| |
| |||||||
Log-Analyse und Auswertung: C:\Windows\SysWOW64\cleanmgr.exe wurde blockiertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
03.01.2015, 12:16
| #10 |
 |  C:\Windows\SysWOW64\cleanmgr.exe wurde blockiert Hallo Schrauber, hier nun die neue TDSSKiller.log Code:
ATTFilter 12:01:59.0502 0x1a88 TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
12:02:05.0773 0x1a88 ============================================================
12:02:05.0773 0x1a88 Current date / time: 2015/01/03 12:02:05.0773
12:02:05.0773 0x1a88 SystemInfo:
12:02:05.0773 0x1a88
12:02:05.0773 0x1a88 OS Version: 6.1.7601 ServicePack: 1.0
12:02:05.0773 0x1a88 Product type: Workstation
12:02:05.0773 0x1a88 ComputerName: *****-PC
12:02:05.0773 0x1a88 UserName: *****
12:02:05.0773 0x1a88 Windows directory: C:\Windows
12:02:05.0773 0x1a88 System windows directory: C:\Windows
12:02:05.0773 0x1a88 Running under WOW64
12:02:05.0773 0x1a88 Processor architecture: Intel x64
12:02:05.0773 0x1a88 Number of processors: 4
12:02:05.0773 0x1a88 Page size: 0x1000
12:02:05.0773 0x1a88 Boot type: Normal boot
12:02:05.0773 0x1a88 ============================================================
12:02:06.0007 0x1a88 KLMD registered as C:\Windows\system32\drivers\91709247.sys
12:02:06.0475 0x1a88 System UUID: {604D0E78-24CB-04A7-CFCE-9554F14D1DA1}
12:02:07.0068 0x1a88 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:02:07.0084 0x1a88 ============================================================
12:02:07.0084 0x1a88 \Device\Harddisk0\DR0:
12:02:07.0084 0x1a88 MBR partitions:
12:02:07.0084 0x1a88 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C00800, BlocksNum 0x32000
12:02:07.0084 0x1a88 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C32800, BlocksNum 0x237FB800
12:02:07.0084 0x1a88 ============================================================
12:02:07.0115 0x1a88 C: <-> \Device\Harddisk0\DR0\Partition2
12:02:07.0115 0x1a88 ============================================================
12:02:07.0115 0x1a88 Initialize success
12:02:07.0115 0x1a88 ============================================================
12:03:26.0372 0x15a4 ============================================================
12:03:26.0372 0x15a4 Scan started
12:03:26.0372 0x15a4 Mode: Manual; SigCheck; TDLFS;
12:03:26.0372 0x15a4 ============================================================
12:03:26.0372 0x15a4 KSN ping started
12:03:29.0180 0x15a4 KSN ping finished: true
12:03:29.0913 0x15a4 ================ Scan system memory ========================
12:03:29.0913 0x15a4 System memory - ok
12:03:29.0913 0x15a4 ================ Scan services =============================
12:03:30.0053 0x15a4 [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
12:03:30.0163 0x15a4 !SASCORE - ok
12:03:30.0381 0x15a4 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:03:30.0459 0x15a4 1394ohci - ok
12:03:30.0537 0x15a4 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:03:30.0599 0x15a4 ACPI - ok
12:03:30.0646 0x15a4 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:03:30.0709 0x15a4 AcpiPmi - ok
12:03:30.0849 0x15a4 [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:03:30.0896 0x15a4 AdobeARMservice - ok
12:03:31.0067 0x15a4 [ 749F94C424524285DCDA84D695ABC12F, E5AD194AF5B8B4FDB3976D3E3F9EF942DECFEC4EBAA9881A8EF7707BB781E4AD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:03:31.0114 0x15a4 AdobeFlashPlayerUpdateSvc - ok
12:03:31.0161 0x15a4 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:03:31.0208 0x15a4 adp94xx - ok
12:03:31.0223 0x15a4 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:03:31.0255 0x15a4 adpahci - ok
12:03:31.0286 0x15a4 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:03:31.0301 0x15a4 adpu320 - ok
12:03:31.0333 0x15a4 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:03:31.0395 0x15a4 AeLookupSvc - ok
12:03:31.0457 0x15a4 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
12:03:31.0504 0x15a4 AFD - ok
12:03:31.0535 0x15a4 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
12:03:31.0582 0x15a4 agp440 - ok
12:03:31.0613 0x15a4 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
12:03:31.0660 0x15a4 ALG - ok
12:03:31.0707 0x15a4 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
12:03:31.0738 0x15a4 aliide - ok
12:03:31.0785 0x15a4 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
12:03:31.0832 0x15a4 amdide - ok
12:03:31.0847 0x15a4 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:03:31.0894 0x15a4 AmdK8 - ok
12:03:31.0910 0x15a4 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:03:31.0941 0x15a4 AmdPPM - ok
12:03:31.0972 0x15a4 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:03:32.0003 0x15a4 amdsata - ok
12:03:32.0035 0x15a4 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:03:32.0081 0x15a4 amdsbs - ok
12:03:32.0097 0x15a4 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:03:32.0128 0x15a4 amdxata - ok
12:03:32.0159 0x15a4 [ 391887990CDAA83DE5C56C3FDE966DA1, BC55E21E03B3FE7BBDBB13D56AADB8FBA74F58521AC73B105AD9788E7AE18F0B ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
12:03:32.0191 0x15a4 AmUStor - ok
12:03:32.0378 0x15a4 [ 051A7A9C035BBAB779E2C96E65C32600, 22B9FB02A24A64F8CD2C99BAA3AC0CD4ABD42FBAD495EBB2CE24504A1E44A184 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
12:03:32.0456 0x15a4 AntiVirWebService - ok
12:03:32.0534 0x15a4 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
12:03:32.0612 0x15a4 AppID - ok
12:03:32.0643 0x15a4 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:03:32.0690 0x15a4 AppIDSvc - ok
12:03:32.0737 0x15a4 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
12:03:32.0768 0x15a4 Appinfo - ok
12:03:32.0893 0x15a4 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
12:03:32.0924 0x15a4 arc - ok
12:03:32.0955 0x15a4 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:03:32.0971 0x15a4 arcsas - ok
12:03:33.0111 0x15a4 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:03:33.0142 0x15a4 aspnet_state - ok
12:03:33.0220 0x15a4 [ 9BE9F2B83DE80E2752B1405CC427E2EC, 6015CA66553B3B882083B33F24FB338249A110D9769831C3D3D3C681AAFA9411 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
12:03:33.0267 0x15a4 aswHwid - ok
12:03:33.0298 0x15a4 [ 2DA1C1AEDF454F8E32A863A1AEACDD8C, F02E4D197AE00B9A9507CF6007A7B7BEA54AF0F255B752FBA7174FA2596D1CA9 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
12:03:33.0329 0x15a4 aswMonFlt - ok
12:03:33.0392 0x15a4 [ 4750016EF9CC1DEC6DA3FE5AF9A7F095, C4CF46246D8A3FF9BD8D2FE899685654ADD45EB9B032F33804D0B8131882BC74 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
12:03:33.0423 0x15a4 aswRdr - ok
12:03:33.0501 0x15a4 [ 1323269A92645705DEFA053F3596829D, 83EC58E0577A1E45D1FCBC0C0AF182099FB70B9005B9F8161166EBB4E9F58F35 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
12:03:33.0532 0x15a4 aswRvrt - ok
12:03:33.0626 0x15a4 [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
12:03:33.0688 0x15a4 aswSnx - ok
12:03:33.0719 0x15a4 [ B1881A01E301990B671694CA1623F1B6, 5299C713EA7CF96F0550943DB37E963CDA09258F65C471CCEEAB44C4736B7A08 ] aswSP C:\Windows\system32\drivers\aswSP.sys
12:03:33.0766 0x15a4 aswSP - ok
12:03:33.0797 0x15a4 [ 7509F07BA6F84C1E3B2C0D78A1F6F782, A90A36E8E23F58E430DE98B3623688DC09D34B62906EF7796DFC90F581FC385F ] aswStm C:\Windows\system32\drivers\aswStm.sys
12:03:33.0829 0x15a4 aswStm - ok
12:03:33.0860 0x15a4 [ 1A5BDDE65B648DC3AD48B6ECAA3AE9C8, 858F674C3B775F9C8C782B7AFAC0B02AE9410C9F3B7F5B3AE1C4AD3BF6448C14 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
12:03:33.0922 0x15a4 aswVmm - ok
12:03:33.0953 0x15a4 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:03:34.0000 0x15a4 AsyncMac - ok
12:03:34.0078 0x15a4 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
12:03:34.0109 0x15a4 atapi - ok
12:03:34.0203 0x15a4 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:03:34.0343 0x15a4 AudioEndpointBuilder - ok
12:03:34.0375 0x15a4 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:03:34.0453 0x15a4 AudioSrv - ok
12:03:34.0546 0x15a4 [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:03:34.0593 0x15a4 avast! Antivirus - ok
12:03:34.0827 0x15a4 [ 4F4EBF6163D3A02D52A66BBD145B0069, 179B2FD2671F6BB8D3F77B39001F546A0DEBE85BFF9782060AF1DC50DFA071EF ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
12:03:35.0077 0x15a4 AvastVBoxSvc - ok
