| |
| |||||||
Log-Analyse und Auswertung: C:\Windows\SysWOW64\cleanmgr.exe wurde blockiertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
02.01.2015, 22:30
| #8 |
 |  C:\Windows\SysWOW64\cleanmgr.exe wurde blockiert Hallo Schrauber, hier nun die beiden neuen logs: mbar.log Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.08.2.1001
www.malwarebytes.org
Database version: v2015.01.02.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17501
Kerstin :: KERSTIN-PC [administrator]
02.01.2015 21:13:28
mbar-log-2015-01-02 (21-13-28).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 368852
Time elapsed: 32 minute(s), 7 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 21:57:20.0842 0x0c7c TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
21:57:25.0952 0x0c7c ============================================================
21:57:25.0953 0x0c7c Current date / time: 2015/01/02 21:57:25.0952
21:57:25.0953 0x0c7c SystemInfo:
21:57:25.0953 0x0c7c
21:57:25.0953 0x0c7c OS Version: 6.1.7601 ServicePack: 1.0
21:57:25.0953 0x0c7c Product type: Workstation
21:57:25.0953 0x0c7c ComputerName: *****-PC
21:57:25.0953 0x0c7c UserName: *****
21:57:25.0953 0x0c7c Windows directory: C:\Windows
21:57:25.0953 0x0c7c System windows directory: C:\Windows
21:57:25.0953 0x0c7c Running under WOW64
21:57:25.0953 0x0c7c Processor architecture: Intel x64
21:57:25.0953 0x0c7c Number of processors: 4
21:57:25.0953 0x0c7c Page size: 0x1000
21:57:25.0953 0x0c7c Boot type: Normal boot
21:57:25.0953 0x0c7c ============================================================
21:57:26.0385 0x0c7c KLMD registered as C:\Windows\system32\drivers\43990910.sys
21:57:26.0998 0x0c7c System UUID: {604D0E78-24CB-04A7-CFCE-9554F14D1DA1}
21:57:28.0178 0x0c7c Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:57:28.0187 0x0c7c ============================================================
21:57:28.0187 0x0c7c \Device\Harddisk0\DR0:
21:57:28.0188 0x0c7c MBR partitions:
21:57:28.0188 0x0c7c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
21:57:28.0188 0x0c7c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x237FB800
21:57:28.0188 0x0c7c ============================================================
21:57:28.0212 0x0c7c C: <-> \Device\Harddisk0\DR0\Partition2
21:57:28.0212 0x0c7c ============================================================
21:57:28.0212 0x0c7c Initialize success
21:57:28.0212 0x0c7c ============================================================
22:00:10.0927 0x0dd8 ============================================================
22:00:10.0927 0x0dd8 Scan started
22:00:10.0927 0x0dd8 Mode: Manual; SigCheck; TDLFS;
22:00:10.0927 0x0dd8 ============================================================
22:00:10.0927 0x0dd8 KSN ping started
22:00:13.0927 0x0dd8 KSN ping finished: true
22:00:15.0827 0x0dd8 ================ Scan system memory ========================
22:00:15.0827 0x0dd8 System memory - ok
22:00:15.0827 0x0dd8 ================ Scan services =============================
22:00:16.0107 0x0dd8 [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:00:16.0237 0x0dd8 !SASCORE - ok
22:00:16.0777 0x0dd8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:00:16.0937 0x0dd8 1394ohci - ok
22:00:16.0997 0x0dd8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:00:17.0057 0x0dd8 ACPI - ok
22:00:17.0107 0x0dd8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:00:17.0217 0x0dd8 AcpiPmi - ok
22:00:17.0387 0x0dd8 [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:00:17.0427 0x0dd8 AdobeARMservice - ok
22:00:17.0627 0x0dd8 [ 749F94C424524285DCDA84D695ABC12F, E5AD194AF5B8B4FDB3976D3E3F9EF942DECFEC4EBAA9881A8EF7707BB781E4AD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:00:17.0717 0x0dd8 AdobeFlashPlayerUpdateSvc - ok
22:00:17.0807 0x0dd8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:00:17.0937 0x0dd8 adp94xx - ok
22:00:17.0987 0x0dd8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:00:18.0057 0x0dd8 adpahci - ok
22:00:18.0077 0x0dd8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:00:18.0137 0x0dd8 adpu320 - ok
22:00:18.0177 0x0dd8 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:00:18.0397 0x0dd8 AeLookupSvc - ok
22:00:18.0527 0x0dd8 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
22:00:18.0747 0x0dd8 AFD - ok
22:00:18.0827 0x0dd8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
22:00:18.0877 0x0dd8 agp440 - ok
22:00:18.0897 0x0dd8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
22:00:19.0017 0x0dd8 ALG - ok
22:00:19.0097 0x0dd8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
22:00:19.0157 0x0dd8 aliide - ok
22:00:19.0207 0x0dd8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
22:00:19.0297 0x0dd8 amdide - ok
22:00:19.0347 0x0dd8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:00:19.0447 0x0dd8 AmdK8 - ok
22:00:19.0477 0x0dd8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:00:19.0567 0x0dd8 AmdPPM - ok
22:00:19.0627 0x0dd8 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:00:19.0727 0x0dd8 amdsata - ok
22:00:19.0767 0x0dd8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:00:19.0857 0x0dd8 amdsbs - ok
22:00:19.0907 0x0dd8 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:00:19.0957 0x0dd8 amdxata - ok
22:00:20.0027 0x0dd8 [ 391887990CDAA83DE5C56C3FDE966DA1, BC55E21E03B3FE7BBDBB13D56AADB8FBA74F58521AC73B105AD9788E7AE18F0B ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
22:00:20.0167 0x0dd8 AmUStor - ok
22:00:20.0427 0x0dd8 [ 051A7A9C035BBAB779E2C96E65C32600, 22B9FB02A24A64F8CD2C99BAA3AC0CD4ABD42FBAD495EBB2CE24504A1E44A184 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
22:00:20.0597 0x0dd8 AntiVirWebService - ok
22:00:20.0707 0x0dd8 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
22:00:21.0307 0x0dd8 AppID - ok
22:00:21.0347 0x0dd8 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:00:21.0537 0x0dd8 AppIDSvc - ok
22:00:22.0157 0x0dd8 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
22:00:22.0347 0x0dd8 Appinfo - ok
22:00:22.0417 0x0dd8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
22:00:22.0487 0x0dd8 arc - ok
22:00:22.0517 0x0dd8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:00:22.0587 0x0dd8 arcsas - ok
22:00:22.0857 0x0dd8 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:00:22.0957 0x0dd8 aspnet_state - ok
22:00:23.0127 0x0dd8 [ 9BE9F2B83DE80E2752B1405CC427E2EC, 6015CA66553B3B882083B33F24FB338249A110D9769831C3D3D3C681AAFA9411 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
22:00:23.0227 0x0dd8 aswHwid - ok
22:00:23.0257 0x0dd8 [ 2DA1C1AEDF454F8E32A863A1AEACDD8C, F02E4D197AE00B9A9507CF6007A7B7BEA54AF0F255B752FBA7174FA2596D1CA9 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:00:23.0327 0x0dd8 aswMonFlt - ok
22:00:23.0347 0x0dd8 [ 4750016EF9CC1DEC6DA3FE5AF9A7F095, C4CF46246D8A3FF9BD8D2FE899685654ADD45EB9B032F33804D0B8131882BC74 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
22:00:23.0427 0x0dd8 aswRdr - ok
22:00:23.0477 0x0dd8 [ 1323269A92645705DEFA053F3596829D, 83EC58E0577A1E45D1FCBC0C0AF182099FB70B9005B9F8161166EBB4E9F58F35 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
22:00:23.0547 0x0dd8 aswRvrt - ok
22:00:23.0657 0x0dd8 [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:00:23.0857 0x0dd8 aswSnx - ok
22:00:23.0927 0x0dd8 [ B1881A01E301990B671694CA1623F1B6, 5299C713EA7CF96F0550943DB37E963CDA09258F65C471CCEEAB44C4736B7A08 ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:00:23.0977 0x0dd8 aswSP - ok
22:00:24.0007 0x0dd8 [ 7509F07BA6F84C1E3B2C0D78A1F6F782, A90A36E8E23F58E430DE98B3623688DC09D34B62906EF7796DFC90F581FC385F ] aswStm C:\Windows\system32\drivers\aswStm.sys
22:00:24.0037 0x0dd8 aswStm - ok
22:00:24.0077 0x0dd8 [ 1A5BDDE65B648DC3AD48B6ECAA3AE9C8, 858F674C3B775F9C8C782B7AFAC0B02AE9410C9F3B7F5B3AE1C4AD3BF6448C14 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
22:00:24.0127 0x0dd8 aswVmm - ok
22:00:24.0177 0x0dd8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:00:24.0317 0x0dd8 AsyncMac - ok
22:00:24.0377 0x0dd8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
22:00:24.0417 0x0dd8 atapi - ok
22:00:24.0697 0x0dd8 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:00:24.0817 0x0dd8 AudioEndpointBuilder - ok
