDSPSY.DLL; system32\CTEDSPSY.DLL [X]
S3 CTERFXFX; system32\drivers\CTERFXFX.SYS [X]
S3 CTERFXFX.DLL; system32\CTERFXFX.DLL [X]
S3 CTERFXFX.SYS; \SystemRoot\System32\drivers\CTERFXFX.SYS [X]
S3 CTEXFIFX.DLL; system32\CTEXFIFX.DLL [X]
S3 CTHWIUT.DLL; system32\CTHWIUT.DLL [X]
S3 CTSBLFX; system32\drivers\CTSBLFX.SYS [X]
S3 CTSBLFX.DLL; system32\CTSBLFX.DLL [X]
S3 CTSBLFX.SYS; \SystemRoot\System32\drivers\CTSBLFX.SYS [X]
S3 SANDRA; \??\d:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4c\WNt500x64\Sandra.sys [X]
S3 TEAM; system32\DRIVERS\RtTeam60.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-16 21:17 - 2014-06-16 21:17 - 00000000 ____D () C:\FRST
2014-06-15 23:27 - 2014-06-16 18:20 - 00000000 ____D () C:\Users\Zecka\AppData\Roaming\.minecraft
2014-06-15 22:14 - 2014-06-15 22:10 - 00675988 _____ () C:\Users\Zecka\Desktop\Minecraft.exe
2014-06-15 22:12 - 2014-06-15 22:12 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-15 22:12 - 2014-06-15 22:12 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-15 21:48 - 2014-06-15 21:48 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-15 21:48 - 2014-06-15 21:48 - 00000000 ____D () C:\Program Files\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-14 13:18 - 2014-06-15 21:43 - 00000588 _____ () C:\Windows\system32\settingsbkup.sfm
2014-06-14 13:18 - 2014-06-15 21:43 - 00000588 _____ () C:\Windows\system32\settings.sfm
2014-05-19 19:16 - 2014-05-19 19:16 - 00004161 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
==================== One Month Modified Files and Folders =======
2014-06-16 21:17 - 2014-06-16 21:17 - 00000000 ____D () C:\FRST
2014-06-16 20:52 - 2012-07-08 23:00 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-16 20:45 - 2011-09-03 03:20 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000UA.job
2014-06-16 18:52 - 2012-07-08 23:00 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-16 18:20 - 2014-06-15 23:27 - 00000000 ____D () C:\Users\Zecka\AppData\Roaming\.minecraft
2014-06-16 17:45 - 2011-09-03 03:20 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000Core.job
2014-06-16 17:15 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-16 17:15 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-16 17:12 - 2011-04-12 09:43 - 00702926 _____ () C:\Windows\system32\perfh007.dat
2014-06-16 17:12 - 2011-04-12 09:43 - 00150566 _____ () C:\Windows\system32\perfc007.dat
2014-06-16 17:12 - 2009-07-14 07:13 - 01629276 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-16 17:10 - 2011-09-02 23:05 - 01228734 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 17:07 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-16 17:07 - 2009-07-14 06:51 - 00194678 _____ () C:\Windows\setupact.log
2014-06-15 22:12 - 2014-06-15 22:12 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-15 22:12 - 2014-06-15 22:12 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-15 22:12 - 2014-03-22 02:18 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-15 22:12 - 2013-04-10 23:46 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-15 22:12 - 2013-04-10 23:46 - 00001976 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-15 22:10 - 2014-06-15 22:14 - 00675988 _____ () C:\Users\Zecka\Desktop\Minecraft.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-15 21:48 - 2014-06-15 21:48 - 00000000 ____D () C:\Program Files\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-15 21:46 - 2013-10-08 17:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-15 21:43 - 2014-06-14 13:18 - 00000588 _____ () C:\Windows\system32\settingsbkup.sfm
2014-06-15 21:43 - 2014-06-14 13:18 - 00000588 _____ () C:\Windows\system32\settings.sfm
2014-06-14 10:08 - 2011-09-17 18:17 - 00000000 ____D () C:\Users\Zecka\AppData\Roaming\FileZilla
2014-06-12 20:47 - 2011-09-03 03:22 - 00002367 _____ () C:\Users\Zecka\Desktop\Google Chrome.lnk
2014-06-11 23:21 - 2012-04-28 15:15 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-11 23:21 - 2011-09-03 01:08 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-01 09:21 - 2012-03-19 22:40 - 00000000 ____D () C:\ProgramData\Creative
2014-06-01 09:21 - 2010-11-21 05:47 - 00488906 _____ () C:\Windows\PFRO.log
2014-06-01 09:20 - 2014-02-24 18:54 - 00000159 ___RH () C:\Windows\ctfile.rfc
2014-06-01 09:20 - 2011-09-03 01:36 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-06-01 09:20 - 2011-09-03 00:14 - 00466520 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-06-01 09:20 - 2011-09-03 00:14 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-06-01 09:20 - 2011-09-03 00:14 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-06-01 09:20 - 2011-09-02 23:57 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-01 09:19 - 2012-03-19 22:35 - 00000000 ____D () C:\Program Files\Creative
2014-06-01 09:19 - 2012-03-15 22:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-06-01 09:19 - 2012-03-15 01:11 - 00000000 ___HD () C:\Program Files (x86)\Creative Installation Information
2014-06-01 09:19 - 2011-09-03 11:10 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-05-28 18:18 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-19 19:16 - 2014-05-19 19:16 - 00004161 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log
Files to move or delete:
====================
C:\Users\Public\dcmsvcsetup.exe
C:\Users\Public\invokesi.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-05-29 13:36
==================== End Of Log ============================
Und hier die Addition.TXT Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-06-2014
Ran by Zecka at 2014-06-16 21:18:07
Running from D:\Eigene Dateien\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
3DMark Vantage (HKLM-x32\...\{C40C3C3D-97CF-44B5-836C-766E374464B3}) (Version: 1.1.0 - Futuremark Corporation)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.38 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
AIO_Scan (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AMD Accelerated Video Transcoding (Version: 12.10.100.30328 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{C8807716-1F6F-5C43-3C32-7295A45CF060}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80328.2204 - Advanced Micro Devices, Inc.) Hidden
Analysis Center 2010 (HKLM-x32\...\Analysis Center 2010) (Version: 2010 - PAS-Products)
ANNO 1503 Königs- Edition (HKLM-x32\...\{DB833EF9-A198-49BE-970A-BD46F30BFBB4}) (Version: 3.05.042.00 - )
Anno 1701 (HKLM-x32\...\{A2433A63-5F5D-40E5-B529-9123C2B3E734}) (Version: 1.02 - Sunflowers)
Anvil Studio 2011 (HKLM-x32\...\{F76F7DB2-A632-4DE2-89ED-4D254141148B}) (Version: 11.12.01 - Willow Software)
AquaMark3 (HKLM-x32\...\AquaMark3) (Version: - )
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
ATI AVIVO64 Codecs (Version: 11.6.0.10308 - ATI Technologies Inc.) Hidden
Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
Audiograbber 1.83 SE (HKLM-x32\...\Audiograbber) (Version: 1.83 SE - Audiograbber)
Audiograbber MP3-Plugin (64 bit) (HKLM-x32\...\Audiograbber-Lame) (Version: 1.0 - AG)
AutoMode Switcher (HKLM-x32\...\Creative AutoMode Switcher) (Version: 1.00 - Creative Technology Limited)
avast! Ad Blocker (HKLM-x32\...\{021C6667-63D3-4416-B537-865E77F4DF4F}) (Version: 1.0.0.0 - AVAST Software)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2018 - Avast Software)
BOINC (HKLM\...\{424ACECA-B0D4-4F64-94E4-511BA5DC31DE}) (Version: 7.2.39 - Space Sciences Laboratory, U.C. Berkeley)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
C5200 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
C5200_Help (x32 Version: 100.0.206.000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2013.0328.2218.38225 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
Chromatia Tuner v3.6 (HKLM-x32\...\Chromatia Tuner_is1) (Version: - FMJ-Software)
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
Core Temp 1.0 RC5 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.65.0 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.19 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.43 - Creative Technology Limited)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Konsole Starter (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited)
Creative Lautsprecher-Einrichtungskonsole (HKLM-x32\...\THX_Console_Unicode) (Version: 3.50 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.02 - Creative Technology Limited)
CrystalDiskInfo 5.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.3.1 - Crystal Dew World)
CyberLink InstantBurn (HKLM-x32\...\{19C64880-BBCA-11D4-9EEE-0004ACDDDB3B}) (Version: 5.0.7112 - CyberLink Corp.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3602 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3602 - CyberLink Corp.) Hidden
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
CyberLink Media Suite (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1001 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 7.0.0.1001 - CyberLink Corp.) Hidden
CyberLink PowerBackup (HKLM-x32\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.6023 - CyberLink Corp.)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.3715.01 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.3715.01 - CyberLink Corp.) Hidden
CyberLink WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.2011 - CyberLink Corp.)
CyberLink WaveEditor (x32 Version: 1.0.1.2011 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Space™ (HKLM-x32\...\{4D87DC92-C328-46EC-A7B4-9C88129DC696}) (Version: 1.0.222.0 - Electronic Arts)
Dead Space™ 2 (HKLM-x32\...\{96D06FDD-6AF4-4309-BC1B-1C9588B0575E}) (Version: 1.0.943.0 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
DH Driver Cleaner Professional Edition (HKLM-x32\...\Driver Cleaner Pro) (Version: Version 1.5 - Ruud Ketelaars)
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.02 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
DVD Flick 1.3.0.7 (HKLM-x32\...\DVD Flick_is1) (Version: 1.3.0.7 - Dennis Meuwissen)
DVDStyler v2.4.3 (HKLM-x32\...\DVDStyler_is1) (Version: - )
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version: - )
FileZilla Client 3.6.0.2 (HKCU\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Free Disk Analyzer (HKLM-x32\...\Free Disk Analyzer) (Version: 1.0.1.22 - Extensoft)
F-Stream Tuning v0.1.73.31001 (HKLM-x32\...\F-Stream Tuning_is1) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.0.0.0 - Futuremark Corporation)
Google Chrome (HKCU\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HD Tach version 3 (HKLM-x32\...\HD Tach_is1) (Version: - Simpli Software, Inc.)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart All-In-One Driver Software 13.0 Rel. 2 (HKLM\...\{988329F4-A1A1-4D51-803C-EF2725A97627}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Product Detection (HKLM-x32\...\{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}) (Version: 10.7.9.0 - Hewlett-Packard Company)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PaperLabel (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PrintOnDisc (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
hpphotosmartdisclabelplugin (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2361 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.2.0.400 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.26.242.3 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417060FF}) (Version: 7.0.600 - Oracle)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Lautstärkefenster (HKLM-x32\...\Creative Volume Panel) (Version: 2.21 - Creative Technology Limited)
LightScribe System Software (HKLM-x32\...\{705B639E-FAAF-40D7-AD58-C445321C7C3F}) (Version: 1.18.18.1 - LightScribe)
Logitech SetPoint 6.32 (HKLM\...\sp6) (Version: 6.32.20 - Logitech)
Lunatics Unified Win64 v0.41 (HKLM-x32\...\Lunatics Unified Win64) (Version: v0.41 - Lunatics)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mediaport (HKLM-x32\...\Mediaport) (Version: - )
MFC RunTime files (x32 Version: 1.0.0 - Extensoft) Hidden
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM-x32\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Mozilla Firefox 13.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 13.0.1 (x86 de)) (Version: 13.0.1 - Mozilla)
Mozilla Firefox 28.0 (x86 de) (HKCU\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 11 DiscSpeed (HKLM-x32\...\{B8B03F99-F600-4D96-ADBD-2F384240FB9C}) (Version: 11.0.00400 - Nero AG)
Nero ControlCenter (x32 Version: 11.0.15500 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero CoverDesigner (HKLM-x32\...\{35F59E66-CAA0-4585-8DC4-037A04717FCF}) (Version: 12.0.01100 - Nero AG)
Nero CoverDesigner (x32 Version: 12.0.10001 - Nero AG) Hidden
Nero CoverDesigner Help (CHM) (x32 Version: 12.0.2000 - Nero AG) Hidden
Nero DiscSpeed 11 (x32 Version: 7.0.10400.2.100 - Nero AG) Hidden
Nero DiscSpeed 11 Help (CHM) (x32 Version: 11.0.10000 - Nero AG) Hidden
nero.prerequisites.msi (x32 Version: 11.0.20008 - Nero AG) Hidden
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Neuratron PhotoScore Ultimate (HKLM-x32\...\Neuratron PhotoScore Ultimate) (Version: 7.0.0 - Neuratron Ltd)
nLite 1.4.9.1 (HKLM-x32\...\nLite_is1) (Version: 1.4.9.1 - Dino Nuhagic (nuhi))
Nokia Connectivity Cable Driver (HKLM-x32\...\{AF88496B-4BBA-4922-97E9-2582D3A28358}) (Version: 7.1.48.0 - Nokia)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Paragon Partition Manager™ 12 Free (HKLM-x32\...\{47E5588F-C3A0-11DE-9857-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PC Connectivity Solution (HKLM-x32\...\{55EB7967-5BB1-4EA2-8AFF-B2F9E487E553}) (Version: 11.5.13.0 - Nokia)
PlexUTILITIES 1.3.0.0 (HKLM-x32\...\PlexUtil) (Version: 1.3.0.0 - Plextor)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PS_AIO_02_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6378 - Realtek Semiconductor Corp.)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SETIspirit 2.1.0 (HKLM-x32\...\{1D4D7684-28E1-4537-8EA4-ECC933DB1025}_is1) (Version: 2.1 - Dirk Schwarting)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sibelius v1.4 - OxYGeN (HKLM-x32\...\Sibelius v1.4 - OxYGeN) (Version: - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SoundFont-Bank-Manager (HKLM-x32\...\SFBM) (Version: - )
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version: - )
System Requirements Lab for Intel (64-bit) (HKLM\...\{419B57C2-BEB5-4201-91F5-CEF73F24C219}) (Version: 4.5.13.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Tomb Raider: Anniversary 1.0 (HKLM-x32\...\Tomb Raider: Anniversary) (Version: - )
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
TRON 2.0 (HKLM-x32\...\{FC272B66-8372-49EF-A642-28CAD2B9EAC9}) (Version: - )
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Mobile Device Updater Component (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
WinFF 1.5 (Codename EMMA) (HKLM-x32\...\WinFF_is1) (Version: - WinFF.org)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.30 - ASRock Inc.)
XMedia Recode Version 3.1.7.3 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.7.3 - XMedia Recode)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)
Zune (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHT) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CSY) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DAN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DEU) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ELL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ESP) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FIN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FRA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (HUN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (IND) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ITA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (JPN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (KOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (MSL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NLD) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PLK) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTB) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTG) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (RUS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (SVE) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
==================== Restore Points =========================
27-05-2014 05:14:36 Geplanter Prüfpunkt
01-06-2014 07:11:55 Wiederherstellungsvorgang
01-06-2014 07:14:41 Installiert Creative ALchemy
01-06-2014 07:14:53 Installiert Creative Audio Control Panel
01-06-2014 07:15:17 Installiert Creative AutoMode Switcher
01-06-2014 07:15:43 Installiert Console Launcher
01-06-2014 07:18:57 Installiert Dolby Digital Live Pack
01-06-2014 07:19:06 Installiert DTS Connect Pack
01-06-2014 07:19:12 Installiert SoundFont Bank Manager
01-06-2014 07:19:19 Installiert Speaker Setup Console
01-06-2014 07:19:40 Installiert Creative Volume Panel
08-06-2014 09:36:24 Geplanter Prüfpunkt
15-06-2014 19:42:33 Removed Java 7 Update 55
15-06-2014 19:43:09 Removed Java 7 Update 55 (64-bit)
15-06-2014 19:45:54 Installed Java 7 Update 60
15-06-2014 19:48:34 Installed Java 7 Update 60 (64-bit)
15-06-2014 20:11:47 avast! antivirus system restore point
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {03AF10B1-5D3F-42D7-9E71-446825316DAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-08] (Google Inc.)
Task: {08E5358A-A8EE-4170-8B8E-6BC911CF2A23} - System32\Tasks\{C186358A-DDB1-4861-8166-36907E032C5C} => H:\Setup.exe
Task: {0A77039A-EFA5-4C6B-9C99-8358A0BE7884} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {0C38FF6A-3562-4148-8238-E54E3804DECE} - System32\Tasks\{5BBF8DE9-A880-4A62-A374-E11CFBB632A9} => D:\Programme\Programme ALT\CW\WINCAKE.EXE [1995-05-22] (Twelve Tone Systems, Inc.)
Task: {16796833-6A51-454A-91F1-130A3418742B} - System32\Tasks\{8523F91D-BA6B-4949-8C52-BCAAD54DD988} => C:\Program Files (x86)\Creative\Support\System Information\CTSI.exe
Task: {1A8BB35A-65FA-42DC-B8DC-FC14D18C99B7} - System32\Tasks\{EDBB608D-7838-466A-AE43-1566E2B95ACC} => D:\Program Files (x86)\Audacity\audacity.exe [2012-08-20] (The Audacity Team)
Task: {27804D36-F756-4C18-82CD-1531CC67D44D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000UA => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-03] (Google Inc.)
Task: {2AA76D6A-9D6C-4CCA-AEA5-1CA94DFB6DA0} - System32\Tasks\{0D964118-F0AF-4732-A938-1CF715BA9C62} => D:\Program Files (x86)\Paragon Software\Partition Manager\WinPM\WinPM.exe
Task: {46C499DF-F424-46D6-B0D7-82BBC171DE52} - System32\Tasks\{A705021E-2206-4A98-AA96-AEC51793584D} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: {5F3F4338-8859-409B-8E45-D215D0378581} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {61129373-0880-4512-8C14-6047E8B09B98} - System32\Tasks\{FF97C27F-12B9-4ACC-8D79-645B25F908B7} => D:\Program Files (x86)\Simpli Software\HD Tach\hdtach.exe [2007-04-16] (Simpli Software, Inc.)
Task: {66AF863C-6F44-4BC0-94B6-9C17444BB1FA} - System32\Tasks\{DACA3617-43B6-4B63-BD23-331C9FF7B452} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: {74659195-E039-4894-BBF9-217B1FB13969} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {846D868A-ACEC-4E3D-8B83-111AA5F5D023} - System32\Tasks\{0A4612D5-810F-4148-9C20-AB3FC2476A78} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: {97082BE5-5B60-471B-AAC0-BB91A96474DC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-06-15] (AVAST Software)
Task: {A290F5E7-A5A7-4F62-8EAD-A0585A7C26A1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-08] (Google Inc.)
Task: {C134D5AE-C90A-435C-BC37-D22B00630CD9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000Core => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-03] (Google Inc.)
Task: {DB11EB0C-BEB9-4738-970C-C86EBBFB3734} - System32\Tasks\{40955255-0CCA-4A6F-AFA4-51CEE8D8DC5D} => G:\Setup.exe
Task: {E8909FF8-926B-42FD-AE5E-172F27BB1EFF} - System32\Tasks\{586E360E-6BAC-4589-B435-C16529035586} => D:\Program Files (x86)\Paragon Software\Partition Manager\WinPM\WinPM.exe
Task: {EAFDECC7-7B60-4A9F-AD9F-2F09BD1CFA8E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {FE059885-A399-45F7-87A8-06F3BB32D2D1} - System32\Tasks\{03109562-BD6E-433E-8F7D-9382E88E4339} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000Core.job => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000UA.job => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () d:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2014-06-15 21:51 - 2014-06-15 21:51 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061501\algo.dll
2014-06-16 17:08 - 2014-06-16 17:08 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061600\algo.dll
2014-02-24 18:54 - 2011-07-21 20:02 - 00207872 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2012-03-14 19:00 - 2007-09-13 23:05 - 00002560 _____ () C:\Windows\system32\CTXFIGER.DLL
2010-08-20 09:57 - 2010-08-20 09:57 - 00619816 _____ () D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMediaLibrary.dll
2010-08-20 09:57 - 2010-08-20 09:57 - 00013096 _____ () D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvcPS.dll
2014-03-22 02:17 - 2014-03-22 02:17 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-02-24 18:54 - 2011-07-21 20:04 - 00074240 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2013-01-26 12:38 - 2012-10-22 15:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
==================== Faulty Device Manager Devices =============
Name: AMD High Definition Audio Device
Description: AMD High Definition Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices
Service: AtiHDAudioService
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Standard-Zweikanal-PCI-IDE-Controller
Description: Standard-Zweikanal-PCI-IDE-Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-IDE-ATA/ATAPI-Controller)
Service: pciide
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (06/15/2014 11:26:47 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (06/15/2014 10:10:31 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (06/14/2014 09:48:11 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (06/06/2014 06:33:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0x1b60
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3
Error: (06/04/2014 07:49:49 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=50964a88-ab5f-4c91-b70e-66a2eadb5423 (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))
Error: (06/04/2014 07:49:41 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=E57B59E7-5862-4250-9CE0-76FB411DC0D2 (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))
Error: (06/04/2014 07:49:38 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=821fe777-bf67-463b-99f0-b2e0e4d9813b (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))
Error: (06/04/2014 07:49:34 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=E57B59E7-5862-4250-9CE0-76FB411DC0D2 (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))
Error: (06/04/2014 07:49:31 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=4E00205A-2AB1-4423-8F77-CC25B82CDE1D (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))
Error: (06/03/2014 10:18:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0x1180
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3
System errors:
=============
Error: (06/16/2014 05:07:58 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
pciide
Error: (06/16/2014 05:07:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CyberLink InstantBurn UDF Filesystem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/16/2014 05:07:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (06/16/2014 05:07:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (06/16/2014 05:07:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (06/15/2014 11:23:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
pciide
Error: (06/15/2014 11:23:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CyberLink InstantBurn UDF Filesystem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/15/2014 10:24:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (06/15/2014 10:24:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Error: (06/15/2014 10:24:54 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.