12:03:35.0201 0x15a4 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:03:35.0264 0x15a4 AxInstSV - ok
12:03:35.0342 0x15a4 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:03:35.0420 0x15a4 b06bdrv - ok
12:03:35.0451 0x15a4 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:03:35.0498 0x15a4 b57nd60a - ok
12:03:35.0701 0x15a4 [ 2D659B569A76CDB83B815675A80D7096, 8246BD350017B6CBADA4BBDBAB8B708B0A8F1AD5ADD4B2DE1BA610B4A188C262 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
12:03:35.0935 0x15a4 BCM43XX - ok
12:03:35.0981 0x15a4 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
12:03:36.0028 0x15a4 BDESVC - ok
12:03:36.0059 0x15a4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
12:03:36.0106 0x15a4 Beep - ok
12:03:36.0215 0x15a4 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
12:03:36.0309 0x15a4 BFE - ok
12:03:36.0387 0x15a4 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
12:03:36.0512 0x15a4 BITS - ok
12:03:36.0559 0x15a4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:03:36.0590 0x15a4 blbdrive - ok
12:03:36.0621 0x15a4 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:03:36.0652 0x15a4 bowser - ok
12:03:36.0668 0x15a4 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:03:36.0699 0x15a4 BrFiltLo - ok
12:03:36.0715 0x15a4 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:03:36.0746 0x15a4 BrFiltUp - ok
12:03:36.0793 0x15a4 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
12:03:36.0855 0x15a4 Browser - ok
12:03:36.0886 0x15a4 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:03:36.0964 0x15a4 Brserid - ok
12:03:36.0995 0x15a4 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:03:37.0027 0x15a4 BrSerWdm - ok
12:03:37.0027 0x15a4 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:03:37.0058 0x15a4 BrUsbMdm - ok
12:03:37.0073 0x15a4 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:03:37.0089 0x15a4 BrUsbSer - ok
12:03:37.0167 0x15a4 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
12:03:37.0214 0x15a4 BthEnum - ok
12:03:37.0245 0x15a4 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:03:37.0307 0x15a4 BTHMODEM - ok
12:03:37.0354 0x15a4 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
12:03:37.0417 0x15a4 BthPan - ok
12:03:37.0448 0x15a4 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
12:03:37.0510 0x15a4 BTHPORT - ok
12:03:37.0541 0x15a4 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
12:03:37.0635 0x15a4 bthserv - ok
12:03:37.0666 0x15a4 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
12:03:37.0697 0x15a4 BTHUSB - ok
12:03:37.0744 0x15a4 [ 73A1C54749FE4F0019241E36C796AB86, B7E6217F699469DDD76751FBACD25AE9AF56A63FAA8F3C7E0A3FAADA2030AB94 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
12:03:37.0822 0x15a4 btwampfl - ok
12:03:37.0853 0x15a4 [ 1872074ED0A3FB22E3F1E3197B984BFA, 112F289BFE63B46D1E007E3C6761B5C5C8F499B6638CE896DF528FDDBBC1EA12 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
12:03:37.0900 0x15a4 btwaudio - ok
12:03:37.0931 0x15a4 [ 691CF076C33AB1C3A5B2FD5450300733, C2C943D42B0A135BD255FA8985A00D36B0DD91546291E2D819FACE7C0B08287D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
12:03:37.0978 0x15a4 btwavdt - ok
12:03:38.0087 0x15a4 [ 4E6AC6475EF653BDFFDA67A74B9591D8, 2F13D29BF48D2E982AF0BA4F3B6C38B2651E87F898B4A290AE12C5B78306639B ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
12:03:38.0275 0x15a4 btwdins - ok
12:03:38.0290 0x15a4 [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
12:03:38.0321 0x15a4 btwl2cap - ok
12:03:38.0337 0x15a4 [ C9273B20DEC8CE38DBCE5D29DE63C907, 71D67A1A2EDA81351E8D8129824565E2ECA0CFA4DC844CE12F90AB7906ABA737 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
12:03:38.0353 0x15a4 btwrchid - ok
12:03:38.0399 0x15a4 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:03:38.0493 0x15a4 cdfs - ok
12:03:38.0555 0x15a4 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:03:38.0602 0x15a4 cdrom - ok
12:03:38.0665 0x15a4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
12:03:38.0774 0x15a4 CertPropSvc - ok
12:03:38.0805 0x15a4 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:03:38.0852 0x15a4 circlass - ok
12:03:38.0914 0x15a4 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
12:03:38.0992 0x15a4 CLFS - ok
12:03:39.0070 0x15a4 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:03:39.0117 0x15a4 clr_optimization_v2.0.50727_32 - ok
12:03:39.0164 0x15a4 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:03:39.0211 0x15a4 clr_optimization_v2.0.50727_64 - ok
12:03:39.0289 0x15a4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:03:39.0367 0x15a4 clr_optimization_v4.0.30319_32 - ok
12:03:39.0398 0x15a4 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:03:39.0445 0x15a4 clr_optimization_v4.0.30319_64 - ok
12:03:39.0491 0x15a4 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:03:39.0554 0x15a4 CmBatt - ok
12:03:39.0601 0x15a4 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:03:39.0647 0x15a4 cmdide - ok
12:03:39.0710 0x15a4 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
12:03:39.0803 0x15a4 CNG - ok
12:03:39.0819 0x15a4 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:03:39.0850 0x15a4 Compbatt - ok
12:03:39.0897 0x15a4 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:03:39.0959 0x15a4 CompositeBus - ok
12:03:39.0959 0x15a4 COMSysApp - ok
12:03:39.0991 0x15a4 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:03:40.0006 0x15a4 crcdisk - ok
12:03:40.0084 0x15a4 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:03:40.0178 0x15a4 CryptSvc - ok
12:03:40.0240 0x15a4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:03:40.0318 0x15a4 DcomLaunch - ok
12:03:40.0381 0x15a4 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
12:03:40.0474 0x15a4 defragsvc - ok
12:03:40.0505 0x15a4 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:03:40.0599 0x15a4 DfsC - ok
12:03:40.0677 0x15a4 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
12:03:40.0771 0x15a4 Dhcp - ok
12:03:40.0802 0x15a4 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
12:03:40.0864 0x15a4 discache - ok
12:03:40.0880 0x15a4 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:03:40.0911 0x15a4 Disk - ok
12:03:40.0942 0x15a4 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:03:40.0989 0x15a4 Dnscache - ok
12:03:41.0036 0x15a4 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
12:03:41.0161 0x15a4 dot3svc - ok
12:03:41.0192 0x15a4 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
12:03:41.0285 0x15a4 DPS - ok
12:03:41.0348 0x15a4 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:03:41.0410 0x15a4 drmkaud - ok
12:03:41.0473 0x15a4 [ 9CF46FDF163E06B83D03FF929EF2296C, 40BB0226361DEC2E6CBFE79CA092083986BD3D94564ED5F3E54CA2EE9A756837 ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
12:03:41.0519 0x15a4 DsiWMIService - ok
12:03:41.0613 0x15a4 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:03:41.0707 0x15a4 DXGKrnl - ok
12:03:41.0753 0x15a4 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
12:03:41.0831 0x15a4 EapHost - ok
12:03:42.0003 0x15a4 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:03:42.0237 0x15a4 ebdrv - ok
12:03:42.0299 0x15a4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
12:03:42.0346 0x15a4 EFS - ok
12:03:42.0471 0x15a4 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:03:42.0533 0x15a4 ehRecvr - ok
12:03:42.0580 0x15a4 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
12:03:42.0611 0x15a4 ehSched - ok
12:03:42.0627 0x15a4 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:03:42.0674 0x15a4 elxstor - ok
12:03:42.0783 0x15a4 [ 3EA2C4F68A782839D97B3C83595575B6, D4C3BFD0B6817B73BE9F2378FA946BD1C213A4FB9EB3F7D2C79E9B6D9F895106 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
12:03:42.0861 0x15a4 ePowerSvc - ok
12:03:42.0892 0x15a4 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:03:42.0923 0x15a4 ErrDev - ok
12:03:42.0986 0x15a4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
12:03:43.0079 0x15a4 EventSystem - ok
12:03:43.0173 0x15a4 [ 251AF86E0A4DDF3A6B181ED5103B06B1, 1823E7C87F0D8972A89D71B1FB633C5D43744F9803E6A8B866F6EA610032437C ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
12:03:43.0235 0x15a4 ewusbnet - ok
12:03:43.0267 0x15a4 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
