| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Komische Ip taucht aufWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
19.02.2015, 02:17
| #1 |
| |  Komische Ip taucht auf Hallo zusammen! Ich habe ein kleines Problem, bzw. bin mir unsicher ob ich eins habe. Wenn ich über die Cmd meine Verbindungen abfrage (mit netstat -n) taucht neuerdings immer eine Ip auf, die vorher nie da war. Hintergrund der Geschichte, warum ich überhaupt drauf aufmerksam geworden bin, war ein Hack auf einem Gameserver, wo ich als Admin tätig bin. Der Server Besitzer hat mich dann auf einem TeamSpeak zitiert, der den Hackern gehört. Hab mit denen gesprochen und es ging hin und her. Dachte die hätten nicht viel drauf, da sie nichts richtig verschlüsselt hatten und ihre Proxys total versagt haben. Manche von uns haben sich blöderweise Datein von denen heruntergeladen und hatten natürlich direkt Meldungen von ihren Antiviren-Systemen erhalten. Außer einer, der hatte keins - was er nach ein paar Stunden auch bitter bereut hat. Einer der Typen meinte am Ende nur "nicht, dass du exploited wurdest". Tja, da hab ich nachgeguckt: Antivirensoftware (erst AviraAntivir, dann Panda und zum Schluss ZoneAlarm) alle ohne Befund. Msconfig Systemstart war auch nichts. Taskmgr nichts. Hatte später nochmal selbst geschaut, da dennoch einiges komisch lief, und einige Datein gefunden, die auch einfach weg gingen.  Ein paar Tage später ging es dann aber wieder los und mit Kali konnte ich dann schließlich diese verdächtige Ip sehen. Nachdem ich sie dann gescannt hatte, war sie auch in der Cmd sichtbar und wollte selbst nach einer Neuinstallation nicht verschwinden. Irgendwo muss das teil festgetackert sein  Vom Router geht es wohl nicht aus, da echt nur dieser eine Pc betroffen ist. Ich habe versucht diese Ip zu blocken, dann hat sie sich aber einfach umgestellt, z.B: 89.27.131.11 -> danach 89.27.131.58 usw. Naja danke, wer sich die Mühe gemacht hat diesen kleinen Kurzroman zu lesen. Hoffe ihr habt ein paar Vorschläge ^^ Mein System: Windows 7 64 bit, Router: Netgear wnr1000v3. Scan über KaliLinux. Liebe Grüße Cyc |
|
19.02.2015, 06:15
| #2 |
| /// the machine /// TB-Ausbilder    | Komische Ip taucht auf hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
19.02.2015, 14:17
| #3 |
| | Komische Ip taucht aufFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2015 01
Ran by Cyco (administrator) on CYCO-PC on 19-02-2015 14:09:37
Running from C:\Users\Cyco\Downloads
Loaded Profiles: Cyco & UpdatusUser (Available profiles: Cyco & UpdatusUser)
Platform: Windows 7 Home Premium (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Check Point Software Technologies, Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(TeamSpeak Systems GmbH) C:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-12-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2013-12-13] (Realtek Semiconductor)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ZoneAlarm] => C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [137352 2014-08-13] (Check Point Software Technologies Ltd.)
HKLM-x32\...\RunOnce: [EasyTuneVI] => C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe [40960 2012-07-09] ()
HKU\S-1-5-21-3663364285-3570083550-4158424099-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2874048 2015-02-19] (Valve Corporation)
HKU\S-1-5-21-3663364285-3570083550-4158424099-1000\...\MountPoints2: {28ac64c5-b6f3-11e4-b2ed-806e6f6e6963} - H:\SETUP.EXE
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3663364285-3570083550-4158424099-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.zonealarm.com/?src=hp&tbid=HFA5&Lan=DE&gu=7bc9708f1762426b956da838b4e85e01&tu=11P6z12IR1D33N0&sku=&tstsId=&ver=&
BHO-x32: Zonealarm Helper Object -> {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} -> C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.29.17\bh\zonealarm.dll (Check Point Software Technologies LTD)
Toolbar: HKLM-x32 - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.29.17\zonealarmTlbr.dll (Check Point Software Technologies LTD)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Profile: C:\Users\Cyco\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Cyco\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-18]
CHR Extension: (YouTube) - C:\Users\Cyco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-18]
CHR Extension: (Google Search) - C:\Users\Cyco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-18]
CHR Extension: (Google Wallet) - C:\Users\Cyco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-18]
CHR Extension: (Gmail) - C:\Users\Cyco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-18]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596752 2014-08-13] (Check Point Software Technologies Ltd.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R2 ZAPrivacyService; C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272 2014-08-13] (Check Point Software Technologies, Ltd.)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] ()
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-02-19] ()
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2014-06-11] (Kaspersky Lab ZAO)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [92768 2014-06-11] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [490592 2014-06-11] (Kaspersky Lab ZAO)
R3 ta10avs; C:\Windows\System32\Drivers\ta10avs.sys [359784 2012-12-18] (Native Instruments GmbH)
R3 ta10usb_svc; C:\Windows\System32\Drivers\ta10usb.sys [83304 2012-12-18] (Native Instruments GmbH)
S1 UsbCharger; C:\Windows\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] ()
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450456 2014-08-13] (Check Point Software Technologies Ltd.)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-19 14:09 - 2015-02-19 14:09 - 00009605 _____ () C:\Users\Cyco\Downloads\FRST.txt
2015-02-19 14:09 - 2015-02-19 14:09 - 00000000 ____D () C:\FRST
2015-02-19 14:08 - 2015-02-19 14:08 - 02086912 _____ (Farbar) C:\Users\Cyco\Downloads\FRST64.exe
2015-02-19 14:07 - 2015-02-19 14:07 - 00000000 ____D () C:\Users\Cyco\AppData\Local\Steam
2015-02-19 03:01 - 2009-09-10 07:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-19 03:01 - 2009-09-10 06:52 - 00257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-19 00:42 - 2015-02-19 00:52 - 00000000 ____D () C:\Users\Cyco\AppData\Local\Arma 3
2015-02-19 00:42 - 2015-02-19 00:48 - 00000000 ____D () C:\Users\Cyco\Documents\Arma 3
2015-02-19 00:42 - 2015-02-19 00:42 - 00000000 ____D () C:\ProgramData\Bohemia Interactive
2015-02-19 00:37 - 2015-02-19 00:37 - 00000000 ____D () C:\Users\Cyco\AppData\Local\Bohemia_Interactive
2015-02-19 00:37 - 2015-02-19 00:37 - 00000000 ____D () C:\Users\Cyco\AppData\Local\Arma 3 Launcher
2015-02-19 00:37 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-02-19 00:37 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-02-19 00:37 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-02-19 00:37 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-02-19 00:37 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-02-19 00:37 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-02-19 00:37 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-02-19 00:37 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-02-19 00:37 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-02-19 00:37 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-02-19 00:37 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-02-19 00:37 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-02-19 00:37 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-02-19 00:37 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-02-19 00:37 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-02-19 00:37 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-02-19 00:37 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-02-19 00:37 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-02-19 00:37 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-02-19 00:37 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-02-19 00:37 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-02-19 00:37 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-02-19 00:37 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-02-19 00:37 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-02-19 00:37 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-02-19 00:37 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-02-19 00:37 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-02-19 00:37 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-02-19 00:37 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-02-19 00:37 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-02-19 00:37 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-02-19 00:37 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-02-19 00:37 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-02-19 00:37 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-02-19 00:37 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-02-19 00:37 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-02-19 00:37 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-02-19 00:37 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-02-19 00:37 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-02-19 00:37 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-02-19 00:37 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-02-19 00:37 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-02-19 00:37 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-02-19 00:37 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-02-19 00:37 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-02-19 00:37 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-02-19 00:37 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-02-19 00:37 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-02-19 00:37 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-02-19 00:37 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-02-19 00:37 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-02-19 00:37 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-02-19 00:37 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-02-19 00:37 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-02-19 00:37 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-02-19 00:37 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-02-19 00:37 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-02-19 00:37 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-02-19 00:37 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-02-19 00:37 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-02-19 00:37 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-02-19 00:37 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-02-19 00:37 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-02-19 00:37 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-02-19 00:37 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-02-19 00:37 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-02-19 00:37 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-02-19 00:37 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-02-19 00:37 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-02-19 00:37 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-02-19 00:37 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-02-19 00:37 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-02-19 00:37 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-02-19 00:37 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-02-19 00:37 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-02-19 00:37 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-02-19 00:37 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-02-19 00:37 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-02-19 00:33 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-02-19 00:33 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-02-19 00:33 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-02-19 00:33 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-02-19 00:33 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-02-19 00:33 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-02-19 00:33 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-02-19 00:33 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-02-19 00:33 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-02-19 00:33 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-02-19 00:33 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-02-19 00:33 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-02-19 00:33 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-02-19 00:33 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-02-19 00:33 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-02-19 00:33 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-02-19 00:33 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-02-19 00:33 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-02-19 00:33 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-02-19 00:33 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-02-19 00:33 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-02-19 00:33 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-02-19 00:33 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-02-19 00:33 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-02-19 00:33 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-02-19 00:33 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-02-19 00:33 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-02-19 00:33 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-02-19 00:33 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-02-19 00:33 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-02-19 00:32 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-02-19 00:32 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-02-19 00:32 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-02-19 00:32 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-02-19 00:32 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-02-19 00:32 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-02-19 00:32 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-02-19 00:32 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-02-19 00:32 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-02-19 00:32 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-02-19 00:32 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-02-19 00:32 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-02-19 00:32 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-02-19 00:32 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-02-19 00:32 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-02-19 00:32 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-02-19 00:32 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-02-19 00:32 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-02-19 00:32 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-02-19 00:32 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-02-19 00:32 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-02-19 00:32 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-02-19 00:32 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-02-19 00:32 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-02-19 00:32 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-02-19 00:32 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-02-19 00:32 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-02-19 00:32 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-02-19 00:32 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-02-19 00:32 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-02-19 00:32 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-02-19 00:32 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-02-19 00:32 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-02-19 00:20 - 2009-10-02 05:32 - 00982600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-02-19 00:20 - 2009-09-03 08:36 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-02-19 00:20 - 2009-09-03 08:04 - 01320960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2015-02-19 00:20 - 2009-08-29 08:53 - 14629376 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-02-19 00:20 - 2009-08-29 08:45 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-02-19 00:20 - 2009-08-29 07:59 - 11406336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-02-19 00:20 - 2009-08-29 07:54 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2015-02-19 00:20 - 2009-08-03 07:17 - 02868224 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-02-19 00:20 - 2009-08-03 06:35 - 02613248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-02-19 00:19 - 2009-12-19 10:50 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2015-02-19 00:19 - 2009-12-19 10:49 - 01572352 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-02-19 00:19 - 2009-12-19 10:47 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2015-02-19 00:19 - 2009-12-19 10:47 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2015-02-19 00:19 - 2009-12-19 10:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2015-02-19 00:19 - 2009-12-19 10:46 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 01328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll
2015-02-19 00:19 - 2009-12-19 10:02 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll
2015-02-19 00:19 - 2009-10-19 15:46 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2015-02-19 00:19 - 2009-10-19 15:46 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-02-19 00:19 - 2009-10-19 15:10 - 00108544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2015-02-19 00:19 - 2009-10-19 15:10 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-02-19 00:19 - 2009-08-29 08:50 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2015-02-19 00:19 - 2009-08-29 07:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll
2015-02-19 00:19 - 2009-07-30 06:07 - 00366080 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-02-19 00:19 - 2009-07-30 05:44 - 00293888 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-02-19 00:16 - 2015-02-19 00:37 - 00025502 _____ () C:\Windows\DirectX.log
2015-02-19 00:16 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-02-19 00:16 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-02-19 00:16 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-02-19 00:16 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-02-19 00:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-02-19 00:16 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-02-19 00:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-02-19 00:16 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-02-19 00:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-02-19 00:14 - 2015-02-19 03:00 - 00008409 ____H () C:\Windows\SysWOW64\BTImages.dat
2015-02-19 00:06 - 2015-02-19 14:07 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-19 00:06 - 2015-02-19 00:06 - 01142128 _____ () C:\Users\Cyco\Downloads\SteamSetup (1).exe
2015-02-19 00:06 - 2015-02-19 00:06 - 00000967 _____ () C:\Users\Public\Desktop\Steam.lnk
2015-02-19 00:06 - 2015-02-19 00:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-02-19 00:04 - 2015-02-19 00:04 - 01142128 _____ () C:\Users\Cyco\Downloads\SteamSetup.exe
2015-02-18 23:27 - 2015-02-18 23:27 - 00942366 _____ () C:\Users\Cyco\Downloads\mission.sqm
2015-02-18 23:24 - 2015-02-18 23:24 - 00437660 _____ () C:\Users\Cyco\Downloads\Neues Textdokument (3).txt
2015-02-18 20:08 - 2015-02-19 14:06 - 00000000 ____D () C:\Users\Cyco\AppData\Roaming\TS3Client
2015-02-18 20:07 - 2015-02-18 20:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ta10usb_01009.Wdf
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 __HDC () C:\ProgramData\{5EE4F9B1-7274-48A2-9C25-C287604C3058}
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\ProgramData\Native Instruments
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\Program Files\Native Instruments
2015-02-18 20:03 - 2015-02-18 20:04 - 00000000 ____D () C:\Users\Cyco\Downloads\Traktor_Audio_10_310_PC
2015-02-18 20:03 - 2015-02-18 20:03 - 21352369 _____ () C:\Users\Cyco\Downloads\Traktor_Audio_10_310_PC.zip
2015-02-18 20:01 - 2015-02-18 20:01 - 00001166 _____ () C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2015-02-18 20:01 - 2015-02-18 20:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-02-18 20:00 - 2015-02-18 20:01 - 00000000 ____D () C:\Program Files (x86)\TeamSpeak 3 Client
2015-02-18 19:57 - 2015-02-18 19:57 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-18 19:57 - 2015-02-18 19:57 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-18 15:27 - 2015-02-18 15:27 - 00103197 _____ () C:\Users\Cyco\Downloads\LOIC-1.0.8-binary.zip
2015-02-18 15:10 - 2015-02-18 15:11 - 28115400 _____ (TeamSpeak Systems GmbH) C:\Users\Cyco\Downloads\TeamSpeak3-Client-win32-3.0.16.exe