Microsoft Office Sessions:
=========================
Error: (07/09/2012 07:37:59 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 61 seconds with 0 seconds of active time. This session ended with a crash.
Error: (07/04/2012 06:01:53 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.
Error: (05/31/2012 06:33:10 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
Error: (02/26/2012 05:25:46 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/29/2011 00:49:35 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (10/26/2011 00:28:51 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2654 seconds with 1320 seconds of active time. This session ended with a crash.
Error: (10/23/2011 10:12:19 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (09/18/2011 10:40:22 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 86 seconds with 0 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2014-02-03 17:22:07.188
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-11 19:46:42.976
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-09-11 19:46:42.929
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-09-11 19:46:15.513
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-09-11 19:46:15.466
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-09-11 19:43:25.526
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-09-11 19:43:25.479
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-01-07 22:30:14.491
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume6\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-01-07 22:28:29.090
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume6\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-01-07 22:20:07.871
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume6\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 36%
Total physical RAM: 8155.78 MB
Available physical RAM: 5212.59 MB
Total Pagefile: 20153.96 MB
Available Pagefile: 18030.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (SYSTEM SSD) (Fixed) (Total:111.42 GB) (Free:81.34 GB) NTFS
Drive d: (Daten) (Fixed) (Total:488.28 GB) (Free:319.38 GB) NTFS
Drive e: (Musik/Video) (Fixed) (Total:443.23 GB) (Free:176.81 GB) NTFS
Drive x: (AUX) (Fixed) (Total:49.8 GB) (Free:35.49 GB) NTFS
Drive y: (Backup) (Fixed) (Total:317.38 GB) (Free:55.35 GB) NTFS
Drive z: (Setup) (Fixed) (Total:98.57 GB) (Free:66.21 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 145265CF)
Partition 1: (Not Active) - (Size=488 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=443 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 1FD70B5C)
Partition 1: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=317 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=99 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: F4F6464A)
Partition 1: (Active) - (Size=376 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Wenn benötigt kann ich einen durchlauf mit gestartetem Minecraft machen Danke |
|
17.06.2014, 09:45
| #4 |
| /// the machine /// TB-Ausbilder | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft lass die angemeckerten Dateien bitte mal www.virustotal.com scannen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.06.2014, 10:53
| #5 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Hallo schrauber Du meinst die Javaw.exe der der Speicheblock mit den Virusmeldungen zugeordnet ist vermute ich mal. Ich werde heute wenn ich zu Hause bin alle Java*.exe Dateien mit dem vorgeschlagenen Tool scannen mfg Zecka Geändert von Zecka (17.06.2014 um 11:06 Uhr) Grund: Rechtschreibfehler :) |
|
17.06.2014, 11:04
| #6 |
| /// the machine /// TB-Ausbilder | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft warte mal, zeig mir zuerst nen Screenshot von der Avast-Meldung bitte.
__________________ --> Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft |
|
17.06.2014, 11:15
| #7 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Heute um ca 17:00 bin ich wieder beim Rechner dann werde ich dir den Screenshot nachreichen. Sowas ist mir auch noch nicht untergekommen. Die Dateien werden vom Scanner durchgewinkt aber im Speicher läuft irgent etwas das die Aufmerksahmkeit des Scaners erregt  Minecraft ladet beim Start zwar immer Daten aus dem Netz nach aber das Scanmodul spricht darauf auch nicht an, erst wenn alles läuft wird im Speicher rumgemotzt. |
|
17.06.2014, 16:20
| #8 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Bitte hier ist der Screenshot  musste leider die breite von 1000 px etwas überschreiten damit es leserlich bleibt lg Zecka |
|
18.06.2014, 09:39
| #9 |
| /// the machine /// TB-Ausbilder | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
18.06.2014, 16:37
| #10 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Danke für die schnellen Antworten. Soll ich den Scan mit gestartetem Minecraft oder ohne machen lg Zecka So erst einmal ohne Minecraft Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org
Database version: v2014.06.18.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16844
Zecka :: BIGBLUE [administrator]
18.06.2014 17:16:27
mbar-log-2014-06-18 (17-16-27).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 324156
Time elapsed: 5 minute(s),
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 17:33:38.0688 0x1bf8 TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
17:33:43.0150 0x1bf8 ============================================================
17:33:43.0150 0x1bf8 Current date / time: 2014/06/18 17:33:43.0150
17:33:43.0150 0x1bf8 SystemInfo:
17:33:43.0150 0x1bf8
17:33:43.0150 0x1bf8 OS Version: 6.1.7601 ServicePack: 1.0
17:33:43.0150 0x1bf8 Product type: Workstation
17:33:43.0150 0x1bf8 ComputerName: BIGBLUE
17:33:43.0150 0x1bf8 UserName: Zecka
17:33:43.0150 0x1bf8 Windows directory: C:\Windows
17:33:43.0150 0x1bf8 System windows directory: C:\Windows
17:33:43.0150 0x1bf8 Running under WOW64
17:33:43.0150 0x1bf8 Processor architecture: Intel x64
17:33:43.0150 0x1bf8 Number of processors: 8
17:33:43.0150 0x1bf8 Page size: 0x1000
17:33:43.0150 0x1bf8 Boot type: Normal boot
17:33:43.0150 0x1bf8 ============================================================
17:33:43.0228 0x1bf8 KLMD registered as C:\Windows\system32\drivers\43628271.sys
17:33:43.0290 0x1bf8 System UUID: {86E11EC7-E533-0560-C787-DDE2F20AF30A}
17:33:43.0524 0x1bf8 Drive \Device\Harddisk2\DR2 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:33:43.0524 0x1bf8 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:33:43.0540 0x1bf8 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:33:43.0540 0x1bf8 ============================================================
17:33:43.0540 0x1bf8 \Device\Harddisk2\DR2:
17:33:43.0540 0x1bf8 MBR partitions:
17:33:43.0540 0x1bf8 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xBBC30
17:33:43.0540 0x1bf8 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xBC800, BlocksNum 0xDED83B0
17:33:43.0540 0x1bf8 \Device\Harddisk1\DR1:
17:33:43.0540 0x1bf8 MBR partitions:
17:33:43.0540 0x1bf8 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x639C000
17:33:43.0540 0x1bf8 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x639C800, BlocksNum 0x27AC4000
17:33:43.0540 0x1bf8 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2DE60800, BlocksNum 0xC524800
17:33:43.0540 0x1bf8 \Device\Harddisk0\DR0:
17:33:43.0540 0x1bf8 MBR partitions:
17:33:43.0540 0x1bf8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3D090000
17:33:43.0540 0x1bf8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3D090800, BlocksNum 0x37675000
17:33:43.0540 0x1bf8 ============================================================
17:33:43.0540 0x1bf8 C: <-> \Device\Harddisk2\DR2\Partition2
17:33:43.0555 0x1bf8 D: <-> \Device\Harddisk0\DR0\Partition1
17:33:43.0587 0x1bf8 E: <-> \Device\Harddisk0\DR0\Partition2
17:33:43.0633 0x1bf8 Z: <-> \Device\Harddisk1\DR1\Partition3
17:33:43.0649 0x1bf8 X: <-> \Device\Harddisk1\DR1\Partition1
17:33:43.0665 0x1bf8 Y: <-> \Device\Harddisk1\DR1\Partition2
17:33:43.0665 0x1bf8 ============================================================
17:33:43.0665 0x1bf8 Initialize success
17:33:43.0665 0x1bf8 ============================================================
17:33:48.0953 0x15b8 ============================================================
17:33:48.0953 0x15b8 Scan started
17:33:48.0953 0x15b8 Mode: Manual; SigCheck; TDLFS;
17:33:48.0953 0x15b8 ============================================================
17:33:48.0953 0x15b8 KSN ping started
17:33:51.0839 0x15b8 KSN ping finished: true
17:33:52.0291 0x15b8 ================ Scan system memory ========================
17:33:52.0291 0x15b8 System memory - ok
17:33:52.0291 0x15b8 ================ Scan services =============================
17:33:52.0323 0x15b8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:33:52.0369 0x15b8 1394ohci - ok
17:33:52.0385 0x15b8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:33:52.0401 0x15b8 ACPI - ok
17:33:52.0401 0x15b8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:33:52.0416 0x15b8 AcpiPmi - ok
17:33:52.0416 0x15b8 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:33:52.0432 0x15b8 AdobeARMservice - ok
17:33:52.0432 0x15b8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:33:52.0447 0x15b8 adp94xx - ok
17:33:52.0463 0x15b8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:33:52.0479 0x15b8 adpahci - ok
17:33:52.0479 0x15b8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:33:52.0479 0x15b8 adpu320 - ok
17:33:52.0494 0x15b8 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:33:52.0510 0x15b8 AeLookupSvc - ok
17:33:52.0525 0x15b8 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
17:33:52.0541 0x15b8 AFD - ok
17:33:52.0541 0x15b8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
17:33:52.0557 0x15b8 agp440 - ok
17:33:52.0557 0x15b8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
17:33:52.0572 0x15b8 ALG - ok
17:33:52.0572 0x15b8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
17:33:52.0572 0x15b8 aliide - ok
17:33:52.0588 0x15b8 [ 310F86335B0505DDC6D2DD48E66EF06B, 936273CA046B3AE0944E6C1557CECB2A0C61D034977BBB9FACBE062617CF3A2C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:33:52.0603 0x15b8 AMD External Events Utility - ok
17:33:52.0603 0x15b8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
17:33:52.0603 0x15b8 amdide - ok
17:33:52.0619 0x15b8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:33:52.0619 0x15b8 AmdK8 - ok
17:33:52.0822 0x15b8 [ 79CC9BE187E3144E1B58A54B842475E7, 89DD3177B5CE649AC0093603CE13FBFD93AC24F8E16C52672549110141106F4A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:33:53.0040 0x15b8 amdkmdag - ok
17:33:53.0056 0x15b8 [ 07561D3B7FD99F6E186C49C2D0628E38, D2D72EB45EAD29A3099C040E99A4F1F4902D3BDC0466800C63ECD33343DC1224 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:33:53.0087 0x15b8 amdkmdap - ok
17:33:53.0087 0x15b8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
17:33:53.0087 0x15b8 AmdPPM - ok
17:33:53.0103 0x15b8 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:33:53.0103 0x15b8 amdsata - ok
17:33:53.0103 0x15b8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:33:53.0118 0x15b8 amdsbs - ok
17:33:53.0118 0x15b8 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:33:53.0118 0x15b8 amdxata - ok
17:33:53.0134 0x15b8 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
17:33:53.0149 0x15b8 AppID - ok
17:33:53.0149 0x15b8 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:33:53.0181 0x15b8 AppIDSvc - ok
17:33:53.0181 0x15b8 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
17:33:53.0196 0x15b8 Appinfo - ok
17:33:53.0196 0x15b8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
17:33:53.0196 0x15b8 arc - ok
17:33:53.0196 0x15b8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:33:53.0212 0x15b8 arcsas - ok
17:33:53.0212 0x15b8 [ 6FE3237C1177E66437E7AD0E8AC1A6E5, 3223D4E57150DE8F768BC1BE0E6DCFFC6CA5B09DC7D7ADF283C90929100B0B7B ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
17:33:53.0227 0x15b8 asmthub3 - ok
17:33:53.0243 0x15b8 [ C4043E39A2ABBC56581CA25DF161E9F7, 1B53A8BEE4823EA842A00F5304428F0B4D14078045CF84ED20D8DF0FB8826040 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
17:33:53.0259 0x15b8 asmtxhci - ok
17:33:53.0274 0x15b8 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:33:53.0274 0x15b8 aspnet_state - ok
17:33:53.0274 0x15b8 [ EDC0C73FA41DF1C8B1FEA3852AED2848, A3FE7EE1AB15ED603403479CFD011DF9B506C1FE95730C0980F1410810C2F736 ] AsrHidFilter C:\Windows\system32\DRIVERS\AsrHidFilter.sys
17:33:53.0290 0x15b8 AsrHidFilter - ok
17:33:53.0290 0x15b8 [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
17:33:53.0290 0x15b8 aswHwid - ok
17:33:53.0290 0x15b8 [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:33:53.0305 0x15b8 aswMonFlt - ok
17:33:53.0305 0x15b8 [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
17:33:53.0321 0x15b8 aswRdr - ok
17:33:53.0321 0x15b8 [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
17:33:53.0321 0x15b8 aswRvrt - ok
17:33:53.0352 0x15b8 [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:33:53.0368 0x15b8 aswSnx - ok
17:33:53.0383 0x15b8 [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:33:53.0399 0x15b8 aswSP - ok
17:33:53.0399 0x15b8 [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm C:\Windows\system32\drivers\aswStm.sys
17:33:53.0399 0x15b8 aswStm - ok
17:33:53.0415 0x15b8 [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
17:33:53.0415 0x15b8 aswVmm - ok
17:33:53.0430 0x15b8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:33:53.0446 0x15b8 AsyncMac - ok
17:33:53.0446 0x15b8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
17:33:53.0461 0x15b8 atapi - ok
17:33:53.0461 0x15b8 [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:33:53.0477 0x15b8 AtiHDAudioService - ok
17:33:53.0477 0x15b8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:33:53.0524 0x15b8 AudioEndpointBuilder - ok
17:33:53.0524 0x15b8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:33:53.0555 0x15b8 AudioSrv - ok
17:33:53.0571 0x15b8 [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:33:53.0571 0x15b8 avast! Antivirus - ok
17:33:53.0586 0x15b8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:33:53.0586 0x15b8 AxInstSV - ok
17:33:53.0602 0x15b8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:33:53.0617 0x15b8 b06bdrv - ok
17:33:53.0633 0x15b8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:33:53.0633 0x15b8 b57nd60a - ok
17:33:53.0649 0x15b8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
17:33:53.0649 0x15b8 BDESVC - ok
17:33:53.0649 0x15b8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
17:33:53.0680 0x15b8 Beep - ok
17:33:53.0695 0x15b8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
17:33:53.0711 0x15b8 BFE - ok
17:33:53.0727 0x15b8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
17:33:53.0773 0x15b8 BITS - ok
17:33:53.0773 0x15b8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:33:53.0773 0x15b8 blbdrive - ok
17:33:53.0789 0x15b8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:33:53.0789 0x15b8 bowser - ok
17:33:53.0789 0x15b8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:33:53.0805 0x15b8 BrFiltLo - ok
17:33:53.0805 0x15b8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:33:53.0820 0x15b8 BrFiltUp - ok
17:33:53.0820 0x15b8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
17:33:53.0836 0x15b8 Browser - ok
17:33:53.0836 0x15b8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:33:53.0851 0x15b8 Brserid - ok
17:33:53.0851 0x15b8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:33:53.0867 0x15b8 BrSerWdm - ok
17:33:53.0867 0x15b8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:33:53.0883 0x15b8 BrUsbMdm - ok
17:33:53.0883 0x15b8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:33:53.0883 0x15b8 BrUsbSer - ok
17:33:53.0898 0x15b8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:33:53.0898 0x15b8 BTHMODEM - ok
17:33:53.0914 0x15b8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
17:33:53.0929 0x15b8 bthserv - ok
17:33:53.0929 0x15b8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:33:53.0961 0x15b8 cdfs - ok
17:33:53.0961 0x15b8 cdrbsdrv - ok
17:33:53.0961 0x15b8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:33:53.0976 0x15b8 cdrom - ok
17:33:53.0976 0x15b8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
17:33:54.0007 0x15b8 CertPropSvc - ok
17:33:54.0007 0x15b8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
17:33:54.0007 0x15b8 circlass - ok
17:33:54.0023 0x15b8 [ 2B6B01F0B1DE1B9A0285F9CF36FD6B22, 2D93CE3AABA5DE94FA1724AAE272CAAA95AE9416F4A51E73E126344DD938968B ] CLBStor C:\Windows\system32\drivers\CLBStor.sys
17:33:54.0023 0x15b8 CLBStor - ok
17:33:54.0023 0x15b8 CLBUDFbk - ok
17:33:54.0039 0x15b8 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
17:33:54.0039 0x15b8 CLFS - ok
17:33:54.0117 0x15b8 [ 524DC3807CB1746225F9D26ADD19C319, DC23392E8C542B02860BA1F57F03AD08A58B256D155CC6B81A48691A79D3A3F6 ] CLKMSVC10_58664B3D D:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
17:33:54.0132 0x15b8 CLKMSVC10_58664B3D - ok
17:33:54.0148 0x15b8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:33:54.0148 0x15b8 clr_optimization_v2.0.50727_32 - ok
17:33:54.0163 0x15b8 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:33:54.0163 0x15b8 clr_optimization_v2.0.50727_64 - ok
17:33:54.0179 0x15b8 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:33:54.0179 0x15b8 clr_optimization_v4.0.30319_32 - ok
17:33:54.0179 0x15b8 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:33:54.0195 0x15b8 clr_optimization_v4.0.30319_64 - ok
17:33:54.0195 0x15b8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
17:33:54.0210 0x15b8 CmBatt - ok
17:33:54.0210 0x15b8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:33:54.0210 0x15b8 cmdide - ok
17:33:54.0226 0x15b8 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
17:33:54.0241 0x15b8 CNG - ok
17:33:54.0241 0x15b8 [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX C:\Windows\system32\drivers\COMMONFX.SYS
17:33:54.0257 0x15b8 COMMONFX - ok
17:33:54.0257 0x15b8 COMMONFX.DLL - ok
17:33:54.0257 0x15b8 [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX.SYS C:\Windows\System32\drivers\COMMONFX.SYS
17:33:54.0257 0x15b8 COMMONFX.SYS - ok
17:33:54.0273 0x15b8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
17:33:54.0273 0x15b8 Compbatt - ok
17:33:54.0273 0x15b8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:33:54.0288 0x15b8 CompositeBus - ok
17:33:54.0288 0x15b8 COMSysApp - ok
17:33:54.0288 0x15b8 [ C08063F052308B6F5882482615387F30, 523D1D43E896077F32CD9ACAA8E85B513BFB7B013A625E56F0D4E9675D9822BA ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
17:33:54.0288 0x15b8 cpuz135 - ok
17:33:54.0304 0x15b8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:33:54.0304 0x15b8 crcdisk - ok
17:33:54.0304 0x15b8 [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:33:54.0319 0x15b8 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
17:33:57.0081 0x15b8 Detect skipped due to KSN trusted
17:33:57.0081 0x15b8 Creative ALchemy AL6 Licensing Service - ok
17:33:57.0096 0x15b8 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:33:57.0112 0x15b8 CryptSvc - ok
17:33:57.0127 0x15b8 [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
17:33:57.0127 0x15b8 CT20XUT - ok
17:33:57.0127 0x15b8 CT20XUT.DLL - ok
17:33:57.0143 0x15b8 [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
17:33:57.0143 0x15b8 CT20XUT.SYS - ok
17:33:57.0159 0x15b8 [ F5964C14C10497317901E6776CCDA2CA, 30995316CC8265B813BE8EEA3214648C62E90EED3CC170807AF5CA4566295FFE ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
17:33:57.0174 0x15b8 ctac32k - ok
17:33:57.0190 0x15b8 [ D778E18645602CC567B055A30C6A35B4, BDE6A6ADFCE8A193E48B9DAE58CD9F2A02C3D769F6ECC8779C6B5C2D15F69A44 ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
17:33:57.0205 0x15b8 ctaud2k - ok
17:33:57.0205 0x15b8 CTAUDFX - ok
17:33:57.0205 0x15b8 CTAUDFX.DLL - ok
17:33:57.0205 0x15b8 CTAUDFX.SYS - ok
17:33:57.0221 0x15b8 [ 7D564A71907B389C62191E7D7B9069D8, 3590C38A65BCE379374C979328BC560DA21A687630CB1524DDFA4C6124001F93 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:33:57.0221 0x15b8 CTAudSvcService - detected UnsignedFile.Multi.Generic ( 1 )
17:33:59.0998 0x15b8 Detect skipped due to KSN trusted
17:33:59.0998 0x15b8 CTAudSvcService - ok
17:33:59.0998 0x15b8 CTEAPSFX.DLL - ok
17:34:00.0013 0x15b8 CTEDSPFX.DLL - ok
17:34:00.0013 0x15b8 CTEDSPIO.DLL - ok
17:34:00.0013 0x15b8 CTEDSPSY.DLL - ok
17:34:00.0013 0x15b8 CTERFXFX - ok