12:03:43.0329 0x15a4 exfat - ok
12:03:43.0360 0x15a4 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:03:43.0407 0x15a4 fastfat - ok
12:03:43.0485 0x15a4 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
12:03:43.0563 0x15a4 Fax - ok
12:03:43.0579 0x15a4 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:03:43.0610 0x15a4 fdc - ok
12:03:43.0645 0x15a4 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
12:03:43.0695 0x15a4 fdPHost - ok
12:03:43.0705 0x15a4 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
12:03:43.0755 0x15a4 FDResPub - ok
12:03:43.0775 0x15a4 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:03:43.0795 0x15a4 FileInfo - ok
12:03:43.0815 0x15a4 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:03:43.0865 0x15a4 Filetrace - ok
12:03:43.0885 0x15a4 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:03:43.0915 0x15a4 flpydisk - ok
12:03:43.0965 0x15a4 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:03:44.0015 0x15a4 FltMgr - ok
12:03:44.0095 0x15a4 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
12:03:44.0175 0x15a4 FontCache - ok
12:03:44.0255 0x15a4 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:03:44.0285 0x15a4 FontCache3.0.0.0 - ok
12:03:44.0315 0x15a4 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:03:44.0355 0x15a4 FsDepends - ok
12:03:44.0395 0x15a4 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:03:44.0435 0x15a4 Fs_Rec - ok
12:03:44.0495 0x15a4 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:03:44.0535 0x15a4 fvevol - ok
12:03:44.0555 0x15a4 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:03:44.0585 0x15a4 gagp30kx - ok
12:03:44.0665 0x15a4 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
12:03:44.0765 0x15a4 gpsvc - ok
12:03:44.0815 0x15a4 [ 0191DEE9B9EB7902AF2CF4F67301095D, 9E2E263E84167E1AD3FFCEA84066AF07CD6A653F5D8266A619E4973BC4B25460 ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
12:03:44.0855 0x15a4 GREGService - ok
12:03:44.0865 0x15a4 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:03:44.0905 0x15a4 hcw85cir - ok
12:03:44.0965 0x15a4 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:03:45.0015 0x15a4 HdAudAddService - ok
12:03:45.0055 0x15a4 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:03:45.0105 0x15a4 HDAudBus - ok
12:03:45.0125 0x15a4 [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
12:03:45.0155 0x15a4 HECIx64 - ok
12:03:45.0185 0x15a4 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:03:45.0215 0x15a4 HidBatt - ok
12:03:45.0235 0x15a4 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:03:45.0275 0x15a4 HidBth - ok
12:03:45.0315 0x15a4 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:03:45.0355 0x15a4 HidIr - ok
12:03:45.0385 0x15a4 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
12:03:45.0465 0x15a4 hidserv - ok
12:03:45.0485 0x15a4 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
12:03:45.0515 0x15a4 HidUsb - ok
12:03:45.0555 0x15a4 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:03:45.0605 0x15a4 hkmsvc - ok
12:03:45.0665 0x15a4 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:03:45.0735 0x15a4 HomeGroupListener - ok
12:03:45.0795 0x15a4 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:03:45.0855 0x15a4 HomeGroupProvider - ok
12:03:45.0875 0x15a4 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:03:45.0905 0x15a4 HpSAMD - ok
12:03:45.0995 0x15a4 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:03:46.0105 0x15a4 HTTP - ok
12:03:46.0165 0x15a4 [ 4B5C07DB91A0099272FAAE732E1152BD, E0408F85A2E1E310F5143A01A34456F120875D21E0E9D0A9F9EBC96514CFC47C ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
12:03:46.0225 0x15a4 hwdatacard - ok
12:03:46.0245 0x15a4 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:03:46.0275 0x15a4 hwpolicy - ok
12:03:46.0325 0x15a4 [ 9C13A2691AC410CC7469F298684DCA5D, 2B07FE759B479A36AB4DE185AF8B4295396A1F8674587721BE7C92FC31ADFF0D ] hwusbfake C:\Windows\system32\DRIVERS\ewusbfake.sys
12:03:46.0375 0x15a4 hwusbfake - ok
12:03:46.0415 0x15a4 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:03:46.0455 0x15a4 i8042prt - ok
12:03:46.0505 0x15a4 [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
12:03:46.0555 0x15a4 iaStor - ok
12:03:46.0625 0x15a4 [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
12:03:46.0665 0x15a4 IAStorDataMgrSvc - ok
12:03:46.0735 0x15a4 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:03:46.0795 0x15a4 iaStorV - ok
12:03:46.0905 0x15a4 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:03:46.0995 0x15a4 idsvc - ok
12:03:47.0005 0x15a4 IEEtwCollectorService - ok
12:03:47.0341 0x15a4 [ 2A22AB054F4630D2EF4BAB2853F6D5F6, 9CD7A5FFB7E25B51E9D311531EE5EC20CEAC356C7A27D52B61DA810DB412437B ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:03:47.0763 0x15a4 igfx - ok
12:03:47.0794 0x15a4 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:03:47.0809 0x15a4 iirsp - ok
12:03:47.0934 0x15a4 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
12:03:48.0012 0x15a4 IKEEXT - ok
12:03:48.0059 0x15a4 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
12:03:48.0121 0x15a4 Impcd - ok
12:03:48.0262 0x15a4 [ CB5FD9B681AD43B560490B5283DDC1C1, 359F4ACE7BE0FD6BF710AD1EEA48ED3F9E4A97A2B8318EC5616E34449D0C774F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:03:48.0355 0x15a4 IntcAzAudAddService - ok
12:03:48.0433 0x15a4 [ 58CF58DEE26C909BD6F977B61D246295, 0CE27B81C091961A22B75478449D654F9C1A68E43DF80C699DB8DD3D1B288461 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
12:03:48.0496 0x15a4 IntcDAud - ok
12:03:48.0511 0x15a4 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
12:03:48.0543 0x15a4 intelide - ok
12:03:48.0574 0x15a4 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:03:48.0605 0x15a4 intelppm - ok
12:03:48.0636 0x15a4 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:03:48.0714 0x15a4 IPBusEnum - ok
12:03:48.0745 0x15a4 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:03:48.0808 0x15a4 IpFilterDriver - ok
12:03:48.0901 0x15a4 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:03:48.0979 0x15a4 iphlpsvc - ok
12:03:49.0011 0x15a4 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:03:49.0073 0x15a4 IPMIDRV - ok
12:03:49.0089 0x15a4 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:03:49.0167 0x15a4 IPNAT - ok
12:03:49.0198 0x15a4 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:03:49.0229 0x15a4 IRENUM - ok
12:03:49.0245 0x15a4 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:03:49.0276 0x15a4 isapnp - ok
12:03:49.0307 0x15a4 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:03:49.0338 0x15a4 iScsiPrt - ok
12:03:49.0369 0x15a4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:03:49.0385 0x15a4 kbdclass - ok
12:03:49.0432 0x15a4 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:03:49.0479 0x15a4 kbdhid - ok
12:03:49.0494 0x15a4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
12:03:49.0525 0x15a4 KeyIso - ok
12:03:49.0572 0x15a4 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:03:49.0588 0x15a4 KSecDD - ok
12:03:49.0635 0x15a4 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:03:49.0666 0x15a4 KSecPkg - ok
12:03:49.0697 0x15a4 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:03:49.0744 0x15a4 ksthunk - ok
12:03:49.0806 0x15a4 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
12:03:49.0900 0x15a4 KtmRm - ok
12:03:49.0947 0x15a4 [ A4A9CA24E54E81C6C3E469EAEB4B3F42, FB6B72BF973EC2EE2D81AAAF47B030C0A5E7E7B079DAB257C52FEFC3F222CDC8 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
12:03:49.0978 0x15a4 L1C - ok
12:03:50.0040 0x15a4 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
12:03:50.0118 0x15a4 LanmanServer - ok
12:03:50.0181 0x15a4 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:03:50.0274 0x15a4 LanmanWorkstation - ok
12:03:50.0305 0x15a4 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:03:50.0352 0x15a4 lltdio - ok
12:03:50.0399 0x15a4 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:03:50.0493 0x15a4 lltdsvc - ok
12:03:50.0524 0x15a4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:03:50.0633 0x15a4 lmhosts - ok
12:03:50.0711 0x15a4 [ A1C148801B4AF64847AEB9F3AD9594EF, FF6ED89EA47DF74C33CD8BFAC48FAED1B979348ABA6B6D94EE07CBD21810F37B ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:03:50.0773 0x15a4 LMS - detected UnsignedFile.Multi.Generic ( 1 )