2015-02-18 14:35 - 2011-04-09 07:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-02-18 14:35 - 2011-04-09 07:45 - 05509504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-18 14:35 - 2011-04-09 07:13 - 03957632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-18 14:35 - 2011-04-09 07:13 - 03901824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-18 14:35 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-02-18 14:32 - 2015-02-04 04:04 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-18 14:32 - 2015-02-04 04:03 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-18 14:32 - 2015-02-04 04:03 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-18 14:32 - 2015-02-04 04:03 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-18 14:32 - 2015-02-04 04:03 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-18 14:32 - 2015-02-04 04:01 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-18 14:32 - 2015-01-28 00:23 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-18 14:32 - 2014-12-04 03:31 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-18 14:32 - 2014-09-15 01:44 - 03195392 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-18 14:27 - 2012-06-02 23:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-02-18 14:27 - 2012-06-02 23:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-02-18 14:27 - 2012-06-02 23:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-02-18 14:27 - 2012-06-02 23:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-02-18 14:27 - 2012-06-02 23:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-02-18 14:27 - 2012-06-02 23:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-02-18 14:27 - 2012-06-02 23:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-02-18 14:26 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-02-18 14:26 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-02-18 00:11 - 2015-02-18 00:11 - 00057560 _____ () C:\Users\Cyco\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-18 00:08 - 2015-02-18 00:08 - 00380416 _____ () C:\Users\Cyco\Downloads\xqym5rqp.exe
2015-02-18 00:06 - 2015-02-18 00:06 - 00431395 _____ () C:\Windows\system32\Drivers\vsconfig.xml
2015-02-18 00:06 - 2015-02-18 00:06 - 00000762 _____ () C:\Users\Public\Desktop\ZoneAlarm Security.lnk
2015-02-18 00:06 - 2015-02-18 00:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Check Point
2015-02-18 00:06 - 2014-06-11 10:09 - 07717984 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2015-02-18 00:06 - 2014-06-11 10:09 - 00490592 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2015-02-18 00:06 - 2014-06-11 10:09 - 00092768 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2015-02-18 00:06 - 2010-04-09 12:06 - 01898376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-02-18 00:06 - 2010-04-09 12:06 - 00374664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-02-18 00:02 - 2015-02-18 00:06 - 00000000 ____D () C:\Program Files (x86)\CheckPoint
2015-02-18 00:02 - 2015-02-18 00:02 - 00000000 ____D () C:\Users\Cyco\AppData\Roaming\Check Point Software Technologies LTD
2015-02-18 00:02 - 2015-02-18 00:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-18 00:02 - 2015-02-18 00:02 - 00000000 ____D () C:\Program Files (x86)\Check Point Software Technologies LTD
2015-02-18 00:01 - 2015-02-18 00:01 - 03402432 _____ (Check Point Software Technologies Ltd.) C:\Users\Cyco\Downloads\zaSetupWeb_133_209_000-5400_123.exe
2015-02-18 00:01 - 2015-02-18 00:01 - 00000000 ____D () C:\ProgramData\CheckPoint
2015-02-17 23:59 - 2015-02-19 02:59 - 00002004 ____H () C:\Users\Cyco\Documents\Default.rdp
2015-02-17 23:57 - 2015-02-17 23:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-02-17 23:55 - 2015-02-19 14:03 - 00019500 _____ () C:\Windows\PFRO.log
2015-02-17 23:54 - 2015-02-19 14:06 - 00030528 _____ () C:\Windows\GVTDrv64.sys
2015-02-17 23:54 - 2015-02-19 14:06 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2015-02-17 23:54 - 2015-02-19 14:06 - 00000004 _____ () C:\Windows\SysWOW64\GVTunner.ref
2015-02-17 23:54 - 2015-02-19 14:04 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-17 23:54 - 2015-02-17 23:54 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2015-02-17 23:54 - 2015-02-17 23:54 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2015-02-17 23:54 - 2012-12-19 06:42 - 00031672 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-02-17 23:54 - 2012-12-19 06:41 - 00194488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-02-17 23:54 - 2012-12-18 09:31 - 01510328 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-02-17 23:54 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-17 23:54 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-17 23:53 - 2015-02-17 23:54 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-02-17 23:53 - 2015-02-17 23:53 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-02-17 23:53 - 2013-03-15 06:53 - 26956576 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 20542752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 17990800 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 15508512 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 15042928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 13088000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 11048736 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-02-17 23:53 - 2013-03-15 06:53 - 09414456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 07959000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 07573816 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 06271872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 02913056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 02728736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 02355488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 01995552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 01807136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6431422.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6431422.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 01118776 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00968408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00420128 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00364832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00250504 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00205184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-02-17 23:53 - 2013-03-15 06:53 - 00017738 _____ () C:\Windows\system32\nvinfo.pb
2015-02-17 23:53 - 2013-03-15 05:16 - 06398240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-02-17 23:53 - 2013-03-15 05:16 - 03477280 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-02-17 23:53 - 2013-03-15 05:16 - 02555680 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-02-17 23:53 - 2013-03-15 05:16 - 00877856 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-02-17 23:53 - 2013-03-15 05:16 - 00237856 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-02-17 23:53 - 2013-03-15 05:16 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-02-17 23:53 - 2013-03-13 17:24 - 03065455 _____ () C:\Windows\system32\nvcoproc.bin
2015-02-17 23:52 - 2015-02-17 23:54 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-02-17 23:52 - 2013-03-15 06:53 - 25256736 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-02-17 23:52 - 2013-03-15 06:53 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-02-17 23:52 - 2013-03-15 06:53 - 02864144 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-02-17 23:52 - 2013-03-15 06:53 - 02539128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-02-17 23:47 - 2015-02-17 23:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
2015-02-17 23:47 - 2015-02-17 23:47 - 00002012 _____ () C:\Users\Public\Desktop\ET6.lnk
2015-02-17 23:47 - 2015-02-17 23:47 - 00000000 ____D () C:\Program Files (x86)\Intel
2015-02-17 23:47 - 2015-02-17 23:47 - 00000000 ____D () C:\Program Files (x86)\AMD
2015-02-17 23:47 - 2015-02-17 23:47 - 00000000 ____D () C:\Intel
2015-02-17 23:46 - 2014-12-23 00:41 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-02-17 23:44 - 2015-02-17 23:48 - 00000156 _____ () C:\csb.log
2015-02-17 23:44 - 2015-02-17 23:48 - 00000000 ____D () C:\Program Files (x86)\GIGABYTE
2015-02-17 23:44 - 2015-02-17 23:44 - 00000000 ____D () C:\Program Files\GIGABYTE
2015-02-17 23:44 - 2015-02-17 23:44 - 00000000 ____D () C:\Program Files (x86)\Etron Technology
2015-02-17 23:44 - 2013-10-28 10:02 - 00022240 _____ () C:\Windows\system32\Drivers\AppleCharger.sys
2015-02-17 23:44 - 2013-10-24 17:29 - 00022240 _____ () C:\Windows\system32\Drivers\UsbCharger.sys
2015-02-17 23:44 - 2013-08-05 16:37 - 00094208 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys
2015-02-17 23:44 - 2013-08-05 16:37 - 00065408 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronHub3.sys
2015-02-17 23:44 - 2010-04-06 16:30 - 00031272 _____ () C:\Windows\system32\AppleChargerSrv.exe
2015-02-17 23:42 - 2015-02-18 20:07 - 00014028 _____ () C:\Windows\DPINST.LOG
2015-02-17 23:42 - 2015-02-17 23:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-02-17 23:42 - 2012-08-28 13:27 - 00058536 ____R (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2015-02-17 23:41 - 2015-02-17 23:42 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2015-02-17 23:41 - 2015-02-17 23:41 - 00000000 ____D () C:\ProgramData\AMD
2015-02-17 23:41 - 2015-02-17 23:41 - 00000000 ____D () C:\Program Files\ATI Technologies
2015-02-17 23:41 - 2015-02-17 23:41 - 00000000 ____D () C:\Program Files\ATI
2015-02-17 23:41 - 2013-06-27 16:50 - 00082240 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_sata.sys
2015-02-17 23:41 - 2013-06-27 16:50 - 00042304 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_xata.sys
2015-02-17 23:40 - 2015-02-19 00:15 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-17 23:38 - 2015-02-17 23:38 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2015-02-17 23:38 - 2015-02-17 23:38 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-02-17 23:38 - 2015-02-17 23:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-02-17 23:38 - 2015-02-17 23:38 - 00000000 ____D () C:\Program Files\Realtek
2015-02-17 23:38 - 2015-02-17 23:38 - 00000000 ____D () C:\Program Files (x86)\Dolby Home Theater v4
2015-02-17 23:37 - 2013-12-13 04:29 - 05681196 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2015-02-17 23:37 - 2013-12-13 04:29 - 03760344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-02-17 23:37 - 2013-12-13 04:29 - 02810072 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 02588888 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-02-17 23:37 - 2013-12-13 04:29 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 01021656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00693329 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-02-17 23:37 - 2013-12-13 04:29 - 00618200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00154840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2015-02-17 23:37 - 2013-12-13 04:29 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-02-17 23:37 - 2011-09-29 10:30 - 00646248 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2015-02-17 23:37 - 2011-09-29 10:30 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2015-02-17 23:37 - 2011-09-29 10:30 - 00074272 _____ () C:\Windows\system32\RtNicProp64.dll
2015-02-17 23:36 - 2015-02-17 23:48 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-02-17 23:36 - 2015-02-17 23:38 - 00000189 _____ () C:\Install.log
2015-02-17 23:36 - 2015-02-17 23:38 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-02-17 23:36 - 2015-02-17 23:37 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-02-17 23:36 - 2013-12-13 04:30 - 02080472 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 41974272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-02-17 23:36 - 2013-12-13 04:29 - 14153984 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 02036992 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 01922304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 01013504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-02-17 23:36 - 2013-12-13 04:29 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-02-17 23:36 - 2013-09-09 21:02 - 06217904 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-02-17 23:36 - 2013-09-09 21:02 - 00313520 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-02-17 23:36 - 2013-09-09 21:01 - 01938608 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-02-17 23:36 - 2013-09-09 21:01 - 00260272 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-02-17 23:36 - 2012-08-31 12:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-02-17 23:36 - 2012-08-31 12:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-02-17 23:36 - 2012-08-31 12:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-02-17 23:36 - 2012-08-31 12:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-02-17 23:36 - 2012-08-31 12:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-02-17 23:35 - 2015-02-19 00:19 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-02-17 23:34 - 2009-11-25 12:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2015-02-17 23:34 - 2009-11-25 12:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2015-02-17 23:34 - 2009-11-25 12:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2015-02-17 23:34 - 2009-11-25 12:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2015-02-17 23:33 - 2015-02-19 14:05 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-17 23:33 - 2015-02-19 02:43 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-17 23:33 - 2015-02-18 14:53 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-17 23:33 - 2015-02-18 14:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-17 23:33 - 2015-02-18 14:38 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-17 23:33 - 2015-02-18 14:38 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-17 23:33 - 2015-02-18 00:00 - 00000000 ____D () C:\Users\Cyco\AppData\Local\Google
2015-02-17 23:33 - 2015-02-17 23:33 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-17 23:32 - 2015-02-17 23:32 - 00000010 _____ () C:\Windows\GSetup.ini
2015-02-17 23:31 - 2015-02-17 23:31 - 00001443 _____ () C:\Users\Cyco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-02-17 23:31 - 2015-02-17 23:31 - 00001409 _____ () C:\Users\Cyco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2015-02-17 23:30 - 2015-02-17 23:30 - 00000020 ___SH () C:\Users\Cyco\ntuser.ini
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Startmenü
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Vorlagen
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Startmenü
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Netzwerkumgebung
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Lokale Einstellungen
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Eigene Dateien
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Druckumgebung
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Documents\Eigene Musik
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Documents\Eigene Bilder
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\AppData\Local\Verlauf
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\AppData\Local\Anwendungsdaten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Users\Cyco\Anwendungsdaten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Programme
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\ProgramData\Startmenü
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\ProgramData\Favoriten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\ProgramData\Dokumente
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 __SHD () C:\Recovery
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 ____D () C:\Users\Cyco\AppData\Local\VirtualStore
2015-02-17 23:30 - 2015-02-17 23:30 - 00000000 ____D () C:\Users\Cyco
2015-02-17 23:30 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Cyco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-17 23:30 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\Cyco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-02-17 23:24 - 2015-02-17 23:24 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2015-02-17 23:24 - 2015-02-17 23:24 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2015-02-17 23:23 - 2015-02-19 14:09 - 00687118 _____ () C:\Windows\WindowsUpdate.log
2015-02-17 23:23 - 2015-02-17 23:23 - 00001313 _____ () C:\Windows\TSSysprep.log
2015-02-17 23:19 - 2015-02-17 23:30 - 00000000 ____D () C:\Windows\Panther
2015-02-17 23:19 - 2015-02-17 23:19 - 00008192 __RSH () C:\BOOTSECT.BAK
2015-02-17 23:19 - 2009-07-14 02:38 - 00383562 __RSH () C:\bootmgr
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-02-19 14:10 - 2009-07-14 18:58 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2015-02-19 14:10 - 2009-07-14 18:58 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2015-02-19 14:10 - 2009-07-14 06:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-19 14:04 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-19 14:04 - 2009-07-14 05:51 - 00019371 _____ () C:\Windows\setupact.log
2015-02-19 14:04 - 2009-07-14 05:45 - 00265696 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-19 14:04 - 2009-07-14 05:45 - 00013600 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-19 14:04 - 2009-07-14 05:45 - 00013600 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-18 19:57 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2015-02-17 23:53 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2015-02-17 23:47 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2015-02-17 23:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-02-17 23:33 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\restore
2015-02-17 23:30 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2015-02-17 23:30 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Windows NT
2015-02-17 23:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-02-17 23:24 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-02-17 23:24 - 2009-07-14 05:46 - 00001774 _____ () C:\Windows\DtcInstall.log
2015-02-17 23:24 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-02-17 23:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2015-02-17 23:19 - 2009-07-14 06:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2015-02-17 23:19 - 2009-07-14 06:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
==================== Files in the root of some directories =======
2015-02-17 23:38 - 2015-02-17 23:38 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-17 23:20
==================== End Of Log ============================
und die addition Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-02-2015 01
Ran by Cyco at 2015-02-19 14:13:11
Running from C:\Users\Cyco\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ZoneAlarm Antivirus (Enabled - Up to date) {23B6D20A-C2DE-B3F5-C67D-07ECD854E6A9}
AS: ZoneAlarm Anti-Spyware (Enabled - Up to date) {98D733EE-E4E4-BC7B-FCCD-3C9EA3D3AC14}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ZoneAlarm Firewall (Enabled) {1B8D532F-88B1-B2AD-ED22-AED92687A1D2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.33 - GIGABYTE)
AMD Catalyst Install Manager (HKLM\...\{1D1DCF8A-6961-F848-0DA0-5401969C44CE}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AutoGreen B12.1220.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.1220.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Easy Tune 6 B13.1111.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B13.1111.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Etron USB3.0 Host Controller (x32 Version: 0.118 - Etron Technology) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Microsoft .NET Framework 4.5.1 RC (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50861 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Native Instruments Traktor Audio 10 Driver (HKLM-x32\...\Native Instruments Traktor Audio 10 Driver) (Version: - Native Instruments)
NVIDIA 3D Vision Controller-Treiber 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 314.22 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 314.22 - NVIDIA Corporation)
NVIDIA Grafiktreiber 314.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 314.22 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.23.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.23.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 1.12.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.12.12 - NVIDIA Corporation)
ON_OFF Charge 2 B13.1028.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B13.1028.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7106 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
ZoneAlarm Antivirus (x32 Version: 13.3.209.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Firewall (x32 Version: 13.3.209.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Antivirus + Firewall (HKLM-x32\...\ZoneAlarm Free Antivirus + Firewall) (Version: 13.3.209.000 - Check Point)
ZoneAlarm Security (x32 Version: 13.3.209.000 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Security Toolbar (HKLM-x32\...\zonealarm) (Version: 1.8.29.17 - Check Point Software Technologies LTD)
ZoneAlarm Security Toolbar (HKU\S-1-5-21-3663364285-3570083550-4158424099-1000\...\zonealarm) (Version: 1.8.29.17 - Check Point Software Technologies LTD)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
17-02-2015 23:33:49 Windows Update
17-02-2015 23:36:54 Installiert Realtek Ethernet Controller Driver
17-02-2015 23:40:24 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
17-02-2015 23:40:57 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
17-02-2015 23:43:56 Installed Etron USB3.0 Host Controller
18-02-2015 00:06:07 Windows Update
18-02-2015 14:26:40 Windows Update
18-02-2015 15:39:11 Windows Update
19-02-2015 00:13:55 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
19-02-2015 00:14:20 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
19-02-2015 00:14:37 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
19-02-2015 00:15:04 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
19-02-2015 00:15:22 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
19-02-2015 00:15:41 Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
19-02-2015 00:16:02 DirectX wurde installiert
19-02-2015 00:32:22 DirectX wurde installiert
19-02-2015 00:36:32 DirectX wurde installiert
19-02-2015 03:00:13 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00505B1D-15C9-4131-BF02-D45787A122DC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-17] (Google Inc.)