17:34:00.0029 0x15b8 CTERFXFX.DLL - ok
17:34:00.0029 0x15b8 CTERFXFX.SYS - ok
17:34:00.0060 0x15b8 [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
17:34:00.0076 0x15b8 CTEXFIFX - ok
17:34:00.0076 0x15b8 CTEXFIFX.DLL - ok
17:34:00.0107 0x15b8 [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
17:34:00.0138 0x15b8 CTEXFIFX.SYS - ok
17:34:00.0138 0x15b8 [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
17:34:00.0138 0x15b8 CTHWIUT - ok
17:34:00.0154 0x15b8 CTHWIUT.DLL - ok
17:34:00.0154 0x15b8 [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
17:34:00.0154 0x15b8 CTHWIUT.SYS - ok
17:34:00.0154 0x15b8 [ 133C4C45E1B68F49A9CEBA88973F60E2, 1B79F8C7650568C6C951262C0CF0FA890047E3D148580A3C38695F7C35BDA69B ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
17:34:00.0169 0x15b8 ctprxy2k - ok
17:34:00.0169 0x15b8 CTSBLFX - ok
17:34:00.0169 0x15b8 CTSBLFX.DLL - ok
17:34:00.0169 0x15b8 CTSBLFX.SYS - ok
17:34:00.0169 0x15b8 [ 9B670F98B9D35274C13ACC36F341C070, D3EB5421E6105278E87603012170F74CF4D9173242BBFB676CF6F6B304D16199 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
17:34:00.0185 0x15b8 ctsfm2k - ok
17:34:00.0201 0x15b8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:34:00.0232 0x15b8 DcomLaunch - ok
17:34:00.0232 0x15b8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
17:34:00.0263 0x15b8 defragsvc - ok
17:34:00.0263 0x15b8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:34:00.0279 0x15b8 DfsC - ok
17:34:00.0294 0x15b8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:34:00.0310 0x15b8 Dhcp - ok
17:34:00.0310 0x15b8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
17:34:00.0325 0x15b8 discache - ok
17:34:00.0341 0x15b8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
17:34:00.0341 0x15b8 Disk - ok
17:34:00.0341 0x15b8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:34:00.0357 0x15b8 Dnscache - ok
17:34:00.0372 0x15b8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
17:34:00.0388 0x15b8 dot3svc - ok
17:34:00.0403 0x15b8 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:34:00.0403 0x15b8 Dot4 - ok
17:34:00.0403 0x15b8 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:34:00.0419 0x15b8 Dot4Print - ok
17:34:00.0419 0x15b8 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:34:00.0435 0x15b8 dot4usb - ok
17:34:00.0435 0x15b8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
17:34:00.0466 0x15b8 DPS - ok
17:34:00.0466 0x15b8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:34:00.0466 0x15b8 drmkaud - ok
17:34:00.0497 0x15b8 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:34:00.0513 0x15b8 DXGKrnl - ok
17:34:00.0513 0x15b8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
17:34:00.0544 0x15b8 EapHost - ok
17:34:00.0591 0x15b8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:34:00.0669 0x15b8 ebdrv - ok
17:34:00.0669 0x15b8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
17:34:00.0684 0x15b8 EFS - ok
17:34:00.0684 0x15b8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:34:00.0715 0x15b8 ehRecvr - ok
17:34:00.0715 0x15b8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
17:34:00.0731 0x15b8 ehSched - ok
17:34:00.0731 0x15b8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:34:00.0747 0x15b8 elxstor - ok
17:34:00.0762 0x15b8 [ 5AF6DE61E2CB029C2C9BE268D69F2BB8, 40DD35CC37AA57D6B6324B45C4D050DA539112F10E619AD2B827C600DA524793 ] emupia C:\Windows\system32\drivers\emupia2k.sys
17:34:00.0762 0x15b8 emupia - ok
17:34:00.0762 0x15b8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:34:00.0778 0x15b8 ErrDev - ok
17:34:00.0778 0x15b8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
17:34:00.0809 0x15b8 EventSystem - ok
17:34:00.0825 0x15b8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
17:34:00.0840 0x15b8 exfat - ok
17:34:00.0856 0x15b8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:34:00.0871 0x15b8 fastfat - ok
17:34:00.0887 0x15b8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
17:34:00.0903 0x15b8 Fax - ok
17:34:00.0903 0x15b8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
17:34:00.0918 0x15b8 fdc - ok
17:34:00.0918 0x15b8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
17:34:00.0949 0x15b8 fdPHost - ok
17:34:00.0949 0x15b8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
17:34:00.0965 0x15b8 FDResPub - ok
17:34:00.0965 0x15b8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:34:00.0981 0x15b8 FileInfo - ok
17:34:00.0981 0x15b8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:34:01.0012 0x15b8 Filetrace - ok
17:34:01.0012 0x15b8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:34:01.0012 0x15b8 flpydisk - ok
17:34:01.0027 0x15b8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:34:01.0027 0x15b8 FltMgr - ok
17:34:01.0043 0x15b8 [ 508401A63E6B1CBF0B9C9A011498731F, F636B0A9C0EB6AE7EC04E5C5FD8A0578AEB76A1B0D974F355BCE6B6091901725 ] FNETTBOH_305 C:\Windows\system32\drivers\FNETTBOH_305.SYS
17:34:01.0043 0x15b8 FNETTBOH_305 - ok
17:34:01.0043 0x15b8 [ 7C3C4B4C951EC1BDFD4F769D05E2CC68, 7B9DA195D3CF0E7BE6BB532CC5D058BC6658B7538B5C5CF09B1A4ABEF1ECACB4 ] FNETURPX C:\Windows\system32\drivers\FNETURPX.SYS
17:34:01.0043 0x15b8 FNETURPX - ok
17:34:01.0074 0x15b8 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
17:34:01.0105 0x15b8 FontCache - ok
17:34:01.0105 0x15b8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:34:01.0105 0x15b8 FontCache3.0.0.0 - ok
17:34:01.0121 0x15b8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:34:01.0121 0x15b8 FsDepends - ok
17:34:01.0121 0x15b8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:34:01.0137 0x15b8 Fs_Rec - ok
17:34:01.0137 0x15b8 [ 79B4CDE2B69ED8BA4011859780A66A4D, D2572B737232F8FDD46A811FF69D8DAE4AAD4D2FA47507D78C0C54BF01C4CC4A ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
17:34:01.0137 0x15b8 Futuremark SystemInfo Service - ok
17:34:01.0152 0x15b8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:34:01.0152 0x15b8 fvevol - ok
17:34:01.0168 0x15b8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:34:01.0168 0x15b8 gagp30kx - ok
17:34:01.0183 0x15b8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
17:34:01.0215 0x15b8 gpsvc - ok
17:34:01.0230 0x15b8 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:34:01.0230 0x15b8 gupdate - ok
17:34:01.0230 0x15b8 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:34:01.0246 0x15b8 gupdatem - ok
17:34:01.0261 0x15b8 [ 82B68F585110AE8500A6D23623AE1F74, 1ADCFA2D77E3BB9BDCDD15DC21E7F6707823788A1CFB31ED959BC470595EE89B ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys
17:34:01.0293 0x15b8 ha10kx2k - ok
17:34:01.0324 0x15b8 [ EC2D3B3E6C27A7E9E93DC194C1FF13A5, 1390880D74F97550E8803B43FA590F0613024D7670D025FBD4DA20ED59F07CC3 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
17:34:01.0355 0x15b8 ha20x22k - ok
17:34:01.0386 0x15b8 [ 1B04A2F6CD01468B5DAF4699E203C3E2, A8FBC1F32EDDDC478CDACA13C656E81E8E2F2FD4AC3987BEFAA42D4222ACD85F ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
17:34:01.0417 0x15b8 ha20x2k - ok
17:34:01.0417 0x15b8 [ 83F647F9ACE9192556F758E528024F68, 1007C2E3C8FDB3CB5FB3C336F9904AD076DC31BB263E633EF17E3813B9ED6EF6 ] hap16v2k C:\Windows\system32\drivers\hap16v2k.sys
17:34:01.0433 0x15b8 hap16v2k - ok
17:34:01.0433 0x15b8 [ E815D29361DE89D24C8DBE3E5A7006C9, 2B9075CC6A2425D06E6C3CB77E0755727F8B0920575C660CF261981464D190F0 ] hap17v2k C:\Windows\system32\drivers\hap17v2k.sys
17:34:01.0449 0x15b8 hap17v2k - ok
17:34:01.0449 0x15b8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:34:01.0449 0x15b8 hcw85cir - ok
17:34:01.0464 0x15b8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:34:01.0480 0x15b8 HdAudAddService - ok
17:34:01.0480 0x15b8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:34:01.0495 0x15b8 HDAudBus - ok
17:34:01.0495 0x15b8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:34:01.0511 0x15b8 HidBatt - ok
17:34:01.0511 0x15b8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:34:01.0511 0x15b8 HidBth - ok
17:34:01.0527 0x15b8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
17:34:01.0527 0x15b8 HidIr - ok
17:34:01.0527 0x15b8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
17:34:01.0558 0x15b8 hidserv - ok
17:34:01.0558 0x15b8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:34:01.0573 0x15b8 HidUsb - ok
17:34:01.0573 0x15b8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:34:01.0589 0x15b8 hkmsvc - ok
17:34:01.0605 0x15b8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:34:01.0605 0x15b8 HomeGroupListener - ok
17:34:01.0620 0x15b8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:34:01.0636 0x15b8 HomeGroupProvider - ok
17:34:01.0636 0x15b8 [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:34:01.0651 0x15b8 hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
17:34:04.0475 0x15b8 Detect skipped due to KSN trusted
17:34:04.0475 0x15b8 hpqcxs08 - ok
17:34:04.0491 0x15b8 [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:34:04.0506 0x15b8 hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:34:07.0252 0x15b8 Detect skipped due to KSN trusted
17:34:07.0252 0x15b8 hpqddsvc - ok
17:34:07.0267 0x15b8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:34:07.0283 0x15b8 HpSAMD - ok
17:34:07.0314 0x15b8 [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:34:07.0345 0x15b8 HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
17:34:10.0107 0x15b8 Detect skipped due to KSN trusted
17:34:10.0107 0x15b8 HPSLPSVC - ok
17:34:10.0138 0x15b8 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:34:10.0185 0x15b8 HTTP - ok
17:34:10.0185 0x15b8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:34:10.0200 0x15b8 hwpolicy - ok
17:34:10.0200 0x15b8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:34:10.0216 0x15b8 i8042prt - ok
17:34:10.0216 0x15b8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:34:10.0231 0x15b8 iaStorV - ok
17:34:10.0247 0x15b8 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:34:10.0263 0x15b8 idsvc - ok
17:34:10.0465 0x15b8 [ 174BCAC474DE13B2650E444CF124828E, 42410700408873D890AA0EA1A885086B0DF6D1196957E3CD8A8323C46139E2C6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:34:10.0684 0x15b8 igfx - ok
17:34:10.0699 0x15b8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:34:10.0699 0x15b8 iirsp - ok
17:34:10.0715 0x15b8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
17:34:10.0746 0x15b8 IKEEXT - ok
17:34:10.0793 0x15b8 [ C7124DA48E557D8F88D0D7F1254557F4, 300BC8ACB5CCB15F80ECAEAD27F12925EE94C84FE8110143A3E0F30E19DDA87B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:34:10.0840 0x15b8 IntcAzAudAddService - ok
17:34:10.0855 0x15b8 [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
17:34:10.0871 0x15b8 Intel(R) Capability Licensing Service Interface - ok
17:34:10.0871 0x15b8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
17:34:10.0871 0x15b8 intelide - ok
17:34:10.0887 0x15b8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:34:10.0887 0x15b8 intelppm - ok
17:34:10.0902 0x15b8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:34:10.0918 0x15b8 IPBusEnum - ok
17:34:10.0918 0x15b8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:34:10.0949 0x15b8 IpFilterDriver - ok
17:34:10.0949 0x15b8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:34:10.0980 0x15b8 iphlpsvc - ok
17:34:10.0980 0x15b8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:34:10.0980 0x15b8 IPMIDRV - ok
17:34:10.0996 0x15b8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:34:11.0011 0x15b8 IPNAT - ok
17:34:11.0011 0x15b8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:34:11.0027 0x15b8 IRENUM - ok
17:34:11.0027 0x15b8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:34:11.0043 0x15b8 isapnp - ok
17:34:11.0043 0x15b8 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:34:11.0058 0x15b8 iScsiPrt - ok
17:34:11.0058 0x15b8 [ 5C9B001D8970C2DA36254A916F3DA8F7, 625AC5C3DFAE52BD34EC3F93742D1D2C229785E4F0F3484CFB7B8728A1C830DF ] iumsvc C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
17:34:11.0074 0x15b8 iumsvc - ok
17:34:11.0074 0x15b8 [ 54C6B346D6FF1944A6E7587EB4942589, 618FA57637277AA08D726B911E7BAF85373807D466CBDBEC4212F1065E6105DC ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
17:34:11.0089 0x15b8 jhi_service - ok
17:34:11.0089 0x15b8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:34:11.0089 0x15b8 kbdclass - ok
17:34:11.0089 0x15b8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:34:11.0105 0x15b8 kbdhid - ok
17:34:11.0105 0x15b8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
17:34:11.0121 0x15b8 KeyIso - ok
17:34:11.0121 0x15b8 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:34:11.0121 0x15b8 KSecDD - ok
17:34:11.0136 0x15b8 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:34:11.0136 0x15b8 KSecPkg - ok
17:34:11.0136 0x15b8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:34:11.0167 0x15b8 ksthunk - ok
17:34:11.0167 0x15b8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
17:34:11.0199 0x15b8 KtmRm - ok
17:34:11.0199 0x15b8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:34:11.0230 0x15b8 LanmanServer - ok
17:34:11.0230 0x15b8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:34:11.0261 0x15b8 LanmanWorkstation - ok
17:34:11.0277 0x15b8 [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:34:11.0277 0x15b8 LBTServ - ok
17:34:11.0292 0x15b8 [ ED7EC050CD6C20E1A93A4DAFB7EFD14D, 9B3B9FA23788680D13E3DC2EEA2F127591A368578AEAB70F03AC379BA7379184 ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
17:34:11.0292 0x15b8 LEqdUsb - ok
17:34:11.0292 0x15b8 [ 3267BC698E29474A8381E68904EB0390, A653ED6364D4B7E02FB7087D364E33D029B15A92E0FAAB176877DE5F93B36B65 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
17:34:11.0308 0x15b8 LHidEqd - ok
17:34:11.0308 0x15b8 [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:34:11.0308 0x15b8 LHidFilt - ok
17:34:11.0308 0x15b8 [ FCBDCC6F1801E32244235608E1277752, 8CC8E22E412645F4A534C51FB550AB22410AE90FA266D75498827EB922E8191E ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:34:11.0323 0x15b8 LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
17:34:17.0907 0x15b8 Detect skipped due to KSN trusted
17:34:17.0907 0x15b8 LightScribeService - ok
17:34:17.0922 0x15b8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:34:17.0969 0x15b8 lltdio - ok
17:34:17.0969 0x15b8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:34:18.0000 0x15b8 lltdsvc - ok
17:34:18.0000 0x15b8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:34:18.0031 0x15b8 lmhosts - ok
17:34:18.0031 0x15b8 [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:34:18.0031 0x15b8 LMouFilt - ok
17:34:18.0047 0x15b8 [ 4BE94D758691FAA00181F799CF528088, 81D1E6794EBEFA32643975359B7E89781E428B11F592AC67147D0D8C5E4D0056 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:34:18.0047 0x15b8 LMS - ok
17:34:18.0063 0x15b8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:34:18.0063 0x15b8 LSI_FC - ok
17:34:18.0063 0x15b8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:34:18.0078 0x15b8 LSI_SAS - ok
17:34:18.0078 0x15b8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:34:18.0094 0x15b8 LSI_SAS2 - ok
17:34:18.0094 0x15b8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:34:18.0094 0x15b8 LSI_SCSI - ok
17:34:18.0109 0x15b8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
17:34:18.0125 0x15b8 luafv - ok
17:34:18.0125 0x15b8 [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys
17:34:18.0141 0x15b8 MBfilt - ok
17:34:18.0141 0x15b8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:34:18.0156 0x15b8 Mcx2Svc - ok
17:34:18.0156 0x15b8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
17:34:18.0156 0x15b8 megasas - ok
17:34:18.0172 0x15b8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:34:18.0172 0x15b8 MegaSR - ok
17:34:18.0172 0x15b8 [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:34:18.0187 0x15b8 MEIx64 - ok
17:34:18.0234 0x15b8 [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:34:18.0234 0x15b8 Microsoft Office Groove Audit Service - ok
17:34:18.0250 0x15b8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
17:34:18.0281 0x15b8 MMCSS - ok
17:34:18.0281 0x15b8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
17:34:18.0297 0x15b8 Modem - ok
17:34:18.0297 0x15b8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:34:18.0312 0x15b8 monitor - ok
17:34:18.0312 0x15b8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:34:18.0328 0x15b8 mouclass - ok
17:34:18.0328 0x15b8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:34:18.0328 0x15b8 mouhid - ok
17:34:18.0343 0x15b8 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:34:18.0343 0x15b8 mountmgr - ok
17:34:18.0343 0x15b8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
17:34:18.0359 0x15b8 mpio - ok
17:34:18.0359 0x15b8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:34:18.0390 0x15b8 mpsdrv - ok
17:34:18.0406 0x15b8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:34:18.0437 0x15b8 MpsSvc - ok
17:34:18.0437 0x15b8 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:34:18.0453 0x15b8 MRxDAV - ok
17:34:18.0453 0x15b8 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:18.0468 0x15b8 mrxsmb - ok
17:34:18.0484 0x15b8 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:18.0484 0x15b8 mrxsmb10 - ok
17:34:18.0499 0x15b8 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:18.0499 0x15b8 mrxsmb20 - ok
17:34:18.0499 0x15b8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
17:34:18.0515 0x15b8 msahci - ok
17:34:18.0515 0x15b8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:34:18.0531 0x15b8 msdsm - ok
17:34:18.0531 0x15b8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
17:34:18.0546 0x15b8 MSDTC - ok
17:34:18.0546 0x15b8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:34:18.0562 0x15b8 Msfs - ok
17:34:18.0562 0x15b8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:34:18.0593 0x15b8 mshidkmdf - ok
17:34:18.0593 0x15b8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:34:18.0593 0x15b8 msisadrv - ok
17:34:18.0609 0x15b8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:34:18.0624 0x15b8 MSiSCSI - ok
17:34:18.0624 0x15b8 msiserver - ok
17:34:18.0640 0x15b8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:34:18.0655 0x15b8 MSKSSRV - ok
17:34:18.0655 0x15b8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:34:18.0687 0x15b8 MSPCLOCK - ok
17:34:18.0687 0x15b8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:34:18.0702 0x15b8 MSPQM - ok
17:34:18.0718 0x15b8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:34:18.0718 0x15b8 MsRPC - ok
17:34:18.0733 0x15b8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:34:18.0733 0x15b8 mssmbios - ok
17:34:18.0733 0x15b8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:34:18.0749 0x15b8 MSTEE - ok
17:34:18.0765 0x15b8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:34:18.0765 0x15b8 MTConfig - ok
17:34:18.0765 0x15b8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
17:34:18.0780 0x15b8 Mup - ok
17:34:18.0780 0x15b8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
17:34:18.0811 0x15b8 napagent - ok
17:34:18.0827 0x15b8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:34:18.0843 0x15b8 NativeWifiP - ok
17:34:18.0858 0x15b8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
17:34:18.0874 0x15b8 NDIS - ok
17:34:18.0889 0x15b8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:34:18.0905 0x15b8 NdisCap - ok
17:34:18.0905 0x15b8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:34:18.0936 0x15b8 NdisTapi - ok
17:34:18.0936 0x15b8 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:34:18.0952 0x15b8 Ndisuio - ok
17:34:18.0967 0x15b8 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:34:18.0983 0x15b8 NdisWan - ok
17:34:18.0983 0x15b8 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:34:19.0014 0x15b8 NDProxy - ok
17:34:19.0014 0x15b8 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:34:19.0014 0x15b8 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:34:25.0535 0x15b8 Detect skipped due to KSN trusted
17:34:25.0535 0x15b8 Net Driver HPZ12 - ok
17:34:25.0535 0x15b8 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:34:25.0582 0x15b8 NetBIOS - ok
17:34:25.0582 0x15b8 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:34:25.0613 0x15b8 NetBT - ok
17:34:25.0613 0x15b8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
17:34:25.0629 0x15b8 Netlogon - ok
17:34:25.0629 0x15b8 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
17:34:25.0660 0x15b8 Netman - ok