22:00:24.0847 0x0dd8 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:00:24.0897 0x0dd8 AudioSrv - ok
22:00:24.0977 0x0dd8 [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:00:25.0037 0x0dd8 avast! Antivirus - ok
22:00:25.0557 0x0dd8 [ 4F4EBF6163D3A02D52A66BBD145B0069, 179B2FD2671F6BB8D3F77B39001F546A0DEBE85BFF9782060AF1DC50DFA071EF ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
22:00:26.0177 0x0dd8 AvastVBoxSvc - ok
22:00:26.0327 0x0dd8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:00:26.0507 0x0dd8 AxInstSV - ok
22:00:26.0607 0x0dd8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:00:26.0777 0x0dd8 b06bdrv - ok
22:00:26.0867 0x0dd8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:00:26.0987 0x0dd8 b57nd60a - ok
22:00:27.0687 0x0dd8 [ 2D659B569A76CDB83B815675A80D7096, 8246BD350017B6CBADA4BBDBAB8B708B0A8F1AD5ADD4B2DE1BA610B4A188C262 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:00:27.0917 0x0dd8 BCM43XX - ok
22:00:27.0977 0x0dd8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
22:00:28.0097 0x0dd8 BDESVC - ok
22:00:28.0157 0x0dd8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
22:00:28.0347 0x0dd8 Beep - ok
22:00:28.0477 0x0dd8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
22:00:28.0637 0x0dd8 BFE - ok
22:00:28.0877 0x0dd8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
22:00:29.0077 0x0dd8 BITS - ok
22:00:29.0117 0x0dd8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:00:29.0257 0x0dd8 blbdrive - ok
22:00:29.0337 0x0dd8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:00:29.0417 0x0dd8 bowser - ok
22:00:29.0447 0x0dd8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:00:29.0597 0x0dd8 BrFiltLo - ok
22:00:29.0617 0x0dd8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:00:29.0677 0x0dd8 BrFiltUp - ok
22:00:29.0757 0x0dd8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
22:00:29.0877 0x0dd8 Browser - ok
22:00:29.0987 0x0dd8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:00:30.0107 0x0dd8 Brserid - ok
22:00:30.0127 0x0dd8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:00:30.0207 0x0dd8 BrSerWdm - ok
22:00:30.0227 0x0dd8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:00:30.0307 0x0dd8 BrUsbMdm - ok
22:00:30.0327 0x0dd8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:00:30.0397 0x0dd8 BrUsbSer - ok
22:00:30.0467 0x0dd8 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
22:00:30.0627 0x0dd8 BthEnum - ok
22:00:30.0657 0x0dd8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:00:30.0737 0x0dd8 BTHMODEM - ok
22:00:30.0787 0x0dd8 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
22:00:30.0847 0x0dd8 BthPan - ok
22:00:30.0907 0x0dd8 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
22:00:31.0047 0x0dd8 BTHPORT - ok
22:00:31.0087 0x0dd8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
22:00:31.0207 0x0dd8 bthserv - ok
22:00:31.0227 0x0dd8 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
22:00:31.0297 0x0dd8 BTHUSB - ok
22:00:31.0377 0x0dd8 [ 73A1C54749FE4F0019241E36C796AB86, B7E6217F699469DDD76751FBACD25AE9AF56A63FAA8F3C7E0A3FAADA2030AB94 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
22:00:31.0437 0x0dd8 btwampfl - ok
22:00:31.0477 0x0dd8 [ 1872074ED0A3FB22E3F1E3197B984BFA, 112F289BFE63B46D1E007E3C6761B5C5C8F499B6638CE896DF528FDDBBC1EA12 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
22:00:31.0537 0x0dd8 btwaudio - ok
22:00:31.0627 0x0dd8 [ 691CF076C33AB1C3A5B2FD5450300733, C2C943D42B0A135BD255FA8985A00D36B0DD91546291E2D819FACE7C0B08287D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
22:00:31.0677 0x0dd8 btwavdt - ok
22:00:31.0817 0x0dd8 [ 4E6AC6475EF653BDFFDA67A74B9591D8, 2F13D29BF48D2E982AF0BA4F3B6C38B2651E87F898B4A290AE12C5B78306639B ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:00:31.0907 0x0dd8 btwdins - ok
22:00:31.0947 0x0dd8 [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
22:00:31.0987 0x0dd8 btwl2cap - ok
22:00:32.0007 0x0dd8 [ C9273B20DEC8CE38DBCE5D29DE63C907, 71D67A1A2EDA81351E8D8129824565E2ECA0CFA4DC844CE12F90AB7906ABA737 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
22:00:32.0047 0x0dd8 btwrchid - ok
22:00:32.0107 0x0dd8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:00:32.0237 0x0dd8 cdfs - ok
22:00:32.0357 0x0dd8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
22:00:32.0497 0x0dd8 cdrom - ok
22:00:32.0557 0x0dd8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
22:00:32.0667 0x0dd8 CertPropSvc - ok
22:00:32.0707 0x0dd8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:00:32.0797 0x0dd8 circlass - ok
22:00:32.0867 0x0dd8 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
22:00:32.0937 0x0dd8 CLFS - ok
22:00:33.0017 0x0dd8 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:00:33.0077 0x0dd8 clr_optimization_v2.0.50727_32 - ok
22:00:33.0157 0x0dd8 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:00:33.0217 0x0dd8 clr_optimization_v2.0.50727_64 - ok
22:00:33.0317 0x0dd8 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:00:33.0457 0x0dd8 clr_optimization_v4.0.30319_32 - ok
22:00:33.0497 0x0dd8 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:00:33.0617 0x0dd8 clr_optimization_v4.0.30319_64 - ok
22:00:33.0657 0x0dd8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:00:33.0747 0x0dd8 CmBatt - ok
22:00:33.0787 0x0dd8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:00:33.0817 0x0dd8 cmdide - ok
22:00:33.0897 0x0dd8 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
22:00:33.0977 0x0dd8 CNG - ok
22:00:33.0997 0x0dd8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:00:34.0037 0x0dd8 Compbatt - ok
22:00:34.0097 0x0dd8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:00:34.0187 0x0dd8 CompositeBus - ok
22:00:34.0207 0x0dd8 COMSysApp - ok
22:00:34.0227 0x0dd8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:00:34.0267 0x0dd8 crcdisk - ok
22:00:34.0317 0x0dd8 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:00:34.0447 0x0dd8 CryptSvc - ok
22:00:34.0527 0x0dd8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:00:34.0707 0x0dd8 DcomLaunch - ok
22:00:34.0777 0x0dd8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
22:00:34.0917 0x0dd8 defragsvc - ok
22:00:34.0967 0x0dd8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:00:35.0087 0x0dd8 DfsC - ok
22:00:35.0157 0x0dd8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
22:00:35.0287 0x0dd8 Dhcp - ok
22:00:35.0327 0x0dd8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
22:00:35.0447 0x0dd8 discache - ok
22:00:35.0507 0x0dd8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:00:35.0547 0x0dd8 Disk - ok
22:00:35.0597 0x0dd8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:00:35.0707 0x0dd8 Dnscache - ok
22:00:35.0757 0x0dd8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
22:00:35.0837 0x0dd8 dot3svc - ok
22:00:35.0897 0x0dd8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
22:00:35.0987 0x0dd8 DPS - ok
22:00:36.0067 0x0dd8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:00:36.0147 0x0dd8 drmkaud - ok
22:00:36.0217 0x0dd8 [ 9CF46FDF163E06B83D03FF929EF2296C, 40BB0226361DEC2E6CBFE79CA092083986BD3D94564ED5F3E54CA2EE9A756837 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
22:00:36.0327 0x0dd8 DsiWMIService - ok
22:00:36.0727 0x0dd8 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:00:36.0797 0x0dd8 DXGKrnl - ok
22:00:36.0897 0x0dd8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
22:00:37.0057 0x0dd8 EapHost - ok
22:00:37.0997 0x0dd8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:00:38.0377 0x0dd8 ebdrv - ok
22:00:38.0477 0x0dd8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
22:00:38.0687 0x0dd8 EFS - ok
22:00:39.0247 0x0dd8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:00:39.0477 0x0dd8 ehRecvr - ok
22:00:39.0527 0x0dd8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
22:00:39.0647 0x0dd8 ehSched - ok
22:00:39.0787 0x0dd8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:00:39.0967 0x0dd8 elxstor - ok
22:00:40.0107 0x0dd8 [ 3EA2C4F68A782839D97B3C83595575B6, D4C3BFD0B6817B73BE9F2378FA946BD1C213A4FB9EB3F7D2C79E9B6D9F895106 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