12:03:53.0659 0x15a4 Detect skipped due to KSN trusted
12:03:53.0659 0x15a4 LMS - ok
12:03:53.0706 0x15a4 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:03:53.0769 0x15a4 LSI_FC - ok
12:03:53.0784 0x15a4 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:03:53.0831 0x15a4 LSI_SAS - ok
12:03:53.0847 0x15a4 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:03:53.0878 0x15a4 LSI_SAS2 - ok
12:03:53.0893 0x15a4 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:03:53.0925 0x15a4 LSI_SCSI - ok
12:03:53.0940 0x15a4 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
12:03:54.0003 0x15a4 luafv - ok
12:03:54.0034 0x15a4 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:03:54.0096 0x15a4 Mcx2Svc - ok
12:03:54.0112 0x15a4 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:03:54.0159 0x15a4 megasas - ok
12:03:54.0190 0x15a4 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:03:54.0237 0x15a4 MegaSR - ok
12:03:54.0252 0x15a4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
12:03:54.0299 0x15a4 MMCSS - ok
12:03:54.0315 0x15a4 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
12:03:54.0361 0x15a4 Modem - ok
12:03:54.0393 0x15a4 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:03:54.0424 0x15a4 monitor - ok
12:03:54.0455 0x15a4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:03:54.0471 0x15a4 mouclass - ok
12:03:54.0486 0x15a4 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:03:54.0517 0x15a4 mouhid - ok
12:03:54.0549 0x15a4 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:03:54.0595 0x15a4 mountmgr - ok
12:03:54.0673 0x15a4 [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:03:54.0720 0x15a4 MozillaMaintenance - ok
12:03:54.0767 0x15a4 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
12:03:54.0814 0x15a4 mpio - ok
12:03:54.0845 0x15a4 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:03:54.0907 0x15a4 mpsdrv - ok
12:03:55.0001 0x15a4 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:03:55.0095 0x15a4 MpsSvc - ok
12:03:55.0141 0x15a4 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:03:55.0188 0x15a4 MRxDAV - ok
12:03:55.0235 0x15a4 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:03:55.0282 0x15a4 mrxsmb - ok
12:03:55.0329 0x15a4 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:03:55.0375 0x15a4 mrxsmb10 - ok
12:03:55.0391 0x15a4 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:03:55.0438 0x15a4 mrxsmb20 - ok
12:03:55.0485 0x15a4 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
12:03:55.0516 0x15a4 msahci - ok
12:03:55.0547 0x15a4 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:03:55.0563 0x15a4 msdsm - ok
12:03:55.0609 0x15a4 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
12:03:55.0672 0x15a4 MSDTC - ok
12:03:55.0703 0x15a4 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:03:55.0765 0x15a4 Msfs - ok
12:03:55.0797 0x15a4 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:03:55.0843 0x15a4 mshidkmdf - ok
12:03:55.0890 0x15a4 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:03:55.0937 0x15a4 msisadrv - ok
12:03:55.0968 0x15a4 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:03:56.0062 0x15a4 MSiSCSI - ok
12:03:56.0062 0x15a4 msiserver - ok
12:03:56.0093 0x15a4 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:03:56.0140 0x15a4 MSKSSRV - ok
12:03:56.0155 0x15a4 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:03:56.0202 0x15a4 MSPCLOCK - ok
12:03:56.0218 0x15a4 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:03:56.0265 0x15a4 MSPQM - ok
12:03:56.0327 0x15a4 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:03:56.0389 0x15a4 MsRPC - ok
12:03:56.0405 0x15a4 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:03:56.0436 0x15a4 mssmbios - ok
12:03:56.0452 0x15a4 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:03:56.0530 0x15a4 MSTEE - ok
12:03:56.0530 0x15a4 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:03:56.0561 0x15a4 MTConfig - ok
12:03:56.0592 0x15a4 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
12:03:56.0608 0x15a4 Mup - ok
12:03:56.0639 0x15a4 [ 6FFECC25B39DC7652A0CEC0ADA9DB589, 927EF066CBBA8353149F8C3B7C4299AC06FED439DA874D25CFB583E5912611A2 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
12:03:56.0655 0x15a4 mwlPSDFilter - ok
12:03:56.0670 0x15a4 [ 0BEFE32CA56D6EE89D58175725596A85, E36B9E6159AF7F67D549F7178896CCCB8FC3964531B1DA20CBDD465E632D8FCF ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
12:03:56.0686 0x15a4 mwlPSDNServ - ok
12:03:56.0701 0x15a4 [ D43BC633B8660463E446E28E14A51262, C55F235B5E08FAC6D70B0FAC737D714E318A93F8E43FF8095B86A76559AF211D ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
12:03:56.0733 0x15a4 mwlPSDVDisk - ok
12:03:56.0795 0x15a4 [ 3E5E20817259F7328C8F3BE5421F35B9, 9BF20E1CE75647BF5654AD603BD7D17E36CC0AD15EEAFF4FACE637D235C34190 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
12:03:56.0873 0x15a4 MWLService - ok
12:03:56.0935 0x15a4 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
12:03:57.0029 0x15a4 napagent - ok
12:03:57.0076 0x15a4 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:03:57.0123 0x15a4 NativeWifiP - ok
12:03:57.0216 0x15a4 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
12:03:57.0294 0x15a4 NDIS - ok
12:03:57.0310 0x15a4 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:03:57.0372 0x15a4 NdisCap - ok
12:03:57.0372 0x15a4 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:03:57.0419 0x15a4 NdisTapi - ok
12:03:57.0466 0x15a4 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:03:57.0559 0x15a4 Ndisuio - ok
12:03:57.0606 0x15a4 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:03:57.0653 0x15a4 NdisWan - ok
12:03:57.0700 0x15a4 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:03:57.0809 0x15a4 NDProxy - ok
12:03:57.0825 0x15a4 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:03:57.0903 0x15a4 NetBIOS - ok
12:03:57.0934 0x15a4 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:03:57.0996 0x15a4 NetBT - ok
12:03:57.0996 0x15a4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
12:03:58.0027 0x15a4 Netlogon - ok
12:03:58.0090 0x15a4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
12:03:58.0183 0x15a4 Netman - ok
12:03:58.0230 0x15a4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:03:58.0293 0x15a4 NetMsmqActivator - ok
12:03:58.0324 0x15a4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:03:58.0371 0x15a4 NetPipeActivator - ok
12:03:58.0417 0x15a4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
12:03:58.0495 0x15a4 netprofm - ok
12:03:58.0511 0x15a4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:03:58.0542 0x15a4 NetTcpActivator - ok
12:03:58.0558 0x15a4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:03:58.0589 0x15a4 NetTcpPortSharing - ok
12:03:58.0605 0x15a4 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:03:58.0620 0x15a4 nfrd960 - ok
12:03:58.0667 0x15a4 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:03:58.0698 0x15a4 NlaSvc - ok
12:03:58.0714 0x15a4 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:03:58.0761 0x15a4 Npfs - ok
12:03:58.0776 0x15a4 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
12:03:58.0823 0x15a4 nsi - ok
12:03:58.0839 0x15a4 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:03:58.0885 0x15a4 nsiproxy - ok
12:03:59.0010 0x15a4 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:03:59.0135 0x15a4 Ntfs - ok
12:03:59.0197 0x15a4 [ 9A308FCDCCA98A15B6F62D36A272160E, 3991F70D42C1949067ED48CF4EB815E06360B077F6A2369AC76BF0892C3C33EE ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
12:03:59.0244 0x15a4 NTI IScheduleSvc - ok
12:03:59.0275 0x15a4 [ 28C59F594044CBF8598B18C927097091, 7B7633A9BCB1E0A3F89DD697C296D77955907DCF239B4B9D155AD7B90F2A1E7A ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
12:03:59.0307 0x15a4 NTIBackupSvc - ok
12:03:59.0353 0x15a4 [ 710263B44C1D1AEE07525A53401FBE48, 9E30D956099F42A7F8125664E671AEE49A6EDE0C2B717EC9B4488556A386FA21 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
12:03:59.0400 0x15a4 NTIDrvr - ok
12:03:59.0447 0x15a4 [ B8D903B2894FF9AFBD99CA51C35590D7, AAC96724781EC5A715CEF85C65D4AE15283522D3F19020FC456BA0F73BAA22F9 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