17:34:25.0660 0x15b8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0675 0x15b8 NetMsmqActivator - ok
17:34:25.0675 0x15b8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0691 0x15b8 NetPipeActivator - ok
17:34:25.0691 0x15b8 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
17:34:25.0722 0x15b8 netprofm - ok
17:34:25.0738 0x15b8 [ 618C55B392238B9467F9113E13525C49, 304A77EF3E1E7A1738E5A4F6A911B4DF736CEF4867C6F07CA71E227048E90370 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
17:34:25.0769 0x15b8 netr28ux - ok
17:34:25.0769 0x15b8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0785 0x15b8 NetTcpActivator - ok
17:34:25.0785 0x15b8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0800 0x15b8 NetTcpPortSharing - ok
17:34:25.0800 0x15b8 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:34:25.0800 0x15b8 nfrd960 - ok
17:34:25.0816 0x15b8 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:34:25.0831 0x15b8 NlaSvc - ok
17:34:25.0831 0x15b8 [ 907B5E1E4A592E5EDC5E4CCBDE4863C2, 7A3FA5B779CBBED46CA81328951B71352E4FC60153A91965877834EC7C6F0074 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
17:34:25.0847 0x15b8 nmwcd - ok
17:34:25.0847 0x15b8 [ 41C1AC1F3613435EB32D67BCB80A5FA5, 93A313BC4A7FA2FC3372CFBF2D76F417007B4A82455092724D3B0B6FA5A88F23 ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
17:34:25.0863 0x15b8 nmwcdc - ok
17:34:25.0863 0x15b8 [ A962BE6433EF016E0DFB52ECA15A5378, 765D47BCA040034E565CA139120B94562834984EB78DA11807C054BDD5313496 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
17:34:25.0878 0x15b8 nmwcdnsucx64 - ok
17:34:25.0878 0x15b8 [ 9573223E205907247AE6D948E3453770, 35D32A415F74863D7408229508F134D53CA0FA7EDD8B0E5FEEFC9DE588D0607B ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
17:34:25.0894 0x15b8 nmwcdnsux64 - ok
17:34:25.0894 0x15b8 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:34:25.0925 0x15b8 Npfs - ok
17:34:25.0925 0x15b8 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
17:34:25.0941 0x15b8 nsi - ok
17:34:25.0956 0x15b8 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:34:25.0972 0x15b8 nsiproxy - ok
17:34:26.0003 0x15b8 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:34:26.0034 0x15b8 Ntfs - ok
17:34:26.0034 0x15b8 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
17:34:26.0050 0x15b8 Null - ok
17:34:26.0065 0x15b8 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:34:26.0065 0x15b8 nvraid - ok
17:34:26.0081 0x15b8 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:34:26.0081 0x15b8 nvstor - ok
17:34:26.0081 0x15b8 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:34:26.0097 0x15b8 nv_agp - ok
17:34:26.0097 0x15b8 [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:34:26.0112 0x15b8 odserv - ok
17:34:26.0112 0x15b8 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:34:26.0128 0x15b8 ohci1394 - ok
17:34:26.0128 0x15b8 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:34:26.0143 0x15b8 ose - ok
17:34:26.0143 0x15b8 [ 61B16C288D2E96353323717442E08AFC, 24BF4523D0C29145866DFD4D1428E076793A69C5F005C49E647987C31D1A87F7 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
17:34:26.0159 0x15b8 ossrv - ok
17:34:26.0159 0x15b8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:34:26.0175 0x15b8 p2pimsvc - ok
17:34:26.0190 0x15b8 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
17:34:26.0206 0x15b8 p2psvc - ok
17:34:26.0206 0x15b8 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
17:34:26.0221 0x15b8 Parport - ok
17:34:26.0221 0x15b8 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:34:26.0221 0x15b8 partmgr - ok
17:34:26.0237 0x15b8 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
17:34:26.0253 0x15b8 PcaSvc - ok
17:34:26.0253 0x15b8 [ BC0018C2D29F655188A0ED3FA94FDB24, BCF7F2CA5E30F569AEB69049BA3C196982C72EA7264CFBA59D7123041BA96E5A ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
17:34:26.0253 0x15b8 pccsmcfd - ok
17:34:26.0268 0x15b8 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
17:34:26.0268 0x15b8 pci - ok
17:34:26.0268 0x15b8 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
17:34:26.0284 0x15b8 pciide - ok
17:34:26.0284 0x15b8 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:34:26.0299 0x15b8 pcmcia - ok
17:34:26.0299 0x15b8 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
17:34:26.0299 0x15b8 pcw - ok
17:34:26.0315 0x15b8 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:34:26.0346 0x15b8 PEAUTH - ok
17:34:26.0377 0x15b8 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:34:26.0377 0x15b8 PerfHost - ok
17:34:26.0409 0x15b8 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
17:34:26.0455 0x15b8 pla - ok
17:34:26.0471 0x15b8 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:34:26.0487 0x15b8 PlugPlay - ok
17:34:26.0487 0x15b8 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:34:26.0487 0x15b8 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:34:29.0263 0x15b8 Detect skipped due to KSN trusted
17:34:29.0263 0x15b8 Pml Driver HPZ12 - ok
17:34:29.0263 0x15b8 [ 0BEE791C7C7ACE453C134E73633C497D, 82B30461DBF40AC15FCE6A83B9BAD2EBD05B27DEA1B784EAA096422FE8927B7B ] pmxdrv C:\Windows\system32\drivers\pmxdrv.sys
17:34:29.0279 0x15b8 pmxdrv - ok
17:34:29.0279 0x15b8 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:34:29.0310 0x15b8 PNRPAutoReg - ok
17:34:29.0310 0x15b8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:34:29.0326 0x15b8 PNRPsvc - ok
17:34:29.0341 0x15b8 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:34:29.0373 0x15b8 PolicyAgent - ok
17:34:29.0373 0x15b8 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
17:34:29.0404 0x15b8 Power - ok
17:34:29.0404 0x15b8 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:34:29.0435 0x15b8 PptpMiniport - ok
17:34:29.0435 0x15b8 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
17:34:29.0435 0x15b8 Processor - ok
17:34:29.0451 0x15b8 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
17:34:29.0466 0x15b8 ProfSvc - ok
17:34:29.0466 0x15b8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:34:29.0466 0x15b8 ProtectedStorage - ok
17:34:29.0482 0x15b8 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:34:29.0497 0x15b8 Psched - ok
17:34:29.0529 0x15b8 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:34:29.0560 0x15b8 ql2300 - ok
17:34:29.0560 0x15b8 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:34:29.0575 0x15b8 ql40xx - ok
17:34:29.0575 0x15b8 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
17:34:29.0591 0x15b8 QWAVE - ok
17:34:29.0591 0x15b8 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:34:29.0607 0x15b8 QWAVEdrv - ok
17:34:29.0607 0x15b8 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:34:29.0638 0x15b8 RasAcd - ok
17:34:29.0638 0x15b8 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:34:29.0653 0x15b8 RasAgileVpn - ok
17:34:29.0669 0x15b8 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
17:34:29.0685 0x15b8 RasAuto - ok
17:34:29.0700 0x15b8 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:34:29.0716 0x15b8 Rasl2tp - ok
17:34:29.0731 0x15b8 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
17:34:29.0763 0x15b8 RasMan - ok
17:34:29.0763 0x15b8 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:34:29.0778 0x15b8 RasPppoe - ok
17:34:29.0794 0x15b8 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:34:29.0809 0x15b8 RasSstp - ok
17:34:29.0825 0x15b8 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:34:29.0841 0x15b8 rdbss - ok
17:34:29.0841 0x15b8 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:34:29.0856 0x15b8 rdpbus - ok
17:34:29.0856 0x15b8 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:34:29.0887 0x15b8 RDPCDD - ok
17:34:29.0887 0x15b8 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:34:29.0903 0x15b8 RDPENCDD - ok
17:34:29.0919 0x15b8 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:34:29.0934 0x15b8 RDPREFMP - ok
17:34:29.0934 0x15b8 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:34:29.0950 0x15b8 RdpVideoMiniport - ok
17:34:29.0950 0x15b8 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:34:29.0965 0x15b8 RDPWD - ok
17:34:29.0965 0x15b8 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:34:29.0981 0x15b8 rdyboost - ok
17:34:29.0981 0x15b8 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:34:30.0012 0x15b8 RemoteAccess - ok
17:34:30.0012 0x15b8 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:34:30.0028 0x15b8 RemoteRegistry - ok
17:34:30.0043 0x15b8 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:34:30.0059 0x15b8 RpcEptMapper - ok
17:34:30.0059 0x15b8 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
17:34:30.0075 0x15b8 RpcLocator - ok
17:34:30.0090 0x15b8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
17:34:30.0121 0x15b8 RpcSs - ok
17:34:30.0121 0x15b8 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:34:30.0137 0x15b8 rspndr - ok
17:34:30.0153 0x15b8 [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:34:30.0168 0x15b8 RTL8167 - ok
17:34:30.0168 0x15b8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
17:34:30.0184 0x15b8 SamSs - ok
17:34:30.0184 0x15b8 SANDRA - ok
17:34:30.0184 0x15b8 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:34:30.0199 0x15b8 sbp2port - ok
17:34:30.0199 0x15b8 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:34:30.0231 0x15b8 SCardSvr - ok
17:34:30.0231 0x15b8 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:34:30.0246 0x15b8 scfilter - ok
17:34:30.0262 0x15b8 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
17:34:30.0309 0x15b8 Schedule - ok
17:34:30.0309 0x15b8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:34:30.0340 0x15b8 SCPolicySvc - ok
17:34:30.0340 0x15b8 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:34:30.0355 0x15b8 SDRSVC - ok
17:34:30.0355 0x15b8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:34:30.0387 0x15b8 secdrv - ok
17:34:30.0387 0x15b8 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
17:34:30.0402 0x15b8 seclogon - ok
17:34:30.0402 0x15b8 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
17:34:30.0433 0x15b8 SENS - ok
17:34:30.0433 0x15b8 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:34:30.0449 0x15b8 SensrSvc - ok
17:34:30.0449 0x15b8 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:34:30.0465 0x15b8 Serenum - ok
17:34:30.0465 0x15b8 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:34:30.0480 0x15b8 Serial - ok
17:34:30.0480 0x15b8 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:34:30.0480 0x15b8 sermouse - ok
17:34:30.0496 0x15b8 [ 668043F192AB9659761A349A4703600D, 44443E477A38913C6973817C06C25A776574F2C0F9F52609F070BAFA836EBE2E ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
17:34:30.0511 0x15b8 ServiceLayer - ok
17:34:30.0527 0x15b8 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
17:34:30.0543 0x15b8 SessionEnv - ok
17:34:30.0543 0x15b8 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:34:30.0558 0x15b8 sffdisk - ok
17:34:30.0558 0x15b8 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:34:30.0574 0x15b8 sffp_mmc - ok
17:34:30.0574 0x15b8 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:34:30.0589 0x15b8 sffp_sd - ok
17:34:30.0589 0x15b8 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:34:30.0589 0x15b8 sfloppy - ok
17:34:30.0605 0x15b8 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:34:30.0636 0x15b8 SharedAccess - ok
17:34:30.0636 0x15b8 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:34:30.0667 0x15b8 ShellHWDetection - ok
17:34:30.0667 0x15b8 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:34:30.0683 0x15b8 SiSRaid2 - ok
17:34:30.0683 0x15b8 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:34:30.0699 0x15b8 SiSRaid4 - ok
17:34:30.0699 0x15b8 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:34:30.0714 0x15b8 Smb - ok
17:34:30.0730 0x15b8 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:34:30.0730 0x15b8 SNMPTRAP - ok
17:34:30.0730 0x15b8 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
17:34:30.0745 0x15b8 spldr - ok
17:34:30.0761 0x15b8 [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
17:34:30.0792 0x15b8 Spooler - ok
17:34:30.0855 0x15b8 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
17:34:30.0933 0x15b8 sppsvc - ok
17:34:30.0948 0x15b8 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:34:30.0964 0x15b8 sppuinotify - ok
17:34:30.0979 0x15b8 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:34:30.0995 0x15b8 srv - ok
17:34:30.0995 0x15b8 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:34:31.0011 0x15b8 srv2 - ok
17:34:31.0026 0x15b8 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:34:31.0026 0x15b8 srvnet - ok
17:34:31.0042 0x15b8 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:34:31.0073 0x15b8 SSDPSRV - ok
17:34:31.0073 0x15b8 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:34:31.0089 0x15b8 SstpSvc - ok
17:34:31.0104 0x15b8 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:34:31.0104 0x15b8 stexstor - ok
17:34:31.0120 0x15b8 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
17:34:31.0135 0x15b8 stisvc - ok
17:34:31.0151 0x15b8 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:34:31.0151 0x15b8 swenum - ok
17:34:31.0167 0x15b8 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
17:34:31.0198 0x15b8 swprv - ok
17:34:31.0229 0x15b8 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
17:34:31.0276 0x15b8 SysMain - ok
17:34:31.0276 0x15b8 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:34:31.0291 0x15b8 TabletInputService - ok
17:34:31.0291 0x15b8 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
17:34:31.0323 0x15b8 TapiSrv - ok
17:34:31.0323 0x15b8 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
17:34:31.0354 0x15b8 TBS - ok
17:34:31.0385 0x15b8 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:34:31.0416 0x15b8 Tcpip - ok
17:34:31.0447 0x15b8 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:34:31.0494 0x15b8 TCPIP6 - ok
17:34:31.0494 0x15b8 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:34:31.0510 0x15b8 tcpipreg - ok
17:34:31.0510 0x15b8 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:34:31.0525 0x15b8 TDPIPE - ok
17:34:31.0525 0x15b8 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:34:31.0525 0x15b8 TDTCP - ok
17:34:31.0541 0x15b8 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:34:31.0557 0x15b8 tdx - ok
17:34:31.0557 0x15b8 TEAM - ok
17:34:31.0557 0x15b8 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:34:31.0572 0x15b8 TermDD - ok
17:34:31.0588 0x15b8 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
17:34:31.0619 0x15b8 TermService - ok
17:34:31.0619 0x15b8 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
17:34:31.0635 0x15b8 Themes - ok
17:34:31.0635 0x15b8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
17:34:31.0666 0x15b8 THREADORDER - ok
17:34:31.0666 0x15b8 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
17:34:31.0697 0x15b8 TrkWks - ok
17:34:31.0697 0x15b8 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:34:31.0728 0x15b8 TrustedInstaller - ok
17:34:31.0728 0x15b8 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:34:31.0744 0x15b8 tssecsrv - ok
17:34:31.0744 0x15b8 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:34:31.0744 0x15b8 TsUsbFlt - ok
17:34:31.0759 0x15b8 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:34:31.0759 0x15b8 TsUsbGD - ok
17:34:31.0759 0x15b8 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:34:31.0791 0x15b8 tunnel - ok
17:34:31.0791 0x15b8 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:34:31.0806 0x15b8 uagp35 - ok
17:34:31.0806 0x15b8 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:34:31.0837 0x15b8 udfs - ok
17:34:31.0837 0x15b8 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:34:31.0853 0x15b8 UI0Detect - ok
17:34:31.0853 0x15b8 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:34:31.0869 0x15b8 uliagpkx - ok
17:34:31.0869 0x15b8 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:34:31.0869 0x15b8 umbus - ok
17:34:31.0884 0x15b8 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
17:34:31.0884 0x15b8 UmPass - ok
17:34:31.0900 0x15b8 [ C3F2CA25E371DA2EB0AE13DDF9484FDE, 0F66F597C2EE1CE780ED9AD679D33AD52046C98C6F69672EEDD3EDEB45822B0E ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:34:31.0900 0x15b8 UNS - ok
17:34:31.0915 0x15b8 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
17:34:31.0947 0x15b8 upnphost - ok
17:34:31.0947 0x15b8 [ 4E93C8496359E97830C75AC36393654D, D0482257B019512D77484D92E4DEFEFE4FED53CB440ACB7AA879D6FD0574FA9A ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
17:34:31.0962 0x15b8 upperdev - ok
17:34:31.0962 0x15b8 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:34:31.0978 0x15b8 usbccgp - ok
17:34:31.0978 0x15b8 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:34:31.0978 0x15b8 usbcir - ok
17:34:31.0993 0x15b8 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:34:31.0993 0x15b8 usbehci - ok
17:34:32.0009 0x15b8 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:34:32.0025 0x15b8 usbhub - ok
17:34:32.0025 0x15b8 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:34:32.0025 0x15b8 usbohci - ok
17:34:32.0025 0x15b8 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:34:32.0040 0x15b8 usbprint - ok
17:34:32.0040 0x15b8 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
17:34:32.0056 0x15b8 usbscan - ok
17:34:32.0056 0x15b8 [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser C:\Windows\system32\drivers\usbser.sys
17:34:32.0071 0x15b8 usbser - ok
17:34:32.0071 0x15b8 [ 8844CB19A37B65E27049D4A7786726A9, 4D772174A320F02E2F87BDF8C6EBBFDE04C9763D3C21FE9557DE938521508A59 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
17:34:32.0087 0x15b8 UsbserFilt - ok
17:34:32.0087 0x15b8 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:34:32.0087 0x15b8 USBSTOR - ok
17:34:32.0087 0x15b8 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:34:32.0103 0x15b8 usbuhci - ok
17:34:32.0103 0x15b8 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
17:34:32.0134 0x15b8 UxSms - ok
17:34:32.0134 0x15b8 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
17:34:32.0134 0x15b8 VaultSvc - ok
17:34:32.0149 0x15b8 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:34:32.0149 0x15b8 vdrvroot - ok
17:34:32.0165 0x15b8 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
17:34:32.0196 0x15b8 vds - ok
17:34:32.0196 0x15b8 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:34:32.0212 0x15b8 vga - ok
17:34:32.0212 0x15b8 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:34:32.0227 0x15b8 VgaSave - ok
17:34:32.0243 0x15b8 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:34:32.0243 0x15b8 vhdmp - ok
17:34:32.0243 0x15b8 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
17:34:32.0259 0x15b8 viaide - ok
17:34:32.0259 0x15b8 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:34:32.0274 0x15b8 volmgr - ok
17:34:32.0274 0x15b8 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:34:32.0290 0x15b8 volmgrx - ok
17:34:32.0290 0x15b8 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:34:32.0305 0x15b8 volsnap - ok
17:34:32.0305 0x15b8 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:34:32.0321 0x15b8 vsmraid - ok
17:34:32.0352 0x15b8 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
17:34:32.0399 0x15b8 VSS - ok
17:34:32.0399 0x15b8 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:34:32.0415 0x15b8 vwifibus - ok
17:34:32.0415 0x15b8 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:34:32.0430 0x15b8 vwififlt - ok
17:34:32.0446 0x15b8 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
17:34:32.0477 0x15b8 W32Time - ok
17:34:32.0477 0x15b8 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:34:32.0493 0x15b8 WacomPen - ok
17:34:32.0493 0x15b8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:34:32.0508 0x15b8 WANARP - ok
17:34:32.0508 0x15b8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:34:32.0539 0x15b8 Wanarpv6 - ok
17:34:32.0555 0x15b8 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:34:32.0586 0x15b8 WatAdminSvc - ok
17:34:32.0617 0x15b8 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
17:34:32.0649 0x15b8 wbengine - ok
17:34:32.0664 0x15b8 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:34:32.0680 0x15b8 WbioSrvc - ok
17:34:32.0680 0x15b8 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:34:32.0711 0x15b8 wcncsvc - ok
17:34:32.0711 0x15b8 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:34:32.0711 0x15b8 WcsPlugInService - ok