22:00:40.0217 0x0dd8 ePowerSvc - ok
22:00:40.0277 0x0dd8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:00:40.0487 0x0dd8 ErrDev - ok
22:00:40.0587 0x0dd8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
22:00:40.0757 0x0dd8 EventSystem - ok
22:00:40.0837 0x0dd8 [ 251AF86E0A4DDF3A6B181ED5103B06B1, 1823E7C87F0D8972A89D71B1FB633C5D43744F9803E6A8B866F6EA610032437C ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
22:00:40.0947 0x0dd8 ewusbnet - ok
22:00:40.0987 0x0dd8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
22:00:41.0097 0x0dd8 exfat - ok
22:00:41.0197 0x0dd8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:00:41.0397 0x0dd8 fastfat - ok
22:00:41.0487 0x0dd8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
22:00:41.0627 0x0dd8 Fax - ok
22:00:41.0667 0x0dd8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:00:41.0747 0x0dd8 fdc - ok
22:00:41.0797 0x0dd8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
22:00:41.0967 0x0dd8 fdPHost - ok
22:00:41.0997 0x0dd8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
22:00:42.0127 0x0dd8 FDResPub - ok
22:00:42.0167 0x0dd8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:00:42.0207 0x0dd8 FileInfo - ok
22:00:42.0227 0x0dd8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:00:42.0347 0x0dd8 Filetrace - ok
22:00:42.0377 0x0dd8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:00:42.0417 0x0dd8 flpydisk - ok
22:00:42.0467 0x0dd8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:00:42.0527 0x0dd8 FltMgr - ok
22:00:42.0627 0x0dd8 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
22:00:42.0837 0x0dd8 FontCache - ok
22:00:42.0907 0x0dd8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:00:42.0947 0x0dd8 FontCache3.0.0.0 - ok
22:00:42.0967 0x0dd8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:00:43.0027 0x0dd8 FsDepends - ok
22:00:43.0117 0x0dd8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:00:43.0187 0x0dd8 Fs_Rec - ok
22:00:43.0307 0x0dd8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:00:43.0407 0x0dd8 fvevol - ok
22:00:43.0437 0x0dd8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:00:43.0497 0x0dd8 gagp30kx - ok
22:00:43.0717 0x0dd8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
22:00:43.0837 0x0dd8 gpsvc - ok
22:00:43.0977 0x0dd8 [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
22:00:44.0037 0x0dd8 GREGService - ok
22:00:44.0067 0x0dd8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:00:44.0177 0x0dd8 hcw85cir - ok
22:00:44.0247 0x0dd8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:00:44.0347 0x0dd8 HdAudAddService - ok
22:00:44.0407 0x0dd8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:00:44.0477 0x0dd8 HDAudBus - ok
22:00:44.0517 0x0dd8 [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:00:44.0587 0x0dd8 HECIx64 - ok
22:00:44.0607 0x0dd8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:00:44.0717 0x0dd8 HidBatt - ok
22:00:44.0747 0x0dd8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:00:44.0847 0x0dd8 HidBth - ok
22:00:44.0887 0x0dd8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:00:44.0957 0x0dd8 HidIr - ok
22:00:44.0997 0x0dd8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
22:00:45.0117 0x0dd8 hidserv - ok
22:00:45.0157 0x0dd8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
22:00:45.0227 0x0dd8 HidUsb - ok
22:00:45.0297 0x0dd8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:00:45.0437 0x0dd8 hkmsvc - ok
22:00:45.0537 0x0dd8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:00:45.0637 0x0dd8 HomeGroupListener - ok
22:00:45.0707 0x0dd8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:00:45.0757 0x0dd8 HomeGroupProvider - ok
22:00:45.0817 0x0dd8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:00:45.0837 0x0dd8 HpSAMD - ok
22:00:46.0267 0x0dd8 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:00:46.0447 0x0dd8 HTTP - ok
22:00:46.0507 0x0dd8 [ 4B5C07DB91A0099272FAAE732E1152BD, E0408F85A2E1E310F5143A01A34456F120875D21E0E9D0A9F9EBC96514CFC47C ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
22:00:46.0627 0x0dd8 hwdatacard - ok
22:00:46.0677 0x0dd8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:00:46.0727 0x0dd8 hwpolicy - ok
22:00:46.0777 0x0dd8 [ 9C13A2691AC410CC7469F298684DCA5D, 2B07FE759B479A36AB4DE185AF8B4295396A1F8674587721BE7C92FC31ADFF0D ] hwusbfake C:\Windows\system32\DRIVERS\ewusbfake.sys
22:00:46.0957 0x0dd8 hwusbfake - ok
22:00:47.0017 0x0dd8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:00:47.0107 0x0dd8 i8042prt - ok
22:00:47.0307 0x0dd8 [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:00:47.0397 0x0dd8 iaStor - ok
22:00:47.0507 0x0dd8 [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
22:00:47.0587 0x0dd8 IAStorDataMgrSvc - ok
22:00:47.0667 0x0dd8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:00:47.0787 0x0dd8 iaStorV - ok
22:00:47.0917 0x0dd8 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:00:48.0147 0x0dd8 idsvc - ok
22:00:48.0157 0x0dd8 IEEtwCollectorService - ok
22:00:49.0727 0x0dd8 [ 2A22AB054F4630D2EF4BAB2853F6D5F6, 9CD7A5FFB7E25B51E9D311531EE5EC20CEAC356C7A27D52B61DA810DB412437B ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:00:50.0487 0x0dd8 igfx - ok
22:00:50.0557 0x0dd8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:00:50.0637 0x0dd8 iirsp - ok
22:00:50.0767 0x0dd8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
22:00:50.0937 0x0dd8 IKEEXT - ok
22:00:51.0007 0x0dd8 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
22:00:51.0117 0x0dd8 Impcd - ok
22:00:51.0337 0x0dd8 [ CB5FD9B681AD43B560490B5283DDC1C1, 359F4ACE7BE0FD6BF710AD1EEA48ED3F9E4A97A2B8318EC5616E34449D0C774F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:00:51.0747 0x0dd8 IntcAzAudAddService - ok
22:00:51.0837 0x0dd8 [ 58CF58DEE26C909BD6F977B61D246295, 0CE27B81C091961A22B75478449D654F9C1A68E43DF80C699DB8DD3D1B288461 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:00:51.0957 0x0dd8 IntcDAud - ok
22:00:51.0987 0x0dd8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
22:00:52.0027 0x0dd8 intelide - ok
22:00:52.0087 0x0dd8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:00:52.0137 0x0dd8 intelppm - ok
22:00:52.0227 0x0dd8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:00:52.0357 0x0dd8 IPBusEnum - ok
22:00:52.0967 0x0dd8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:00:53.0107 0x0dd8 IpFilterDriver - ok
22:00:53.0257 0x0dd8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:00:53.0397 0x0dd8 iphlpsvc - ok
22:00:53.0447 0x0dd8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:00:53.0537 0x0dd8 IPMIDRV - ok
22:00:53.0607 0x0dd8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:00:53.0767 0x0dd8 IPNAT - ok
22:00:53.0797 0x0dd8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:00:53.0927 0x0dd8 IRENUM - ok
22:00:53.0947 0x0dd8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:00:53.0987 0x0dd8 isapnp - ok
22:00:54.0037 0x0dd8 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:00:54.0117 0x0dd8 iScsiPrt - ok
22:00:54.0157 0x0dd8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
22:00:54.0197 0x0dd8 kbdclass - ok
22:00:54.0247 0x0dd8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:00:54.0297 0x0dd8 kbdhid - ok
22:00:54.0327 0x0dd8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
22:00:54.0357 0x0dd8 KeyIso - ok
22:00:54.0417 0x0dd8 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:00:54.0587 0x0dd8 KSecDD - ok
22:00:54.0637 0x0dd8 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:00:54.0697 0x0dd8 KSecPkg - ok
22:00:54.0737 0x0dd8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:00:54.0847 0x0dd8 ksthunk - ok
22:00:54.0887 0x0dd8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
22:00:55.0017 0x0dd8 KtmRm - ok
22:00:55.0067 0x0dd8 [ A4A9CA24E54E81C6C3E469EAEB4B3F42, FB6B72BF973EC2EE2D81AAAF47B030C0A5E7E7B079DAB257C52FEFC3F222CDC8 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
22:00:55.0127 0x0dd8 L1C - ok
22:00:55.0197 0x0dd8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:00:55.0357 0x0dd8 LanmanServer - ok