12:03:59.0509 0x15a4 NTISchedulerSvc - ok
12:03:59.0541 0x15a4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
12:03:59.0619 0x15a4 Null - ok
12:03:59.0681 0x15a4 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:03:59.0743 0x15a4 nvraid - ok
12:03:59.0806 0x15a4 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:03:59.0884 0x15a4 nvstor - ok
12:03:59.0962 0x15a4 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:04:00.0024 0x15a4 nv_agp - ok
12:04:00.0133 0x15a4 [ BA7DAC1B8A86D9402C3E04E1FCAA600D, 20DB46EA6D7FA2AEEDCF6D88E6E07D75219E14AFFD60D76D0A066429B34F7033 ] ODDPwrSvc C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
12:04:00.0180 0x15a4 ODDPwrSvc - ok
12:04:00.0227 0x15a4 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:04:00.0258 0x15a4 ohci1394 - ok
12:04:00.0336 0x15a4 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:04:00.0383 0x15a4 ose - ok
12:04:00.0617 0x15a4 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:04:00.0789 0x15a4 osppsvc - ok
12:04:00.0867 0x15a4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:04:00.0929 0x15a4 p2pimsvc - ok
12:04:00.0976 0x15a4 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
12:04:01.0007 0x15a4 p2psvc - ok
12:04:01.0038 0x15a4 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:04:01.0085 0x15a4 Parport - ok
12:04:01.0116 0x15a4 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:04:01.0163 0x15a4 partmgr - ok
12:04:01.0194 0x15a4 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
12:04:01.0257 0x15a4 PcaSvc - ok
12:04:01.0272 0x15a4 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
12:04:01.0319 0x15a4 pci - ok
12:04:01.0350 0x15a4 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
12:04:01.0397 0x15a4 pciide - ok
12:04:01.0428 0x15a4 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:04:01.0506 0x15a4 pcmcia - ok
12:04:01.0522 0x15a4 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
12:04:01.0553 0x15a4 pcw - ok
12:04:01.0584 0x15a4 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:04:01.0662 0x15a4 PEAUTH - ok
12:04:01.0756 0x15a4 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:04:01.0818 0x15a4 PerfHost - ok
12:04:01.0943 0x15a4 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
12:04:02.0099 0x15a4 pla - ok
12:04:02.0224 0x15a4 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:04:02.0302 0x15a4 PlugPlay - ok
12:04:02.0317 0x15a4 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:04:02.0364 0x15a4 PNRPAutoReg - ok
12:04:02.0395 0x15a4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:04:02.0458 0x15a4 PNRPsvc - ok
12:04:02.0520 0x15a4 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:04:02.0583 0x15a4 PolicyAgent - ok
12:04:02.0629 0x15a4 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
12:04:02.0723 0x15a4 Power - ok
12:04:02.0770 0x15a4 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:04:02.0832 0x15a4 PptpMiniport - ok
12:04:02.0848 0x15a4 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:04:02.0863 0x15a4 Processor - ok
12:04:02.0926 0x15a4 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
12:04:02.0957 0x15a4 ProfSvc - ok
12:04:03.0004 0x15a4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:04:03.0051 0x15a4 ProtectedStorage - ok
12:04:03.0129 0x15a4 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:04:03.0238 0x15a4 Psched - ok
12:04:03.0347 0x15a4 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:04:03.0425 0x15a4 ql2300 - ok
12:04:03.0441 0x15a4 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:04:03.0472 0x15a4 ql40xx - ok
12:04:03.0503 0x15a4 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
12:04:03.0550 0x15a4 QWAVE - ok
12:04:03.0565 0x15a4 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:04:03.0597 0x15a4 QWAVEdrv - ok
12:04:03.0612 0x15a4 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:04:03.0659 0x15a4 RasAcd - ok
12:04:03.0690 0x15a4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:04:03.0737 0x15a4 RasAgileVpn - ok
12:04:03.0753 0x15a4 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
12:04:03.0815 0x15a4 RasAuto - ok
12:04:03.0846 0x15a4 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:04:03.0940 0x15a4 Rasl2tp - ok
12:04:03.0971 0x15a4 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
12:04:04.0033 0x15a4 RasMan - ok
12:04:04.0049 0x15a4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:04:04.0096 0x15a4 RasPppoe - ok
12:04:04.0127 0x15a4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:04:04.0174 0x15a4 RasSstp - ok
12:04:04.0236 0x15a4 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:04:04.0330 0x15a4 rdbss - ok
12:04:04.0345 0x15a4 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:04:04.0361 0x15a4 rdpbus - ok
12:04:04.0377 0x15a4 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:04:04.0423 0x15a4 RDPCDD - ok
12:04:04.0455 0x15a4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:04:04.0548 0x15a4 RDPENCDD - ok
12:04:04.0564 0x15a4 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:04:04.0611 0x15a4 RDPREFMP - ok
12:04:04.0642 0x15a4 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:04:04.0673 0x15a4 RDPWD - ok
12:04:04.0720 0x15a4 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:04:04.0751 0x15a4 rdyboost - ok
12:04:04.0782 0x15a4 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:04:04.0829 0x15a4 RemoteAccess - ok
12:04:04.0845 0x15a4 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:04:04.0907 0x15a4 RemoteRegistry - ok
12:04:04.0938 0x15a4 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
12:04:05.0016 0x15a4 RFCOMM - ok
12:04:05.0079 0x15a4 [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
12:04:05.0125 0x15a4 RichVideo - detected UnsignedFile.Multi.Generic ( 1 )
12:04:08.0027 0x15a4 Detect skipped due to KSN trusted
12:04:08.0027 0x15a4 RichVideo - ok
12:04:08.0058 0x15a4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:04:08.0152 0x15a4 RpcEptMapper - ok
12:04:08.0183 0x15a4 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
12:04:08.0214 0x15a4 RpcLocator - ok
12:04:08.0277 0x15a4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
12:04:08.0370 0x15a4 RpcSs - ok
12:04:08.0386 0x15a4 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:04:08.0448 0x15a4 rspndr - ok
12:04:08.0511 0x15a4 [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A, A6810A901620119E1809297A568DC903729471F4F4F813F1C60378E122D2358E ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
12:04:08.0557 0x15a4 RS_Service - ok
12:04:08.0573 0x15a4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
12:04:08.0604 0x15a4 SamSs - ok
12:04:08.0667 0x15a4 [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
12:04:08.0698 0x15a4 SASDIFSV - ok
12:04:08.0729 0x15a4 [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
12:04:08.0760 0x15a4 SASKUTIL - ok
12:04:08.0807 0x15a4 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:04:08.0838 0x15a4 sbp2port - ok
12:04:08.0885 0x15a4 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:04:08.0932 0x15a4 SCardSvr - ok
12:04:08.0979 0x15a4 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:04:09.0057 0x15a4 scfilter - ok
12:04:09.0150 0x15a4 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
12:04:09.0275 0x15a4 Schedule - ok
12:04:09.0306 0x15a4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
12:04:09.0400 0x15a4 SCPolicySvc - ok
12:04:09.0462 0x15a4 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:04:09.0509 0x15a4 SDRSVC - ok
12:04:09.0712 0x15a4 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
12:04:09.0805 0x15a4 SDScannerService - ok
12:04:09.0961 0x15a4 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
12:04:10.0102 0x15a4 SDUpdateService - ok
12:04:10.0149 0x15a4 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
12:04:10.0211 0x15a4 SDWSCService - ok
12:04:10.0273 0x15a4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:04:10.0351 0x15a4 secdrv - ok
12:04:10.0383 0x15a4 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
12:04:10.0445 0x15a4 seclogon - ok
12:04:10.0461 0x15a4 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
12:04:10.0507 0x15a4 SENS - ok
12:04:10.0539 0x15a4 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:04:10.0585 0x15a4 SensrSvc - ok