17:34:32.0727 0x15b8 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
17:34:32.0727 0x15b8 Wd - ok
17:34:32.0742 0x15b8 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:34:32.0758 0x15b8 Wdf01000 - ok
17:34:32.0773 0x15b8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:34:32.0773 0x15b8 WdiServiceHost - ok
17:34:32.0789 0x15b8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:34:32.0805 0x15b8 WdiSystemHost - ok
17:34:32.0805 0x15b8 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
17:34:32.0820 0x15b8 WebClient - ok
17:34:32.0820 0x15b8 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:34:32.0851 0x15b8 Wecsvc - ok
17:34:32.0851 0x15b8 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:34:32.0883 0x15b8 wercplsupport - ok
17:34:32.0883 0x15b8 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
17:34:32.0914 0x15b8 WerSvc - ok
17:34:32.0914 0x15b8 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:34:32.0929 0x15b8 WfpLwf - ok
17:34:32.0945 0x15b8 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:34:32.0945 0x15b8 WIMMount - ok
17:34:32.0945 0x15b8 WinDefend - ok
17:34:32.0945 0x15b8 WinHttpAutoProxySvc - ok
17:34:32.0961 0x15b8 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:34:32.0992 0x15b8 Winmgmt - ok
17:34:33.0023 0x15b8 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
17:34:33.0085 0x15b8 WinRM - ok
17:34:33.0085 0x15b8 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:34:33.0101 0x15b8 WinUsb - ok
17:34:33.0117 0x15b8 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:34:33.0148 0x15b8 Wlansvc - ok
17:34:33.0195 0x15b8 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:34:33.0241 0x15b8 wlidsvc - ok
17:34:33.0241 0x15b8 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:34:33.0257 0x15b8 WmiAcpi - ok
17:34:33.0257 0x15b8 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:34:33.0273 0x15b8 wmiApSrv - ok
17:34:33.0273 0x15b8 WMPNetworkSvc - ok
17:34:33.0319 0x15b8 [ 83B6CA03C846FCD47F9883D77D1EB27B, 1616DBBC95085B6618B7F884383507E2A54D561A41288E79FA6DC99218C02802 ] WMZuneComm D:\Program Files (x86)\Zune\WMZuneComm.exe
17:34:33.0335 0x15b8 WMZuneComm - ok
17:34:33.0351 0x15b8 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:34:33.0351 0x15b8 WPCSvc - ok
17:34:33.0366 0x15b8 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:34:33.0366 0x15b8 WPDBusEnum - ok
17:34:33.0382 0x15b8 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:34:33.0397 0x15b8 ws2ifsl - ok
17:34:33.0397 0x15b8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
17:34:33.0413 0x15b8 wscsvc - ok
17:34:33.0413 0x15b8 WSearch - ok
17:34:33.0460 0x15b8 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
17:34:33.0507 0x15b8 wuauserv - ok
17:34:33.0507 0x15b8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:34:33.0522 0x15b8 WudfPf - ok
17:34:33.0522 0x15b8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:34:33.0538 0x15b8 WUDFRd - ok
17:34:33.0538 0x15b8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:34:33.0553 0x15b8 wudfsvc - ok
17:34:33.0569 0x15b8 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:34:33.0569 0x15b8 WwanSvc - ok
17:34:33.0787 0x15b8 [ 67B787C34FB2888D01B130AE007042D8, E44878E53F265C89F271B08B81C129105E42D1C78C14467B2D96E28A9A428B1A ] ZuneNetworkSvc D:\Program Files (x86)\Zune\ZuneNss.exe
17:34:33.0928 0x15b8 ZuneNetworkSvc - ok
17:34:33.0959 0x15b8 [ 4D89FC1C20CF655739EFAC5DA81A67BC, 788D0A5B9972ED6D80242C0C5E80AB0FAB44A708B896D5F724AC1559A291C8DD ] ZuneWlanCfgSvc D:\Program Files (x86)\Zune\ZuneWlanCfgSvc.exe
17:34:33.0975 0x15b8 ZuneWlanCfgSvc - ok
17:34:33.0975 0x15b8 ================ Scan global ===============================
17:34:33.0975 0x15b8 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:34:33.0990 0x15b8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:34:33.0990 0x15b8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:34:34.0006 0x15b8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:34:34.0006 0x15b8 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:34:34.0021 0x15b8 [ Global ] - ok
17:34:34.0021 0x15b8 ================ Scan MBR ==================================
17:34:34.0021 0x15b8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
17:34:34.0099 0x15b8 \Device\Harddisk2\DR2 - ok
17:34:34.0115 0x15b8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:34:34.0209 0x15b8 \Device\Harddisk1\DR1 - ok
17:34:34.0224 0x15b8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:34:34.0287 0x15b8 \Device\Harddisk0\DR0 - ok
17:34:34.0287 0x15b8 ================ Scan VBR ==================================
17:34:34.0287 0x15b8 [ 80CFF23781F7C46A9C70059C78702680 ] \Device\Harddisk2\DR2\Partition1
17:34:34.0287 0x15b8 \Device\Harddisk2\DR2\Partition1 - ok
17:34:34.0287 0x15b8 [ 1601DB7499C149C5C0FD14E901B9F915 ] \Device\Harddisk2\DR2\Partition2
17:34:34.0302 0x15b8 \Device\Harddisk2\DR2\Partition2 - ok
17:34:34.0302 0x15b8 [ 42E8C5D1435C6852D2005FF694B6E36D ] \Device\Harddisk1\DR1\Partition1
17:34:34.0302 0x15b8 \Device\Harddisk1\DR1\Partition1 - ok
17:34:34.0302 0x15b8 [ B2C07F1EAE26F3BE942E6D557B12EB4A ] \Device\Harddisk1\DR1\Partition2
17:34:34.0302 0x15b8 \Device\Harddisk1\DR1\Partition2 - ok
17:34:34.0302 0x15b8 [ 70B49E1CAECD3FD250C22A6E65692FEC ] \Device\Harddisk1\DR1\Partition3
17:34:34.0302 0x15b8 \Device\Harddisk1\DR1\Partition3 - ok
17:34:34.0318 0x15b8 [ D1D538356BC33CA851B33A2F38277250 ] \Device\Harddisk0\DR0\Partition1
17:34:34.0349 0x15b8 \Device\Harddisk0\DR0\Partition1 - ok
17:34:34.0349 0x15b8 [ 31B19669CF9733523EDEC6C3C54EAD14 ] \Device\Harddisk0\DR0\Partition2
17:34:34.0349 0x15b8 \Device\Harddisk0\DR0\Partition2 - ok
17:34:34.0349 0x15b8 ================ Scan generic autorun ======================
17:34:34.0365 0x15b8 [ 3D32ABE481059E9F6CEEBE7E6EC87E06, 138CD874728A16FA7364B89E7CF7570F82FB62E8C4B89F349FE40B8B154AAF4A ] C:\Windows\system32\igfxtray.exe
17:34:34.0380 0x15b8 IgfxTray - ok
17:34:34.0380 0x15b8 [ 19E5456EC1CA8A92476217948D456BB8, A25AE243E52B4C008C188604A7D0A2B1FBBA99599DFED3B4A746D76F821ECD51 ] C:\Windows\system32\hkcmd.exe
17:34:34.0411 0x15b8 HotKeysCmds - ok
17:34:34.0411 0x15b8 [ 0B1B8AB2CD97ADAF6EFC8DBC6FC13A02, E2A097613C217FB08CD515A87519A34DE5CE187234D75E8ACA5BAC49B943E659 ] C:\Windows\system32\igfxpers.exe
17:34:34.0427 0x15b8 Persistence - ok
17:34:34.0474 0x15b8 [ DF72D700CC33611206675B8A2FD4D4F9, AB3AF6FD92140A1432FEAFFF2015CFAD5E9362F0018EA1D859A2DA349E95847D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
17:34:34.0505 0x15b8 EvtMgr6 - ok
17:34:34.0536 0x15b8 [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C, 6C6B186A2FC1DFD800041B160A7D71F5F1B3C70D62C7696B8DA89148A8D87D47 ] D:\Program Files (x86)\Zune\ZuneLauncher.exe
17:34:34.0552 0x15b8 Zune Launcher - ok
17:34:34.0552 0x15b8 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
17:34:34.0552 0x15b8 Logitech Download Assistant - ok
17:34:34.0567 0x15b8 CTXFIREG - ok
17:34:34.0567 0x15b8 [ 72860972F8196EBB3C896F53D2B95470, 95C046A66DD0089377867F073CADCE585B7C69CA23E724DCAD9D896BF01E023D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
17:34:34.0567 0x15b8 hpqSRMon - detected UnsignedFile.Multi.Generic ( 1 )
17:34:37.0344 0x15b8 Detect skipped due to KSN trusted
17:34:37.0344 0x15b8 hpqSRMon - ok
17:34:37.0344 0x15b8 [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:34:37.0360 0x15b8 HP Software Update - ok
17:34:37.0375 0x15b8 [ 38D198A2DD54A67120040566A38103BA, 01604BD91A5B2C0DDC7B52036511F8219952626716E75979D8464F2C56BA0114 ] D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:34:37.0391 0x15b8 GrooveMonitor - ok
17:34:37.0391 0x15b8 AsioThk32Reg - ok
17:34:37.0391 0x15b8 CTHelper - ok
17:34:37.0422 0x15b8 [ 35048D8E8A0BF7A797CD5757ACD7EED0, 890FCF24869614B3990B575A588ECB35C25A5B896F21BF9C66D43C93787FDD7A ] D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe
17:34:37.0438 0x15b8 CLMLServer - ok
17:34:37.0485 0x15b8 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] D:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint\MUITransfer\MUIStartMenu.exe
17:34:37.0500 0x15b8 UpdateLBPShortCut - ok
17:34:37.0547 0x15b8 [ D28328420109DAA5B19038364136DC45, 7AC8A4F53AE04C7F3043B23E577223967721C7302ABC2B7FDCC15322FEEA874F ] D:\PROGRA~2\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
17:34:37.0578 0x15b8 InstantBurn - ok
17:34:37.0609 0x15b8 [ 99ECAF298145F950B1326656167FBFDF, 77573FE19E2C16AB6D7DD3B689D5E926A86793491D6915E76999BA19A35265EA ] D:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
17:34:37.0609 0x15b8 RemoteControl10 - ok
17:34:37.0609 0x15b8 [ C252C2303FE79F201E64F269FEFF0DDB, AD305DA8B4CDE8C578424AB42AE5079901285C130F04F534E0CF86E13F1335C4 ] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
17:34:37.0625 0x15b8 BDRegion - ok
17:34:37.0703 0x15b8 [ 7D9D685235B13830E24BD9A16AAE1EBC, CC1ED51A945AEE11CD1D42ED1368AB5DE19602F195C9A90E633E04D2C98EE586 ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
17:34:37.0781 0x15b8 XFastUSB - ok
17:34:37.0812 0x15b8 [ 7C73B5C50CAEDB1771A049142026906B, A4992339D71A9297963C70616C4124BD701E46AEE439E09C392C2B2EBAE624E6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:34:37.0828 0x15b8 StartCCC - ok
17:34:37.0890 0x15b8 [ 5CA0EB9538C6ACEBDC3593FC53527B9D, 35AC60899254C7414FF42BCDA4165FB58F6369BD5EDCAC24EBB1B5A095664CAC ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
17:34:37.0953 0x15b8 AvastUI.exe - ok
17:34:37.0968 0x15b8 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:34:37.0999 0x15b8 Adobe ARM - ok
17:34:37.0999 0x15b8 [ F381E01B43A9135AA11E330B4663DDBE, F4C01AB114C5B6C58BDE0EB1111A196F8D057B5BE46D62ABCD2D841B8B65B766 ] C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe
17:34:38.0015 0x15b8 VolPanel - detected UnsignedFile.Multi.Generic ( 1 )
17:34:40.0963 0x15b8 Detect skipped due to KSN trusted
17:34:40.0963 0x15b8 VolPanel - ok
17:34:40.0979 0x15b8 CTxfiHlp - ok
17:34:40.0979 0x15b8 [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:34:41.0010 0x15b8 SunJavaUpdateSched - ok
17:34:41.0041 0x15b8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:34:41.0073 0x15b8 Sidebar - ok
17:34:41.0073 0x15b8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:34:41.0088 0x15b8 mctadmin - ok
17:34:41.0104 0x15b8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:34:41.0135 0x15b8 Sidebar - ok
17:34:41.0135 0x15b8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:34:41.0151 0x15b8 mctadmin - ok
17:34:41.0182 0x15b8 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:34:41.0213 0x15b8 Sidebar - ok
17:34:41.0213 0x15b8 Power2GoExpress - ok
17:34:41.0213 0x15b8 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:34:41.0229 0x15b8 Google Update - ok
17:34:41.0244 0x15b8 SB Audigy 2 Startup Menu - ok
17:34:41.0260 0x15b8 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:34:41.0307 0x15b8 Sidebar - ok
17:34:41.0307 0x15b8 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:34:41.0307 0x15b8 Google Update - ok
17:34:41.0307 0x15b8 Power2GoExpress - ok
17:34:41.0322 0x15b8 [ A8D72B3C7E20F2BB67CC60BCAD4E9138, 05630A6053652D7528572A662FD9C422EB0CAD2D91508CF85748AFE6802C027C ] C:\Windows\CTRegRun.EXE
17:34:41.0322 0x15b8 CTRegRun - detected UnsignedFile.Multi.Generic ( 1 )
17:34:44.0239 0x15b8 Detect skipped due to KSN trusted
17:34:44.0239 0x15b8 CTRegRun - ok
17:34:44.0239 0x15b8 CTPostBootSequencer - ok
17:34:44.0239 0x15b8 Waiting for KSN requests completion. In queue: 7
17:34:45.0253 0x15b8 Waiting for KSN requests completion. In queue: 7
17:34:46.0267 0x15b8 Waiting for KSN requests completion. In queue: 7
17:34:47.0297 0x15b8 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
17:34:47.0297 0x15b8 Win FW state via NFP2: enabled
17:34:50.0074 0x15b8 ============================================================
17:34:50.0074 0x15b8 Scan finished
17:34:50.0074 0x15b8 ============================================================
17:34:50.0074 0x153c Detected object count: 0
17:34:50.0074 0x153c Actual detected object count: 0
17:35:00.0027 0x1a88 Deinitialize success
Keines der beiden Programme hat etwas gefunden Geändert von Zecka (18.06.2014 um 15:12 Uhr) |
|
18.06.2014, 16:51
| #11 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Und jetzt mit Minecraft Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org
Database version: v2014.06.18.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16844
Zecka :: BIGBLUE [administrator]
18.06.2014 17:40:05
mbar-log-2014-06-18 (17-40-05).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 324263
Time elapsed: 5 minute(s), 7 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 17:46:14.0092 0x1af4 TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
17:46:17.0101 0x1af4 ============================================================
17:46:17.0101 0x1af4 Current date / time: 2014/06/18 17:46:17.0101
17:46:17.0101 0x1af4 SystemInfo:
17:46:17.0101 0x1af4
17:46:17.0101 0x1af4 OS Version: 6.1.7601 ServicePack: 1.0
17:46:17.0101 0x1af4 Product type: Workstation
17:46:17.0101 0x1af4 ComputerName: BIGBLUE
17:46:17.0101 0x1af4 UserName: Zecka
17:46:17.0101 0x1af4 Windows directory: C:\Windows
17:46:17.0101 0x1af4 System windows directory: C:\Windows
17:46:17.0101 0x1af4 Running under WOW64
17:46:17.0101 0x1af4 Processor architecture: Intel x64
17:46:17.0101 0x1af4 Number of processors: 8
17:46:17.0101 0x1af4 Page size: 0x1000
17:46:17.0101 0x1af4 Boot type: Normal boot
17:46:17.0101 0x1af4 ============================================================
17:46:17.0154 0x1af4 KLMD registered as C:\Windows\system32\drivers\56770821.sys
17:46:17.0227 0x1af4 System UUID: {86E11EC7-E533-0560-C787-DDE2F20AF30A}
17:46:17.0496 0x1af4 Drive \Device\Harddisk2\DR2 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:17.0501 0x1af4 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:17.0508 0x1af4 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:17.0515 0x1af4 ============================================================
17:46:17.0515 0x1af4 \Device\Harddisk2\DR2:
17:46:17.0515 0x1af4 MBR partitions:
17:46:17.0515 0x1af4 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xBBC30
17:46:17.0515 0x1af4 \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xBC800, BlocksNum 0xDED83B0
17:46:17.0515 0x1af4 \Device\Harddisk1\DR1:
17:46:17.0515 0x1af4 MBR partitions:
17:46:17.0515 0x1af4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x639C000
17:46:17.0515 0x1af4 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x639C800, BlocksNum 0x27AC4000
17:46:17.0515 0x1af4 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2DE60800, BlocksNum 0xC524800
17:46:17.0515 0x1af4 \Device\Harddisk0\DR0:
17:46:17.0516 0x1af4 MBR partitions:
17:46:17.0516 0x1af4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3D090000
17:46:17.0516 0x1af4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3D090800, BlocksNum 0x37675000
17:46:17.0516 0x1af4 ============================================================
17:46:17.0517 0x1af4 C: <-> \Device\Harddisk2\DR2\Partition2
17:46:17.0533 0x1af4 D: <-> \Device\Harddisk0\DR0\Partition1
17:46:17.0564 0x1af4 E: <-> \Device\Harddisk0\DR0\Partition2
17:46:17.0605 0x1af4 Z: <-> \Device\Harddisk1\DR1\Partition3
17:46:17.0627 0x1af4 X: <-> \Device\Harddisk1\DR1\Partition1
17:46:17.0650 0x1af4 Y: <-> \Device\Harddisk1\DR1\Partition2
17:46:17.0650 0x1af4 ============================================================
17:46:17.0650 0x1af4 Initialize success
17:46:17.0650 0x1af4 ============================================================
17:46:24.0092 0x0810 ============================================================
17:46:24.0092 0x0810 Scan started
17:46:24.0092 0x0810 Mode: Manual; SigCheck; TDLFS;
17:46:24.0092 0x0810 ============================================================
17:46:24.0092 0x0810 KSN ping started
17:46:26.0878 0x0810 KSN ping finished: true
17:46:27.0224 0x0810 ================ Scan system memory ========================
17:46:27.0224 0x0810 System memory - ok
17:46:27.0224 0x0810 ================ Scan services =============================
17:46:27.0255 0x0810 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
17:46:27.0297 0x0810 1394ohci - ok
17:46:27.0308 0x0810 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:46:27.0321 0x0810 ACPI - ok
17:46:27.0324 0x0810 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:46:27.0338 0x0810 AcpiPmi - ok
17:46:27.0343 0x0810 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:46:27.0351 0x0810 AdobeARMservice - ok
17:46:27.0361 0x0810 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:46:27.0377 0x0810 adp94xx - ok
17:46:27.0385 0x0810 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:46:27.0398 0x0810 adpahci - ok
17:46:27.0403 0x0810 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:46:27.0413 0x0810 adpu320 - ok
17:46:27.0418 0x0810 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:46:27.0461 0x0810 AeLookupSvc - ok
17:46:27.0472 0x0810 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
17:46:27.0491 0x0810 AFD - ok
17:46:27.0495 0x0810 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
17:46:27.0503 0x0810 agp440 - ok
17:46:27.0506 0x0810 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
17:46:27.0518 0x0810 ALG - ok
17:46:27.0521 0x0810 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
17:46:27.0528 0x0810 aliide - ok
17:46:27.0534 0x0810 [ 310F86335B0505DDC6D2DD48E66EF06B, 936273CA046B3AE0944E6C1557CECB2A0C61D034977BBB9FACBE062617CF3A2C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:46:27.0558 0x0810 AMD External Events Utility - ok
17:46:27.0560 0x0810 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
17:46:27.0568 0x0810 amdide - ok
17:46:27.0575 0x0810 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:46:27.0585 0x0810 AmdK8 - ok
17:46:27.0780 0x0810 [ 79CC9BE187E3144E1B58A54B842475E7, 89DD3177B5CE649AC0093603CE13FBFD93AC24F8E16C52672549110141106F4A ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:46:28.0039 0x0810 amdkmdag - ok
17:46:28.0061 0x0810 [ 07561D3B7FD99F6E186C49C2D0628E38, D2D72EB45EAD29A3099C040E99A4F1F4902D3BDC0466800C63ECD33343DC1224 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
17:46:28.0086 0x0810 amdkmdap - ok
17:46:28.0089 0x0810 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
17:46:28.0100 0x0810 AmdPPM - ok
17:46:28.0103 0x0810 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:46:28.0112 0x0810 amdsata - ok
17:46:28.0118 0x0810 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:46:28.0128 0x0810 amdsbs - ok
17:46:28.0131 0x0810 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:46:28.0138 0x0810 amdxata - ok
17:46:28.0141 0x0810 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
17:46:28.0185 0x0810 AppID - ok
17:46:28.0188 0x0810 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:46:28.0211 0x0810 AppIDSvc - ok
17:46:28.0215 0x0810 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
17:46:28.0225 0x0810 Appinfo - ok
17:46:28.0229 0x0810 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
17:46:28.0237 0x0810 arc - ok
17:46:28.0241 0x0810 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:46:28.0249 0x0810 arcsas - ok
17:46:28.0254 0x0810 [ 6FE3237C1177E66437E7AD0E8AC1A6E5, 3223D4E57150DE8F768BC1BE0E6DCFFC6CA5B09DC7D7ADF283C90929100B0B7B ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
17:46:28.0270 0x0810 asmthub3 - ok
17:46:28.0279 0x0810 [ C4043E39A2ABBC56581CA25DF161E9F7, 1B53A8BEE4823EA842A00F5304428F0B4D14078045CF84ED20D8DF0FB8826040 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
17:46:28.0297 0x0810 asmtxhci - ok
17:46:28.0308 0x0810 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:46:28.0317 0x0810 aspnet_state - ok
17:46:28.0320 0x0810 [ EDC0C73FA41DF1C8B1FEA3852AED2848, A3FE7EE1AB15ED603403479CFD011DF9B506C1FE95730C0980F1410810C2F736 ] AsrHidFilter C:\Windows\system32\DRIVERS\AsrHidFilter.sys
17:46:28.0327 0x0810 AsrHidFilter - ok
17:46:28.0330 0x0810 [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
17:46:28.0338 0x0810 aswHwid - ok
17:46:28.0342 0x0810 [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:46:28.0350 0x0810 aswMonFlt - ok
17:46:28.0354 0x0810 [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
17:46:28.0362 0x0810 aswRdr - ok
17:46:28.0367 0x0810 [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
17:46:28.0374 0x0810 aswRvrt - ok
17:46:28.0394 0x0810 [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:46:28.0420 0x0810 aswSnx - ok
17:46:28.0431 0x0810 [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:46:28.0445 0x0810 aswSP - ok