Task: {40135F69-A9E1-40E4-8CA0-4404DBEC21C9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-02-17] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2013-08-30 19:47 - 2013-08-30 19:47 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-10-22 14:41 - 2012-10-22 14:41 - 00749056 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-10-22 14:42 - 2012-10-22 14:42 - 03645952 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2015-02-17 23:53 - 2013-03-15 05:16 - 00086304 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-01-13 14:04 - 2012-01-13 14:04 - 00219760 _____ () C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
2013-11-11 18:56 - 2013-11-11 18:56 - 02887747 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Normal.dll
2013-11-05 11:07 - 2013-11-05 11:07 - 00651327 _____ () C:\Program Files (x86)\GIGABYTE\ET6\work.dll
2013-09-13 15:26 - 2013-09-13 15:26 - 01331266 _____ () C:\Program Files (x86)\GIGABYTE\ET6\SF.dll
2008-05-07 15:22 - 2008-05-07 15:22 - 00102400 _____ () C:\Program Files (x86)\GIGABYTE\ET6\CIAMIB.dll
2012-05-08 15:01 - 2012-05-08 15:01 - 00069632 _____ () C:\Program Files (x86)\GIGABYTE\ET6\GPTT.dll
2012-11-27 15:03 - 2012-11-27 15:03 - 00102400 _____ () C:\Program Files (x86)\GIGABYTE\ET6\ycc.dll
2010-06-24 15:50 - 2010-06-24 15:50 - 00094208 _____ () C:\Program Files (x86)\GIGABYTE\ET6\IccLibDll.dll
2011-03-01 19:00 - 2011-03-01 19:00 - 00126976 _____ () C:\Program Files (x86)\GIGABYTE\ET6\StabilityLib.dll
2011-10-18 09:26 - 2011-10-18 09:26 - 00024576 _____ () C:\Program Files (x86)\GIGABYTE\ET6\STT.dll
2013-11-05 13:12 - 2013-11-05 13:12 - 01499200 _____ () C:\Program Files (x86)\GIGABYTE\ET6\OCK.dll
2013-11-06 17:59 - 2013-11-06 17:59 - 01335358 _____ () C:\Program Files (x86)\GIGABYTE\ET6\HM.dll
2013-03-23 10:59 - 2013-03-23 10:59 - 01433674 _____ () C:\Program Files (x86)\GIGABYTE\ET6\GVTunner.dll
2003-02-14 14:11 - 2003-02-14 14:11 - 00102400 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Sound.dll
2013-11-01 10:29 - 2013-11-01 10:29 - 01318984 _____ () C:\Program Files (x86)\GIGABYTE\ET6\AMD8.dll
2013-05-24 00:50 - 2013-05-24 00:50 - 03860520 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Platform.dll
2013-05-24 00:50 - 2013-05-24 00:50 - 00579616 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Device.dll
2013-09-12 11:50 - 2013-09-12 11:50 - 00311296 _____ () C:\Program Files (x86)\GIGABYTE\ET6\MFCCPU.DLL
2015-02-18 14:53 - 2015-02-04 10:02 - 01117512 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libglesv2.dll
2015-02-18 14:53 - 2015-02-04 10:02 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\libegl.dll
2014-02-28 14:33 - 2014-02-28 14:33 - 00148480 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\quazip.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00864768 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\platforms\qwindows.dll
2014-02-27 14:45 - 2014-02-27 14:45 - 00677376 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\sqldrivers\qsqlite.dll
2014-08-04 14:43 - 2014-08-04 14:43 - 00092104 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\directsound_win32.dll
2014-08-04 14:43 - 2014-08-04 14:43 - 00105416 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win32.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00025600 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\imageformats\qgif.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00242688 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\imageformats\qjpeg.dll
2014-08-04 14:45 - 2014-08-04 14:45 - 00477128 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 14:45 - 2014-08-04 14:45 - 00484808 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2014-02-27 14:46 - 2014-02-27 14:46 - 00123904 _____ () C:\Program Files (x86)\TeamSpeak 3 Client\accessible\qtaccessiblewidgets.dll
2015-02-19 00:08 - 2014-11-11 19:47 - 00774656 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-02-19 00:08 - 2014-12-02 01:29 - 05002752 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-02-19 00:08 - 2014-12-02 01:29 - 01612800 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-02-19 00:08 - 2014-12-02 01:29 - 01210368 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-02-19 00:08 - 2015-02-19 00:51 - 02360000 _____ () C:\Program Files (x86)\Steam\video.dll
2015-02-19 00:08 - 2014-12-01 22:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-02-19 00:08 - 2014-12-01 22:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-02-19 00:08 - 2014-12-01 22:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-02-19 00:08 - 2014-12-01 22:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-02-19 00:08 - 2014-12-01 22:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-02-19 00:08 - 2015-02-19 00:51 - 00702656 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-02-18 14:53 - 2015-02-04 10:02 - 09170760 _____ () C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.111\pdf.dll
2015-02-19 00:08 - 2015-01-28 02:30 - 34641288 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3663364285-3570083550-4158424099-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Cyco\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-3663364285-3570083550-4158424099-500 - Administrator - Disabled)
Cyco (S-1-5-21-3663364285-3570083550-4158424099-1000 - Administrator - Enabled) => C:\Users\Cyco
Gast (S-1-5-21-3663364285-3570083550-4158424099-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3663364285-3570083550-4158424099-1003 - Limited - Enabled)
UpdatusUser (S-1-5-21-3663364285-3570083550-4158424099-1004 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/19/2015 02:09:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 18.2.2015.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 177c
Startzeit: 01d04c452b034acb
Endzeit: 2
Anwendungspfad: C:\Users\Cyco\Downloads\FRST64.exe
Berichts-ID: 7c1c68c4-b838-11e4-a3ee-fcaa1429e8b5
Error: (02/19/2015 00:21:00 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - 1>Failed to compile: System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
Error: (02/19/2015 00:20:59 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - 1>Failed to compile: System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
Error: (02/18/2015 00:09:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: xqym5rqp.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83
Name des fehlerhaften Moduls: xqym5rqp.exe, Version: 2.1.19357.0, Zeitstempel: 0x52e7ea83
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000011aa
ID des fehlerhaften Prozesses: 0x124c
Startzeit der fehlerhaften Anwendung: 0xxqym5rqp.exe0
Pfad der fehlerhaften Anwendung: xqym5rqp.exe1
Pfad des fehlerhaften Moduls: xqym5rqp.exe2
Berichtskennung: xqym5rqp.exe3
System errors:
=============
Error: (02/19/2015 02:07:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/19/2015 02:07:28 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (02/19/2015 02:04:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger
Error: (02/19/2015 00:08:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/19/2015 00:08:54 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (02/18/2015 11:52:49 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger
Error: (02/18/2015 11:46:29 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger
Error: (02/18/2015 08:32:16 PM) (Source: Microsoft-Windows-HAL) (EventID: 12) (User: )
Description: Der Speicher wurde beim letzten Leistungsübergang des Systems von der Plattformfirmware beschädigt. Überprüfen Sie, ob für Ihr System aktualisierte Firmware verfügbar ist.
Error: (02/18/2015 07:59:44 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%16405
Error: (02/18/2015 07:59:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
UsbCharger
Microsoft Office Sessions:
=========================
Error: (02/19/2015 02:09:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: FRST64.exe18.2.2015.1177c01d04c452b034acb2C:\Users\Cyco\Downloads\FRST64.exe7c1c68c4-b838-11e4-a3ee-fcaa1429e8b5
Error: (02/19/2015 00:21:00 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - 1>Failed to compile: System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
Error: (02/19/2015 00:20:59 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - 1>Failed to compile: System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
Error: (02/18/2015 00:09:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: xqym5rqp.exe2.1.19357.052e7ea83xqym5rqp.exe2.1.19357.052e7ea83c0000005000011aa124c01d04b06bda552d0C:\Users\Cyco\Downloads\xqym5rqp.exeC:\Users\Cyco\Downloads\xqym5rqp.exefe5b7e64-b6f9-11e4-89df-fcaa1429e8b5
==================== Memory info ===========================
Processor: AMD FX(tm)-8350 Eight-Core Processor
Percentage of memory in use: 31%
Total physical RAM: 8152.73 MB
Available physical RAM: 5621.94 MB
Total Pagefile: 16303.61 MB
Available Pagefile: 13696.74 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:161.63 GB) (Free:127.07 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Programme) (Fixed) (Total:546.22 GB) (Free:386.9 GB) NTFS
Drive f: (Volume) (Fixed) (Total:373.73 GB) (Free:334.36 GB) NTFS
Drive g: (Volume) (Fixed) (Total:304.13 GB) (Free:241.94 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 9283C6DC)
Partition 1: (Active) - (Size=373.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1294 GB) - (Type=05)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: ACE22E9E)
Partition 1: (Active) - (Size=161.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=304.1 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
19.02.2015, 19:32
| #4 |
| /// the machine /// TB-Ausbilder | Komische Ip taucht auf hi, Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.02.2015, 21:07
| #5 |
| | Komische Ip taucht auf mbra keine Funde Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.08.3.1004
www.malwarebytes.org
Database version:
main: v2015.02.19.09
rootkit: v2015.02.03.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Cyco :: CYCO-PC [administrator]
19.02.2015 20:34:19
mbar-log-2015-02-19 (20-34-19).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 366414
Time elapsed: 11 minute(s), 39 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
20.02.2015, 10:40
| #6 |
| /// the machine /// TB-Ausbilder | Komische Ip taucht auf Hi, Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ --> Komische Ip taucht auf |
|
20.02.2015, 12:45
| #7 |
| | Komische Ip taucht auf schuldigung, hab ich nicht überlesen  TDSS Teil 1: Code:
ATTFilter 20:56:25.0842 0x0cac TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
20:56:28.0816 0x0cac ============================================================
20:56:28.0816 0x0cac Current date / time: 2015/02/19 20:56:28.0816
20:56:28.0816 0x0cac SystemInfo:
20:56:28.0816 0x0cac
20:56:28.0817 0x0cac OS Version: 6.1.7601 ServicePack: 1.0
20:56:28.0817 0x0cac Product type: Workstation
20:56:28.0817 0x0cac ComputerName: CYCO-PC
20:56:28.0817 0x0cac UserName: Cyco
20:56:28.0817 0x0cac Windows directory: C:\Windows
20:56:28.0817 0x0cac System windows directory: C:\Windows
20:56:28.0817 0x0cac Running under WOW64
20:56:28.0817 0x0cac Processor architecture: Intel x64
20:56:28.0817 0x0cac Number of processors: 8
20:56:28.0817 0x0cac Page size: 0x1000
20:56:28.0817 0x0cac Boot type: Normal boot
20:56:28.0817 0x0cac ============================================================
20:56:29.0094 0x0cac KLMD registered as C:\Windows\system32\drivers\23637715.sys
20:56:29.0653 0x0cac System UUID: {F61BC504-1CFE-E65E-2A3A-AF4715C1FD38}
20:56:30.0507 0x0cac Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3F161, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
20:56:30.0521 0x0cac Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:56:30.0529 0x0cac ============================================================
20:56:30.0529 0x0cac \Device\Harddisk0\DR0:
20:56:30.0529 0x0cac MBR partitions:
20:56:30.0529 0x0cac \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x186A0800, BlocksNum 0x2EB76000
20:56:30.0529 0x0cac \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA4999800, BlocksNum 0x4446E800
20:56:30.0529 0x0cac \Device\Harddisk1\DR1:
20:56:30.0529 0x0cac MBR partitions:
20:56:30.0529 0x0cac \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x14340C6C
20:56:30.0529 0x0cac \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x14340CAB, BlocksNum 0x26043F96
20:56:30.0529 0x0cac ============================================================
20:56:30.0538 0x0cac C: <-> \Device\Harddisk1\DR1\Partition1
20:56:30.0539 0x0cac E: <-> \Device\Harddisk0\DR0\Partition2
20:56:30.0548 0x0cac F: <-> \Device\Harddisk0\DR0\Partition1
20:56:30.0582 0x0cac G: <-> \Device\Harddisk1\DR1\Partition2
20:56:30.0582 0x0cac ============================================================
20:56:30.0582 0x0cac Initialize success
20:56:30.0582 0x0cac ============================================================
20:57:09.0408 0x1754 ============================================================
20:57:09.0408 0x1754 Scan started
20:57:09.0408 0x1754 Mode: Manual; SigCheck; TDLFS;
20:57:09.0408 0x1754 ============================================================
20:57:09.0408 0x1754 KSN ping started
20:57:12.0150 0x1754 KSN ping finished: true
20:57:13.0383 0x1754 ================ Scan system memory ========================
20:57:13.0383 0x1754 System memory - ok
20:57:13.0384 0x1754 ================ Scan services =============================
20:57:13.0732 0x1754 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:57:13.0799 0x1754 1394ohci - ok
20:57:13.0827 0x1754 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:57:13.0839 0x1754 ACPI - ok
20:57:13.0883 0x1754 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:57:13.0910 0x1754 AcpiPmi - ok
20:57:14.0034 0x1754 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:57:14.0061 0x1754 adp94xx - ok
20:57:14.0083 0x1754 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:57:14.0095 0x1754 adpahci - ok
20:57:14.0103 0x1754 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:57:14.0111 0x1754 adpu320 - ok
20:57:14.0136 0x1754 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:57:14.0168 0x1754 AeLookupSvc - ok
20:57:14.0213 0x1754 [ D31DC7A16DEA4A9BAF179F3D6FBDB38C, 532678D86E3E667F2E789C4873565E0B92C549A93F10802BB6D5B505CA3238CE ] AFD C:\Windows\system32\drivers\afd.sys
20:57:14.0245 0x1754 AFD - ok
20:57:14.0277 0x1754 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
20:57:14.0284 0x1754 agp440 - ok
20:57:14.0303 0x1754 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
20:57:14.0315 0x1754 ALG - ok
20:57:14.0332 0x1754 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
20:57:14.0337 0x1754 aliide - ok
20:57:14.0443 0x1754 AMD FUEL Service - ok
20:57:14.0463 0x1754 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
20:57:14.0480 0x1754 amdide - ok
20:57:14.0505 0x1754 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:57:14.0543 0x1754 AmdK8 - ok
20:57:14.0553 0x1754 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:57:14.0581 0x1754 AmdPPM - ok
20:57:14.0612 0x1754 [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:57:14.0622 0x1754 amdsata - ok
20:57:14.0632 0x1754 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:57:14.0642 0x1754 amdsbs - ok
20:57:14.0652 0x1754 [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:57:14.0659 0x1754 amdxata - ok
20:57:14.0695 0x1754 [ 172C69FE64D07BDF5CE24146274F8CB8, 0A36069BA7B1E2C8B00E8E611E5F2AEF3A7571FAEA252752577EF9DE11F343DA ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
20:57:14.0713 0x1754 amd_sata - ok
20:57:14.0721 0x1754 [ A8FD2F5F3E70BE8FF66D2AFC6B6FB051, E5C9CDBEA96B008F2B73E5151B85867128479FBEEADF2500AB16E3B0692AC030 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
20:57:14.0727 0x1754 amd_xata - ok
20:57:14.0751 0x1754 [ F2154A205F4B784B61A72AEBC72BDC5F, A1D962BCF952FAD8016D9210327E7C1044BF4D3D035C7443F8671DDA16E0A390 ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
20:57:14.0767 0x1754 AODDriver4.2 - ok
20:57:14.0844 0x1754 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
20:57:14.0893 0x1754 AppID - ok
20:57:14.0923 0x1754 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:57:14.0956 0x1754 AppIDSvc - ok
20:57:14.0976 0x1754 [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo C:\Windows\System32\appinfo.dll
20:57:14.0999 0x1754 Appinfo - ok
20:57:15.0053 0x1754 [ E4D0F0D5EB374D8BACF40E30E9771D60, 56C4E820485D100DACD4EF076E0B2607274B236CCC45E0CCD527C737645A1ACB ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
20:57:15.0066 0x1754 AppleCharger - ok
20:57:15.0093 0x1754 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
20:57:15.0108 0x1754 AppleChargerSrv - ok