12:04:10.0617 0x15a4 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:04:10.0663 0x15a4 Serenum - ok
12:04:10.0679 0x15a4 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:04:10.0726 0x15a4 Serial - ok
12:04:10.0773 0x15a4 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:04:10.0819 0x15a4 sermouse - ok
12:04:10.0866 0x15a4 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
12:04:10.0929 0x15a4 SessionEnv - ok
12:04:11.0053 0x15a4 settings - ok
12:04:11.0085 0x15a4 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:04:11.0131 0x15a4 sffdisk - ok
12:04:11.0178 0x15a4 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:04:11.0225 0x15a4 sffp_mmc - ok
12:04:11.0256 0x15a4 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:04:11.0287 0x15a4 sffp_sd - ok
12:04:11.0303 0x15a4 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:04:11.0334 0x15a4 sfloppy - ok
12:04:11.0381 0x15a4 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:04:11.0443 0x15a4 SharedAccess - ok
12:04:11.0506 0x15a4 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:04:11.0599 0x15a4 ShellHWDetection - ok
12:04:11.0615 0x15a4 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:04:11.0646 0x15a4 SiSRaid2 - ok
12:04:11.0662 0x15a4 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:04:11.0677 0x15a4 SiSRaid4 - ok
12:04:11.0755 0x15a4 [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
12:04:11.0818 0x15a4 SkypeUpdate - ok
12:04:11.0849 0x15a4 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:04:11.0943 0x15a4 Smb - ok
12:04:11.0989 0x15a4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:04:12.0036 0x15a4 SNMPTRAP - ok
12:04:12.0052 0x15a4 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
12:04:12.0067 0x15a4 spldr - ok
12:04:12.0145 0x15a4 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
12:04:12.0208 0x15a4 Spooler - ok
12:04:12.0379 0x15a4 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
12:04:12.0567 0x15a4 sppsvc - ok
12:04:12.0598 0x15a4 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:04:12.0660 0x15a4 sppuinotify - ok
12:04:12.0691 0x15a4 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
12:04:12.0738 0x15a4 srv - ok
12:04:12.0769 0x15a4 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:04:12.0816 0x15a4 srv2 - ok
12:04:12.0832 0x15a4 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:04:12.0863 0x15a4 srvnet - ok
12:04:12.0894 0x15a4 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:04:12.0941 0x15a4 SSDPSRV - ok
12:04:12.0972 0x15a4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:04:13.0019 0x15a4 SstpSvc - ok
12:04:13.0035 0x15a4 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:04:13.0050 0x15a4 stexstor - ok
12:04:13.0128 0x15a4 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
12:04:13.0191 0x15a4 stisvc - ok
12:04:13.0222 0x15a4 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
12:04:13.0237 0x15a4 swenum - ok
12:04:13.0284 0x15a4 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
12:04:13.0347 0x15a4 swprv - ok
12:04:13.0409 0x15a4 [ CE9B5A79AEE330BC7E88C0441E5727BB, 315A6803DCAD670BDC30C74CC1040D73DA9B617C32F5B42FB09ABD549FCA4AE0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
12:04:13.0456 0x15a4 SynTP - ok
12:04:13.0581 0x15a4 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
12:04:13.0705 0x15a4 SysMain - ok
12:04:13.0737 0x15a4 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:04:13.0815 0x15a4 TabletInputService - ok
12:04:13.0861 0x15a4 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
12:04:13.0939 0x15a4 TapiSrv - ok
12:04:13.0971 0x15a4 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
12:04:14.0017 0x15a4 TBS - ok
12:04:14.0158 0x15a4 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:04:14.0236 0x15a4 Tcpip - ok
12:04:14.0361 0x15a4 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:04:14.0485 0x15a4 TCPIP6 - ok
12:04:14.0563 0x15a4 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:04:14.0626 0x15a4 tcpipreg - ok
12:04:14.0641 0x15a4 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:04:14.0673 0x15a4 TDPIPE - ok
12:04:14.0719 0x15a4 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:04:14.0766 0x15a4 TDTCP - ok
12:04:14.0813 0x15a4 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:04:14.0875 0x15a4 tdx - ok
12:04:14.0891 0x15a4 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
12:04:14.0922 0x15a4 TermDD - ok
12:04:15.0000 0x15a4 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
12:04:15.0078 0x15a4 TermService - ok
12:04:15.0094 0x15a4 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
12:04:15.0125 0x15a4 Themes - ok
12:04:15.0156 0x15a4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
12:04:15.0203 0x15a4 THREADORDER - ok
12:04:15.0468 0x15a4 [ 506B0B498216371D64ABB69145B70E4C, 94FE0E8A61C506FBA45D14571A14DC259E1D52778CEF8366CE8CBDCD871E28DB ] tor C:\Program Files (x86)\Tor\tor.exe
12:04:15.0609 0x15a4 tor - detected UnsignedFile.Multi.Generic ( 1 )
12:04:18.0495 0x15a4 Detect skipped due to KSN trusted
12:04:18.0495 0x15a4 tor - ok
12:04:18.0541 0x15a4 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
12:04:18.0619 0x15a4 TrkWks - ok
12:04:18.0682 0x15a4 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:04:18.0775 0x15a4 TrustedInstaller - ok
12:04:18.0822 0x15a4 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:04:18.0838 0x15a4 tssecsrv - ok
12:04:18.0885 0x15a4 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:04:18.0931 0x15a4 TsUsbFlt - ok
12:04:19.0009 0x15a4 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:04:19.0087 0x15a4 tunnel - ok
12:04:19.0119 0x15a4 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:04:19.0150 0x15a4 uagp35 - ok
12:04:19.0165 0x15a4 [ 40079B0B801C5432BA435B5AD61CE6E3, 709EFA377470234DE21B03AB50A70C9E9DA8F3D22F026D80340EC69C21595892 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
12:04:19.0197 0x15a4 UBHelper - ok
12:04:19.0243 0x15a4 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:04:19.0337 0x15a4 udfs - ok
12:04:19.0353 0x15a4 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:04:19.0399 0x15a4 UI0Detect - ok
12:04:19.0431 0x15a4 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:04:19.0462 0x15a4 uliagpkx - ok
12:04:19.0493 0x15a4 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
12:04:19.0524 0x15a4 umbus - ok
12:04:19.0555 0x15a4 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:04:19.0587 0x15a4 UmPass - ok
12:04:19.0789 0x15a4 [ 41118D920B2B268C0ADC36421248CDCF, 4F99C4913DCFE02B0783FD97F02558E4DD4D7C98553D95A8E26FAAA0C0D67616 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:04:19.0914 0x15a4 UNS - detected UnsignedFile.Multi.Generic ( 1 )
12:04:22.0785 0x15a4 Detect skipped due to KSN trusted
12:04:22.0785 0x15a4 UNS - ok
12:04:22.0847 0x15a4 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
12:04:22.0941 0x15a4 upnphost - ok
12:04:22.0987 0x15a4 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
12:04:23.0034 0x15a4 usbaudio - ok
12:04:23.0065 0x15a4 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
12:04:23.0112 0x15a4 usbccgp - ok
12:04:23.0143 0x15a4 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:04:23.0206 0x15a4 usbcir - ok
12:04:23.0253 0x15a4 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys
12:04:23.0299 0x15a4 usbehci - ok
12:04:23.0315 0x15a4 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:04:23.0362 0x15a4 usbhub - ok
12:04:23.0393 0x15a4 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:04:23.0409 0x15a4 usbohci - ok
12:04:23.0424 0x15a4 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:04:23.0455 0x15a4 usbprint - ok
12:04:23.0487 0x15a4 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
12:04:23.0518 0x15a4 usbscan - ok
12:04:23.0533 0x15a4 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
12:04:23.0565 0x15a4 USBSTOR - ok
12:04:23.0580 0x15a4 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
12:04:23.0611 0x15a4 usbuhci - ok
12:04:23.0658 0x15a4 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
12:04:23.0705 0x15a4 usbvideo - ok
12:04:23.0736 0x15a4 [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
12:04:23.0752 0x15a4 usb_rndisx - ok
12:04:23.0783 0x15a4 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
12:04:23.0845 0x15a4 UxSms - ok