17:46:28.0450 0x0810 [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm C:\Windows\system32\drivers\aswStm.sys
17:46:28.0457 0x0810 aswStm - ok
17:46:28.0463 0x0810 [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
17:46:28.0473 0x0810 aswVmm - ok
17:46:28.0476 0x0810 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:46:28.0499 0x0810 AsyncMac - ok
17:46:28.0502 0x0810 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
17:46:28.0508 0x0810 atapi - ok
17:46:28.0512 0x0810 [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:46:28.0523 0x0810 AtiHDAudioService - ok
17:46:28.0536 0x0810 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:46:28.0573 0x0810 AudioEndpointBuilder - ok
17:46:28.0586 0x0810 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:46:28.0621 0x0810 AudioSrv - ok
17:46:28.0628 0x0810 [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:46:28.0635 0x0810 avast! Antivirus - ok
17:46:28.0639 0x0810 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:46:28.0657 0x0810 AxInstSV - ok
17:46:28.0667 0x0810 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:46:28.0686 0x0810 b06bdrv - ok
17:46:28.0693 0x0810 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:46:28.0708 0x0810 b57nd60a - ok
17:46:28.0713 0x0810 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
17:46:28.0724 0x0810 BDESVC - ok
17:46:28.0726 0x0810 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
17:46:28.0750 0x0810 Beep - ok
17:46:28.0764 0x0810 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
17:46:28.0788 0x0810 BFE - ok
17:46:28.0805 0x0810 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
17:46:28.0848 0x0810 BITS - ok
17:46:28.0851 0x0810 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:46:28.0861 0x0810 blbdrive - ok
17:46:28.0864 0x0810 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:46:28.0875 0x0810 bowser - ok
17:46:28.0877 0x0810 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:46:28.0888 0x0810 BrFiltLo - ok
17:46:28.0890 0x0810 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:46:28.0901 0x0810 BrFiltUp - ok
17:46:28.0905 0x0810 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
17:46:28.0916 0x0810 Browser - ok
17:46:28.0924 0x0810 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:46:28.0940 0x0810 Brserid - ok
17:46:28.0943 0x0810 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:46:28.0954 0x0810 BrSerWdm - ok
17:46:28.0956 0x0810 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:46:28.0966 0x0810 BrUsbMdm - ok
17:46:28.0969 0x0810 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:46:28.0977 0x0810 BrUsbSer - ok
17:46:28.0981 0x0810 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:46:28.0993 0x0810 BTHMODEM - ok
17:46:28.0997 0x0810 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
17:46:29.0022 0x0810 bthserv - ok
17:46:29.0025 0x0810 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:46:29.0050 0x0810 cdfs - ok
17:46:29.0053 0x0810 cdrbsdrv - ok
17:46:29.0057 0x0810 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:46:29.0067 0x0810 cdrom - ok
17:46:29.0071 0x0810 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
17:46:29.0095 0x0810 CertPropSvc - ok
17:46:29.0098 0x0810 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
17:46:29.0110 0x0810 circlass - ok
17:46:29.0113 0x0810 [ 2B6B01F0B1DE1B9A0285F9CF36FD6B22, 2D93CE3AABA5DE94FA1724AAE272CAAA95AE9416F4A51E73E126344DD938968B ] CLBStor C:\Windows\system32\drivers\CLBStor.sys
17:46:29.0119 0x0810 CLBStor - ok
17:46:29.0121 0x0810 CLBUDFbk - ok
17:46:29.0129 0x0810 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
17:46:29.0143 0x0810 CLFS - ok
17:46:29.0210 0x0810 [ 524DC3807CB1746225F9D26ADD19C319, DC23392E8C542B02860BA1F57F03AD08A58B256D155CC6B81A48691A79D3A3F6 ] CLKMSVC10_58664B3D D:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
17:46:29.0221 0x0810 CLKMSVC10_58664B3D - ok
17:46:29.0226 0x0810 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:46:29.0234 0x0810 clr_optimization_v2.0.50727_32 - ok
17:46:29.0239 0x0810 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:46:29.0247 0x0810 clr_optimization_v2.0.50727_64 - ok
17:46:29.0256 0x0810 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:46:29.0266 0x0810 clr_optimization_v4.0.30319_32 - ok
17:46:29.0271 0x0810 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:46:29.0281 0x0810 clr_optimization_v4.0.30319_64 - ok
17:46:29.0284 0x0810 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
17:46:29.0293 0x0810 CmBatt - ok
17:46:29.0296 0x0810 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:46:29.0303 0x0810 cmdide - ok
17:46:29.0313 0x0810 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
17:46:29.0334 0x0810 CNG - ok
17:46:29.0339 0x0810 [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX C:\Windows\system32\drivers\COMMONFX.SYS
17:46:29.0347 0x0810 COMMONFX - ok
17:46:29.0350 0x0810 COMMONFX.DLL - ok
17:46:29.0354 0x0810 [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX.SYS C:\Windows\System32\drivers\COMMONFX.SYS
17:46:29.0362 0x0810 COMMONFX.SYS - ok
17:46:29.0364 0x0810 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
17:46:29.0371 0x0810 Compbatt - ok
17:46:29.0374 0x0810 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:46:29.0386 0x0810 CompositeBus - ok
17:46:29.0388 0x0810 COMSysApp - ok
17:46:29.0391 0x0810 [ C08063F052308B6F5882482615387F30, 523D1D43E896077F32CD9ACAA8E85B513BFB7B013A625E56F0D4E9675D9822BA ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
17:46:29.0397 0x0810 cpuz135 - ok
17:46:29.0400 0x0810 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:46:29.0407 0x0810 crcdisk - ok
17:46:29.0411 0x0810 [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:46:29.0416 0x0810 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
17:46:32.0125 0x0810 Detect skipped due to KSN trusted
17:46:32.0125 0x0810 Creative ALchemy AL6 Licensing Service - ok
17:46:32.0131 0x0810 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:46:32.0144 0x0810 CryptSvc - ok
17:46:32.0150 0x0810 [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
17:46:32.0160 0x0810 CT20XUT - ok
17:46:32.0163 0x0810 CT20XUT.DLL - ok
17:46:32.0169 0x0810 [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
17:46:32.0178 0x0810 CT20XUT.SYS - ok
17:46:32.0190 0x0810 [ F5964C14C10497317901E6776CCDA2CA, 30995316CC8265B813BE8EEA3214648C62E90EED3CC170807AF5CA4566295FFE ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
17:46:32.0206 0x0810 ctac32k - ok
17:46:32.0221 0x0810 [ D778E18645602CC567B055A30C6A35B4, BDE6A6ADFCE8A193E48B9DAE58CD9F2A02C3D769F6ECC8779C6B5C2D15F69A44 ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
17:46:32.0240 0x0810 ctaud2k - ok
17:46:32.0243 0x0810 CTAUDFX - ok
17:46:32.0244 0x0810 CTAUDFX.DLL - ok
17:46:32.0246 0x0810 CTAUDFX.SYS - ok
17:46:32.0256 0x0810 [ 7D564A71907B389C62191E7D7B9069D8, 3590C38A65BCE379374C979328BC560DA21A687630CB1524DDFA4C6124001F93 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:46:32.0266 0x0810 CTAudSvcService - detected UnsignedFile.Multi.Generic ( 1 )
17:46:35.0163 0x0810 Detect skipped due to KSN trusted
17:46:35.0163 0x0810 CTAudSvcService - ok
17:46:35.0165 0x0810 CTEAPSFX.DLL - ok
17:46:35.0168 0x0810 CTEDSPFX.DLL - ok
17:46:35.0170 0x0810 CTEDSPIO.DLL - ok
17:46:35.0173 0x0810 CTEDSPSY.DLL - ok
17:46:35.0174 0x0810 CTERFXFX - ok
17:46:35.0176 0x0810 CTERFXFX.DLL - ok
17:46:35.0178 0x0810 CTERFXFX.SYS - ok
17:46:35.0204 0x0810 [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
17:46:35.0237 0x0810 CTEXFIFX - ok
17:46:35.0240 0x0810 CTEXFIFX.DLL - ok
17:46:35.0266 0x0810 [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
17:46:35.0295 0x0810 CTEXFIFX.SYS - ok
17:46:35.0301 0x0810 [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
17:46:35.0308 0x0810 CTHWIUT - ok
17:46:35.0310 0x0810 CTHWIUT.DLL - ok
17:46:35.0313 0x0810 [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
17:46:35.0320 0x0810 CTHWIUT.SYS - ok
17:46:35.0323 0x0810 [ 133C4C45E1B68F49A9CEBA88973F60E2, 1B79F8C7650568C6C951262C0CF0FA890047E3D148580A3C38695F7C35BDA69B ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
17:46:35.0328 0x0810 ctprxy2k - ok
17:46:35.0331 0x0810 CTSBLFX - ok
17:46:35.0333 0x0810 CTSBLFX.DLL - ok
17:46:35.0335 0x0810 CTSBLFX.SYS - ok
17:46:35.0340 0x0810 [ 9B670F98B9D35274C13ACC36F341C070, D3EB5421E6105278E87603012170F74CF4D9173242BBFB676CF6F6B304D16199 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
17:46:35.0350 0x0810 ctsfm2k - ok
17:46:35.0361 0x0810 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:46:35.0398 0x0810 DcomLaunch - ok
17:46:35.0405 0x0810 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
17:46:35.0435 0x0810 defragsvc - ok
17:46:35.0439 0x0810 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:46:35.0465 0x0810 DfsC - ok
17:46:35.0472 0x0810 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:46:35.0489 0x0810 Dhcp - ok
17:46:35.0492 0x0810 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
17:46:35.0516 0x0810 discache - ok
17:46:35.0520 0x0810 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
17:46:35.0528 0x0810 Disk - ok
17:46:35.0533 0x0810 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:46:35.0547 0x0810 Dnscache - ok
17:46:35.0553 0x0810 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
17:46:35.0582 0x0810 dot3svc - ok
17:46:35.0587 0x0810 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:46:35.0601 0x0810 Dot4 - ok
17:46:35.0603 0x0810 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:46:35.0614 0x0810 Dot4Print - ok
17:46:35.0617 0x0810 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:46:35.0628 0x0810 dot4usb - ok
17:46:35.0634 0x0810 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
17:46:35.0660 0x0810 DPS - ok
17:46:35.0663 0x0810 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:46:35.0672 0x0810 drmkaud - ok
17:46:35.0691 0x0810 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:46:35.0715 0x0810 DXGKrnl - ok
17:46:35.0720 0x0810 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
17:46:35.0746 0x0810 EapHost - ok
17:46:35.0803 0x0810 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:46:35.0883 0x0810 ebdrv - ok
17:46:35.0888 0x0810 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
17:46:35.0898 0x0810 EFS - ok
17:46:35.0912 0x0810 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:46:35.0938 0x0810 ehRecvr - ok
17:46:35.0942 0x0810 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
17:46:35.0954 0x0810 ehSched - ok
17:46:35.0965 0x0810 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:46:35.0982 0x0810 elxstor - ok
17:46:35.0986 0x0810 [ 5AF6DE61E2CB029C2C9BE268D69F2BB8, 40DD35CC37AA57D6B6324B45C4D050DA539112F10E619AD2B827C600DA524793 ] emupia C:\Windows\system32\drivers\emupia2k.sys
17:46:35.0994 0x0810 emupia - ok
17:46:35.0997 0x0810 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:46:36.0006 0x0810 ErrDev - ok
17:46:36.0017 0x0810 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
17:46:36.0050 0x0810 EventSystem - ok
17:46:36.0055 0x0810 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
17:46:36.0082 0x0810 exfat - ok
17:46:36.0088 0x0810 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:46:36.0115 0x0810 fastfat - ok
17:46:36.0129 0x0810 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
17:46:36.0153 0x0810 Fax - ok
17:46:36.0156 0x0810 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
17:46:36.0166 0x0810 fdc - ok
17:46:36.0169 0x0810 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
17:46:36.0193 0x0810 fdPHost - ok
17:46:36.0196 0x0810 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
17:46:36.0220 0x0810 FDResPub - ok
17:46:36.0224 0x0810 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:46:36.0232 0x0810 FileInfo - ok
17:46:36.0235 0x0810 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:46:36.0258 0x0810 Filetrace - ok
17:46:36.0260 0x0810 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:46:36.0270 0x0810 flpydisk - ok
17:46:36.0276 0x0810 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:46:36.0288 0x0810 FltMgr - ok
17:46:36.0292 0x0810 [ 508401A63E6B1CBF0B9C9A011498731F, F636B0A9C0EB6AE7EC04E5C5FD8A0578AEB76A1B0D974F355BCE6B6091901725 ] FNETTBOH_305 C:\Windows\system32\drivers\FNETTBOH_305.SYS
17:46:36.0298 0x0810 FNETTBOH_305 - ok
17:46:36.0301 0x0810 [ 7C3C4B4C951EC1BDFD4F769D05E2CC68, 7B9DA195D3CF0E7BE6BB532CC5D058BC6658B7538B5C5CF09B1A4ABEF1ECACB4 ] FNETURPX C:\Windows\system32\drivers\FNETURPX.SYS
17:46:36.0307 0x0810 FNETURPX - ok
17:46:36.0328 0x0810 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
17:46:36.0363 0x0810 FontCache - ok
17:46:36.0367 0x0810 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:46:36.0373 0x0810 FontCache3.0.0.0 - ok
17:46:36.0376 0x0810 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:46:36.0384 0x0810 FsDepends - ok
17:46:36.0387 0x0810 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:46:36.0393 0x0810 Fs_Rec - ok
17:46:36.0398 0x0810 [ 79B4CDE2B69ED8BA4011859780A66A4D, D2572B737232F8FDD46A811FF69D8DAE4AAD4D2FA47507D78C0C54BF01C4CC4A ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
17:46:36.0406 0x0810 Futuremark SystemInfo Service - ok
17:46:36.0411 0x0810 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:46:36.0424 0x0810 fvevol - ok
17:46:36.0428 0x0810 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:46:36.0436 0x0810 gagp30kx - ok
17:46:36.0451 0x0810 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
17:46:36.0491 0x0810 gpsvc - ok
17:46:36.0497 0x0810 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:46:36.0505 0x0810 gupdate - ok
17:46:36.0508 0x0810 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:46:36.0515 0x0810 gupdatem - ok
17:46:36.0540 0x0810 [ 82B68F585110AE8500A6D23623AE1F74, 1ADCFA2D77E3BB9BDCDD15DC21E7F6707823788A1CFB31ED959BC470595EE89B ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys
17:46:36.0571 0x0810 ha10kx2k - ok
17:46:36.0601 0x0810 [ EC2D3B3E6C27A7E9E93DC194C1FF13A5, 1390880D74F97550E8803B43FA590F0613024D7670D025FBD4DA20ED59F07CC3 ] ha20x22k C:\Windows\system32\drivers\ha20x22k.sys
17:46:36.0636 0x0810 ha20x22k - ok
17:46:36.0666 0x0810 [ 1B04A2F6CD01468B5DAF4699E203C3E2, A8FBC1F32EDDDC478CDACA13C656E81E8E2F2FD4AC3987BEFAA42D4222ACD85F ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
17:46:36.0700 0x0810 ha20x2k - ok
17:46:36.0708 0x0810 [ 83F647F9ACE9192556F758E528024F68, 1007C2E3C8FDB3CB5FB3C336F9904AD076DC31BB263E633EF17E3813B9ED6EF6 ] hap16v2k C:\Windows\system32\drivers\hap16v2k.sys
17:46:36.0719 0x0810 hap16v2k - ok
17:46:36.0725 0x0810 [ E815D29361DE89D24C8DBE3E5A7006C9, 2B9075CC6A2425D06E6C3CB77E0755727F8B0920575C660CF261981464D190F0 ] hap17v2k C:\Windows\system32\drivers\hap17v2k.sys
17:46:36.0736 0x0810 hap17v2k - ok
17:46:36.0739 0x0810 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:46:36.0749 0x0810 hcw85cir - ok
17:46:36.0757 0x0810 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:46:36.0775 0x0810 HdAudAddService - ok
17:46:36.0779 0x0810 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:46:36.0793 0x0810 HDAudBus - ok
17:46:36.0795 0x0810 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:46:36.0805 0x0810 HidBatt - ok
17:46:36.0808 0x0810 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:46:36.0821 0x0810 HidBth - ok
17:46:36.0824 0x0810 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
17:46:36.0835 0x0810 HidIr - ok
17:46:36.0838 0x0810 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
17:46:36.0863 0x0810 hidserv - ok
17:46:36.0866 0x0810 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:46:36.0875 0x0810 HidUsb - ok
17:46:36.0879 0x0810 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:46:36.0904 0x0810 hkmsvc - ok
17:46:36.0910 0x0810 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:46:36.0925 0x0810 HomeGroupListener - ok
17:46:36.0931 0x0810 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:46:36.0945 0x0810 HomeGroupProvider - ok
17:46:36.0955 0x0810 [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:46:36.0964 0x0810 hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
17:46:39.0658 0x0810 Detect skipped due to KSN trusted
17:46:39.0658 0x0810 hpqcxs08 - ok
17:46:39.0663 0x0810 [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:46:39.0670 0x0810 hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:46:42.0438 0x0810 Detect skipped due to KSN trusted
17:46:42.0438 0x0810 hpqddsvc - ok
17:46:42.0442 0x0810 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:46:42.0450 0x0810 HpSAMD - ok
17:46:42.0471 0x0810 [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:46:42.0498 0x0810 HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
17:46:45.0199 0x0810 Detect skipped due to KSN trusted
17:46:45.0200 0x0810 HPSLPSVC - ok
17:46:45.0214 0x0810 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:46:45.0253 0x0810 HTTP - ok
17:46:45.0256 0x0810 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:46:45.0262 0x0810 hwpolicy - ok
17:46:45.0267 0x0810 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:46:45.0277 0x0810 i8042prt - ok
17:46:45.0288 0x0810 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:46:45.0302 0x0810 iaStorV - ok
17:46:45.0319 0x0810 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:46:45.0340 0x0810 idsvc - ok
17:46:45.0543 0x0810 [ 174BCAC474DE13B2650E444CF124828E, 42410700408873D890AA0EA1A885086B0DF6D1196957E3CD8A8323C46139E2C6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:46:45.0816 0x0810 igfx - ok
17:46:45.0828 0x0810 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:46:45.0836 0x0810 iirsp - ok
17:46:45.0852 0x0810 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
17:46:45.0880 0x0810 IKEEXT - ok
17:46:45.0934 0x0810 [ C7124DA48E557D8F88D0D7F1254557F4, 300BC8ACB5CCB15F80ECAEAD27F12925EE94C84FE8110143A3E0F30E19DDA87B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:46:45.0993 0x0810 IntcAzAudAddService - ok
17:46:46.0009 0x0810 [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
17:46:46.0025 0x0810 Intel(R) Capability Licensing Service Interface - ok
17:46:46.0028 0x0810 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
17:46:46.0035 0x0810 intelide - ok
17:46:46.0038 0x0810 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:46:46.0049 0x0810 intelppm - ok
17:46:46.0053 0x0810 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:46:46.0079 0x0810 IPBusEnum - ok
17:46:46.0083 0x0810 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:46:46.0108 0x0810 IpFilterDriver - ok
17:46:46.0119 0x0810 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:46:46.0142 0x0810 iphlpsvc - ok
17:46:46.0146 0x0810 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:46:46.0156 0x0810 IPMIDRV - ok
17:46:46.0161 0x0810 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:46:46.0187 0x0810 IPNAT - ok
17:46:46.0190 0x0810 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:46:46.0202 0x0810 IRENUM - ok
17:46:46.0205 0x0810 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:46:46.0211 0x0810 isapnp - ok
17:46:46.0218 0x0810 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:46:46.0231 0x0810 iScsiPrt - ok
17:46:46.0238 0x0810 [ 5C9B001D8970C2DA36254A916F3DA8F7, 625AC5C3DFAE52BD34EC3F93742D1D2C229785E4F0F3484CFB7B8728A1C830DF ] iumsvc C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
17:46:46.0247 0x0810 iumsvc - ok
17:46:46.0252 0x0810 [ 54C6B346D6FF1944A6E7587EB4942589, 618FA57637277AA08D726B911E7BAF85373807D466CBDBEC4212F1065E6105DC ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
17:46:46.0261 0x0810 jhi_service - ok
17:46:46.0264 0x0810 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:46:46.0272 0x0810 kbdclass - ok
17:46:46.0275 0x0810 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:46:46.0285 0x0810 kbdhid - ok
17:46:46.0287 0x0810 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
17:46:46.0297 0x0810 KeyIso - ok
17:46:46.0301 0x0810 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:46:46.0309 0x0810 KSecDD - ok
17:46:46.0314 0x0810 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:46:46.0323 0x0810 KSecPkg - ok
17:46:46.0326 0x0810 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:46:46.0350 0x0810 ksthunk - ok
17:46:46.0359 0x0810 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
17:46:46.0391 0x0810 KtmRm - ok
17:46:46.0397 0x0810 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:46:46.0427 0x0810 LanmanServer - ok