22:00:55.0427 0x0dd8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:00:55.0557 0x0dd8 LanmanWorkstation - ok
22:00:55.0627 0x0dd8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:00:55.0787 0x0dd8 lltdio - ok
22:00:55.0857 0x0dd8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:00:55.0977 0x0dd8 lltdsvc - ok
22:00:56.0017 0x0dd8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:00:56.0127 0x0dd8 lmhosts - ok
22:00:56.0197 0x0dd8 [ A1C148801B4AF64847AEB9F3AD9594EF, FF6ED89EA47DF74C33CD8BFAC48FAED1B979348ABA6B6D94EE07CBD21810F37B ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:00:56.0307 0x0dd8 LMS - detected UnsignedFile.Multi.Generic ( 1 )
22:00:59.0237 0x0dd8 Detect skipped due to KSN trusted
22:00:59.0237 0x0dd8 LMS - ok
22:00:59.0277 0x0dd8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:00:59.0347 0x0dd8 LSI_FC - ok
22:00:59.0387 0x0dd8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:00:59.0427 0x0dd8 LSI_SAS - ok
22:00:59.0457 0x0dd8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:00:59.0527 0x0dd8 LSI_SAS2 - ok
22:00:59.0597 0x0dd8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:00:59.0627 0x0dd8 LSI_SCSI - ok
22:00:59.0687 0x0dd8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
22:00:59.0827 0x0dd8 luafv - ok
22:00:59.0867 0x0dd8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:00:59.0937 0x0dd8 Mcx2Svc - ok
22:00:59.0957 0x0dd8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:00:59.0997 0x0dd8 megasas - ok
22:01:00.0027 0x0dd8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:01:00.0087 0x0dd8 MegaSR - ok
22:01:00.0157 0x0dd8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
22:01:00.0277 0x0dd8 MMCSS - ok
22:01:00.0287 0x0dd8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
22:01:00.0387 0x0dd8 Modem - ok
22:01:00.0417 0x0dd8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:01:00.0507 0x0dd8 monitor - ok
22:01:00.0537 0x0dd8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
22:01:00.0567 0x0dd8 mouclass - ok
22:01:00.0607 0x0dd8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:01:00.0677 0x0dd8 mouhid - ok
22:01:00.0737 0x0dd8 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:01:00.0777 0x0dd8 mountmgr - ok
22:01:00.0887 0x0dd8 [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:01:00.0937 0x0dd8 MozillaMaintenance - ok
22:01:01.0037 0x0dd8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
22:01:01.0107 0x0dd8 mpio - ok
22:01:01.0157 0x0dd8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:01:01.0247 0x0dd8 mpsdrv - ok
22:01:01.0327 0x0dd8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:01:01.0527 0x0dd8 MpsSvc - ok
22:01:01.0577 0x0dd8 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:01:01.0617 0x0dd8 MRxDAV - ok
22:01:01.0657 0x0dd8 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:01:01.0767 0x0dd8 mrxsmb - ok
22:01:01.0817 0x0dd8 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:01:01.0887 0x0dd8 mrxsmb10 - ok
22:01:01.0917 0x0dd8 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:01:01.0967 0x0dd8 mrxsmb20 - ok
22:01:02.0007 0x0dd8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
22:01:02.0077 0x0dd8 msahci - ok
22:01:02.0107 0x0dd8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:01:02.0177 0x0dd8 msdsm - ok
22:01:02.0207 0x0dd8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
22:01:02.0297 0x0dd8 MSDTC - ok
22:01:02.0347 0x0dd8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:01:02.0467 0x0dd8 Msfs - ok
22:01:02.0497 0x0dd8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:01:02.0577 0x0dd8 mshidkmdf - ok
22:01:02.0627 0x0dd8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:01:02.0667 0x0dd8 msisadrv - ok
22:01:02.0737 0x0dd8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:01:02.0877 0x0dd8 MSiSCSI - ok
22:01:02.0877 0x0dd8 msiserver - ok
22:01:02.0907 0x0dd8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:01:03.0007 0x0dd8 MSKSSRV - ok
22:01:03.0047 0x0dd8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:01:03.0127 0x0dd8 MSPCLOCK - ok
22:01:03.0147 0x0dd8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:01:03.0277 0x0dd8 MSPQM - ok
22:01:03.0327 0x0dd8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:01:03.0437 0x0dd8 MsRPC - ok
22:01:03.0467 0x0dd8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:01:03.0527 0x0dd8 mssmbios - ok
22:01:03.0547 0x0dd8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:01:03.0637 0x0dd8 MSTEE - ok
22:01:03.0647 0x0dd8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:01:03.0717 0x0dd8 MTConfig - ok
22:01:03.0747 0x0dd8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
22:01:03.0817 0x0dd8 Mup - ok
22:01:03.0857 0x0dd8 [ 6FFECC25B39DC7652A0CEC0ADA9DB589, 927EF066CBBA8353149F8C3B7C4299AC06FED439DA874D25CFB583E5912611A2 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
22:01:03.0907 0x0dd8 mwlPSDFilter - ok
22:01:03.0947 0x0dd8 [ 0BEFE32CA56D6EE89D58175725596A85, E36B9E6159AF7F67D549F7178896CCCB8FC3964531B1DA20CBDD465E632D8FCF ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
22:01:03.0977 0x0dd8 mwlPSDNServ - ok
22:01:04.0007 0x0dd8 [ D43BC633B8660463E446E28E14A51262, C55F235B5E08FAC6D70B0FAC737D714E318A93F8E43FF8095B86A76559AF211D ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
22:01:04.0077 0x0dd8 mwlPSDVDisk - ok
22:01:04.0157 0x0dd8 [ 3E5E20817259F7328C8F3BE5421F35B9, 9BF20E1CE75647BF5654AD603BD7D17E36CC0AD15EEAFF4FACE637D235C34190 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
22:01:04.0217 0x0dd8 MWLService - ok
22:01:04.0437 0x0dd8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
22:01:04.0577 0x0dd8 napagent - ok
22:01:04.0647 0x0dd8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:01:04.0757 0x0dd8 NativeWifiP - ok
22:01:04.0847 0x0dd8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
22:01:04.0947 0x0dd8 NDIS - ok
22:01:04.0987 0x0dd8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:01:05.0057 0x0dd8 NdisCap - ok
22:01:05.0077 0x0dd8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:01:05.0177 0x0dd8 NdisTapi - ok
22:01:05.0207 0x0dd8 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:01:05.0287 0x0dd8 Ndisuio - ok
22:01:05.0327 0x0dd8 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:01:05.0407 0x0dd8 NdisWan - ok
22:01:05.0447 0x0dd8 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:01:05.0537 0x0dd8 NDProxy - ok
22:01:05.0567 0x0dd8 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:01:05.0657 0x0dd8 NetBIOS - ok
22:01:05.0747 0x0dd8 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:01:05.0877 0x0dd8 NetBT - ok
22:01:05.0897 0x0dd8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
22:01:05.0927 0x0dd8 Netlogon - ok
22:01:05.0967 0x0dd8 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
22:01:06.0047 0x0dd8 Netman - ok
22:01:06.0107 0x0dd8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:01:06.0237 0x0dd8 NetMsmqActivator - ok
22:01:06.0277 0x0dd8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:01:06.0337 0x0dd8 NetPipeActivator - ok
22:01:06.0507 0x0dd8 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
22:01:06.0637 0x0dd8 netprofm - ok
22:01:06.0667 0x0dd8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:01:06.0707 0x0dd8 NetTcpActivator - ok
22:01:06.0707 0x0dd8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:01:06.0747 0x0dd8 NetTcpPortSharing - ok
22:01:06.0787 0x0dd8 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:01:06.0817 0x0dd8 nfrd960 - ok
22:01:06.0857 0x0dd8 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:01:06.0917 0x0dd8 NlaSvc - ok
22:01:06.0957 0x0dd8 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:01:07.0047 0x0dd8 Npfs - ok
22:01:07.0087 0x0dd8 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
22:01:07.0217 0x0dd8 nsi - ok
22:01:07.0247 0x0dd8 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:01:07.0347 0x0dd8 nsiproxy - ok
22:01:07.0467 0x0dd8 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:01:07.0647 0x0dd8 Ntfs - ok
22:01:07.0797 0x0dd8 [ 9A308FCDCCA98A15B6F62D36A272160E, 3991F70D42C1949067ED48CF4EB815E06360B077F6A2369AC76BF0892C3C33EE ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