20:57:15.0210 0x1754 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:57:15.0229 0x1754 arc - ok
20:57:15.0236 0x1754 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:57:15.0244 0x1754 arcsas - ok
20:57:15.0436 0x1754 [ 041672BAC20B34EAEDEB033129655DD8, 14264732F0CACF5732C7652C411F0A1C3B4A4417C31DD289C8AFF170BE683E5A ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:57:15.0486 0x1754 aspnet_state - ok
20:57:15.0498 0x1754 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:57:15.0535 0x1754 AsyncMac - ok
20:57:15.0564 0x1754 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
20:57:15.0569 0x1754 atapi - ok
20:57:15.0619 0x1754 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:57:15.0657 0x1754 AudioEndpointBuilder - ok
20:57:15.0694 0x1754 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:57:15.0730 0x1754 AudioSrv - ok
20:57:15.0764 0x1754 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:57:15.0832 0x1754 AxInstSV - ok
20:57:15.0887 0x1754 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:57:15.0907 0x1754 b06bdrv - ok
20:57:15.0986 0x1754 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:57:16.0089 0x1754 b57nd60a - ok
20:57:16.0123 0x1754 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
20:57:16.0145 0x1754 BDESVC - ok
20:57:16.0169 0x1754 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
20:57:16.0207 0x1754 Beep - ok
20:57:16.0283 0x1754 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
20:57:16.0324 0x1754 BFE - ok
20:57:16.0394 0x1754 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
20:57:16.0453 0x1754 BITS - ok
20:57:16.0463 0x1754 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:57:16.0471 0x1754 blbdrive - ok
20:57:16.0578 0x1754 [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:57:16.0619 0x1754 bowser - ok
20:57:16.0661 0x1754 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:57:16.0724 0x1754 BrFiltLo - ok
20:57:16.0731 0x1754 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:57:16.0744 0x1754 BrFiltUp - ok
20:57:16.0782 0x1754 [ 8EF0D5C41EC907751B8429162B1239ED, 9CC25F1F93FACA6F6CE23F78EB58590C39A2E3C8A3ACDF400E8A9DE0757EADAE ] Browser C:\Windows\System32\browser.dll
20:57:16.0823 0x1754 Browser - ok
20:57:16.0843 0x1754 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:57:16.0857 0x1754 Brserid - ok
20:57:16.0861 0x1754 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:57:16.0871 0x1754 BrSerWdm - ok
20:57:16.0874 0x1754 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:57:16.0896 0x1754 BrUsbMdm - ok
20:57:16.0900 0x1754 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:57:16.0908 0x1754 BrUsbSer - ok
20:57:16.0912 0x1754 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:57:16.0935 0x1754 BTHMODEM - ok
20:57:16.0966 0x1754 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
20:57:16.0999 0x1754 bthserv - ok
20:57:17.0013 0x1754 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:57:17.0050 0x1754 cdfs - ok
20:57:17.0085 0x1754 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:57:17.0106 0x1754 cdrom - ok
20:57:17.0155 0x1754 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
20:57:17.0195 0x1754 CertPropSvc - ok
20:57:17.0220 0x1754 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:57:17.0230 0x1754 circlass - ok
20:57:17.0254 0x1754 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
20:57:17.0266 0x1754 CLFS - ok
20:57:17.0354 0x1754 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:57:17.0364 0x1754 clr_optimization_v2.0.50727_32 - ok
20:57:17.0429 0x1754 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:57:17.0446 0x1754 clr_optimization_v2.0.50727_64 - ok
20:57:17.0631 0x1754 [ 397C2677C25CBE213F3270245A401624, 8121E37108DE7A0402DC5111EBF452F91893B63EECE3AAD9EACF61C40D3FC182 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:57:17.0644 0x1754 clr_optimization_v4.0.30319_32 - ok
20:57:17.0703 0x1754 [ 29139759FCC4E4E0531ABE2EA82CE646, CFF7B2F4A9B37D343BE18DC40161DC03FA9DB308CAE9E0B3DF1FCDC3EBAC0C08 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:57:17.0788 0x1754 clr_optimization_v4.0.30319_64 - ok
20:57:17.0826 0x1754 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:57:17.0856 0x1754 CmBatt - ok
20:57:17.0873 0x1754 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:57:17.0884 0x1754 cmdide - ok
20:57:17.0929 0x1754 [ D5FEA92400F12412B3922087C09DA6A5, C8CD9215D26D3295FE487C96A4FC3F4C8AFED764AE9445D9858D7489823A8A2B ] CNG C:\Windows\system32\Drivers\cng.sys
20:57:17.0963 0x1754 CNG - ok
20:57:17.0981 0x1754 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:57:17.0987 0x1754 Compbatt - ok
20:57:18.0027 0x1754 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:57:18.0107 0x1754 CompositeBus - ok
20:57:18.0158 0x1754 COMSysApp - ok
20:57:18.0168 0x1754 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:57:18.0180 0x1754 crcdisk - ok
20:57:18.0239 0x1754 [ 15597883FBE9B056F276ADA3AD87D9AF, B347E0B11228E38313C59C8ED984253A8A1FF482ED137CF5F488C4AFD6B08857 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:57:18.0326 0x1754 CryptSvc - ok
20:57:18.0363 0x1754 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:57:18.0408 0x1754 DcomLaunch - ok
20:57:18.0465 0x1754 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
20:57:18.0509 0x1754 defragsvc - ok
20:57:18.0541 0x1754 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:57:18.0580 0x1754 DfsC - ok
20:57:18.0616 0x1754 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:57:18.0644 0x1754 Dhcp - ok
20:57:18.0669 0x1754 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
20:57:18.0692 0x1754 discache - ok
20:57:18.0705 0x1754 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:57:18.0712 0x1754 Disk - ok
20:57:18.0761 0x1754 [ CD55F5355D8F55D44C9F4ED875705BD6, 321C26E3CD9F376D30F05FBDF00E96399512ED705D867E8B14793D9CE69A1C1F ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:57:18.0813 0x1754 Dnscache - ok
20:57:18.0843 0x1754 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
20:57:18.0882 0x1754 dot3svc - ok
20:57:18.0909 0x1754 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
20:57:18.0934 0x1754 DPS - ok
20:57:18.0958 0x1754 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:57:18.0967 0x1754 drmkaud - ok
20:57:19.0005 0x1754 [ F5BEE30450E18E6B83A5012C100616FD, 44D0577D159FC2BDF4EAD1DC2C7FD14925D075225EF97608CAC52DEE405B08FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:57:19.0028 0x1754 DXGKrnl - ok
20:57:19.0062 0x1754 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
20:57:19.0098 0x1754 EapHost - ok
20:57:19.0223 0x1754 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:57:19.0313 0x1754 ebdrv - ok
20:57:19.0427 0x1754 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS C:\Windows\System32\lsass.exe
20:57:19.0436 0x1754 EFS - ok
20:57:19.0565 0x1754 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:57:19.0610 0x1754 ehRecvr - ok
20:57:19.0685 0x1754 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
20:57:19.0711 0x1754 ehSched - ok
20:57:19.0753 0x1754 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:57:19.0771 0x1754 elxstor - ok
20:57:19.0790 0x1754 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:57:19.0812 0x1754 ErrDev - ok
20:57:19.0847 0x1754 [ FD291A75ECAF197F07BD2040C2A7322A, B4DE1B8A75928C8E6DF870A7B6F286EAA0B9A5D9443E99B66633F8B60013AC67 ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
20:57:19.0856 0x1754 EtronHub3 - ok
20:57:19.0893 0x1754 [ DDE9068F9BAC0210195F217AA39B9276, 3AE8CE03B0F93EF6006B46F8DFD5523F6C1951D98FB9A411EA90261C368A453F ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
20:57:19.0902 0x1754 EtronXHCI - ok
20:57:20.0042 0x1754 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
20:57:20.0090 0x1754 EventSystem - ok
20:57:20.0110 0x1754 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
20:57:20.0138 0x1754 exfat - ok
20:57:20.0145 0x1754 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:57:20.0172 0x1754 fastfat - ok
20:57:20.0244 0x1754 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
20:57:20.0270 0x1754 Fax - ok
20:57:20.0309 0x1754 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:57:20.0334 0x1754 fdc - ok
20:57:20.0348 0x1754 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
20:57:20.0386 0x1754 fdPHost - ok
20:57:20.0405 0x1754 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
20:57:20.0438 0x1754 FDResPub - ok
20:57:20.0441 0x1754 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:57:20.0448 0x1754 FileInfo - ok
20:57:20.0451 0x1754 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:57:20.0474 0x1754 Filetrace - ok
20:57:20.0478 0x1754 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:57:20.0485 0x1754 flpydisk - ok
20:57:20.0526 0x1754 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:57:20.0537 0x1754 FltMgr - ok
20:57:20.0599 0x1754 [ B4447F606BB19FD8AD0BAFB59B90F5D9, 043E686029DE2710305852E3A416176E400F9FD5FB98E4F2A6F14C060FAABED5 ] FontCache C:\Windows\system32\FntCache.dll
20:57:20.0664 0x1754 FontCache - ok
20:57:20.0716 0x1754 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:57:20.0725 0x1754 FontCache3.0.0.0 - ok
20:57:20.0748 0x1754 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:57:20.0757 0x1754 FsDepends - ok
20:57:20.0761 0x1754 [ E95EF8547DE20CF0603557C0CF7A9462, 55540B06B7B380CA2DA6EEE2D76C6CD6131ADB02B2D0B172A36536863A0C57B6 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:57:20.0769 0x1754 Fs_Rec - ok
20:57:20.0815 0x1754 [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:57:20.0826 0x1754 fvevol - ok
20:57:20.0842 0x1754 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:57:20.0848 0x1754 gagp30kx - ok
20:57:20.0883 0x1754 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
20:57:20.0888 0x1754 gdrv - ok
20:57:20.0906 0x1754 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
20:57:20.0944 0x1754 gpsvc - ok
20:57:21.0048 0x1754 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:57:21.0058 0x1754 gupdate - ok
20:57:21.0063 0x1754 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:57:21.0071 0x1754 gupdatem - ok
20:57:21.0096 0x1754 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
20:57:21.0101 0x1754 GVTDrv64 - ok
20:57:21.0129 0x1754 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:57:21.0137 0x1754 hcw85cir - ok
20:57:21.0265 0x1754 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:57:21.0297 0x1754 HdAudAddService - ok
20:57:21.0333 0x1754 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:57:21.0357 0x1754 HDAudBus - ok
20:57:21.0360 0x1754 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:57:21.0374 0x1754 HidBatt - ok
20:57:21.0379 0x1754 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:57:21.0390 0x1754 HidBth - ok
20:57:21.0393 0x1754 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:57:21.0408 0x1754 HidIr - ok
20:57:21.0430 0x1754 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
20:57:21.0453 0x1754 hidserv - ok
20:57:21.0482 0x1754 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:57:21.0490 0x1754 HidUsb - ok
20:57:21.0517 0x1754 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:57:21.0552 0x1754 hkmsvc - ok
20:57:21.0602 0x1754 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:57:21.0660 0x1754 HomeGroupListener - ok
20:57:21.0700 0x1754 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:57:21.0716 0x1754 HomeGroupProvider - ok
20:57:21.0750 0x1754 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:57:21.0757 0x1754 HpSAMD - ok
20:57:21.0835 0x1754 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:57:21.0889 0x1754 HTTP - ok
20:57:21.0921 0x1754 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:57:21.0936 0x1754 hwpolicy - ok
20:57:22.0022 0x1754 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:57:22.0045 0x1754 i8042prt - ok
20:57:22.0094 0x1754 [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:57:22.0112 0x1754 iaStorV - ok
20:57:22.0159 0x1754 [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
20:57:22.0177 0x1754 ICCS - detected UnsignedFile.Multi.Generic ( 1 )
20:57:24.0935 0x1754 Detect skipped due to KSN trusted
20:57:24.0935 0x1754 ICCS - ok
20:57:24.0989 0x1754 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:57:25.0001 0x1754 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
20:57:27.0685 0x1754 Detect skipped due to KSN trusted
20:57:27.0685 0x1754 IDriverT - ok
20:57:27.0763 0x1754 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:57:27.0787 0x1754 idsvc - ok
20:57:27.0814 0x1754 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:57:27.0820 0x1754 iirsp - ok
20:57:27.0895 0x1754 [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll
20:57:27.0943 0x1754 IKEEXT - ok
20:57:28.0151 0x1754 [ 7A3585C4000C8340AE6B7FA08F9EF50F, B93F23464E7D929B90D80650698372128546CFEDA72216823CBE51A08D3368E0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:57:28.0227 0x1754 IntcAzAudAddService - ok
20:57:28.0256 0x1754 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
20:57:28.0261 0x1754 intelide - ok
20:57:28.0282 0x1754 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:57:28.0292 0x1754 intelppm - ok
20:57:28.0313 0x1754 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:57:28.0338 0x1754 IPBusEnum - ok
20:57:28.0366 0x1754 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:57:28.0395 0x1754 IpFilterDriver - ok
20:57:28.0462 0x1754 [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:57:28.0504 0x1754 iphlpsvc - ok
20:57:28.0520 0x1754 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:57:28.0541 0x1754 IPMIDRV - ok
20:57:28.0561 0x1754 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:57:28.0587 0x1754 IPNAT - ok
20:57:28.0596 0x1754 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:57:28.0619 0x1754 IRENUM - ok
20:57:28.0636 0x1754 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:57:28.0642 0x1754 isapnp - ok
20:57:28.0659 0x1754 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:57:28.0670 0x1754 iScsiPrt - ok
20:57:28.0698 0x1754 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:57:28.0704 0x1754 kbdclass - ok
20:57:28.0735 0x1754 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:57:28.0757 0x1754 kbdhid - ok
20:57:28.0774 0x1754 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] KeyIso C:\Windows\system32\lsass.exe
20:57:28.0783 0x1754 KeyIso - ok
20:57:29.0078 0x1754 [ 1C6256096A341051509D36AD724830BE, 025F7E1E979DC8C4794FC7D3581D6BCF6E0F6DC327C6FCB925B6A8EDBE999A68 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
20:57:29.0230 0x1754 KL1 - ok
20:57:29.0274 0x1754 [ 33730023A37E259AB26F25C164BC2471, D9CE760D633821D7A7C06EFA76A95ECDA82ACABA44B4855610F77B63CC76473D ] KLIF C:\Windows\system32\DRIVERS\klif.sys
20:57:29.0287 0x1754 KLIF - ok
20:57:29.0310 0x1754 [ CCD53B5BD33CE0C889E830D839C8B66E, 51B7556DA7DAA0BC75E00E53099776016A55FAA115D5A4E6830E12A0A0869C10 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:57:29.0317 0x1754 KSecDD - ok
20:57:29.0350 0x1754 [ 9FF918A261752C12639E8AD4208D2C2F, B60F7A730C92F2BF7E85A6CA14DD7671AEECEE154CEC83B1E23EF268C25C9E5E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:57:29.0358 0x1754 KSecPkg - ok
20:57:29.0361 0x1754 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:57:29.0384 0x1754 ksthunk - ok
20:57:29.0419 0x1754 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
20:57:29.0449 0x1754 KtmRm - ok
20:57:29.0478 0x1754 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:57:29.0517 0x1754 LanmanServer - ok
20:57:29.0546 0x1754 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:57:29.0578 0x1754 LanmanWorkstation - ok
20:57:29.0615 0x1754 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:57:29.0644 0x1754 lltdio - ok
20:57:29.0674 0x1754 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:57:29.0704 0x1754 lltdsvc - ok
20:57:29.0707 0x1754 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:57:29.0731 0x1754 lmhosts - ok
20:57:29.0746 0x1754 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:57:29.0753 0x1754 LSI_FC - ok
20:57:29.0758 0x1754 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:57:29.0765 0x1754 LSI_SAS - ok
20:57:29.0782 0x1754 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:57:29.0788 0x1754 LSI_SAS2 - ok
20:57:29.0794 0x1754 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:57:29.0801 0x1754 LSI_SCSI - ok
20:57:29.0813 0x1754 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
20:57:29.0844 0x1754 luafv - ok
20:57:29.0877 0x1754 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:57:29.0903 0x1754 Mcx2Svc - ok
20:57:29.0911 0x1754 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:57:29.0917 0x1754 megasas - ok
20:57:29.0925 0x1754 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:57:29.0936 0x1754 MegaSR - ok