12:04:23.0861 0x15a4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
12:04:23.0892 0x15a4 VaultSvc - ok
12:04:24.0001 0x15a4 [ 1352B215BDC5807A5641E7C143796DD7, B54F95307253BB81E4CEE4F2033782210652364DE6A1E833B27ECE7E04A2BD51 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
12:04:24.0048 0x15a4 VBoxAswDrv - ok
12:04:24.0064 0x15a4 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:04:24.0095 0x15a4 vdrvroot - ok
12:04:24.0157 0x15a4 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
12:04:24.0282 0x15a4 vds - ok
12:04:24.0298 0x15a4 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:04:24.0329 0x15a4 vga - ok
12:04:24.0345 0x15a4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
12:04:24.0391 0x15a4 VgaSave - ok
12:04:24.0454 0x15a4 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:04:24.0516 0x15a4 vhdmp - ok
12:04:24.0547 0x15a4 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
12:04:24.0579 0x15a4 viaide - ok
12:04:24.0688 0x15a4 [ 1B0D441D8AB264D39C2B09130CC28045, 15589A3A30B05AAD35152289AAF42CB792198FD15B55D6A7D5E4C1CE58459680 ] VMCService C:\Program Files (x86)\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
12:04:24.0719 0x15a4 VMCService - detected UnsignedFile.Multi.Generic ( 1 )
12:04:27.0605 0x15a4 Detect skipped due to KSN trusted
12:04:27.0605 0x15a4 VMCService - ok
12:04:27.0636 0x15a4 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:04:27.0683 0x15a4 volmgr - ok
12:04:27.0745 0x15a4 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:04:27.0777 0x15a4 volmgrx - ok
12:04:27.0808 0x15a4 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:04:27.0839 0x15a4 volsnap - ok
12:04:27.0870 0x15a4 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:04:27.0901 0x15a4 vsmraid - ok
12:04:28.0026 0x15a4 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
12:04:28.0182 0x15a4 VSS - ok
12:04:28.0245 0x15a4 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
12:04:28.0291 0x15a4 vwifibus - ok
12:04:28.0323 0x15a4 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
12:04:28.0369 0x15a4 vwififlt - ok
12:04:28.0416 0x15a4 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
12:04:28.0510 0x15a4 W32Time - ok
12:04:28.0541 0x15a4 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:04:28.0557 0x15a4 WacomPen - ok
12:04:28.0603 0x15a4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:04:28.0650 0x15a4 WANARP - ok
12:04:28.0666 0x15a4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:04:28.0713 0x15a4 Wanarpv6 - ok
12:04:28.0822 0x15a4 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
12:04:28.0931 0x15a4 wbengine - ok
12:04:28.0947 0x15a4 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:04:28.0978 0x15a4 WbioSrvc - ok
12:04:29.0025 0x15a4 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:04:29.0071 0x15a4 wcncsvc - ok
12:04:29.0087 0x15a4 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:04:29.0118 0x15a4 WcsPlugInService - ok
12:04:29.0134 0x15a4 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:04:29.0149 0x15a4 Wd - ok
12:04:29.0227 0x15a4 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:04:29.0290 0x15a4 Wdf01000 - ok
12:04:29.0305 0x15a4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:04:29.0337 0x15a4 WdiServiceHost - ok
12:04:29.0352 0x15a4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:04:29.0383 0x15a4 WdiSystemHost - ok
12:04:29.0446 0x15a4 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
12:04:29.0508 0x15a4 WebClient - ok
12:04:29.0524 0x15a4 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:04:29.0602 0x15a4 Wecsvc - ok
12:04:29.0649 0x15a4 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:04:29.0727 0x15a4 wercplsupport - ok
12:04:29.0773 0x15a4 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
12:04:29.0836 0x15a4 WerSvc - ok
12:04:29.0851 0x15a4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:04:29.0898 0x15a4 WfpLwf - ok
12:04:29.0929 0x15a4 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:04:29.0945 0x15a4 WIMMount - ok
12:04:29.0961 0x15a4 WinDefend - ok
12:04:29.0976 0x15a4 WinHttpAutoProxySvc - ok
12:04:30.0070 0x15a4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:04:30.0195 0x15a4 Winmgmt - ok
12:04:30.0304 0x15a4 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
12:04:30.0429 0x15a4 WinRM - ok
12:04:30.0491 0x15a4 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:04:30.0538 0x15a4 WinUsb - ok
12:04:30.0600 0x15a4 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
12:04:30.0678 0x15a4 Wlansvc - ok
12:04:30.0741 0x15a4 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:04:30.0787 0x15a4 WmiAcpi - ok
12:04:30.0834 0x15a4 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:04:30.0912 0x15a4 wmiApSrv - ok
12:04:30.0928 0x15a4 WMPNetworkSvc - ok
12:04:30.0928 0x15a4 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:04:30.0975 0x15a4 WPCSvc - ok
12:04:31.0021 0x15a4 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:04:31.0068 0x15a4 WPDBusEnum - ok
12:04:31.0084 0x15a4 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:04:31.0146 0x15a4 ws2ifsl - ok
12:04:31.0162 0x15a4 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
12:04:31.0209 0x15a4 wscsvc - ok
12:04:31.0209 0x15a4 WSearch - ok
12:04:31.0365 0x15a4 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
12:04:31.0489 0x15a4 wuauserv - ok
12:04:31.0583 0x15a4 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:04:31.0645 0x15a4 WudfPf - ok
12:04:31.0692 0x15a4 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:04:31.0739 0x15a4 WUDFRd - ok
12:04:31.0786 0x15a4 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:04:31.0833 0x15a4 wudfsvc - ok
12:04:31.0879 0x15a4 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
12:04:31.0957 0x15a4 WwanSvc - ok
12:04:32.0004 0x15a4 ================ Scan global ===============================
12:04:32.0020 0x15a4 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
12:04:32.0082 0x15a4 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:04:32.0113 0x15a4 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:04:32.0160 0x15a4 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:04:32.0207 0x15a4 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
12:04:32.0223 0x15a4 [ Global ] - ok
12:04:32.0223 0x15a4 ================ Scan MBR ==================================
12:04:32.0238 0x15a4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:04:32.0659 0x15a4 \Device\Harddisk0\DR0 - ok
12:04:32.0659 0x15a4 ================ Scan VBR ==================================
12:04:32.0675 0x15a4 [ 484B90EF01A50CE9D8BEFFB4B26BD896 ] \Device\Harddisk0\DR0\Partition1
12:04:32.0722 0x15a4 \Device\Harddisk0\DR0\Partition1 - ok
12:04:32.0737 0x15a4 [ DFAD496DF6C758342F14DE358F14DC01 ] \Device\Harddisk0\DR0\Partition2
12:04:32.0769 0x15a4 \Device\Harddisk0\DR0\Partition2 - ok
12:04:32.0769 0x15a4 ================ Scan generic autorun ======================
12:04:33.0190 0x15a4 [ 63C3AED5744F0BB8884413D19BFDB99A, 84DDF092DDAF6109D6185E86165CE60CD43A03F4B3C2ECAA7B109F17BED43BDB ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
12:04:33.0549 0x15a4 RtHDVCpl - ok
12:04:33.0689 0x15a4 [ 6F8BE1586785892C50D664BEDD906AF2, F9B7CC3DA226D107AB8CF9E6C73871B88B082763DE3EA01B6FE9A60C233BC01B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
12:04:33.0783 0x15a4 RtHDVBg - ok
12:04:33.0861 0x15a4 [ 2C2C3D428E6581CF56A80416AA327425, F4C57B5C2233707B21444C9EB516CD00B07F13B610730ADC0C85E626180D567A ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
12:04:33.0907 0x15a4 AmIcoSinglun64 - detected UnsignedFile.Multi.Generic ( 1 )
12:04:36.0778 0x15a4 Detect skipped due to KSN trusted
12:04:36.0778 0x15a4 AmIcoSinglun64 - ok
12:04:36.0856 0x15a4 [ A5F30B7295A8D0CE87FDE15FCF9646E1, ECF3B268BB74CFFCC3CEEF4A396D2D9F43561B4AEC70085A0637BE2B44401298 ] C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe
12:04:36.0903 0x15a4 ODDPwr - ok
12:04:36.0949 0x15a4 [ 0D6972A795995F07B6D78CA7724744FB, AA5E21F2957CCA7FBB0A2D006054E43BE4992BDEBAAC26A217C741FF36276B1B ] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
12:04:36.0981 0x15a4 mwlDaemon - ok
12:04:37.0012 0x15a4 [ 2EC361CC83F0B718DA834A1CF3571F38, CD456DBEDD9A7FE75862A8289CBDD4663263E9F728BFAE6E0492E286BB441AFB ] C:\Windows\system32\igfxtray.exe