22:01:07.0867 0x0dd8 NTI IScheduleSvc - ok
22:01:07.0907 0x0dd8 [ 28C59F594044CBF8598B18C927097091, 7B7633A9BCB1E0A3F89DD697C296D77955907DCF239B4B9D155AD7B90F2A1E7A ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
22:01:07.0947 0x0dd8 NTIBackupSvc - ok
22:01:07.0997 0x0dd8 [ 710263B44C1D1AEE07525A53401FBE48, 9E30D956099F42A7F8125664E671AEE49A6EDE0C2B717EC9B4488556A386FA21 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
22:01:08.0047 0x0dd8 NTIDrvr - ok
22:01:08.0127 0x0dd8 [ B8D903B2894FF9AFBD99CA51C35590D7, AAC96724781EC5A715CEF85C65D4AE15283522D3F19020FC456BA0F73BAA22F9 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
22:01:08.0217 0x0dd8 NTISchedulerSvc - ok
22:01:08.0247 0x0dd8 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
22:01:08.0397 0x0dd8 Null - ok
22:01:08.0437 0x0dd8 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:01:08.0497 0x0dd8 nvraid - ok
22:01:08.0577 0x0dd8 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:01:08.0627 0x0dd8 nvstor - ok
22:01:08.0657 0x0dd8 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:01:08.0707 0x0dd8 nv_agp - ok
22:01:08.0877 0x0dd8 [ BA7DAC1B8A86D9402C3E04E1FCAA600D, 20DB46EA6D7FA2AEEDCF6D88E6E07D75219E14AFFD60D76D0A066429B34F7033 ] ODDPwrSvc C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
22:01:08.0937 0x0dd8 ODDPwrSvc - ok
22:01:08.0977 0x0dd8 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:01:09.0037 0x0dd8 ohci1394 - ok
22:01:09.0117 0x0dd8 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:01:09.0187 0x0dd8 ose - ok
22:01:09.0937 0x0dd8 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:01:10.0187 0x0dd8 osppsvc - ok
22:01:10.0327 0x0dd8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:01:10.0447 0x0dd8 p2pimsvc - ok
22:01:10.0507 0x0dd8 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
22:01:10.0637 0x0dd8 p2psvc - ok
22:01:10.0687 0x0dd8 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:01:10.0767 0x0dd8 Parport - ok
22:01:10.0807 0x0dd8 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:01:10.0847 0x0dd8 partmgr - ok
22:01:10.0867 0x0dd8 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
22:01:10.0937 0x0dd8 PcaSvc - ok
22:01:10.0967 0x0dd8 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
22:01:11.0027 0x0dd8 pci - ok
22:01:11.0097 0x0dd8 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
22:01:11.0137 0x0dd8 pciide - ok
22:01:11.0157 0x0dd8 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:01:11.0197 0x0dd8 pcmcia - ok
22:01:11.0217 0x0dd8 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
22:01:11.0257 0x0dd8 pcw - ok
22:01:11.0297 0x0dd8 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:01:11.0427 0x0dd8 PEAUTH - ok
22:01:11.0677 0x0dd8 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:01:11.0747 0x0dd8 PerfHost - ok
22:01:11.0877 0x0dd8 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
22:01:12.0147 0x0dd8 pla - ok
22:01:12.0247 0x0dd8 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:01:12.0407 0x0dd8 PlugPlay - ok
22:01:12.0437 0x0dd8 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:01:12.0487 0x0dd8 PNRPAutoReg - ok
22:01:12.0517 0x0dd8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:01:12.0577 0x0dd8 PNRPsvc - ok
22:01:12.0657 0x0dd8 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:01:12.0787 0x0dd8 PolicyAgent - ok
22:01:12.0807 0x0dd8 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
22:01:12.0887 0x0dd8 Power - ok
22:01:12.0947 0x0dd8 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:01:13.0087 0x0dd8 PptpMiniport - ok
22:01:13.0127 0x0dd8 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:01:13.0237 0x0dd8 Processor - ok
22:01:13.0357 0x0dd8 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
22:01:13.0447 0x0dd8 ProfSvc - ok
22:01:13.0457 0x0dd8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:01:13.0497 0x0dd8 ProtectedStorage - ok
22:01:13.0587 0x0dd8 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:01:13.0687 0x0dd8 Psched - ok
22:01:13.0827 0x0dd8 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:01:13.0997 0x0dd8 ql2300 - ok
22:01:14.0027 0x0dd8 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:01:14.0067 0x0dd8 ql40xx - ok
22:01:14.0137 0x0dd8 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
22:01:14.0227 0x0dd8 QWAVE - ok
22:01:14.0247 0x0dd8 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:01:14.0307 0x0dd8 QWAVEdrv - ok
22:01:14.0337 0x0dd8 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:01:14.0427 0x0dd8 RasAcd - ok
22:01:14.0477 0x0dd8 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:01:14.0607 0x0dd8 RasAgileVpn - ok
22:01:14.0677 0x0dd8 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
22:01:14.0827 0x0dd8 RasAuto - ok
22:01:14.0867 0x0dd8 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:01:14.0967 0x0dd8 Rasl2tp - ok
22:01:15.0027 0x0dd8 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
22:01:15.0107 0x0dd8 RasMan - ok
22:01:15.0107 0x0dd8 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:01:15.0187 0x0dd8 RasPppoe - ok
22:01:15.0227 0x0dd8 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:01:15.0327 0x0dd8 RasSstp - ok
22:01:15.0457 0x0dd8 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:01:15.0597 0x0dd8 rdbss - ok
22:01:15.0627 0x0dd8 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:01:15.0667 0x0dd8 rdpbus - ok
22:01:15.0697 0x0dd8 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:01:15.0767 0x0dd8 RDPCDD - ok
22:01:15.0797 0x0dd8 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:01:15.0887 0x0dd8 RDPENCDD - ok
22:01:15.0907 0x0dd8 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:01:15.0987 0x0dd8 RDPREFMP - ok
22:01:16.0017 0x0dd8 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:01:16.0067 0x0dd8 RDPWD - ok
22:01:16.0117 0x0dd8 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:01:16.0197 0x0dd8 rdyboost - ok
22:01:16.0247 0x0dd8 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:01:16.0337 0x0dd8 RemoteAccess - ok
22:01:16.0357 0x0dd8 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:01:16.0437 0x0dd8 RemoteRegistry - ok
22:01:16.0477 0x0dd8 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:01:16.0537 0x0dd8 RFCOMM - ok
22:01:16.0607 0x0dd8 [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
22:01:16.0717 0x0dd8 RichVideo - detected UnsignedFile.Multi.Generic ( 1 )
22:01:19.0607 0x0dd8 Detect skipped due to KSN trusted
22:01:19.0607 0x0dd8 RichVideo - ok
22:01:19.0657 0x0dd8 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:01:19.0847 0x0dd8 RpcEptMapper - ok
22:01:19.0887 0x0dd8 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
22:01:19.0957 0x0dd8 RpcLocator - ok
22:01:20.0017 0x0dd8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
22:01:20.0167 0x0dd8 RpcSs - ok
22:01:20.0217 0x0dd8 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:01:20.0357 0x0dd8 rspndr - ok
22:01:20.0447 0x0dd8 [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
22:01:20.0527 0x0dd8 RS_Service - ok
22:01:20.0557 0x0dd8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
22:01:20.0597 0x0dd8 SamSs - ok
22:01:20.0697 0x0dd8 [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:01:20.0747 0x0dd8 SASDIFSV - ok
22:01:20.0797 0x0dd8 [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:01:20.0847 0x0dd8 SASKUTIL - ok
22:01:20.0897 0x0dd8 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:01:20.0957 0x0dd8 sbp2port - ok
22:01:21.0007 0x0dd8 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:01:21.0167 0x0dd8 SCardSvr - ok
22:01:21.0217 0x0dd8 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:01:21.0317 0x0dd8 scfilter - ok
22:01:21.0547 0x0dd8 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
22:01:21.0687 0x0dd8 Schedule - ok
22:01:21.0767 0x0dd8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:01:21.0847 0x0dd8 SCPolicySvc - ok
22:01:21.0877 0x0dd8 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:01:21.0957 0x0dd8 SDRSVC - ok
22:01:22.0297 0x0dd8 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
22:01:22.0507 0x0dd8 SDScannerService - ok