20:57:29.0958 0x1754 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
20:57:29.0992 0x1754 MMCSS - ok
20:57:29.0996 0x1754 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
20:57:30.0019 0x1754 Modem - ok
20:57:30.0022 0x1754 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:57:30.0031 0x1754 monitor - ok
20:57:30.0074 0x1754 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:57:30.0080 0x1754 mouclass - ok
20:57:30.0118 0x1754 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:57:30.0140 0x1754 mouhid - ok
20:57:30.0178 0x1754 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:57:30.0197 0x1754 mountmgr - ok
20:57:30.0214 0x1754 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
20:57:30.0224 0x1754 mpio - ok
20:57:30.0258 0x1754 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:57:30.0287 0x1754 mpsdrv - ok
20:57:30.0328 0x1754 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:57:30.0382 0x1754 MpsSvc - ok
20:57:30.0408 0x1754 [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:57:30.0421 0x1754 MRxDAV - ok
20:57:30.0459 0x1754 [ FAF015B07E3A2874A790A39B7D2C579F, C614B0E80B38EBF7C670EEB833F5E476B33042097DA07206D6C5EE3E52B9A427 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:57:30.0490 0x1754 mrxsmb - ok
20:57:30.0512 0x1754 [ 08E2345DF129082BCDFFDC1440F9C00D, 2ADF69F49DF8C43D4440B6C8A62085C51518CA895A88D37264C60A0B4B1EC55F ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:57:30.0539 0x1754 mrxsmb10 - ok
20:57:30.0578 0x1754 [ 108D87409C5812EF47D81E22843E8C9D, CAE9B91B6BD1DF1552463BD63A06288F5D3E0B81B040BC1C7EC0C2A0119CCECA ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:57:30.0609 0x1754 mrxsmb20 - ok
20:57:30.0620 0x1754 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
20:57:30.0625 0x1754 msahci - ok
20:57:30.0654 0x1754 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:57:30.0662 0x1754 msdsm - ok
20:57:30.0681 0x1754 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
20:57:30.0692 0x1754 MSDTC - ok
20:57:30.0715 0x1754 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:57:30.0737 0x1754 Msfs - ok
20:57:30.0740 0x1754 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:57:30.0763 0x1754 mshidkmdf - ok
20:57:30.0787 0x1754 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:57:30.0793 0x1754 msisadrv - ok
20:57:30.0826 0x1754 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:57:30.0863 0x1754 MSiSCSI - ok
20:57:30.0866 0x1754 msiserver - ok
20:57:30.0878 0x1754 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:57:30.0909 0x1754 MSKSSRV - ok
20:57:30.0912 0x1754 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:57:30.0944 0x1754 MSPCLOCK - ok
20:57:30.0946 0x1754 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:57:30.0969 0x1754 MSPQM - ok
20:57:30.0997 0x1754 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:57:31.0009 0x1754 MsRPC - ok
20:57:31.0020 0x1754 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:57:31.0026 0x1754 mssmbios - ok
20:57:31.0040 0x1754 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:57:31.0068 0x1754 MSTEE - ok
20:57:31.0082 0x1754 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:57:31.0090 0x1754 MTConfig - ok
20:57:31.0103 0x1754 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
20:57:31.0109 0x1754 Mup - ok
20:57:31.0155 0x1754 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
20:57:31.0187 0x1754 napagent - ok
20:57:31.0214 0x1754 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:57:31.0242 0x1754 NativeWifiP - ok
20:57:31.0318 0x1754 [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS C:\Windows\system32\drivers\ndis.sys
20:57:31.0345 0x1754 NDIS - ok
20:57:31.0367 0x1754 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:57:31.0391 0x1754 NdisCap - ok
20:57:31.0405 0x1754 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:57:31.0427 0x1754 NdisTapi - ok
20:57:31.0501 0x1754 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:57:31.0544 0x1754 Ndisuio - ok
20:57:31.0579 0x1754 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:57:31.0611 0x1754 NdisWan - ok
20:57:31.0671 0x1754 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:57:31.0771 0x1754 NDProxy - ok
20:57:31.0786 0x1754 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:57:31.0818 0x1754 NetBIOS - ok
20:57:31.0842 0x1754 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:57:31.0869 0x1754 NetBT - ok
20:57:31.0883 0x1754 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] Netlogon C:\Windows\system32\lsass.exe
20:57:31.0893 0x1754 Netlogon - ok
20:57:31.0922 0x1754 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
20:57:31.0964 0x1754 Netman - ok
20:57:32.0016 0x1754 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:57:32.0035 0x1754 NetMsmqActivator - ok
20:57:32.0046 0x1754 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:57:32.0057 0x1754 NetPipeActivator - ok
20:57:32.0071 0x1754 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
20:57:32.0157 0x1754 netprofm - ok
20:57:32.0187 0x1754 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:57:32.0195 0x1754 NetTcpActivator - ok
20:57:32.0219 0x1754 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:57:32.0227 0x1754 NetTcpPortSharing - ok
20:57:32.0267 0x1754 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:57:32.0273 0x1754 nfrd960 - ok
20:57:32.0300 0x1754 [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:57:32.0328 0x1754 NlaSvc - ok
20:57:32.0332 0x1754 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:57:32.0355 0x1754 Npfs - ok
20:57:32.0375 0x1754 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
20:57:32.0404 0x1754 nsi - ok
20:57:32.0407 0x1754 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:57:32.0514 0x1754 nsiproxy - ok
20:57:32.0618 0x1754 [ 05D78AA5CB5F3F5C31160BDB955D0B7C, E3CD3FAF52ED11A8FB96D667510F1EDCA49053705AA3A13F560F8F6EC995CA45 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:57:32.0657 0x1754 Ntfs - ok
20:57:32.0726 0x1754 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
20:57:32.0789 0x1754 Null - ok
20:57:32.0857 0x1754 [ B4F53BCA4C688FF47F04FA90098F896E, 6051CFC0CFE659A2C4CFC1029F19CF1B1B98A1A5E59C2B3A10D7B3407A7FA5C0 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:57:32.0879 0x1754 NVHDA - ok
20:57:33.0313 0x1754 [ 4EE399576F76D38C04745DB739BBC8C7, 7D7FB6013D5D3EE1908F37188AA440EE6EF80A432204EB59AE190ACD14CD1FE0 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:57:33.0529 0x1754 nvlddmkm - ok
20:57:33.0574 0x1754 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:57:33.0582 0x1754 nvraid - ok
20:57:33.0614 0x1754 [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:57:33.0623 0x1754 nvstor - ok
20:57:33.0667 0x1754 [ 7335C3D78A7746D76D37F6722CC4A466, 18BDD51AB0EB4084E1DA2F27B8D4FCF488ED9161C034BB3CDFF5BE33F84C1D37 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:57:33.0689 0x1754 nvsvc - ok
20:57:33.0781 0x1754 [ B7C53DA1C73FF39F4A6248643EFD979A, 528C4984F09F66D4CBA5A9B7C78FBAA04E558309B0D66EB1C29AD2B30D9993F7 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:57:33.0810 0x1754 nvUpdatusService - ok
20:57:33.0845 0x1754 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:57:33.0852 0x1754 nv_agp - ok
20:57:33.0866 0x1754 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:57:33.0874 0x1754 ohci1394 - ok
20:57:33.0902 0x1754 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:57:33.0935 0x1754 p2pimsvc - ok
20:57:33.0967 0x1754 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
20:57:33.0984 0x1754 p2psvc - ok
20:57:34.0038 0x1754 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:57:34.0059 0x1754 Parport - ok
20:57:34.0092 0x1754 [ 871EADAC56B0A4C6512BBE32753CCF79, F9FD9DBA55274BB72B897550988DCDFD0F2D9367BE641DFDE07D240052DDC180 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:57:34.0102 0x1754 partmgr - ok
20:57:34.0111 0x1754 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
20:57:34.0144 0x1754 PcaSvc - ok
20:57:34.0174 0x1754 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
20:57:34.0187 0x1754 pci - ok
20:57:34.0201 0x1754 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
20:57:34.0207 0x1754 pciide - ok
20:57:34.0214 0x1754 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:57:34.0223 0x1754 pcmcia - ok
20:57:34.0228 0x1754 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
20:57:34.0234 0x1754 pcw - ok
20:57:34.0249 0x1754 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:57:34.0303 0x1754 PEAUTH - ok
20:57:34.0493 0x1754 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:57:34.0522 0x1754 PerfHost - ok
20:57:34.0596 0x1754 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
20:57:34.0660 0x1754 pla - ok
20:57:34.0773 0x1754 [ B806E50427511BCF4AD8E8239C3E25FA, AB89B48ECCF90F701B314D18BE531CDA5ABE1636C17B994A5E4BE5AAC136B4E3 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:57:34.0826 0x1754 PlugPlay - ok
20:57:34.0853 0x1754 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:57:34.0861 0x1754 PNRPAutoReg - ok
20:57:34.0883 0x1754 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:57:34.0898 0x1754 PNRPsvc - ok
20:57:34.0947 0x1754 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:57:35.0008 0x1754 PolicyAgent - ok
20:57:35.0039 0x1754 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
20:57:35.0065 0x1754 Power - ok
20:57:35.0096 0x1754 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:57:35.0120 0x1754 PptpMiniport - ok
20:57:35.0143 0x1754 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:57:35.0152 0x1754 Processor - ok
20:57:35.0204 0x1754 [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc C:\Windows\system32\profsvc.dll
20:57:35.0249 0x1754 ProfSvc - ok
20:57:35.0258 0x1754 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] ProtectedStorage C:\Windows\system32\lsass.exe
20:57:35.0267 0x1754 ProtectedStorage - ok
20:57:35.0308 0x1754 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:57:35.0347 0x1754 Psched - ok
20:57:35.0405 0x1754 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:57:35.0438 0x1754 ql2300 - ok
20:57:35.0452 0x1754 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:57:35.0460 0x1754 ql40xx - ok
20:57:35.0487 0x1754 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
20:57:35.0502 0x1754 QWAVE - ok
20:57:35.0506 0x1754 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:57:35.0530 0x1754 QWAVEdrv - ok
20:57:35.0533 0x1754 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:57:35.0555 0x1754 RasAcd - ok
20:57:35.0578 0x1754 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:57:35.0601 0x1754 RasAgileVpn - ok
20:57:35.0614 0x1754 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
20:57:35.0647 0x1754 RasAuto - ok
20:57:35.0675 0x1754 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:57:35.0698 0x1754 Rasl2tp - ok
20:57:35.0742 0x1754 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
20:57:35.0771 0x1754 RasMan - ok
20:57:35.0799 0x1754 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:57:35.0851 0x1754 RasPppoe - ok
20:57:35.0865 0x1754 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:57:35.0898 0x1754 RasSstp - ok
20:57:35.0934 0x1754 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:57:35.0993 0x1754 rdbss - ok
20:57:36.0003 0x1754 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:57:36.0012 0x1754 rdpbus - ok
20:57:36.0015 0x1754 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:57:36.0038 0x1754 RDPCDD - ok
20:57:36.0048 0x1754 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:57:36.0083 0x1754 RDPENCDD - ok
20:57:36.0087 0x1754 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:57:36.0110 0x1754 RDPREFMP - ok
20:57:36.0135 0x1754 [ 15B66C206B5CB095BAB980553F38ED23, 3CA50786A8D3D6BAF145AFD22C1ED92C2EB39F5D6AF4F6B09B69610FDE0C5B24 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:57:36.0161 0x1754 RDPWD - ok
20:57:36.0216 0x1754 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:57:36.0235 0x1754 rdyboost - ok
20:57:36.0259 0x1754 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:57:36.0297 0x1754 RemoteAccess - ok
20:57:36.0323 0x1754 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:57:36.0349 0x1754 RemoteRegistry - ok
20:57:36.0368 0x1754 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:57:36.0392 0x1754 RpcEptMapper - ok
20:57:36.0405 0x1754 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
20:57:36.0422 0x1754 RpcLocator - ok
20:57:36.0457 0x1754 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
20:57:36.0490 0x1754 RpcSs - ok
20:57:36.0549 0x1754 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:57:36.0594 0x1754 rspndr - ok
20:57:36.0742 0x1754 [ 7F4F11527AF5A7E4526CB6A146B3E40C, 705177014374AB2F12AF4558344C35C206C2820BD1A16770173EA10D094D182B ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:57:36.0758 0x1754 RTL8167 - ok
20:57:36.0774 0x1754 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] SamSs C:\Windows\system32\lsass.exe
20:57:36.0783 0x1754 SamSs - ok
20:57:36.0823 0x1754 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:57:36.0830 0x1754 sbp2port - ok
20:57:36.0870 0x1754 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:57:36.0911 0x1754 SCardSvr - ok
20:57:36.0937 0x1754 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:57:36.0959 0x1754 scfilter - ok
20:57:37.0013 0x1754 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
20:57:37.0059 0x1754 Schedule - ok
20:57:37.0105 0x1754 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:57:37.0144 0x1754 SCPolicySvc - ok
20:57:37.0157 0x1754 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:57:37.0208 0x1754 SDRSVC - ok
20:57:37.0243 0x1754 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:57:37.0274 0x1754 secdrv - ok
20:57:37.0292 0x1754 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
20:57:37.0322 0x1754 seclogon - ok
20:57:37.0347 0x1754 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
20:57:37.0378 0x1754 SENS - ok
20:57:37.0390 0x1754 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:57:37.0399 0x1754 SensrSvc - ok
20:57:37.0413 0x1754 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:57:37.0421 0x1754 Serenum - ok
20:57:37.0426 0x1754 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:57:37.0435 0x1754 Serial - ok
20:57:37.0445 0x1754 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:57:37.0470 0x1754 sermouse - ok
20:57:37.0528 0x1754 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
20:57:37.0570 0x1754 SessionEnv - ok
20:57:37.0596 0x1754 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:57:37.0630 0x1754 sffdisk - ok
20:57:37.0660 0x1754 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:57:37.0706 0x1754 sffp_mmc - ok
20:57:37.0720 0x1754 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:57:37.0744 0x1754 sffp_sd - ok
20:57:37.0764 0x1754 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:57:37.0778 0x1754 sfloppy - ok
20:57:37.0820 0x1754 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:57:37.0859 0x1754 SharedAccess - ok
20:57:37.0885 0x1754 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:57:37.0915 0x1754 ShellHWDetection - ok
20:57:37.0934 0x1754 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:57:37.0940 0x1754 SiSRaid2 - ok
20:57:37.0944 0x1754 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:57:37.0951 0x1754 SiSRaid4 - ok
20:57:37.0956 0x1754 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:57:37.0989 0x1754 Smb - ok
20:57:38.0018 0x1754 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:57:38.0037 0x1754 SNMPTRAP - ok
20:57:38.0040 0x1754 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
20:57:38.0046 0x1754 spldr - ok
20:57:38.0107 0x1754 [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
20:57:38.0150 0x1754 Spooler - ok
20:57:38.0296 0x1754 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
20:57:38.0396 0x1754 sppsvc - ok
20:57:38.0434 0x1754 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:57:38.0464 0x1754 sppuinotify - ok
20:57:38.0527 0x1754 [ 2098B8556D1CEC2ACA9A29CD479E3692, D5826407C64F18C16EB36E6F00787CFAFCD9B24B5BD8AD126AD01E6E4134966F ] srv C:\Windows\system32\DRIVERS\srv.sys
20:57:38.0566 0x1754 srv - ok
20:57:38.0578 0x1754 [ D0F73A42040F21F92FD314B42AC5C9E7, A021C4318C9CFA594305458B2643BB0C22DDE1F3D51C93C9F3E7F7AB75B31278 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:57:38.0607 0x1754 srv2 - ok
20:57:38.0626 0x1754 [ 2BA8F3250828CCDB4204ECF2C6F40B6A, 22C4FBF9A87C46E69C48B681FF733D68D9CB7B7D73FB14C8C2A06E9009F9860E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:57:38.0663 0x1754 srvnet - ok
20:57:38.0701 0x1754 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:57:38.0750 0x1754 SSDPSRV - ok