12:04:37.0043 0x15a4 IgfxTray - ok
12:04:37.0059 0x15a4 [ 48708AA53EE3A697E0B7E429F8A09663, 1A1F6E86BA8033D6A43E1EEAA9104C5C1F20BFA089AE86212B341EBCAC4859B7 ] C:\Windows\system32\hkcmd.exe
12:04:37.0090 0x15a4 HotKeysCmds - ok
12:04:37.0105 0x15a4 [ 0B8DF7C18D4CC7B3D14CE9C3411038AB, 2922BCF795123758CD1999FC3B739EE1AEA09FED10A817E8BA94CE418BDE2CB6 ] C:\Windows\system32\igfxpers.exe
12:04:37.0137 0x15a4 Persistence - ok
12:04:37.0152 0x15a4 SynTPEnh - ok
12:04:37.0246 0x15a4 [ 147B96A5AEA8CEF3A34D8E378EAAA9B2, AC60E8184AC0DF277C26617AAD06F13A315B459AE47D9093161FB3DD652195B1 ] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
12:04:37.0308 0x15a4 Acer ePower Management - ok
12:04:37.0324 0x15a4 [ 25107F58D1B8F60D67D1EE95798C0DE8, C3B5205E8818576EBF33E3B9FD8664A498714B823D9128FC1CA0A64F81499263 ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
12:04:37.0355 0x15a4 IAStorIcon - ok
12:04:37.0402 0x15a4 [ AF7DE2922E01EFA48BF5F2A8511CF896, C0488146EC4600DBD9BF35C3C2DAE38714A4AEBB5341539237CAD1B3BBED3051 ] C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
12:04:37.0417 0x15a4 SuiteTray - ok
12:04:37.0449 0x15a4 [ F255E48EA981E943A14CF16269F3F3AF, DDA7829AE5D4E2EC0CB11581F4CB3AA70366021BFB70B678A54D050F2EEC0F4B ] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
12:04:37.0464 0x15a4 EgisUpdate - ok
12:04:37.0495 0x15a4 [ 0ADF079D36B2C25E6E9BECE1BD937ACE, E90188F60B942A9A7586E39DDE3871B1ED9D5F4D32AB70297CBE69B465609BEE ] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
12:04:37.0527 0x15a4 EgisTecPMMUpdate - ok
12:04:37.0573 0x15a4 [ 94F80155B91B8DF7A0EAD527C853D377, 3E35B686DB526592F2ABF4B3E6EAACE1E784A5552C1CE074E85661388E66C153 ] C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
12:04:37.0620 0x15a4 BackupManagerTray - ok
12:04:37.0729 0x15a4 [ 38218E47372B77DDB3C9DDD4390CB960, C665FCFE08A4C1F9C3FBA73A220AAB7344C2BF203B62FAB76EF1F659A78F007C ] C:\Program Files (x86)\Launch Manager\LManager.exe
12:04:37.0792 0x15a4 LManager - ok
12:04:37.0854 0x15a4 [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe
12:04:37.0885 0x15a4 MDS_Menu - ok
12:04:37.0917 0x15a4 [ 506FCC5EEE85B165498513022EF26E65, 0DB381917F22158F87A4B58B683320985C654E0F203E57D255F464C57E26631A ] C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
12:04:37.0948 0x15a4 ArcadeMovieService - ok
12:04:38.0088 0x15a4 [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
12:04:38.0151 0x15a4 Adobe ARM - ok
12:04:38.0291 0x15a4 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:04:38.0416 0x15a4 Sidebar - ok
12:04:38.0447 0x15a4 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:04:38.0478 0x15a4 mctadmin - ok
12:04:38.0541 0x15a4 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:04:38.0666 0x15a4 Sidebar - ok
12:04:38.0666 0x15a4 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:04:38.0697 0x15a4 mctadmin - ok
12:04:38.0806 0x15a4 [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
12:04:38.0884 0x15a4 Sidebar - ok
12:04:38.0993 0x15a4 [ BAD6C301B193809BBFA4A38F3D184628, F85AB67E4072E0BB6132856318F5D8595FA1E395C869DC0B41BFDA1A731F83B7 ] C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe
12:04:38.0993 0x15a4 Suspicious file ( NoAccess ): C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe. md5: BAD6C301B193809BBFA4A38F3D184628, sha256: F85AB67E4072E0BB6132856318F5D8595FA1E395C869DC0B41BFDA1A731F83B7
12:04:39.0009 0x15a4 nlsluhxz - detected LockedFile.Multi.Generic ( 1 )
12:04:41.0895 0x15a4 Detect turned to UDS exact due to KSN untrusted
12:04:41.0973 0x15a4 nlsluhxz ( UDS:DangerousObject.Multi.Generic ) - infected
12:04:41.0973 0x15a4 Force sending object to P2P due to detect: C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe
12:04:44.0952 0x15a4 Object send P2P result: true
12:04:47.0870 0x15a4 [ B3FD7BE5ACA41067CC8AC0BCD64455A9, F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695 ] C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
12:04:47.0870 0x15a4 Suspicious file ( NoAccess ): C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe. md5: B3FD7BE5ACA41067CC8AC0BCD64455A9, sha256: F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695
12:04:47.0870 0x15a4 poet-tear - detected LockedFile.Multi.Generic ( 1 )
12:04:50.0756 0x15a4 Detect turned to UDS exact due to KSN untrusted
12:04:50.0756 0x15a4 poet-tear ( UDS:DangerousObject.Multi.Generic ) - infected
12:04:50.0756 0x15a4 Force sending object to P2P due to detect: C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
12:04:57.0947 0x15a4 Object send P2P result: true
12:05:00.0764 0x15a4 audience-scratch - ok
12:05:00.0914 0x15a4 courage-adjust - ok
12:05:01.0264 0x15a4 [ 69CFED513B87D6FE10DBE421708501B3, DE7F8F22EB5C88DF11C51E5FD69A18EDAFDA6873AAFFBC5BD134DC67E2E75813 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
12:05:01.0514 0x15a4 SUPERAntiSpyware - ok
12:05:01.0825 0x15a4 [ B1949628130F192DA27FDBAEA516BB6E, 13E5A2EBF0FDAB29CEA1E7FAEB3141233198D9A28353BDBB6FDB03602BE32AC6 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
12:05:01.0996 0x15a4 Spybot-S&D Cleaning - ok
12:05:02.0090 0x15a4 [ B3FD7BE5ACA41067CC8AC0BCD64455A9, F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695 ] C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
12:05:02.0090 0x15a4 Suspicious file ( NoAccess ): C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe. md5: B3FD7BE5ACA41067CC8AC0BCD64455A9, sha256: F0E5942F72A28EC49971E57C5AADC82D1FF814E676849BA90B03D2C3C8409695
12:05:02.0090 0x15a4 poet-tear - detected LockedFile.Multi.Generic ( 1 )
12:05:02.0090 0x15a4 Detect turned to UDS exact due to KSN untrusted
12:05:02.0090 0x15a4 poet-tear ( UDS:DangerousObject.Multi.Generic ) - infected
12:05:02.0090 0x15a4 Force sending object to P2P due to detect: C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe
12:05:08.0938 0x15a4 Object send P2P result: true
12:05:11.0958 0x15a4 [ 7999235AE6A9F0FE1C007203F03A4618, D552A169E7E5EC43B675120F11E6A1790902C4068FAAFC2DE81DDB5FA50F18E8 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe
12:05:12.0008 0x15a4 FlashPlayerUpdate - ok
12:05:12.0018 0x15a4 Waiting for KSN requests completion. In queue: 1
12:05:13.0026 0x15a4 Waiting for KSN requests completion. In queue: 1
12:05:14.0040 0x15a4 Waiting for KSN requests completion. In queue: 1
12:05:15.0070 0x15a4 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
12:05:15.0086 0x15a4 Win FW state via NFP2: enabled
12:05:17.0940 0x15a4 ============================================================
12:05:17.0940 0x15a4 Scan finished
12:05:17.0940 0x15a4 ============================================================
12:05:17.0956 0x1418 Detected object count: 3
12:05:17.0956 0x1418 Actual detected object count: 3
12:06:10.0060 0x1418 C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe - copied to quarantine
12:06:10.0076 0x1418 HKU\S-1-5-21-1902139459-1109185879-2378804310-1000\Software\Microsoft\Windows\CurrentVersion\Run:nlsluhxz - will be deleted on reboot
12:06:10.0076 0x1418 C:\Users\*****\AppData\Roaming\Izlwcl\jhhhxzuhxz.exe - will be deleted on reboot
12:06:10.0076 0x1418 nlsluhxz ( UDS:DangerousObject.Multi.Generic ) - User select action: Delete
12:06:10.0091 0x1418 C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe - copied to quarantine
12:06:13.0944 0x1418 HKU\S-1-5-21-1902139459-1109185879-2378804310-1000\Software\Microsoft\Windows\CurrentVersion\Run:poet-tear - will be deleted on reboot
12:06:13.0944 0x1418 C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe - will be deleted on reboot
12:06:13.0944 0x1418 poet-tear ( UDS:DangerousObject.Multi.Generic ) - User select action: Delete
12:06:13.0960 0x1418 C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe - copied to quarantine
12:06:17.0559 0x1418 HKU\S-1-5-21-1902139459-1109185879-2378804310-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce:poet-tear - will be deleted on reboot
12:06:17.0559 0x1418 C:\Users\*****\AppData\Roaming\Poet_value\poetorganize.exe - will be deleted on reboot
12:06:17.0559 0x1418 poet-tear ( UDS:DangerousObject.Multi.Generic ) - User select action: Delete
12:06:17.0703 0x1418 KLMD registered as C:\Windows\system32\drivers\19980180.sys
12:06:22.0864 0x1938 Deinitialize success
Wie geht es weiter? Vielen Dank schon einmal bis hierher, Mathias |
Baum-Darstellung