22:01:22.0697 0x0dd8 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
22:01:22.0927 0x0dd8 SDUpdateService - ok
22:01:23.0027 0x0dd8 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
22:01:23.0077 0x0dd8 SDWSCService - ok
22:01:23.0117 0x0dd8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:01:23.0247 0x0dd8 secdrv - ok
22:01:23.0307 0x0dd8 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
22:01:23.0437 0x0dd8 seclogon - ok
22:01:23.0497 0x0dd8 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
22:01:23.0617 0x0dd8 SENS - ok
22:01:23.0647 0x0dd8 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:01:23.0727 0x0dd8 SensrSvc - ok
22:01:23.0747 0x0dd8 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:01:23.0827 0x0dd8 Serenum - ok
22:01:23.0857 0x0dd8 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:01:23.0927 0x0dd8 Serial - ok
22:01:23.0987 0x0dd8 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:01:24.0067 0x0dd8 sermouse - ok
22:01:24.0117 0x0dd8 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
22:01:24.0267 0x0dd8 SessionEnv - ok
22:01:24.0387 0x0dd8 settings - ok
22:01:24.0457 0x0dd8 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:01:24.0577 0x0dd8 sffdisk - ok
22:01:24.0597 0x0dd8 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:01:24.0667 0x0dd8 sffp_mmc - ok
22:01:24.0687 0x0dd8 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:01:24.0757 0x0dd8 sffp_sd - ok
22:01:24.0817 0x0dd8 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:01:24.0887 0x0dd8 sfloppy - ok
22:01:24.0957 0x0dd8 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:01:25.0087 0x0dd8 SharedAccess - ok
22:01:25.0177 0x0dd8 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:01:25.0287 0x0dd8 ShellHWDetection - ok
22:01:25.0327 0x0dd8 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:01:25.0387 0x0dd8 SiSRaid2 - ok
22:01:25.0407 0x0dd8 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:01:25.0457 0x0dd8 SiSRaid4 - ok
22:01:25.0517 0x0dd8 [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:01:25.0627 0x0dd8 SkypeUpdate - ok
22:01:25.0697 0x0dd8 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:01:25.0807 0x0dd8 Smb - ok
22:01:25.0877 0x0dd8 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:01:25.0997 0x0dd8 SNMPTRAP - ok
22:01:26.0017 0x0dd8 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
22:01:26.0047 0x0dd8 spldr - ok
22:01:26.0167 0x0dd8 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
22:01:26.0307 0x0dd8 Spooler - ok
22:01:27.0077 0x0dd8 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
22:01:27.0367 0x0dd8 sppsvc - ok
22:01:27.0407 0x0dd8 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:01:27.0537 0x0dd8 sppuinotify - ok
22:01:27.0637 0x0dd8 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
22:01:27.0767 0x0dd8 srv - ok
22:01:27.0817 0x0dd8 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:01:27.0927 0x0dd8 srv2 - ok
22:01:28.0027 0x0dd8 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:01:28.0157 0x0dd8 srvnet - ok
22:01:28.0207 0x0dd8 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:01:28.0367 0x0dd8 SSDPSRV - ok
22:01:28.0387 0x0dd8 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:01:28.0517 0x0dd8 SstpSvc - ok
22:01:28.0547 0x0dd8 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:01:28.0617 0x0dd8 stexstor - ok
22:01:28.0777 0x0dd8 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
22:01:28.0917 0x0dd8 stisvc - ok
22:01:28.0957 0x0dd8 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
22:01:29.0007 0x0dd8 swenum - ok
22:01:29.0067 0x0dd8 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
22:01:29.0237 0x0dd8 swprv - ok
22:01:29.0297 0x0dd8 [ CE9B5A79AEE330BC7E88C0441E5727BB, 315A6803DCAD670BDC30C74CC1040D73DA9B617C32F5B42FB09ABD549FCA4AE0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:01:29.0387 0x0dd8 SynTP - ok
22:01:29.0597 0x0dd8 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
22:01:29.0757 0x0dd8 SysMain - ok
22:01:29.0817 0x0dd8 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:01:29.0907 0x0dd8 TabletInputService - ok
22:01:29.0967 0x0dd8 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
22:01:30.0067 0x0dd8 TapiSrv - ok
22:01:30.0087 0x0dd8 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
22:01:30.0177 0x0dd8 TBS - ok
22:01:30.0317 0x0dd8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:01:30.0457 0x0dd8 Tcpip - ok
22:01:30.0527 0x0dd8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:01:30.0627 0x0dd8 TCPIP6 - ok
22:01:30.0677 0x0dd8 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:01:30.0697 0x0dd8 tcpipreg - ok
22:01:30.0727 0x0dd8 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:01:30.0807 0x0dd8 TDPIPE - ok
22:01:30.0847 0x0dd8 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:01:30.0917 0x0dd8 TDTCP - ok
22:01:30.0967 0x0dd8 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:01:31.0077 0x0dd8 tdx - ok
22:01:31.0127 0x0dd8 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
22:01:31.0167 0x0dd8 TermDD - ok
22:01:31.0237 0x0dd8 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
22:01:31.0387 0x0dd8 TermService - ok
22:01:31.0427 0x0dd8 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
22:01:31.0517 0x0dd8 Themes - ok
22:01:31.0547 0x0dd8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
22:01:31.0607 0x0dd8 THREADORDER - ok
22:01:32.0697 0x0dd8 [ 506B0B498216371D64ABB69145B70E4C, 94FE0E8A61C506FBA45D14571A14DC259E1D52778CEF8366CE8CBDCD871E28DB ] tor C:\Program Files (x86)\Tor\tor.exe
22:01:32.0917 0x0dd8 tor - detected UnsignedFile.Multi.Generic ( 1 )
22:01:35.0787 0x0dd8 Detect skipped due to KSN trusted
22:01:35.0787 0x0dd8 tor - ok
22:01:35.0827 0x0dd8 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
22:01:35.0947 0x0dd8 TrkWks - ok
22:01:36.0037 0x0dd8 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:01:36.0177 0x0dd8 TrustedInstaller - ok
22:01:36.0217 0x0dd8 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:01:36.0287 0x0dd8 tssecsrv - ok
22:01:36.0357 0x0dd8 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:01:36.0447 0x0dd8 TsUsbFlt - ok
22:01:36.0517 0x0dd8 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:01:36.0637 0x0dd8 tunnel - ok
22:01:36.0697 0x0dd8 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:01:36.0747 0x0dd8 uagp35 - ok
22:01:36.0757 0x0dd8 [ 40079B0B801C5432BA435B5AD61CE6E3, 709EFA377470234DE21B03AB50A70C9E9DA8F3D22F026D80340EC69C21595892 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
22:01:36.0807 0x0dd8 UBHelper - ok
22:01:36.0857 0x0dd8 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:01:37.0007 0x0dd8 udfs - ok
22:01:37.0047 0x0dd8 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:01:37.0117 0x0dd8 UI0Detect - ok
22:01:37.0147 0x0dd8 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:01:37.0177 0x0dd8 uliagpkx - ok
22:01:37.0207 0x0dd8 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
22:01:37.0277 0x0dd8 umbus - ok
22:01:37.0307 0x0dd8 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:01:37.0347 0x0dd8 UmPass - ok
22:01:37.0547 0x0dd8 [ 41118D920B2B268C0ADC36421248CDCF, 4F99C4913DCFE02B0783FD97F02558E4DD4D7C98553D95A8E26FAAA0C0D67616 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:01:37.0827 0x0dd8 UNS - detected UnsignedFile.Multi.Generic ( 1 )
22:01:40.0717 0x0dd8 Detect skipped due to KSN trusted
22:01:40.0717 0x0dd8 UNS - ok
22:01:40.0757 0x0dd8 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
22:01:40.0947 0x0dd8 upnphost - ok
22:01:41.0027 0x0dd8 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:01:41.0097 0x0dd8 usbaudio - ok
22:01:41.0147 0x0dd8 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:01:41.0247 0x0dd8 usbccgp - ok
22:01:41.0287 0x0dd8 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:01:41.0347 0x0dd8 usbcir - ok
22:01:41.0397 0x0dd8 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:01:41.0487 0x0dd8 usbehci - ok
22:01:41.0537 0x0dd8 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:01:41.0647 0x0dd8 usbhub - ok
22:01:41.0667 0x0dd8 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:01:41.0727 0x0dd8 usbohci - ok