20:57:38.0755 0x1754 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:57:38.0780 0x1754 SstpSvc - ok
20:57:38.0946 0x1754 [ 25C16F7D749F1BA7D573756338658727, 4A4056F34C0D34D793E0A24D37842F8122A5C072F9A2ED9192763FB0CC8FDADC ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:57:38.0971 0x1754 Steam Client Service - ok
20:57:39.0029 0x1754 [ 81F177C1954453AF407604160BD149CB, D6B05F7E399690233C71C1E4B88F95D566BC6A14D145715A8A8C0FFD591147F0 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:57:39.0040 0x1754 Stereo Service - ok
20:57:39.0066 0x1754 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:57:39.0072 0x1754 stexstor - ok
20:57:39.0131 0x1754 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
20:57:39.0164 0x1754 stisvc - ok
20:57:39.0184 0x1754 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
20:57:39.0189 0x1754 swenum - ok
20:57:39.0223 0x1754 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
20:57:39.0263 0x1754 swprv - ok
20:57:39.0338 0x1754 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
20:57:39.0399 0x1754 SysMain - ok
20:57:39.0467 0x1754 [ 324F5EDA743A3F1738356FE897D86C5C, 8F6D8399A1B936A90EE293E6EE720B789A003A562FCC5B491F71D39262EAFDE0 ] ta10avs C:\Windows\system32\Drivers\ta10avs.sys
20:57:39.0485 0x1754 ta10avs - ok
20:57:39.0545 0x1754 [ 742DACBA99676C4729D2C88529A6A610, 3526973701165DFEE11395C8194FD1990592313DAC1F69443F9A837791B1B1D7 ] ta10usb_svc C:\Windows\system32\Drivers\ta10usb.sys
20:57:39.0561 0x1754 ta10usb_svc - ok
20:57:39.0607 0x1754 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:57:39.0626 0x1754 TabletInputService - ok
20:57:39.0672 0x1754 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
20:57:39.0718 0x1754 TapiSrv - ok
20:57:39.0746 0x1754 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
20:57:39.0771 0x1754 TBS - ok
20:57:39.0887 0x1754 [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:57:39.0929 0x1754 Tcpip - ok
20:57:40.0064 0x1754 [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:57:40.0105 0x1754 TCPIP6 - ok
20:57:40.0131 0x1754 [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:57:40.0153 0x1754 tcpipreg - ok
20:57:40.0172 0x1754 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:57:40.0231 0x1754 TDPIPE - ok
20:57:40.0235 0x1754 [ E4245BDA3190A582D55ED09E137401A9, F59C983882997D68CC7B1B2080AEE9EBE2AE90D478F877559BD2AAA97158A116 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:57:40.0257 0x1754 TDTCP - ok
20:57:40.0293 0x1754 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:57:40.0317 0x1754 tdx - ok
20:57:40.0331 0x1754 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
20:57:40.0337 0x1754 TermDD - ok
20:57:40.0366 0x1754 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
20:57:40.0403 0x1754 TermService - ok
20:57:40.0431 0x1754 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
20:57:40.0443 0x1754 Themes - ok
20:57:40.0466 0x1754 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
20:57:40.0490 0x1754 THREADORDER - ok
20:57:40.0501 0x1754 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
20:57:40.0527 0x1754 TrkWks - ok
20:57:40.0563 0x1754 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:57:40.0588 0x1754 TrustedInstaller - ok
20:57:40.0623 0x1754 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:57:40.0645 0x1754 tssecsrv - ok
20:57:40.0715 0x1754 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:57:40.0734 0x1754 TsUsbFlt - ok
20:57:40.0787 0x1754 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:57:40.0828 0x1754 tunnel - ok
20:57:40.0848 0x1754 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:57:40.0854 0x1754 uagp35 - ok
20:57:40.0887 0x1754 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:57:40.0922 0x1754 udfs - ok
20:57:40.0946 0x1754 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:57:40.0956 0x1754 UI0Detect - ok
20:57:40.0982 0x1754 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:57:40.0989 0x1754 uliagpkx - ok
20:57:41.0016 0x1754 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
20:57:41.0024 0x1754 umbus - ok
20:57:41.0028 0x1754 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:57:41.0035 0x1754 UmPass - ok
20:57:41.0060 0x1754 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
20:57:41.0101 0x1754 upnphost - ok
20:57:41.0131 0x1754 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A, DE1CDDEEF2285CC8387E88ACB13C000576DC8819DF6DC648C988068B5C83BB15 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:57:41.0142 0x1754 usbaudio - ok
20:57:41.0159 0x1754 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829, 5D6E404FE0AB875202CA1A3E8E9D2F4368DF6ACCFA1C872ECFAF8399CBA3A485 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
20:57:41.0182 0x1754 usbccgp - ok
20:57:41.0208 0x1754 [ 84A8E67E6CB15B070A2A7A0B3A9F1609, 08AB5691024A5B69A23DEF4E69696EC46D5BAD01A24861CFE612FBD649D87BDB ] UsbCharger C:\Windows\system32\DRIVERS\UsbCharger.sys
20:57:41.0212 0x1754 UsbCharger - ok
20:57:41.0256 0x1754 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:57:41.0278 0x1754 usbcir - ok
20:57:41.0291 0x1754 [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:57:41.0312 0x1754 usbehci - ok
20:57:41.0342 0x1754 [ 504901430B6E03B99EBB6BF26E0868C6, D00C0904B7008305DCA5D1E6FED153DD8875CAD14D80348E59F42A182FA7E832 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:57:41.0347 0x1754 usbfilter - ok
20:57:41.0415 0x1754 [ DC96BD9CCB8403251BCF25047573558E, 66EBF8A6B3BC0634F32DDCC8BA31F1EB5987E8C6853E1DC26005E3EED0945565 ] usbhub C:\Windows\system32\drivers\usbhub.sys
20:57:41.0436 0x1754 usbhub - ok
20:57:41.0449 0x1754 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:57:41.0457 0x1754 usbohci - ok
20:57:41.0494 0x1754 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:57:41.0525 0x1754 usbprint - ok
20:57:41.0535 0x1754 [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:57:41.0554 0x1754 USBSTOR - ok
20:57:41.0567 0x1754 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:57:41.0587 0x1754 usbuhci - ok
20:57:41.0614 0x1754 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
20:57:41.0647 0x1754 UxSms - ok
20:57:41.0701 0x1754 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] VaultSvc C:\Windows\system32\lsass.exe
20:57:41.0715 0x1754 VaultSvc - ok
20:57:41.0745 0x1754 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:57:41.0754 0x1754 vdrvroot - ok
20:57:41.0842 0x1754 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
20:57:41.0880 0x1754 vds - ok
20:57:41.0898 0x1754 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:57:41.0908 0x1754 vga - ok
20:57:41.0912 0x1754 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:57:41.0943 0x1754 VgaSave - ok
20:57:41.0959 0x1754 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:57:41.0968 0x1754 vhdmp - ok
20:57:41.0982 0x1754 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
20:57:41.0987 0x1754 viaide - ok
20:57:42.0006 0x1754 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:57:42.0012 0x1754 volmgr - ok
20:57:42.0073 0x1754 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:57:42.0092 0x1754 volmgrx - ok
20:57:42.0116 0x1754 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:57:42.0129 0x1754 volsnap - ok
20:57:42.0239 0x1754 [ 8F1E531D36D95B0586DA00D546AB8B9A, 206C568E3698096D2C2C2E5BAB53382B74DEF2B354E6029E7C34912A55A0897C ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
20:57:42.0262 0x1754 Vsdatant - ok
20:57:42.0548 0x1754 [ 21D22AC9B8B33AF6EEEBDB10D1661C37, 56C7A8E5C3084163342A433FD20DE8E9931C1C293B49C0F9CD9C8F45A56D135B ] vsmon C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
20:57:42.0620 0x1754 vsmon - ok
20:57:42.0666 0x1754 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:57:42.0675 0x1754 vsmraid - ok
20:57:42.0766 0x1754 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
20:57:42.0824 0x1754 VSS - ok
20:57:42.0830 0x1754 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:57:42.0840 0x1754 vwifibus - ok
20:57:42.0875 0x1754 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
20:57:42.0907 0x1754 W32Time - ok
20:57:42.0912 0x1754 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:57:42.0920 0x1754 WacomPen - ok
20:57:42.0963 0x1754 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:57:42.0994 0x1754 WANARP - ok
20:57:42.0998 0x1754 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:57:43.0021 0x1754 Wanarpv6 - ok
20:57:43.0112 0x1754 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
20:57:43.0153 0x1754 wbengine - ok
20:57:43.0205 0x1754 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:57:43.0233 0x1754 WbioSrvc - ok
20:57:43.0286 0x1754 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:57:43.0322 0x1754 wcncsvc - ok
20:57:43.0353 0x1754 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:57:43.0363 0x1754 WcsPlugInService - ok
20:57:43.0385 0x1754 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:57:43.0390 0x1754 Wd - ok
20:57:43.0408 0x1754 [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:57:43.0426 0x1754 Wdf01000 - ok
20:57:43.0457 0x1754 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:57:43.0533 0x1754 WdiServiceHost - ok
20:57:43.0541 0x1754 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:57:43.0559 0x1754 WdiSystemHost - ok
20:57:43.0585 0x1754 [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient C:\Windows\System32\webclnt.dll
20:57:43.0609 0x1754 WebClient - ok
20:57:43.0630 0x1754 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:57:43.0668 0x1754 Wecsvc - ok
20:57:43.0686 0x1754 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:57:43.0711 0x1754 wercplsupport - ok
20:57:43.0735 0x1754 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
20:57:43.0760 0x1754 WerSvc - ok
20:57:43.0771 0x1754 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:57:43.0793 0x1754 WfpLwf - ok
20:57:43.0801 0x1754 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:57:43.0807 0x1754 WIMMount - ok
20:57:43.0817 0x1754 WinDefend - ok
20:57:43.0822 0x1754 WinHttpAutoProxySvc - ok
20:57:43.0924 0x1754 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:57:43.0963 0x1754 Winmgmt - ok
20:57:44.0085 0x1754 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
20:57:44.0155 0x1754 WinRM - ok
20:57:44.0244 0x1754 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:57:44.0275 0x1754 Wlansvc - ok
20:57:44.0310 0x1754 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:57:44.0328 0x1754 WmiAcpi - ok
20:57:44.0344 0x1754 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:57:44.0361 0x1754 wmiApSrv - ok
20:57:44.0379 0x1754 WMPNetworkSvc - ok
20:57:44.0402 0x1754 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:57:44.0412 0x1754 WPCSvc - ok
20:57:44.0438 0x1754 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:57:44.0450 0x1754 WPDBusEnum - ok
20:57:44.0483 0x1754 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:57:44.0518 0x1754 ws2ifsl - ok
20:57:44.0530 0x1754 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
20:57:44.0543 0x1754 wscsvc - ok
20:57:44.0546 0x1754 WSearch - ok
20:57:44.0692 0x1754 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
20:57:44.0745 0x1754 wuauserv - ok
20:57:44.0790 0x1754 [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:57:44.0837 0x1754 WudfPf - ok
20:57:44.0869 0x1754 [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:57:44.0916 0x1754 wudfsvc - ok
20:57:44.0952 0x1754 [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:57:44.0970 0x1754 WwanSvc - ok
20:57:45.0005 0x1754 [ CEC8ED565F3663F0B8A862561BF08D79, FDDBEDC79C7061B20AA450BB3D09EDADEDD5F531D8EA100BBF542A63BDFCE593 ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
20:57:45.0012 0x1754 ZAPrivacyService - ok
20:57:45.0036 0x1754 ================ Scan global ===============================
20:57:45.0059 0x1754 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
20:57:45.0108 0x1754 [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
20:57:45.0129 0x1754 [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
20:57:45.0157 0x1754 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
20:57:45.0195 0x1754 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
20:57:45.0206 0x1754 [ Global ] - ok
20:57:45.0206 0x1754 ================ Scan MBR ==================================
20:57:45.0208 0x1754 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:57:45.0266 0x1754 \Device\Harddisk0\DR0 - ok
20:57:45.0279 0x1754 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:57:45.0561 0x1754 \Device\Harddisk1\DR1 - ok
20:57:45.0561 0x1754 ================ Scan VBR ==================================
20:57:45.0565 0x1754 [ 591DE1ACEA4DA45A0E5BE5B6C561F65D ] \Device\Harddisk0\DR0\Partition1
20:57:45.0630 0x1754 \Device\Harddisk0\DR0\Partition1 - ok
20:57:45.0635 0x1754 [ 66629D96629BE2BA2A5CEBE720546994 ] \Device\Harddisk0\DR0\Partition2
20:57:45.0638 0x1754 \Device\Harddisk0\DR0\Partition2 - ok
20:57:45.0642 0x1754 [ 90CF97BCECF4277E80EA0279E66FF715 ] \Device\Harddisk1\DR1\Partition1
20:57:45.0644 0x1754 \Device\Harddisk1\DR1\Partition1 - ok
20:57:45.0648 0x1754 [ 55EE6F36822F96445AB83418FF1C6220 ] \Device\Harddisk1\DR1\Partition2
20:57:45.0652 0x1754 \Device\Harddisk1\DR1\Partition2 - ok
|
|
20.02.2015, 12:46
| #8 |
| | Komische Ip taucht auf TDSS Teil 2: Code:
ATTFilter 20:57:45.0652 0x1754 ================ Scan generic autorun ======================
20:57:46.0199 0x1754 [ 16438B000BF56F2CD7FDB5E6C3B38C7E, 32D6E69E6367D3ADB2189DA89103CB9910CE791EFB0879515DDD380A96D85BAE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:57:46.0451 0x1754 RtHDVCpl - ok
20:57:46.0524 0x1754 [ F31CDC26F3624750C2AE2DEFF1E598DA, 06B606E849FB946A9E4CFC8E6799A6B18C4E3233A77ED62DEBCC375649F3D7A8 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
20:57:46.0553 0x1754 RtHDVBg_Dolby - ok
20:57:46.0619 0x1754 [ EE864CD35936E4AAD8120321907DA8F5, D4A37E70302DF0A76E20F1AC1CD427A831BA80A8E1729E0E5637DC48E7A85DF3 ] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
20:57:46.0638 0x1754 Dolby Home Theater v4 - ok
20:57:46.0887 0x1754 [ 0210577A83C3E30C724E21EC3211ED95, 1433DE5B47B5EC1F99E6BCD6C8538D8BD1F17B175AB4FE2CE7D480D46AAF3822 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
20:57:46.0913 0x1754 StartCCC - ok
20:57:46.0940 0x1754 [ BA59761B013B65B6DB008EA19A557B42, 641E5A4B836CC0FE35B836CBA6ADA79729558137C9D404BEDD221D13833E40A9 ] C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
20:57:46.0947 0x1754 ZoneAlarm - ok
20:57:47.0008 0x1754 [ 6A188ECFCA5A2A6F41CA145FC93F96A6, 48D70FAA4C4F6F1F6542E2C54085857CE6906A69C0412E8A08BF69010FDF07CF ] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
20:57:47.0018 0x1754 EasyTuneVI - detected UnsignedFile.Multi.Generic ( 1 )
20:57:49.0858 0x1754 Detect skipped due to KSN trusted
20:57:49.0858 0x1754 EasyTuneVI - ok
20:57:49.0955 0x1754 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:57:49.0992 0x1754 Sidebar - ok
20:57:50.0020 0x1754 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:57:50.0051 0x1754 mctadmin - ok
20:57:50.0095 0x1754 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:57:50.0127 0x1754 Sidebar - ok
20:57:50.0133 0x1754 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:57:50.0145 0x1754 mctadmin - ok
20:57:50.0344 0x1754 [ 3255867AE34EDD5346C750677EE63354, 3FC8E1EFF33EE83717C285D0CD388886135C5BF977B69CF6ADCFD4196139D483 ] C:\Program Files (x86)\Steam\steam.exe
20:57:50.0399 0x1754 Steam - ok
20:57:50.0454 0x1754 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:57:50.0485 0x1754 Sidebar - ok
20:57:50.0491 0x1754 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:57:50.0503 0x1754 mctadmin - ok
20:57:50.0504 0x1754 Waiting for KSN requests completion. In queue: 275
20:57:51.0504 0x1754 Waiting for KSN requests completion. In queue: 275
20:57:52.0504 0x1754 Waiting for KSN requests completion. In queue: 275
20:57:52.0629 0x067c Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetMsmqActivator
20:57:53.0504 0x1754 Waiting for KSN requests completion. In queue: 193
20:57:54.0504 0x1754 Waiting for KSN requests completion. In queue: 193
20:57:55.0416 0x067c Object send P2P result: true
20:57:55.0416 0x067c Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetPipeActivator
20:57:55.0504 0x1754 Waiting for KSN requests completion. In queue: 192
20:57:56.0505 0x1754 Waiting for KSN requests completion. In queue: 192
20:57:57.0505 0x1754 Waiting for KSN requests completion. In queue: 192
20:57:58.0178 0x067c Object send P2P result: true
20:57:58.0179 0x067c Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpActivator
20:57:58.0505 0x1754 Waiting for KSN requests completion. In queue: 191
20:57:59.0505 0x1754 Waiting for KSN requests completion. In queue: 191
20:58:00.0505 0x1754 Waiting for KSN requests completion. In queue: 191