17:46:46.0431 0x0810 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:46:46.0458 0x0810 LanmanWorkstation - ok
17:46:46.0467 0x0810 [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:46:46.0480 0x0810 LBTServ - ok
17:46:46.0485 0x0810 [ ED7EC050CD6C20E1A93A4DAFB7EFD14D, 9B3B9FA23788680D13E3DC2EEA2F127591A368578AEAB70F03AC379BA7379184 ] LEqdUsb C:\Windows\system32\DRIVERS\LEqdUsb.Sys
17:46:46.0492 0x0810 LEqdUsb - ok
17:46:46.0494 0x0810 [ 3267BC698E29474A8381E68904EB0390, A653ED6364D4B7E02FB7087D364E33D029B15A92E0FAAB176877DE5F93B36B65 ] LHidEqd C:\Windows\system32\DRIVERS\LHidEqd.Sys
17:46:46.0501 0x0810 LHidEqd - ok
17:46:46.0504 0x0810 [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:46:46.0511 0x0810 LHidFilt - ok
17:46:46.0515 0x0810 [ FCBDCC6F1801E32244235608E1277752, 8CC8E22E412645F4A534C51FB550AB22410AE90FA266D75498827EB922E8191E ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:46:46.0520 0x0810 LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
17:46:49.0290 0x0810 Detect skipped due to KSN trusted
17:46:49.0290 0x0810 LightScribeService - ok
17:46:49.0294 0x0810 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:46:49.0319 0x0810 lltdio - ok
17:46:49.0326 0x0810 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:46:49.0356 0x0810 lltdsvc - ok
17:46:49.0358 0x0810 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:46:49.0383 0x0810 lmhosts - ok
17:46:49.0386 0x0810 [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:46:49.0393 0x0810 LMouFilt - ok
17:46:49.0400 0x0810 [ 4BE94D758691FAA00181F799CF528088, 81D1E6794EBEFA32643975359B7E89781E428B11F592AC67147D0D8C5E4D0056 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:46:49.0410 0x0810 LMS - ok
17:46:49.0416 0x0810 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:46:49.0425 0x0810 LSI_FC - ok
17:46:49.0429 0x0810 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:46:49.0437 0x0810 LSI_SAS - ok
17:46:49.0440 0x0810 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:46:49.0449 0x0810 LSI_SAS2 - ok
17:46:49.0453 0x0810 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:46:49.0461 0x0810 LSI_SCSI - ok
17:46:49.0466 0x0810 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
17:46:49.0492 0x0810 luafv - ok
17:46:49.0494 0x0810 [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys
17:46:49.0501 0x0810 MBfilt - ok
17:46:49.0506 0x0810 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:46:49.0517 0x0810 Mcx2Svc - ok
17:46:49.0520 0x0810 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
17:46:49.0527 0x0810 megasas - ok
17:46:49.0534 0x0810 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:46:49.0546 0x0810 MegaSR - ok
17:46:49.0549 0x0810 [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:46:49.0556 0x0810 MEIx64 - ok
17:46:49.0595 0x0810 [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:46:49.0602 0x0810 Microsoft Office Groove Audit Service - ok
17:46:49.0606 0x0810 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
17:46:49.0632 0x0810 MMCSS - ok
17:46:49.0635 0x0810 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
17:46:49.0658 0x0810 Modem - ok
17:46:49.0661 0x0810 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:46:49.0672 0x0810 monitor - ok
17:46:49.0675 0x0810 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:46:49.0683 0x0810 mouclass - ok
17:46:49.0686 0x0810 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:46:49.0696 0x0810 mouhid - ok
17:46:49.0699 0x0810 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:46:49.0708 0x0810 mountmgr - ok
17:46:49.0713 0x0810 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
17:46:49.0723 0x0810 mpio - ok
17:46:49.0727 0x0810 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:46:49.0751 0x0810 mpsdrv - ok
17:46:49.0767 0x0810 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:46:49.0809 0x0810 MpsSvc - ok
17:46:49.0814 0x0810 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:46:49.0826 0x0810 MRxDAV - ok
17:46:49.0831 0x0810 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:46:49.0843 0x0810 mrxsmb - ok
17:46:49.0851 0x0810 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:46:49.0865 0x0810 mrxsmb10 - ok
17:46:49.0870 0x0810 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:46:49.0880 0x0810 mrxsmb20 - ok
17:46:49.0883 0x0810 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
17:46:49.0890 0x0810 msahci - ok
17:46:49.0895 0x0810 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:46:49.0904 0x0810 msdsm - ok
17:46:49.0908 0x0810 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
17:46:49.0922 0x0810 MSDTC - ok
17:46:49.0926 0x0810 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:46:49.0950 0x0810 Msfs - ok
17:46:49.0953 0x0810 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:46:49.0976 0x0810 mshidkmdf - ok
17:46:49.0978 0x0810 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:46:49.0986 0x0810 msisadrv - ok
17:46:49.0990 0x0810 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:46:50.0018 0x0810 MSiSCSI - ok
17:46:50.0020 0x0810 msiserver - ok
17:46:50.0023 0x0810 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:46:50.0047 0x0810 MSKSSRV - ok
17:46:50.0049 0x0810 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:46:50.0073 0x0810 MSPCLOCK - ok
17:46:50.0075 0x0810 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:46:50.0099 0x0810 MSPQM - ok
17:46:50.0107 0x0810 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:46:50.0120 0x0810 MsRPC - ok
17:46:50.0124 0x0810 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:46:50.0131 0x0810 mssmbios - ok
17:46:50.0134 0x0810 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:46:50.0157 0x0810 MSTEE - ok
17:46:50.0159 0x0810 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:46:50.0169 0x0810 MTConfig - ok
17:46:50.0172 0x0810 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
17:46:50.0180 0x0810 Mup - ok
17:46:50.0191 0x0810 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
17:46:50.0225 0x0810 napagent - ok
17:46:50.0232 0x0810 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:46:50.0251 0x0810 NativeWifiP - ok
17:46:50.0269 0x0810 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
17:46:50.0294 0x0810 NDIS - ok
17:46:50.0298 0x0810 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:46:50.0321 0x0810 NdisCap - ok
17:46:50.0324 0x0810 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:46:50.0348 0x0810 NdisTapi - ok
17:46:50.0351 0x0810 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:46:50.0375 0x0810 Ndisuio - ok
17:46:50.0380 0x0810 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:46:50.0406 0x0810 NdisWan - ok
17:46:50.0409 0x0810 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:46:50.0432 0x0810 NDProxy - ok
17:46:50.0436 0x0810 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:46:50.0442 0x0810 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:46:53.0210 0x0810 Detect skipped due to KSN trusted
17:46:53.0210 0x0810 Net Driver HPZ12 - ok
17:46:53.0214 0x0810 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:46:53.0238 0x0810 NetBIOS - ok
17:46:53.0245 0x0810 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:46:53.0272 0x0810 NetBT - ok
17:46:53.0275 0x0810 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
17:46:53.0285 0x0810 Netlogon - ok
17:46:53.0293 0x0810 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
17:46:53.0326 0x0810 Netman - ok
17:46:53.0330 0x0810 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0341 0x0810 NetMsmqActivator - ok
17:46:53.0345 0x0810 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0354 0x0810 NetPipeActivator - ok
17:46:53.0364 0x0810 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
17:46:53.0399 0x0810 netprofm - ok
17:46:53.0416 0x0810 [ 618C55B392238B9467F9113E13525C49, 304A77EF3E1E7A1738E5A4F6A911B4DF736CEF4867C6F07CA71E227048E90370 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys
17:46:53.0445 0x0810 netr28ux - ok
17:46:53.0450 0x0810 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0459 0x0810 NetTcpActivator - ok
17:46:53.0463 0x0810 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0473 0x0810 NetTcpPortSharing - ok
17:46:53.0476 0x0810 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:46:53.0484 0x0810 nfrd960 - ok
17:46:53.0491 0x0810 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:46:53.0507 0x0810 NlaSvc - ok
17:46:53.0510 0x0810 [ 907B5E1E4A592E5EDC5E4CCBDE4863C2, 7A3FA5B779CBBED46CA81328951B71352E4FC60153A91965877834EC7C6F0074 ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
17:46:53.0526 0x0810 nmwcd - ok
17:46:53.0529 0x0810 [ 41C1AC1F3613435EB32D67BCB80A5FA5, 93A313BC4A7FA2FC3372CFBF2D76F417007B4A82455092724D3B0B6FA5A88F23 ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
17:46:53.0545 0x0810 nmwcdc - ok
17:46:53.0548 0x0810 [ A962BE6433EF016E0DFB52ECA15A5378, 765D47BCA040034E565CA139120B94562834984EB78DA11807C054BDD5313496 ] nmwcdnsucx64 C:\Windows\system32\drivers\nmwcdnsucx64.sys
17:46:53.0563 0x0810 nmwcdnsucx64 - ok
17:46:53.0568 0x0810 [ 9573223E205907247AE6D948E3453770, 35D32A415F74863D7408229508F134D53CA0FA7EDD8B0E5FEEFC9DE588D0607B ] nmwcdnsux64 C:\Windows\system32\drivers\nmwcdnsux64.sys
17:46:53.0587 0x0810 nmwcdnsux64 - ok
17:46:53.0590 0x0810 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:46:53.0614 0x0810 Npfs - ok
17:46:53.0617 0x0810 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
17:46:53.0642 0x0810 nsi - ok
17:46:53.0645 0x0810 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:46:53.0670 0x0810 nsiproxy - ok
17:46:53.0701 0x0810 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:46:53.0735 0x0810 Ntfs - ok
17:46:53.0738 0x0810 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
17:46:53.0762 0x0810 Null - ok
17:46:53.0768 0x0810 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:46:53.0778 0x0810 nvraid - ok
17:46:53.0783 0x0810 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:46:53.0792 0x0810 nvstor - ok
17:46:53.0796 0x0810 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:46:53.0805 0x0810 nv_agp - ok
17:46:53.0816 0x0810 [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:46:53.0830 0x0810 odserv - ok
17:46:53.0833 0x0810 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:46:53.0843 0x0810 ohci1394 - ok
17:46:53.0848 0x0810 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:46:53.0856 0x0810 ose - ok
17:46:53.0861 0x0810 [ 61B16C288D2E96353323717442E08AFC, 24BF4523D0C29145866DFD4D1428E076793A69C5F005C49E647987C31D1A87F7 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
17:46:53.0870 0x0810 ossrv - ok
17:46:53.0879 0x0810 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:46:53.0896 0x0810 p2pimsvc - ok
17:46:53.0906 0x0810 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
17:46:53.0925 0x0810 p2psvc - ok
17:46:53.0929 0x0810 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
17:46:53.0940 0x0810 Parport - ok
17:46:53.0944 0x0810 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:46:53.0952 0x0810 partmgr - ok
17:46:53.0957 0x0810 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
17:46:53.0974 0x0810 PcaSvc - ok
17:46:53.0978 0x0810 [ BC0018C2D29F655188A0ED3FA94FDB24, BCF7F2CA5E30F569AEB69049BA3C196982C72EA7264CFBA59D7123041BA96E5A ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
17:46:53.0987 0x0810 pccsmcfd - ok
17:46:53.0992 0x0810 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
17:46:54.0002 0x0810 pci - ok
17:46:54.0005 0x0810 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
17:46:54.0012 0x0810 pciide - ok
17:46:54.0018 0x0810 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:46:54.0028 0x0810 pcmcia - ok
17:46:54.0032 0x0810 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
17:46:54.0039 0x0810 pcw - ok
17:46:54.0051 0x0810 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:46:54.0088 0x0810 PEAUTH - ok
17:46:54.0108 0x0810 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:46:54.0119 0x0810 PerfHost - ok
17:46:54.0147 0x0810 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
17:46:54.0200 0x0810 pla - ok
17:46:54.0210 0x0810 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:46:54.0229 0x0810 PlugPlay - ok
17:46:54.0233 0x0810 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:46:54.0239 0x0810 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:46:57.0012 0x0810 Detect skipped due to KSN trusted
17:46:57.0012 0x0810 Pml Driver HPZ12 - ok
17:46:57.0017 0x0810 [ 0BEE791C7C7ACE453C134E73633C497D, 82B30461DBF40AC15FCE6A83B9BAD2EBD05B27DEA1B784EAA096422FE8927B7B ] pmxdrv C:\Windows\system32\drivers\pmxdrv.sys
17:46:57.0023 0x0810 pmxdrv - ok
17:46:57.0026 0x0810 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:46:57.0037 0x0810 PNRPAutoReg - ok
17:46:57.0044 0x0810 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:46:57.0060 0x0810 PNRPsvc - ok
17:46:57.0071 0x0810 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:46:57.0105 0x0810 PolicyAgent - ok
17:46:57.0111 0x0810 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
17:46:57.0139 0x0810 Power - ok
17:46:57.0143 0x0810 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:46:57.0168 0x0810 PptpMiniport - ok
17:46:57.0171 0x0810 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
17:46:57.0182 0x0810 Processor - ok
17:46:57.0188 0x0810 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
17:46:57.0203 0x0810 ProfSvc - ok
17:46:57.0206 0x0810 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:46:57.0215 0x0810 ProtectedStorage - ok
17:46:57.0221 0x0810 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:46:57.0247 0x0810 Psched - ok
17:46:57.0274 0x0810 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:46:57.0309 0x0810 ql2300 - ok
17:46:57.0314 0x0810 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:46:57.0323 0x0810 ql40xx - ok
17:46:57.0330 0x0810 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
17:46:57.0348 0x0810 QWAVE - ok
17:46:57.0351 0x0810 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:46:57.0364 0x0810 QWAVEdrv - ok
17:46:57.0367 0x0810 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:46:57.0391 0x0810 RasAcd - ok
17:46:57.0394 0x0810 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:46:57.0418 0x0810 RasAgileVpn - ok
17:46:57.0422 0x0810 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
17:46:57.0449 0x0810 RasAuto - ok
17:46:57.0453 0x0810 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:46:57.0478 0x0810 Rasl2tp - ok
17:46:57.0486 0x0810 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
17:46:57.0517 0x0810 RasMan - ok
17:46:57.0521 0x0810 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:46:57.0546 0x0810 RasPppoe - ok
17:46:57.0550 0x0810 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:46:57.0574 0x0810 RasSstp - ok
17:46:57.0581 0x0810 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:46:57.0610 0x0810 rdbss - ok
17:46:57.0614 0x0810 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:46:57.0625 0x0810 rdpbus - ok
17:46:57.0627 0x0810 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:46:57.0650 0x0810 RDPCDD - ok
17:46:57.0654 0x0810 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:46:57.0678 0x0810 RDPENCDD - ok
17:46:57.0681 0x0810 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:46:57.0704 0x0810 RDPREFMP - ok
17:46:57.0708 0x0810 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:46:57.0717 0x0810 RdpVideoMiniport - ok
17:46:57.0723 0x0810 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:46:57.0736 0x0810 RDPWD - ok
17:46:57.0742 0x0810 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:46:57.0753 0x0810 rdyboost - ok
17:46:57.0757 0x0810 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:46:57.0783 0x0810 RemoteAccess - ok
17:46:57.0788 0x0810 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:46:57.0816 0x0810 RemoteRegistry - ok
17:46:57.0820 0x0810 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:46:57.0846 0x0810 RpcEptMapper - ok
17:46:57.0849 0x0810 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
17:46:57.0859 0x0810 RpcLocator - ok
17:46:57.0870 0x0810 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
17:46:57.0904 0x0810 RpcSs - ok
17:46:57.0907 0x0810 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:46:57.0932 0x0810 rspndr - ok
17:46:57.0942 0x0810 [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:46:57.0957 0x0810 RTL8167 - ok
17:46:57.0960 0x0810 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
17:46:57.0970 0x0810 SamSs - ok
17:46:57.0978 0x0810 SANDRA - ok
17:46:57.0982 0x0810 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
17:46:57.0991 0x0810 sbp2port - ok
17:46:57.0996 0x0810 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:46:58.0024 0x0810 SCardSvr - ok
17:46:58.0027 0x0810 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:46:58.0051 0x0810 scfilter - ok
17:46:58.0071 0x0810 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
17:46:58.0119 0x0810 Schedule - ok
17:46:58.0123 0x0810 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:46:58.0147 0x0810 SCPolicySvc - ok
17:46:58.0152 0x0810 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:46:58.0167 0x0810 SDRSVC - ok
17:46:58.0169 0x0810 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:46:58.0193 0x0810 secdrv - ok
17:46:58.0196 0x0810 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
17:46:58.0221 0x0810 seclogon - ok
17:46:58.0224 0x0810 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
17:46:58.0251 0x0810 SENS - ok
17:46:58.0254 0x0810 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:46:58.0265 0x0810 SensrSvc - ok
17:46:58.0268 0x0810 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:46:58.0277 0x0810 Serenum - ok
17:46:58.0281 0x0810 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:46:58.0291 0x0810 Serial - ok
17:46:58.0294 0x0810 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:46:58.0304 0x0810 sermouse - ok
17:46:58.0319 0x0810 [ 668043F192AB9659761A349A4703600D, 44443E477A38913C6973817C06C25A776574F2C0F9F52609F070BAFA836EBE2E ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
17:46:58.0338 0x0810 ServiceLayer - ok
17:46:58.0346 0x0810 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
17:46:58.0372 0x0810 SessionEnv - ok
17:46:58.0375 0x0810 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:46:58.0386 0x0810 sffdisk - ok
17:46:58.0388 0x0810 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:46:58.0399 0x0810 sffp_mmc - ok
17:46:58.0402 0x0810 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:46:58.0412 0x0810 sffp_sd - ok
17:46:58.0414 0x0810 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:46:58.0424 0x0810 sfloppy - ok
17:46:58.0432 0x0810 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:46:58.0464 0x0810 SharedAccess - ok
17:46:58.0472 0x0810 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:46:58.0505 0x0810 ShellHWDetection - ok
17:46:58.0508 0x0810 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:46:58.0516 0x0810 SiSRaid2 - ok
17:46:58.0519 0x0810 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:46:58.0528 0x0810 SiSRaid4 - ok
17:46:58.0532 0x0810 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:46:58.0556 0x0810 Smb - ok
17:46:58.0561 0x0810 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:46:58.0572 0x0810 SNMPTRAP - ok
17:46:58.0574 0x0810 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
17:46:58.0581 0x0810 spldr - ok
17:46:58.0592 0x0810 [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
17:46:58.0628 0x0810 Spooler - ok
17:46:58.0689 0x0810 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
17:46:58.0791 0x0810 sppsvc - ok
17:46:58.0797 0x0810 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:46:58.0823 0x0810 sppuinotify - ok
17:46:58.0834 0x0810 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:46:58.0853 0x0810 srv - ok
17:46:58.0862 0x0810 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:46:58.0878 0x0810 srv2 - ok
17:46:58.0884 0x0810 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:46:58.0895 0x0810 srvnet - ok
17:46:58.0901 0x0810 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:46:58.0929 0x0810 SSDPSRV - ok
17:46:58.0933 0x0810 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:46:58.0959 0x0810 SstpSvc - ok
17:46:58.0961 0x0810 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:46:58.0969 0x0810 stexstor - ok