22:01:41.0767 0x0dd8 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:01:41.0837 0x0dd8 usbprint - ok
22:01:41.0897 0x0dd8 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:01:41.0987 0x0dd8 usbscan - ok
22:01:42.0027 0x0dd8 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
22:01:42.0147 0x0dd8 USBSTOR - ok
22:01:42.0167 0x0dd8 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:01:42.0217 0x0dd8 usbuhci - ok
22:01:42.0267 0x0dd8 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
22:01:42.0317 0x0dd8 usbvideo - ok
22:01:42.0357 0x0dd8 [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
22:01:42.0437 0x0dd8 usb_rndisx - ok
22:01:42.0457 0x0dd8 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
22:01:42.0557 0x0dd8 UxSms - ok
22:01:42.0577 0x0dd8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
22:01:42.0607 0x0dd8 VaultSvc - ok
22:01:42.0717 0x0dd8 [ 1352B215BDC5807A5641E7C143796DD7, B54F95307253BB81E4CEE4F2033782210652364DE6A1E833B27ECE7E04A2BD51 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
22:01:42.0797 0x0dd8 VBoxAswDrv - ok
22:01:42.0817 0x0dd8 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:01:42.0857 0x0dd8 vdrvroot - ok
22:01:42.0917 0x0dd8 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
22:01:43.0097 0x0dd8 vds - ok
22:01:43.0177 0x0dd8 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:01:43.0247 0x0dd8 vga - ok
22:01:43.0267 0x0dd8 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:01:43.0357 0x0dd8 VgaSave - ok
22:01:43.0397 0x0dd8 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:01:43.0437 0x0dd8 vhdmp - ok
22:01:43.0497 0x0dd8 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
22:01:43.0537 0x0dd8 viaide - ok
22:01:43.0677 0x0dd8 [ 1B0D441D8AB264D39C2B09130CC28045, 15589A3A30B05AAD35152289AAF42CB792198FD15B55D6A7D5E4C1CE58459680 ] VMCService C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
22:01:43.0727 0x0dd8 VMCService - detected UnsignedFile.Multi.Generic ( 1 )
22:01:46.0597 0x0dd8 Detect skipped due to KSN trusted
22:01:46.0597 0x0dd8 VMCService - ok
22:01:46.0647 0x0dd8 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:01:46.0717 0x0dd8 volmgr - ok
22:01:46.0757 0x0dd8 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:01:46.0807 0x0dd8 volmgrx - ok
22:01:46.0827 0x0dd8 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:01:46.0877 0x0dd8 volsnap - ok
22:01:46.0937 0x0dd8 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:01:46.0987 0x0dd8 vsmraid - ok
22:01:47.0107 0x0dd8 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
22:01:47.0317 0x0dd8 VSS - ok
22:01:47.0347 0x0dd8 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:01:47.0427 0x0dd8 vwifibus - ok
22:01:47.0467 0x0dd8 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:01:47.0517 0x0dd8 vwififlt - ok
22:01:47.0567 0x0dd8 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
22:01:47.0677 0x0dd8 W32Time - ok
22:01:47.0707 0x0dd8 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:01:47.0747 0x0dd8 WacomPen - ok
22:01:47.0787 0x0dd8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:01:47.0857 0x0dd8 WANARP - ok
22:01:47.0887 0x0dd8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:01:47.0937 0x0dd8 Wanarpv6 - ok
22:01:48.0047 0x0dd8 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
22:01:48.0357 0x0dd8 wbengine - ok
22:01:48.0427 0x0dd8 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:01:48.0527 0x0dd8 WbioSrvc - ok
22:01:48.0587 0x0dd8 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:01:48.0747 0x0dd8 wcncsvc - ok
22:01:48.0777 0x0dd8 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:01:48.0847 0x0dd8 WcsPlugInService - ok
22:01:48.0877 0x0dd8 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:01:48.0917 0x0dd8 Wd - ok
22:01:48.0987 0x0dd8 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:01:49.0077 0x0dd8 Wdf01000 - ok
22:01:49.0107 0x0dd8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:01:49.0247 0x0dd8 WdiServiceHost - ok
22:01:49.0257 0x0dd8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:01:49.0307 0x0dd8 WdiSystemHost - ok
22:01:49.0357 0x0dd8 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
22:01:49.0477 0x0dd8 WebClient - ok
22:01:49.0517 0x0dd8 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:01:49.0587 0x0dd8 Wecsvc - ok
22:01:49.0607 0x0dd8 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:01:49.0687 0x0dd8 wercplsupport - ok
22:01:49.0717 0x0dd8 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
22:01:49.0777 0x0dd8 WerSvc - ok
22:01:49.0787 0x0dd8 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:01:49.0867 0x0dd8 WfpLwf - ok
22:01:49.0897 0x0dd8 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:01:49.0917 0x0dd8 WIMMount - ok
22:01:49.0947 0x0dd8 WinDefend - ok
22:01:49.0957 0x0dd8 WinHttpAutoProxySvc - ok
22:01:50.0047 0x0dd8 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:01:50.0207 0x0dd8 Winmgmt - ok
22:01:50.0347 0x0dd8 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
22:01:50.0637 0x0dd8 WinRM - ok
22:01:50.0697 0x0dd8 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:01:50.0757 0x0dd8 WinUsb - ok
22:01:50.0797 0x0dd8 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:01:50.0887 0x0dd8 Wlansvc - ok
22:01:50.0937 0x0dd8 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:01:51.0007 0x0dd8 WmiAcpi - ok
22:01:51.0047 0x0dd8 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:01:51.0137 0x0dd8 wmiApSrv - ok
22:01:51.0157 0x0dd8 WMPNetworkSvc - ok
22:01:51.0167 0x0dd8 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:01:51.0237 0x0dd8 WPCSvc - ok
22:01:51.0277 0x0dd8 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:01:51.0367 0x0dd8 WPDBusEnum - ok
22:01:51.0397 0x0dd8 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:01:51.0497 0x0dd8 ws2ifsl - ok
22:01:51.0537 0x0dd8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
22:01:51.0637 0x0dd8 wscsvc - ok
22:01:51.0647 0x0dd8 WSearch - ok
22:01:51.0797 0x0dd8 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
22:01:52.0037 0x0dd8 wuauserv - ok
22:01:52.0087 0x0dd8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:01:52.0177 0x0dd8 WudfPf - ok
22:01:52.0237 0x0dd8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:01:52.0297 0x0dd8 WUDFRd - ok
22:01:52.0337 0x0dd8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:01:52.0427 0x0dd8 wudfsvc - ok
22:01:52.0477 0x0dd8 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
22:01:52.0617 0x0dd8 WwanSvc - ok
22:01:52.0667 0x0dd8 ================ Scan global ===============================
22:01:52.0707 0x0dd8 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
22:01:52.0757 0x0dd8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:01:52.0787 0x0dd8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:01:52.0827 0x0dd8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:01:52.0867 0x0dd8 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
22:01:52.0887 0x0dd8 [ Global ] - ok
22:01:52.0887 0x0dd8 ================ Scan MBR ==================================
22:01:52.0907 0x0dd8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:01:53.0407 0x0dd8 \Device\Harddisk0\DR0 - ok
22:01:53.0417 0x0dd8 ================ Scan VBR ==================================
22:01:53.0417 0x0dd8 [ 484B90EF01A50CE9D8BEFFB4B26BD896 ] \Device\Harddisk0\DR0\Partition1
22:01:53.0477 0x0dd8 \Device\Harddisk0\DR0\Partition1 - ok
22:01:53.0477 0x0dd8 [ DFAD496DF6C758342F14DE358F14DC01 ] \Device\Harddisk0\DR0\Partition2
22:01:53.0527 0x0dd8 \Device\Harddisk0\DR0\Partition2 - ok
22:01:53.0527 0x0dd8 ================ Scan generic autorun ======================
22:01:54.0007 0x0dd8 [ 63C3AED5744F0BB8884413D19BFDB99A, 84DDF092DDAF6109D6185E86165CE60CD43A03F4B3C2ECAA7B109F17BED43BDB ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:01:54.0577 0x0dd8 RtHDVCpl - ok
22:01:54.0827 0x0dd8 [ 6F8BE1586785892C50D664BEDD906AF2, F9B7CC3DA226D107AB8CF9E6C73871B88B082763DE3EA01B6FE9A60C233BC01B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:01:54.0987 0x0dd8 RtHDVBg - ok