20:58:00.0938 0x067c Object send P2P result: true
20:58:00.0938 0x067c Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpPortSharing
20:58:01.0505 0x1754 Waiting for KSN requests completion. In queue: 190
20:58:02.0505 0x1754 Waiting for KSN requests completion. In queue: 190
20:58:03.0505 0x1754 Waiting for KSN requests completion. In queue: 190
20:58:03.0699 0x067c Object send P2P result: true
20:58:04.0543 0x1754 AV detected via SS2: ZoneAlarm Antivirus, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 13.3.209.0 ), 0x41000 ( enabled : updated )
20:58:04.0546 0x1754 FW detected via SS2: ZoneAlarm Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 13.3.209.0 ), 0x41010 ( enabled )
20:58:07.0244 0x1754 ============================================================
20:58:07.0244 0x1754 Scan finished
20:58:07.0244 0x1754 ============================================================
20:58:07.0258 0x14f8 Detected object count: 0
20:58:07.0258 0x14f8 Actual detected object count: 0
20:58:15.0972 0x1294 ============================================================
20:58:15.0972 0x1294 Scan started
20:58:15.0972 0x1294 Mode: Manual; SigCheck; TDLFS;
20:58:15.0972 0x1294 ============================================================
20:58:15.0972 0x1294 KSN ping started
20:58:18.0631 0x1294 KSN ping finished: true
20:58:19.0929 0x1294 ================ Scan system memory ========================
20:58:19.0929 0x1294 System memory - ok
20:58:19.0929 0x1294 ================ Scan services =============================
20:58:20.0188 0x1294 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:58:20.0222 0x1294 1394ohci - ok
20:58:20.0242 0x1294 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:58:20.0253 0x1294 ACPI - ok
20:58:20.0289 0x1294 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:58:20.0298 0x1294 AcpiPmi - ok
20:58:20.0366 0x1294 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:58:20.0399 0x1294 adp94xx - ok
20:58:20.0411 0x1294 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:58:20.0424 0x1294 adpahci - ok
20:58:20.0431 0x1294 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:58:20.0439 0x1294 adpu320 - ok
20:58:20.0467 0x1294 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:58:20.0491 0x1294 AeLookupSvc - ok
20:58:20.0519 0x1294 [ D31DC7A16DEA4A9BAF179F3D6FBDB38C, 532678D86E3E667F2E789C4873565E0B92C549A93F10802BB6D5B505CA3238CE ] AFD C:\Windows\system32\drivers\afd.sys
20:58:20.0551 0x1294 AFD - ok
20:58:20.0566 0x1294 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
20:58:20.0572 0x1294 agp440 - ok
20:58:20.0576 0x1294 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
20:58:20.0585 0x1294 ALG - ok
20:58:20.0605 0x1294 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
20:58:20.0610 0x1294 aliide - ok
20:58:20.0674 0x1294 AMD FUEL Service - ok
20:58:20.0703 0x1294 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
20:58:20.0719 0x1294 amdide - ok
20:58:20.0734 0x1294 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:58:20.0744 0x1294 AmdK8 - ok
20:58:20.0761 0x1294 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:58:20.0771 0x1294 AmdPPM - ok
20:58:20.0810 0x1294 [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:58:20.0827 0x1294 amdsata - ok
20:58:20.0843 0x1294 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:58:20.0853 0x1294 amdsbs - ok
20:58:20.0867 0x1294 [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:58:20.0874 0x1294 amdxata - ok
20:58:20.0916 0x1294 [ 172C69FE64D07BDF5CE24146274F8CB8, 0A36069BA7B1E2C8B00E8E611E5F2AEF3A7571FAEA252752577EF9DE11F343DA ] amd_sata C:\Windows\system32\DRIVERS\amd_sata.sys
20:58:20.0924 0x1294 amd_sata - ok
20:58:20.0928 0x1294 [ A8FD2F5F3E70BE8FF66D2AFC6B6FB051, E5C9CDBEA96B008F2B73E5151B85867128479FBEEADF2500AB16E3B0692AC030 ] amd_xata C:\Windows\system32\DRIVERS\amd_xata.sys
20:58:20.0933 0x1294 amd_xata - ok
20:58:20.0941 0x1294 [ F2154A205F4B784B61A72AEBC72BDC5F, A1D962BCF952FAD8016D9210327E7C1044BF4D3D035C7443F8671DDA16E0A390 ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
20:58:20.0948 0x1294 AODDriver4.2 - ok
20:58:20.0983 0x1294 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
20:58:21.0009 0x1294 AppID - ok
20:58:21.0038 0x1294 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:58:21.0061 0x1294 AppIDSvc - ok
20:58:21.0084 0x1294 [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo C:\Windows\System32\appinfo.dll
20:58:21.0106 0x1294 Appinfo - ok
20:58:21.0134 0x1294 [ E4D0F0D5EB374D8BACF40E30E9771D60, 56C4E820485D100DACD4EF076E0B2607274B236CCC45E0CCD527C737645A1ACB ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
20:58:21.0139 0x1294 AppleCharger - ok
20:58:21.0142 0x1294 [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
20:58:21.0147 0x1294 AppleChargerSrv - ok
20:58:21.0166 0x1294 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:58:21.0173 0x1294 arc - ok
20:58:21.0178 0x1294 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:58:21.0184 0x1294 arcsas - ok
20:58:21.0369 0x1294 [ 041672BAC20B34EAEDEB033129655DD8, 14264732F0CACF5732C7652C411F0A1C3B4A4417C31DD289C8AFF170BE683E5A ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:58:21.0388 0x1294 aspnet_state - ok
20:58:21.0396 0x1294 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:58:21.0436 0x1294 AsyncMac - ok
20:58:21.0471 0x1294 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
20:58:21.0487 0x1294 atapi - ok
20:58:21.0540 0x1294 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:58:21.0582 0x1294 AudioEndpointBuilder - ok
20:58:21.0610 0x1294 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:58:21.0646 0x1294 AudioSrv - ok
20:58:21.0680 0x1294 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:58:21.0693 0x1294 AxInstSV - ok
20:58:21.0733 0x1294 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:58:21.0749 0x1294 b06bdrv - ok
20:58:21.0765 0x1294 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:58:21.0778 0x1294 b57nd60a - ok
20:58:21.0798 0x1294 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
20:58:21.0807 0x1294 BDESVC - ok
20:58:21.0810 0x1294 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
20:58:21.0832 0x1294 Beep - ok
20:58:21.0896 0x1294 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
20:58:21.0933 0x1294 BFE - ok
20:58:21.0988 0x1294 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
20:58:22.0028 0x1294 BITS - ok
20:58:22.0033 0x1294 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:58:22.0041 0x1294 blbdrive - ok
20:58:22.0045 0x1294 [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:58:22.0069 0x1294 bowser - ok
20:58:22.0097 0x1294 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:58:22.0106 0x1294 BrFiltLo - ok
20:58:22.0108 0x1294 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:58:22.0117 0x1294 BrFiltUp - ok
20:58:22.0150 0x1294 [ 8EF0D5C41EC907751B8429162B1239ED, 9CC25F1F93FACA6F6CE23F78EB58590C39A2E3C8A3ACDF400E8A9DE0757EADAE ] Browser C:\Windows\System32\browser.dll
20:58:22.0174 0x1294 Browser - ok
20:58:22.0183 0x1294 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:58:22.0196 0x1294 Brserid - ok
20:58:22.0200 0x1294 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:58:22.0209 0x1294 BrSerWdm - ok
20:58:22.0213 0x1294 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:58:22.0222 0x1294 BrUsbMdm - ok
20:58:22.0225 0x1294 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:58:22.0232 0x1294 BrUsbSer - ok
20:58:22.0236 0x1294 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:58:22.0246 0x1294 BTHMODEM - ok
20:58:22.0268 0x1294 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
20:58:22.0292 0x1294 bthserv - ok
20:58:22.0327 0x1294 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:58:22.0352 0x1294 cdfs - ok
20:58:22.0379 0x1294 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:58:22.0389 0x1294 cdrom - ok
20:58:22.0422 0x1294 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
20:58:22.0445 0x1294 CertPropSvc - ok
20:58:22.0459 0x1294 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:58:22.0469 0x1294 circlass - ok
20:58:22.0490 0x1294 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
20:58:22.0502 0x1294 CLFS - ok
20:58:22.0590 0x1294 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:58:22.0596 0x1294 clr_optimization_v2.0.50727_32 - ok
20:58:22.0660 0x1294 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:58:22.0674 0x1294 clr_optimization_v2.0.50727_64 - ok
20:58:22.0910 0x1294 [ 397C2677C25CBE213F3270245A401624, 8121E37108DE7A0402DC5111EBF452F91893B63EECE3AAD9EACF61C40D3FC182 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:58:22.0931 0x1294 clr_optimization_v4.0.30319_32 - ok
20:58:23.0007 0x1294 [ 29139759FCC4E4E0531ABE2EA82CE646, CFF7B2F4A9B37D343BE18DC40161DC03FA9DB308CAE9E0B3DF1FCDC3EBAC0C08 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:58:23.0029 0x1294 clr_optimization_v4.0.30319_64 - ok
20:58:23.0065 0x1294 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:58:23.0085 0x1294 CmBatt - ok
20:58:23.0102 0x1294 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:58:23.0110 0x1294 cmdide - ok
20:58:23.0174 0x1294 [ D5FEA92400F12412B3922087C09DA6A5, C8CD9215D26D3295FE487C96A4FC3F4C8AFED764AE9445D9858D7489823A8A2B ] CNG C:\Windows\system32\Drivers\cng.sys
20:58:23.0200 0x1294 CNG - ok
20:58:23.0256 0x1294 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:58:23.0272 0x1294 Compbatt - ok
20:58:23.0364 0x1294 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:58:23.0391 0x1294 CompositeBus - ok
20:58:23.0398 0x1294 COMSysApp - ok
20:58:23.0407 0x1294 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:58:23.0422 0x1294 crcdisk - ok
20:58:23.0475 0x1294 [ 15597883FBE9B056F276ADA3AD87D9AF, B347E0B11228E38313C59C8ED984253A8A1FF482ED137CF5F488C4AFD6B08857 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:58:23.0511 0x1294 CryptSvc - ok
20:58:23.0566 0x1294 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:58:23.0599 0x1294 DcomLaunch - ok
20:58:23.0648 0x1294 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
20:58:23.0690 0x1294 defragsvc - ok
20:58:23.0719 0x1294 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:58:23.0742 0x1294 DfsC - ok
20:58:23.0761 0x1294 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:58:23.0788 0x1294 Dhcp - ok
20:58:23.0813 0x1294 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
20:58:23.0836 0x1294 discache - ok
20:58:23.0841 0x1294 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:58:23.0847 0x1294 Disk - ok
20:58:23.0883 0x1294 [ CD55F5355D8F55D44C9F4ED875705BD6, 321C26E3CD9F376D30F05FBDF00E96399512ED705D867E8B14793D9CE69A1C1F ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:58:23.0909 0x1294 Dnscache - ok
20:58:23.0954 0x1294 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
20:58:23.0981 0x1294 dot3svc - ok
20:58:24.0004 0x1294 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
20:58:24.0029 0x1294 DPS - ok
20:58:24.0045 0x1294 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:58:24.0054 0x1294 drmkaud - ok
20:58:24.0099 0x1294 [ F5BEE30450E18E6B83A5012C100616FD, 44D0577D159FC2BDF4EAD1DC2C7FD14925D075225EF97608CAC52DEE405B08FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:58:24.0123 0x1294 DXGKrnl - ok
20:58:24.0148 0x1294 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
20:58:24.0173 0x1294 EapHost - ok
20:58:24.0294 0x1294 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:58:24.0371 0x1294 ebdrv - ok
20:58:24.0422 0x1294 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS C:\Windows\System32\lsass.exe
20:58:24.0431 0x1294 EFS - ok
20:58:24.0552 0x1294 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:58:24.0583 0x1294 ehRecvr - ok
20:58:24.0610 0x1294 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
20:58:24.0620 0x1294 ehSched - ok
20:58:24.0645 0x1294 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:58:24.0660 0x1294 elxstor - ok
20:58:24.0685 0x1294 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:58:24.0693 0x1294 ErrDev - ok
20:58:24.0718 0x1294 [ FD291A75ECAF197F07BD2040C2A7322A, B4DE1B8A75928C8E6DF870A7B6F286EAA0B9A5D9443E99B66633F8B60013AC67 ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
20:58:24.0727 0x1294 EtronHub3 - ok
20:58:24.0807 0x1294 [ DDE9068F9BAC0210195F217AA39B9276, 3AE8CE03B0F93EF6006B46F8DFD5523F6C1951D98FB9A411EA90261C368A453F ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
20:58:24.0831 0x1294 EtronXHCI - ok
20:58:24.0862 0x1294 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
20:58:24.0897 0x1294 EventSystem - ok
20:58:24.0923 0x1294 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
20:58:24.0949 0x1294 exfat - ok
20:58:24.0956 0x1294 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:58:24.0983 0x1294 fastfat - ok
20:58:25.0047 0x1294 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
20:58:25.0075 0x1294 Fax - ok
20:58:25.0080 0x1294 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:58:25.0087 0x1294 fdc - ok
20:58:25.0113 0x1294 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
20:58:25.0136 0x1294 fdPHost - ok
20:58:25.0139 0x1294 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
20:58:25.0162 0x1294 FDResPub - ok
20:58:25.0166 0x1294 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:58:25.0172 0x1294 FileInfo - ok
20:58:25.0175 0x1294 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:58:25.0199 0x1294 Filetrace - ok
20:58:25.0202 0x1294 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:58:25.0210 0x1294 flpydisk - ok
20:58:25.0250 0x1294 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:58:25.0260 0x1294 FltMgr - ok
20:58:25.0323 0x1294 [ B4447F606BB19FD8AD0BAFB59B90F5D9, 043E686029DE2710305852E3A416176E400F9FD5FB98E4F2A6F14C060FAABED5 ] FontCache C:\Windows\system32\FntCache.dll
20:58:25.0368 0x1294 FontCache - ok
20:58:25.0415 0x1294 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:58:25.0430 0x1294 FontCache3.0.0.0 - ok
20:58:25.0465 0x1294 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:58:25.0483 0x1294 FsDepends - ok
20:58:25.0490 0x1294 [ E95EF8547DE20CF0603557C0CF7A9462, 55540B06B7B380CA2DA6EEE2D76C6CD6131ADB02B2D0B172A36536863A0C57B6 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:58:25.0501 0x1294 Fs_Rec - ok
20:58:25.0541 0x1294 [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:58:25.0562 0x1294 fvevol - ok
20:58:25.0569 0x1294 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:58:25.0581 0x1294 gagp30kx - ok
20:58:25.0599 0x1294 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
20:58:25.0603 0x1294 gdrv - ok
20:58:25.0622 0x1294 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
20:58:25.0660 0x1294 gpsvc - ok
20:58:25.0766 0x1294 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:58:25.0785 0x1294 gupdate - ok
20:58:25.0793 0x1294 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:58:25.0801 0x1294 gupdatem - ok
20:58:25.0820 0x1294 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
20:58:25.0827 0x1294 GVTDrv64 - ok
20:58:25.0852 0x1294 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:58:25.0863 0x1294 hcw85cir - ok
20:58:25.0899 0x1294 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:58:25.0920 0x1294 HdAudAddService - ok
20:58:25.0992 0x1294 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:58:26.0024 0x1294 HDAudBus - ok
20:58:26.0031 0x1294 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:58:26.0041 0x1294 HidBatt - ok
20:58:26.0046 0x1294 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:58:26.0059 0x1294 HidBth - ok
20:58:26.0064 0x1294 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:58:26.0075 0x1294 HidIr - ok
20:58:26.0103 0x1294 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
20:58:26.0130 0x1294 hidserv - ok
20:58:26.0147 0x1294 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:58:26.0154 0x1294 HidUsb - ok
20:58:26.0190 0x1294 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:58:26.0214 0x1294 hkmsvc - ok
20:58:26.0252 0x1294 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:58:26.0264 0x1294 HomeGroupListener - ok
20:58:26.0289 0x1294 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:58:26.0300 0x1294 HomeGroupProvider - ok
20:58:26.0375 0x1294 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:58:26.0392 0x1294 HpSAMD - ok
20:58:26.0456 0x1294 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:58:26.0501 0x1294 HTTP - ok
20:58:26.0536 0x1294 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:58:26.0541 0x1294 hwpolicy - ok
20:58:26.0560 0x1294 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:58:26.0571 0x1294 i8042prt - ok
20:58:26.0626 0x1294 [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:58:26.0647 0x1294 iaStorV - ok