17:46:58.0981 0x0810 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
17:46:59.0007 0x0810 stisvc - ok
17:46:59.0010 0x0810 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:46:59.0017 0x0810 swenum - ok
17:46:59.0027 0x0810 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
17:46:59.0063 0x0810 swprv - ok
17:46:59.0095 0x0810 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
17:46:59.0147 0x0810 SysMain - ok
17:46:59.0152 0x0810 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:46:59.0168 0x0810 TabletInputService - ok
17:46:59.0175 0x0810 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
17:46:59.0205 0x0810 TapiSrv - ok
17:46:59.0208 0x0810 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
17:46:59.0234 0x0810 TBS - ok
17:46:59.0268 0x0810 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:46:59.0311 0x0810 Tcpip - ok
17:46:59.0346 0x0810 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:46:59.0384 0x0810 TCPIP6 - ok
17:46:59.0390 0x0810 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:46:59.0399 0x0810 tcpipreg - ok
17:46:59.0403 0x0810 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:46:59.0412 0x0810 TDPIPE - ok
17:46:59.0415 0x0810 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:46:59.0424 0x0810 TDTCP - ok
17:46:59.0428 0x0810 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:46:59.0452 0x0810 tdx - ok
17:46:59.0455 0x0810 TEAM - ok
17:46:59.0458 0x0810 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:46:59.0466 0x0810 TermDD - ok
17:46:59.0480 0x0810 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
17:46:59.0516 0x0810 TermService - ok
17:46:59.0519 0x0810 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
17:46:59.0534 0x0810 Themes - ok
17:46:59.0537 0x0810 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
17:46:59.0562 0x0810 THREADORDER - ok
17:46:59.0566 0x0810 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
17:46:59.0594 0x0810 TrkWks - ok
17:46:59.0600 0x0810 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:46:59.0626 0x0810 TrustedInstaller - ok
17:46:59.0631 0x0810 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:46:59.0641 0x0810 tssecsrv - ok
17:46:59.0645 0x0810 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:46:59.0654 0x0810 TsUsbFlt - ok
17:46:59.0657 0x0810 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:46:59.0667 0x0810 TsUsbGD - ok
17:46:59.0672 0x0810 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:46:59.0698 0x0810 tunnel - ok
17:46:59.0701 0x0810 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:46:59.0709 0x0810 uagp35 - ok
17:46:59.0717 0x0810 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:46:59.0748 0x0810 udfs - ok
17:46:59.0753 0x0810 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:46:59.0765 0x0810 UI0Detect - ok
17:46:59.0769 0x0810 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:46:59.0776 0x0810 uliagpkx - ok
17:46:59.0780 0x0810 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:46:59.0790 0x0810 umbus - ok
17:46:59.0793 0x0810 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
17:46:59.0802 0x0810 UmPass - ok
17:46:59.0812 0x0810 [ C3F2CA25E371DA2EB0AE13DDF9484FDE, 0F66F597C2EE1CE780ED9AD679D33AD52046C98C6F69672EEDD3EDEB45822B0E ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:46:59.0823 0x0810 UNS - ok
17:46:59.0832 0x0810 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
17:46:59.0864 0x0810 upnphost - ok
17:46:59.0867 0x0810 [ 4E93C8496359E97830C75AC36393654D, D0482257B019512D77484D92E4DEFEFE4FED53CB440ACB7AA879D6FD0574FA9A ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
17:46:59.0882 0x0810 upperdev - ok
17:46:59.0886 0x0810 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:46:59.0898 0x0810 usbccgp - ok
17:46:59.0902 0x0810 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:46:59.0913 0x0810 usbcir - ok
17:46:59.0916 0x0810 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:46:59.0926 0x0810 usbehci - ok
17:46:59.0935 0x0810 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:46:59.0951 0x0810 usbhub - ok
17:46:59.0954 0x0810 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:46:59.0963 0x0810 usbohci - ok
17:46:59.0966 0x0810 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:46:59.0977 0x0810 usbprint - ok
17:46:59.0980 0x0810 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
17:46:59.0990 0x0810 usbscan - ok
17:46:59.0993 0x0810 [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser C:\Windows\system32\drivers\usbser.sys
17:47:00.0003 0x0810 usbser - ok
17:47:00.0006 0x0810 [ 8844CB19A37B65E27049D4A7786726A9, 4D772174A320F02E2F87BDF8C6EBBFDE04C9763D3C21FE9557DE938521508A59 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
17:47:00.0021 0x0810 UsbserFilt - ok
17:47:00.0024 0x0810 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:47:00.0036 0x0810 USBSTOR - ok
17:47:00.0039 0x0810 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:47:00.0048 0x0810 usbuhci - ok
17:47:00.0051 0x0810 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
17:47:00.0077 0x0810 UxSms - ok
17:47:00.0080 0x0810 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
17:47:00.0090 0x0810 VaultSvc - ok
17:47:00.0092 0x0810 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:47:00.0100 0x0810 vdrvroot - ok
17:47:00.0111 0x0810 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
17:47:00.0147 0x0810 vds - ok
17:47:00.0150 0x0810 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:47:00.0162 0x0810 vga - ok
17:47:00.0164 0x0810 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:47:00.0188 0x0810 VgaSave - ok
17:47:00.0194 0x0810 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:47:00.0205 0x0810 vhdmp - ok
17:47:00.0207 0x0810 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
17:47:00.0214 0x0810 viaide - ok
17:47:00.0218 0x0810 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:47:00.0226 0x0810 volmgr - ok
17:47:00.0234 0x0810 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:47:00.0248 0x0810 volmgrx - ok
17:47:00.0255 0x0810 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:47:00.0268 0x0810 volsnap - ok
17:47:00.0273 0x0810 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:47:00.0284 0x0810 vsmraid - ok
17:47:00.0313 0x0810 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
17:47:00.0371 0x0810 VSS - ok
17:47:00.0375 0x0810 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:47:00.0386 0x0810 vwifibus - ok
17:47:00.0390 0x0810 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:47:00.0403 0x0810 vwififlt - ok
17:47:00.0412 0x0810 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
17:47:00.0444 0x0810 W32Time - ok
17:47:00.0448 0x0810 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:47:00.0458 0x0810 WacomPen - ok
17:47:00.0462 0x0810 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:47:00.0487 0x0810 WANARP - ok
17:47:00.0490 0x0810 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:47:00.0514 0x0810 Wanarpv6 - ok
17:47:00.0537 0x0810 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:47:00.0568 0x0810 WatAdminSvc - ok
17:47:00.0597 0x0810 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
17:47:00.0640 0x0810 wbengine - ok
17:47:00.0647 0x0810 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:47:00.0664 0x0810 WbioSrvc - ok
17:47:00.0673 0x0810 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:47:00.0695 0x0810 wcncsvc - ok
17:47:00.0698 0x0810 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:47:00.0710 0x0810 WcsPlugInService - ok
17:47:00.0713 0x0810 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
17:47:00.0720 0x0810 Wd - ok
17:47:00.0736 0x0810 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:47:00.0759 0x0810 Wdf01000 - ok
17:47:00.0764 0x0810 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:47:00.0789 0x0810 WdiServiceHost - ok
17:47:00.0792 0x0810 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:47:00.0807 0x0810 WdiSystemHost - ok
17:47:00.0814 0x0810 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
17:47:00.0830 0x0810 WebClient - ok
17:47:00.0836 0x0810 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:47:00.0867 0x0810 Wecsvc - ok
17:47:00.0871 0x0810 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:47:00.0898 0x0810 wercplsupport - ok
17:47:00.0902 0x0810 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
17:47:00.0928 0x0810 WerSvc - ok
17:47:00.0931 0x0810 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:47:00.0954 0x0810 WfpLwf - ok
17:47:00.0957 0x0810 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:47:00.0964 0x0810 WIMMount - ok
17:47:00.0966 0x0810 WinDefend - ok
17:47:00.0970 0x0810 WinHttpAutoProxySvc - ok
17:47:00.0980 0x0810 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:47:01.0009 0x0810 Winmgmt - ok
17:47:01.0045 0x0810 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
17:47:01.0113 0x0810 WinRM - ok
17:47:01.0121 0x0810 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:47:01.0132 0x0810 WinUsb - ok
17:47:01.0149 0x0810 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:47:01.0183 0x0810 Wlansvc - ok
17:47:01.0224 0x0810 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:47:01.0268 0x0810 wlidsvc - ok
17:47:01.0273 0x0810 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:47:01.0282 0x0810 WmiAcpi - ok
17:47:01.0289 0x0810 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:47:01.0302 0x0810 wmiApSrv - ok
17:47:01.0305 0x0810 WMPNetworkSvc - ok
17:47:01.0349 0x0810 [ 83B6CA03C846FCD47F9883D77D1EB27B, 1616DBBC95085B6618B7F884383507E2A54D561A41288E79FA6DC99218C02802 ] WMZuneComm D:\Program Files (x86)\Zune\WMZuneComm.exe
17:47:01.0362 0x0810 WMZuneComm - ok
17:47:01.0365 0x0810 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:47:01.0376 0x0810 WPCSvc - ok
17:47:01.0381 0x0810 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:47:01.0397 0x0810 WPDBusEnum - ok
17:47:01.0400 0x0810 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:47:01.0424 0x0810 ws2ifsl - ok
17:47:01.0427 0x0810 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
17:47:01.0443 0x0810 wscsvc - ok
17:47:01.0446 0x0810 WSearch - ok
17:47:01.0491 0x0810 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
17:47:01.0544 0x0810 wuauserv - ok
17:47:01.0550 0x0810 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:47:01.0561 0x0810 WudfPf - ok
17:47:01.0566 0x0810 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:47:01.0580 0x0810 WUDFRd - ok
17:47:01.0584 0x0810 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:47:01.0596 0x0810 wudfsvc - ok
17:47:01.0602 0x0810 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:47:01.0618 0x0810 WwanSvc - ok
17:47:01.0813 0x0810 [ 67B787C34FB2888D01B130AE007042D8, E44878E53F265C89F271B08B81C129105E42D1C78C14467B2D96E28A9A428B1A ] ZuneNetworkSvc D:\Program Files (x86)\Zune\ZuneNss.exe
17:47:01.0958 0x0810 ZuneNetworkSvc - ok
17:47:01.0996 0x0810 [ 4D89FC1C20CF655739EFAC5DA81A67BC, 788D0A5B9972ED6D80242C0C5E80AB0FAB44A708B896D5F724AC1559A291C8DD ] ZuneWlanCfgSvc D:\Program Files (x86)\Zune\ZuneWlanCfgSvc.exe
17:47:02.0012 0x0810 ZuneWlanCfgSvc - ok
17:47:02.0016 0x0810 ================ Scan global ===============================
17:47:02.0019 0x0810 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:47:02.0026 0x0810 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:47:02.0036 0x0810 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:47:02.0043 0x0810 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:47:02.0052 0x0810 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:47:02.0059 0x0810 [ Global ] - ok
17:47:02.0059 0x0810 ================ Scan MBR ==================================
17:47:02.0060 0x0810 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
17:47:02.0142 0x0810 \Device\Harddisk2\DR2 - ok
17:47:02.0157 0x0810 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:47:02.0246 0x0810 \Device\Harddisk1\DR1 - ok
17:47:02.0255 0x0810 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:47:02.0324 0x0810 \Device\Harddisk0\DR0 - ok
17:47:02.0324 0x0810 ================ Scan VBR ==================================
17:47:02.0326 0x0810 [ 80CFF23781F7C46A9C70059C78702680 ] \Device\Harddisk2\DR2\Partition1
17:47:02.0327 0x0810 \Device\Harddisk2\DR2\Partition1 - ok
17:47:02.0328 0x0810 [ 1601DB7499C149C5C0FD14E901B9F915 ] \Device\Harddisk2\DR2\Partition2
17:47:02.0330 0x0810 \Device\Harddisk2\DR2\Partition2 - ok
17:47:02.0331 0x0810 [ 42E8C5D1435C6852D2005FF694B6E36D ] \Device\Harddisk1\DR1\Partition1
17:47:02.0332 0x0810 \Device\Harddisk1\DR1\Partition1 - ok
17:47:02.0334 0x0810 [ B2C07F1EAE26F3BE942E6D557B12EB4A ] \Device\Harddisk1\DR1\Partition2
17:47:02.0335 0x0810 \Device\Harddisk1\DR1\Partition2 - ok
17:47:02.0336 0x0810 [ 70B49E1CAECD3FD250C22A6E65692FEC ] \Device\Harddisk1\DR1\Partition3
17:47:02.0337 0x0810 \Device\Harddisk1\DR1\Partition3 - ok
17:47:02.0338 0x0810 [ D1D538356BC33CA851B33A2F38277250 ] \Device\Harddisk0\DR0\Partition1
17:47:02.0375 0x0810 \Device\Harddisk0\DR0\Partition1 - ok
17:47:02.0377 0x0810 [ 31B19669CF9733523EDEC6C3C54EAD14 ] \Device\Harddisk0\DR0\Partition2
17:47:02.0378 0x0810 \Device\Harddisk0\DR0\Partition2 - ok
17:47:02.0378 0x0810 ================ Scan generic autorun ======================
17:47:02.0382 0x0810 [ 3D32ABE481059E9F6CEEBE7E6EC87E06, 138CD874728A16FA7364B89E7CF7570F82FB62E8C4B89F349FE40B8B154AAF4A ] C:\Windows\system32\igfxtray.exe
17:47:02.0392 0x0810 IgfxTray - ok
17:47:02.0400 0x0810 [ 19E5456EC1CA8A92476217948D456BB8, A25AE243E52B4C008C188604A7D0A2B1FBBA99599DFED3B4A746D76F821ECD51 ] C:\Windows\system32\hkcmd.exe
17:47:02.0413 0x0810 HotKeysCmds - ok
17:47:02.0422 0x0810 [ 0B1B8AB2CD97ADAF6EFC8DBC6FC13A02, E2A097613C217FB08CD515A87519A34DE5CE187234D75E8ACA5BAC49B943E659 ] C:\Windows\system32\igfxpers.exe
17:47:02.0436 0x0810 Persistence - ok
17:47:02.0470 0x0810 [ DF72D700CC33611206675B8A2FD4D4F9, AB3AF6FD92140A1432FEAFFF2015CFAD5E9362F0018EA1D859A2DA349E95847D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
17:47:02.0505 0x0810 EvtMgr6 - ok
17:47:02.0530 0x0810 [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C, 6C6B186A2FC1DFD800041B160A7D71F5F1B3C70D62C7696B8DA89148A8D87D47 ] D:\Program Files (x86)\Zune\ZuneLauncher.exe
17:47:02.0539 0x0810 Zune Launcher - ok
17:47:02.0543 0x0810 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
17:47:02.0554 0x0810 Logitech Download Assistant - ok
17:47:02.0556 0x0810 CTXFIREG - ok
17:47:02.0564 0x0810 [ 72860972F8196EBB3C896F53D2B95470, 95C046A66DD0089377867F073CADCE585B7C69CA23E724DCAD9D896BF01E023D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
17:47:02.0571 0x0810 hpqSRMon - detected UnsignedFile.Multi.Generic ( 1 )
17:47:05.0340 0x0810 Detect skipped due to KSN trusted
17:47:05.0340 0x0810 hpqSRMon - ok
17:47:05.0343 0x0810 [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:47:05.0350 0x0810 HP Software Update - ok
17:47:05.0360 0x0810 [ 38D198A2DD54A67120040566A38103BA, 01604BD91A5B2C0DDC7B52036511F8219952626716E75979D8464F2C56BA0114 ] D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:47:05.0367 0x0810 GrooveMonitor - ok
17:47:05.0369 0x0810 AsioThk32Reg - ok
17:47:05.0370 0x0810 CTHelper - ok
17:47:05.0403 0x0810 [ 35048D8E8A0BF7A797CD5757ACD7EED0, 890FCF24869614B3990B575A588ECB35C25A5B896F21BF9C66D43C93787FDD7A ] D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe
17:47:05.0410 0x0810 CLMLServer - ok
17:47:05.0449 0x0810 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] D:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint\MUITransfer\MUIStartMenu.exe
17:47:05.0459 0x0810 UpdateLBPShortCut - ok
17:47:05.0494 0x0810 [ D28328420109DAA5B19038364136DC45, 7AC8A4F53AE04C7F3043B23E577223967721C7302ABC2B7FDCC15322FEEA874F ] D:\PROGRA~2\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
17:47:05.0513 0x0810 InstantBurn - ok
17:47:05.0537 0x0810 [ 99ECAF298145F950B1326656167FBFDF, 77573FE19E2C16AB6D7DD3B689D5E926A86793491D6915E76999BA19A35265EA ] D:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
17:47:05.0543 0x0810 RemoteControl10 - ok
17:47:05.0547 0x0810 [ C252C2303FE79F201E64F269FEFF0DDB, AD305DA8B4CDE8C578424AB42AE5079901285C130F04F534E0CF86E13F1335C4 ] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
17:47:05.0553 0x0810 BDRegion - ok
17:47:05.0639 0x0810 [ 7D9D685235B13830E24BD9A16AAE1EBC, CC1ED51A945AEE11CD1D42ED1368AB5DE19602F195C9A90E633E04D2C98EE586 ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
17:47:05.0726 0x0810 XFastUSB - ok
17:47:05.0747 0x0810 [ 7C73B5C50CAEDB1771A049142026906B, A4992339D71A9297963C70616C4124BD701E46AEE439E09C392C2B2EBAE624E6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:47:05.0765 0x0810 StartCCC - ok
17:47:05.0835 0x0810 [ 5CA0EB9538C6ACEBDC3593FC53527B9D, 35AC60899254C7414FF42BCDA4165FB58F6369BD5EDCAC24EBB1B5A095664CAC ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
17:47:05.0908 0x0810 AvastUI.exe - ok
17:47:05.0929 0x0810 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:47:05.0953 0x0810 Adobe ARM - ok
17:47:05.0959 0x0810 [ F381E01B43A9135AA11E330B4663DDBE, F4C01AB114C5B6C58BDE0EB1111A196F8D057B5BE46D62ABCD2D841B8B65B766 ] C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe
17:47:05.0968 0x0810 VolPanel - detected UnsignedFile.Multi.Generic ( 1 )
17:47:08.0738 0x0810 Detect skipped due to KSN trusted
17:47:08.0738 0x0810 VolPanel - ok
17:47:08.0740 0x0810 CTxfiHlp - ok
17:47:08.0746 0x0810 [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:47:08.0755 0x0810 SunJavaUpdateSched - ok
17:47:08.0777 0x0810 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:47:08.0813 0x0810 Sidebar - ok
17:47:08.0817 0x0810 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:47:08.0832 0x0810 mctadmin - ok
17:47:08.0853 0x0810 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:47:08.0884 0x0810 Sidebar - ok
17:47:08.0888 0x0810 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:47:08.0902 0x0810 mctadmin - ok
17:47:08.0929 0x0810 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:47:08.0969 0x0810 Sidebar - ok
17:47:08.0971 0x0810 Power2GoExpress - ok
17:47:08.0978 0x0810 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:47:08.0985 0x0810 Google Update - ok
17:47:09.0003 0x0810 SB Audigy 2 Startup Menu - ok
17:47:09.0029 0x0810 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:47:09.0066 0x0810 Sidebar - ok
17:47:09.0071 0x0810 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:47:09.0079 0x0810 Google Update - ok
17:47:09.0080 0x0810 Power2GoExpress - ok
17:47:09.0083 0x0810 [ A8D72B3C7E20F2BB67CC60BCAD4E9138, 05630A6053652D7528572A662FD9C422EB0CAD2D91508CF85748AFE6802C027C ] C:\Windows\CTRegRun.EXE
17:47:09.0087 0x0810 CTRegRun - detected UnsignedFile.Multi.Generic ( 1 )
17:47:11.0860 0x0810 Detect skipped due to KSN trusted
17:47:11.0860 0x0810 CTRegRun - ok
17:47:11.0871 0x0810 CTPostBootSequencer - ok
17:47:11.0871 0x0810 Waiting for KSN requests completion. In queue: 18
17:47:12.0871 0x0810 Waiting for KSN requests completion. In queue: 18
17:47:13.0871 0x0810 Waiting for KSN requests completion. In queue: 18
17:47:14.0882 0x0810 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
17:47:14.0885 0x0810 Win FW state via NFP2: enabled
17:47:17.0578 0x0810 ============================================================
17:47:17.0578 0x0810 Scan finished
17:47:17.0578 0x0810 ============================================================
17:47:17.0582 0x12c4 Detected object count: 0
17:47:17.0582 0x12c4 Actual detected object count: 0
17:48:36.0606 0x19e8 Deinitialize success
|
|
19.06.2014, 13:22
| #12 |
| /// the machine /// TB-Ausbilder | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Kontaktiere mal den Avast Support, ich denke da an einen Fehlalarm.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.06.2014, 19:35
| #13 |
| | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft Danke für deine Hilfe Da alle anderen Programme nichts melden, denke ich auch an einen Fehlalarm. Ich werde den Avast Supportteam mal mein Problem schildern, und warten was die dazu sagen Lg Zecka |
|
20.06.2014, 18:54
| #14 |
| /// the machine /// TB-Ausbilder | Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft ok 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft |
| avast, falschmeldung, festplatte, festplatten, free, installier, kaspersky, kaspersky rescue disk, melde, meldet, neu, platte, platten, prozess, rescue, speicher, spring, springt, troja, trojaner, verhalten, w32, win, win32, wirklich |
Linear-Darstellung