22:01:55.0067 0x0dd8 [ 2C2C3D428E6581CF56A80416AA327425, F4C57B5C2233707B21444C9EB516CD00B07F13B610730ADC0C85E626180D567A ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
22:01:55.0107 0x0dd8 AmIcoSinglun64 - detected UnsignedFile.Multi.Generic ( 1 )
22:01:58.0007 0x0dd8 Detect skipped due to KSN trusted
22:01:58.0007 0x0dd8 AmIcoSinglun64 - ok
22:01:58.0077 0x0dd8 [ A5F30B7295A8D0CE87FDE15FCF9646E1, ECF3B268BB74CFFCC3CEEF4A396D2D9F43561B4AEC70085A0637BE2B44401298 ] C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe
22:01:58.0127 0x0dd8 ODDPwr - ok
22:01:58.0177 0x0dd8 [ 0D6972A795995F07B6D78CA7724744FB, AA5E21F2957CCA7FBB0A2D006054E43BE4992BDEBAAC26A217C741FF36276B1B ] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
22:01:58.0247 0x0dd8 mwlDaemon - ok
22:01:58.0307 0x0dd8 [ 2EC361CC83F0B718DA834A1CF3571F38, CD456DBEDD9A7FE75862A8289CBDD4663263E9F728BFAE6E0492E286BB441AFB ] C:\Windows\system32\igfxtray.exe
22:01:58.0377 0x0dd8 IgfxTray - ok
22:01:58.0397 0x0dd8 [ 48708AA53EE3A697E0B7E429F8A09663, 1A1F6E86BA8033D6A43E1EEAA9104C5C1F20BFA089AE86212B341EBCAC4859B7 ] C:\Windows\system32\hkcmd.exe
22:01:58.0467 0x0dd8 HotKeysCmds - ok
22:01:58.0507 0x0dd8 [ 0B8DF7C18D4CC7B3D14CE9C3411038AB, 2922BCF795123758CD1999FC3B739EE1AEA09FED10A817E8BA94CE418BDE2CB6 ] C:\Windows\system32\igfxpers.exe
22:01:58.0587 0x0dd8 Persistence - ok
22:01:58.0587 0x0dd8 SynTPEnh - ok
22:01:58.0697 0x0dd8 [ 147B96A5AEA8CEF3A34D8E378EAAA9B2, AC60E8184AC0DF277C26617AAD06F13A315B459AE47D9093161FB3DD652195B1 ] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
22:01:58.0787 0x0dd8 Acer ePower Management - ok
22:01:58.0827 0x0dd8 [ 25107F58D1B8F60D67D1EE95798C0DE8, C3B5205E8818576EBF33E3B9FD8664A498714B823D9128FC1CA0A64F81499263 ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
22:01:58.0877 0x0dd8 IAStorIcon - ok
22:01:58.0917 0x0dd8 [ AF7DE2922E01EFA48BF5F2A8511CF896, C0488146EC4600DBD9BF35C3C2DAE38714A4AEBB5341539237CAD1B3BBED3051 ] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
22:01:58.0967 0x0dd8 SuiteTray - ok
22:01:59.0017 0x0dd8 [ F255E48EA981E943A14CF16269F3F3AF, DDA7829AE5D4E2EC0CB11581F4CB3AA70366021BFB70B678A54D050F2EEC0F4B ] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
22:01:59.0067 0x0dd8 EgisUpdate - ok
22:01:59.0097 0x0dd8 [ 0ADF079D36B2C25E6E9BECE1BD937ACE, E90188F60B942A9A7586E39DDE3871B1ED9D5F4D32AB70297CBE69B465609BEE ] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
22:01:59.0147 0x0dd8 EgisTecPMMUpdate - ok
22:01:59.0197 0x0dd8 [ 94F80155B91B8DF7A0EAD527C853D377, 3E35B686DB526592F2ABF4B3E6EAACE1E784A5552C1CE074E85661388E66C153 ] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
22:01:59.0257 0x0dd8 BackupManagerTray - ok
22:01:59.0357 0x0dd8 [ 38218E47372B77DDB3C9DDD4390CB960, C665FCFE08A4C1F9C3FBA73A220AAB7344C2BF203B62FAB76EF1F659A78F007C ] C:\Program Files (x86)\Launch Manager\LManager.exe
22:01:59.0517 0x0dd8 LManager - ok
22:01:59.0607 0x0dd8 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe
22:01:59.0657 0x0dd8 MDS_Menu - ok
22:01:59.0697 0x0dd8 [ 506FCC5EEE85B165498513022EF26E65, 0DB381917F22158F87A4B58B683320985C654E0F203E57D255F464C57E26631A ] C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
22:01:59.0747 0x0dd8 ArcadeMovieService - ok
22:01:59.0877 0x0dd8 [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:01:59.0967 0x0dd8 Adobe ARM - ok
22:02:00.0097 0x0dd8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:02:00.0317 0x0dd8 Sidebar - ok
22:02:00.0357 0x0dd8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:02:00.0437 0x0dd8 mctadmin - ok
22:02:00.0477 0x0dd8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:02:00.0557 0x0dd8 Sidebar - ok
22:02:00.0567 0x0dd8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:02:00.0597 0x0dd8 mctadmin - ok
22:02:00.0717 0x0dd8 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
22:02:00.0887 0x0dd8 Sidebar - ok
22:02:00.0997 0x0dd8 [ BAD6C301B193809BBFA4A38F3D184628, F85AB67E4072E0BB6132856318F5D8595FA1E395C869DC0B41BFDA1A731F83B7 ] C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe
22:02:00.0997 0x0dd8 Suspicious file ( NoAccess ): C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe. md5: BAD6C301B193809BBFA4A38F3D184628, sha256: F85AB67E4072E0BB6132856318F5D8595FA1E395C869DC0B41BFDA1A731F83B7
22:02:01.0007 0x0dd8 nlsluhxz - detected LockedFile.Multi.Generic ( 1 )
22:02:03.0907 0x0dd8 Detect turned to UDS exact due to KSN untrusted
22:02:03.0997 0x0dd8 nlsluhxz ( UDS:DangerousObject.Multi.Generic ) - infected
22:02:03.0997 0x0dd8 Force sending object to P2P due to detect: C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe
22:02:06.0967 0x0dd8 Object send P2P result: true
22:02:09.0887 0x0dd8 [ B3FD7BE5ACA41067CC8AC0BCD64455A9, F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695 ] C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
22:02:09.0887 0x0dd8 Suspicious file ( NoAccess ): C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe. md5: B3FD7BE5ACA41067CC8AC0BCD64455A9, sha256: F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695
22:02:09.0887 0x0dd8 poet-tear - detected LockedFile.Multi.Generic ( 1 )
22:02:12.0787 0x0dd8 Detect turned to UDS exact due to KSN untrusted
22:02:12.0787 0x0dd8 poet-tear ( UDS:DangerousObject.Multi.Generic ) - infected
22:02:12.0787 0x0dd8 Force sending object to P2P due to detect: C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
22:02:22.0507 0x0dd8 Object send P2P result: true
22:02:25.0337 0x0dd8 audience-scratch - ok
22:02:25.0517 0x0dd8 courage-adjust - ok
22:02:25.0867 0x0dd8 [ 69CFED513B87D6FE10DBE421708501B3, DE7F8F22EB5C88DF11C51E5FD69A18EDAFDA6873AAFFBC5BD134DC67E2E75813 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
22:02:26.0327 0x0dd8 SUPERAntiSpyware - ok
22:02:26.0637 0x0dd8 [ B1949628130F192DA27FDBAEA516BB6E, 13E5A2EBF0FDAB29CEA1E7FAEB3141233198D9A28353BDBB6FDB03602BE32AC6 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
22:02:26.0907 0x0dd8 Spybot-S&D Cleaning - ok
22:02:27.0047 0x0dd8 [ B3FD7BE5ACA41067CC8AC0BCD64455A9, F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695 ] C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
22:02:27.0057 0x0dd8 Suspicious file ( NoAccess ): C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe. md5: B3FD7BE5ACA41067CC8AC0BCD64455A9, sha256: F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695
22:02:27.0057 0x0dd8 poet-tear - detected LockedFile.Multi.Generic ( 1 )
22:02:27.0057 0x0dd8 Detect turned to UDS exact due to KSN untrusted
22:02:27.0057 0x0dd8 poet-tear ( UDS:DangerousObject.Multi.Generic ) - infected
22:02:27.0057 0x0dd8 Force sending object to P2P due to detect: C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
22:02:34.0117 0x0dd8 Object send P2P result: true
22:02:37.0567 0x0dd8 [ 7999235AE6A9F0FE1C007203F03A4618, D552A169E7E5EC43B675120F11E6A1790902C4068FAAFC2DE81DDB5FA50F18E8 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe
22:02:37.0637 0x0dd8 FlashPlayerUpdate - ok
22:02:37.0647 0x0dd8 Waiting for KSN requests completion. In queue: 1
22:02:38.0647 0x0dd8 Waiting for KSN requests completion. In queue: 1
22:02:39.0647 0x0dd8 Waiting for KSN requests completion. In queue: 1
22:02:40.0727 0x0dd8 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
22:02:40.0767 0x0dd8 Win FW state via NFP2: enabled
22:02:43.0557 0x0dd8 ============================================================
22:02:43.0557 0x0dd8 Scan finished
22:02:43.0557 0x0dd8 ============================================================
22:02:43.0577 0x1488 Detected object count: 3
22:02:43.0577 0x1488 Actual detected object count: 3
22:04:02.0077 0x1488 nlsluhxz ( UDS:DangerousObject.Multi.Generic ) - skipped by user
22:04:02.0077 0x1488 nlsluhxz ( UDS:DangerousObject.Multi.Generic ) - User select action: Skip
22:04:02.0077 0x1488 poet-tear ( UDS:DangerousObject.Multi.Generic ) - skipped by user
22:04:02.0077 0x1488 poet-tear ( UDS:DangerousObject.Multi.Generic ) - User select action: Skip
22:04:02.0077 0x1488 poet-tear ( UDS:DangerousObject.Multi.Generic ) - skipped by user
22:04:02.0077 0x1488 poet-tear ( UDS:DangerousObject.Multi.Generic ) - User select action: Skip
22:04:37.0687 0x12b0 Deinitialize success
|
Baum-Darstellung