20:58:26.0688 0x1294 [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
20:58:26.0694 0x1294 ICCS - detected UnsignedFile.Multi.Generic ( 1 )
20:58:26.0694 0x1294 Detect skipped due to KSN trusted
20:58:26.0694 0x1294 ICCS - ok
20:58:26.0749 0x1294 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:58:26.0761 0x1294 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
20:58:26.0761 0x1294 Detect skipped due to KSN trusted
20:58:26.0761 0x1294 IDriverT - ok
20:58:26.0848 0x1294 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:58:26.0875 0x1294 idsvc - ok
20:58:26.0905 0x1294 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:58:26.0911 0x1294 iirsp - ok
20:58:27.0013 0x1294 [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll
20:58:27.0062 0x1294 IKEEXT - ok
20:58:27.0240 0x1294 [ 7A3585C4000C8340AE6B7FA08F9EF50F, B93F23464E7D929B90D80650698372128546CFEDA72216823CBE51A08D3368E0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:58:27.0316 0x1294 IntcAzAudAddService - ok
20:58:27.0338 0x1294 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
20:58:27.0343 0x1294 intelide - ok
20:58:27.0347 0x1294 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:58:27.0356 0x1294 intelppm - ok
20:58:27.0378 0x1294 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:58:27.0403 0x1294 IPBusEnum - ok
20:58:27.0440 0x1294 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:58:27.0484 0x1294 IpFilterDriver - ok
20:58:27.0529 0x1294 [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:58:27.0568 0x1294 iphlpsvc - ok
20:58:27.0602 0x1294 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:58:27.0611 0x1294 IPMIDRV - ok
20:58:27.0634 0x1294 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:58:27.0659 0x1294 IPNAT - ok
20:58:27.0662 0x1294 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:58:27.0673 0x1294 IRENUM - ok
20:58:27.0685 0x1294 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:58:27.0691 0x1294 isapnp - ok
20:58:27.0741 0x1294 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:58:27.0751 0x1294 iScsiPrt - ok
20:58:27.0763 0x1294 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:58:27.0769 0x1294 kbdclass - ok
20:58:27.0799 0x1294 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:58:27.0819 0x1294 kbdhid - ok
20:58:27.0840 0x1294 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] KeyIso C:\Windows\system32\lsass.exe
20:58:27.0852 0x1294 KeyIso - ok
20:58:28.0126 0x1294 [ 1C6256096A341051509D36AD724830BE, 025F7E1E979DC8C4794FC7D3581D6BCF6E0F6DC327C6FCB925B6A8EDBE999A68 ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
20:58:28.0277 0x1294 KL1 - ok
20:58:28.0360 0x1294 [ 33730023A37E259AB26F25C164BC2471, D9CE760D633821D7A7C06EFA76A95ECDA82ACABA44B4855610F77B63CC76473D ] KLIF C:\Windows\system32\DRIVERS\klif.sys
20:58:28.0381 0x1294 KLIF - ok
20:58:28.0417 0x1294 [ CCD53B5BD33CE0C889E830D839C8B66E, 51B7556DA7DAA0BC75E00E53099776016A55FAA115D5A4E6830E12A0A0869C10 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:58:28.0424 0x1294 KSecDD - ok
20:58:28.0457 0x1294 [ 9FF918A261752C12639E8AD4208D2C2F, B60F7A730C92F2BF7E85A6CA14DD7671AEECEE154CEC83B1E23EF268C25C9E5E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:58:28.0465 0x1294 KSecPkg - ok
20:58:28.0491 0x1294 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:58:28.0514 0x1294 ksthunk - ok
20:58:28.0545 0x1294 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
20:58:28.0575 0x1294 KtmRm - ok
20:58:28.0604 0x1294 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:58:28.0632 0x1294 LanmanServer - ok
20:58:28.0664 0x1294 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:58:28.0688 0x1294 LanmanWorkstation - ok
20:58:28.0693 0x1294 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:58:28.0717 0x1294 lltdio - ok
20:58:28.0750 0x1294 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:58:28.0779 0x1294 lltdsvc - ok
20:58:28.0782 0x1294 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:58:28.0805 0x1294 lmhosts - ok
20:58:28.0819 0x1294 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:58:28.0827 0x1294 LSI_FC - ok
20:58:28.0839 0x1294 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:58:28.0846 0x1294 LSI_SAS - ok
20:58:28.0850 0x1294 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:58:28.0856 0x1294 LSI_SAS2 - ok
20:58:28.0861 0x1294 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:58:28.0869 0x1294 LSI_SCSI - ok
20:58:28.0874 0x1294 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
20:58:28.0898 0x1294 luafv - ok
20:58:28.0925 0x1294 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:58:28.0935 0x1294 Mcx2Svc - ok
20:58:28.0938 0x1294 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:58:28.0944 0x1294 megasas - ok
20:58:28.0966 0x1294 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:58:28.0977 0x1294 MegaSR - ok
20:58:28.0992 0x1294 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
20:58:29.0017 0x1294 MMCSS - ok
20:58:29.0020 0x1294 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
20:58:29.0043 0x1294 Modem - ok
20:58:29.0046 0x1294 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:58:29.0055 0x1294 monitor - ok
20:58:29.0093 0x1294 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:58:29.0110 0x1294 mouclass - ok
20:58:29.0118 0x1294 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:58:29.0129 0x1294 mouhid - ok
20:58:29.0160 0x1294 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:58:29.0169 0x1294 mountmgr - ok
20:58:29.0190 0x1294 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
20:58:29.0200 0x1294 mpio - ok
20:58:29.0204 0x1294 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:58:29.0230 0x1294 mpsdrv - ok
20:58:29.0271 0x1294 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:58:29.0310 0x1294 MpsSvc - ok
20:58:29.0342 0x1294 [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:58:29.0355 0x1294 MRxDAV - ok
20:58:29.0385 0x1294 [ FAF015B07E3A2874A790A39B7D2C579F, C614B0E80B38EBF7C670EEB833F5E476B33042097DA07206D6C5EE3E52B9A427 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:58:29.0409 0x1294 mrxsmb - ok
20:58:29.0429 0x1294 [ 08E2345DF129082BCDFFDC1440F9C00D, 2ADF69F49DF8C43D4440B6C8A62085C51518CA895A88D37264C60A0B4B1EC55F ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:58:29.0456 0x1294 mrxsmb10 - ok
20:58:29.0497 0x1294 [ 108D87409C5812EF47D81E22843E8C9D, CAE9B91B6BD1DF1552463BD63A06288F5D3E0B81B040BC1C7EC0C2A0119CCECA ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:58:29.0520 0x1294 mrxsmb20 - ok
20:58:29.0529 0x1294 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
20:58:29.0535 0x1294 msahci - ok
20:58:29.0563 0x1294 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:58:29.0571 0x1294 msdsm - ok
20:58:29.0588 0x1294 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
20:58:29.0599 0x1294 MSDTC - ok
20:58:29.0622 0x1294 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:58:29.0644 0x1294 Msfs - ok
20:58:29.0647 0x1294 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:58:29.0668 0x1294 mshidkmdf - ok
20:58:29.0695 0x1294 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:58:29.0700 0x1294 msisadrv - ok
20:58:29.0725 0x1294 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:58:29.0751 0x1294 MSiSCSI - ok
20:58:29.0753 0x1294 msiserver - ok
20:58:29.0756 0x1294 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:58:29.0778 0x1294 MSKSSRV - ok
20:58:29.0781 0x1294 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:58:29.0803 0x1294 MSPCLOCK - ok
20:58:29.0805 0x1294 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:58:29.0827 0x1294 MSPQM - ok
20:58:29.0904 0x1294 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:58:29.0921 0x1294 MsRPC - ok
20:58:29.0970 0x1294 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:58:29.0987 0x1294 mssmbios - ok
20:58:29.0992 0x1294 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:58:30.0024 0x1294 MSTEE - ok
20:58:30.0048 0x1294 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:58:30.0055 0x1294 MTConfig - ok
20:58:30.0059 0x1294 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
20:58:30.0065 0x1294 Mup - ok
20:58:30.0104 0x1294 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
20:58:30.0136 0x1294 napagent - ok
20:58:30.0163 0x1294 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:58:30.0180 0x1294 NativeWifiP - ok
20:58:30.0226 0x1294 [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS C:\Windows\system32\drivers\ndis.sys
20:58:30.0250 0x1294 NDIS - ok
20:58:30.0267 0x1294 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:58:30.0290 0x1294 NdisCap - ok
20:58:30.0293 0x1294 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:58:30.0317 0x1294 NdisTapi - ok
20:58:30.0333 0x1294 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:58:30.0356 0x1294 Ndisuio - ok
20:58:30.0378 0x1294 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:58:30.0404 0x1294 NdisWan - ok
20:58:30.0437 0x1294 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:58:30.0460 0x1294 NDProxy - ok
20:58:30.0479 0x1294 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:58:30.0503 0x1294 NetBIOS - ok
20:58:30.0526 0x1294 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:58:30.0553 0x1294 NetBT - ok
20:58:30.0567 0x1294 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] Netlogon C:\Windows\system32\lsass.exe
20:58:30.0576 0x1294 Netlogon - ok
20:58:30.0606 0x1294 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
20:58:30.0637 0x1294 Netman - ok
20:58:30.0691 0x1294 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:58:30.0713 0x1294 NetMsmqActivator - ok
20:58:30.0713 0x1294 Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetMsmqActivator
20:58:33.0471 0x1294 Object send P2P result: true
20:58:33.0496 0x1294 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:58:33.0518 0x1294 NetPipeActivator - ok
20:58:33.0519 0x1294 Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetPipeActivator
20:58:36.0279 0x1294 Object send P2P result: true
20:58:36.0308 0x1294 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
20:58:36.0356 0x1294 netprofm - ok
20:58:36.0385 0x1294 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:58:36.0393 0x1294 NetTcpActivator - ok
20:58:36.0393 0x1294 Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpActivator
20:58:39.0144 0x1294 Object send P2P result: true
20:58:39.0183 0x1294 [ 9A7D3A1AA5C830744FF6C44BB55A347A, 42D3281893DB4C0DDA6A7BDA92D3CCE23968D0E3CF880777B8DBBFD955629B08 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:58:39.0203 0x1294 NetTcpPortSharing - ok
20:58:39.0203 0x1294 Object required for P2P: [ 9A7D3A1AA5C830744FF6C44BB55A347A ] NetTcpPortSharing
20:58:56.0458 0x1294 Object send P2P result: true
20:58:56.0485 0x1294 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:58:56.0503 0x1294 nfrd960 - ok
20:58:56.0542 0x1294 [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:58:56.0576 0x1294 NlaSvc - ok
20:58:56.0580 0x1294 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:58:56.0603 0x1294 Npfs - ok
20:58:56.0619 0x1294 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
20:58:56.0643 0x1294 nsi - ok
20:58:56.0646 0x1294 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:58:56.0669 0x1294 nsiproxy - ok
20:58:56.0769 0x1294 [ 05D78AA5CB5F3F5C31160BDB955D0B7C, E3CD3FAF52ED11A8FB96D667510F1EDCA49053705AA3A13F560F8F6EC995CA45 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:58:56.0807 0x1294 Ntfs - ok
20:58:56.0835 0x1294 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
20:58:56.0857 0x1294 Null - ok
20:58:56.0904 0x1294 [ B4F53BCA4C688FF47F04FA90098F896E, 6051CFC0CFE659A2C4CFC1029F19CF1B1B98A1A5E59C2B3A10D7B3407A7FA5C0 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:58:56.0928 0x1294 NVHDA - ok
20:58:57.0339 0x1294 [ 4EE399576F76D38C04745DB739BBC8C7, 7D7FB6013D5D3EE1908F37188AA440EE6EF80A432204EB59AE190ACD14CD1FE0 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:58:57.0557 0x1294 nvlddmkm - ok
20:58:57.0601 0x1294 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:58:57.0609 0x1294 nvraid - ok
20:58:57.0649 0x1294 [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:58:57.0658 0x1294 nvstor - ok
20:58:57.0709 0x1294 [ 7335C3D78A7746D76D37F6722CC4A466, 18BDD51AB0EB4084E1DA2F27B8D4FCF488ED9161C034BB3CDFF5BE33F84C1D37 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:58:57.0730 0x1294 nvsvc - ok
20:58:57.0839 0x1294 [ B7C53DA1C73FF39F4A6248643EFD979A, 528C4984F09F66D4CBA5A9B7C78FBAA04E558309B0D66EB1C29AD2B30D9993F7 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:58:57.0870 0x1294 nvUpdatusService - ok
20:58:57.0896 0x1294 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:58:57.0904 0x1294 nv_agp - ok
20:58:57.0933 0x1294 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:58:57.0942 0x1294 ohci1394 - ok
20:58:57.0978 0x1294 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:58:57.0993 0x1294 p2pimsvc - ok
20:58:58.0018 0x1294 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
20:58:58.0035 0x1294 p2psvc - ok
20:58:58.0065 0x1294 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:58:58.0075 0x1294 Parport - ok
20:58:58.0102 0x1294 [ 871EADAC56B0A4C6512BBE32753CCF79, F9FD9DBA55274BB72B897550988DCDFD0F2D9367BE641DFDE07D240052DDC180 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:58:58.0109 0x1294 partmgr - ok
20:58:58.0115 0x1294 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
20:58:58.0130 0x1294 PcaSvc - ok
20:58:58.0149 0x1294 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
20:58:58.0158 0x1294 pci - ok
20:58:58.0170 0x1294 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
20:58:58.0175 0x1294 pciide - ok
20:58:58.0183 0x1294 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:58:58.0192 0x1294 pcmcia - ok
20:58:58.0196 0x1294 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
20:58:58.0202 0x1294 pcw - ok
20:58:58.0239 0x1294 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:58:58.0275 0x1294 PEAUTH - ok
20:58:58.0479 0x1294 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:58:58.0502 0x1294 PerfHost - ok
20:58:58.0632 0x1294 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
20:58:58.0686 0x1294 pla - ok
20:58:58.0731 0x1294 [ B806E50427511BCF4AD8E8239C3E25FA, AB89B48ECCF90F701B314D18BE531CDA5ABE1636C17B994A5E4BE5AAC136B4E3 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:58:58.0762 0x1294 PlugPlay - ok
20:58:58.0788 0x1294 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:58:58.0796 0x1294 PNRPAutoReg - ok
20:58:58.0806 0x1294 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:58:58.0820 0x1294 PNRPsvc - ok
20:58:58.0875 0x1294 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:58:58.0917 0x1294 PolicyAgent - ok
20:58:58.0949 0x1294 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
20:58:58.0977 0x1294 Power - ok
20:58:59.0007 0x1294 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:58:59.0030 0x1294 PptpMiniport - ok
20:58:59.0053 0x1294 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:58:59.0062 0x1294 Processor - ok
20:58:59.0094 0x1294 [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc C:\Windows\system32\profsvc.dll
20:58:59.0140 0x1294 ProfSvc - ok
20:58:59.0152 0x1294 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] ProtectedStorage C:\Windows\system32\lsass.exe
20:58:59.0160 0x1294 ProtectedStorage - ok
20:58:59.0190 0x1294 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:58:59.0214 0x1294 Psched - ok
20:58:59.0282 0x1294 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:58:59.0315 0x1294 ql2300 - ok
20:58:59.0323 0x1294 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:58:59.0330 0x1294 ql40xx - ok
20:58:59.0358 0x1294 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
20:58:59.0374 0x1294 QWAVE - ok
20:58:59.0377 0x1294 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:58:59.0388 0x1294 QWAVEdrv - ok
20:58:59.0391 0x1294 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:58:59.0414 0x1294 RasAcd - ok
20:58:59.0432 0x1294 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:58:59.0455 0x1294 RasAgileVpn - ok
20:58:59.0468 0x1294 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
20:58:59.0493 0x1294 RasAuto - ok
20:58:59.0521 0x1294 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:58:59.0544 0x1294 Rasl2tp - ok
20:58:59.0588 0x1294 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
20:58:59.0617 0x1294 RasMan - ok
20:58:59.0638 0x1294 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:58:59.0662 0x1294 RasPppoe - ok
20:58:59.0675 0x1294 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:58:59.0699 0x1294 RasSstp - ok
20:58:59.0734 0x1294 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:58:59.0762 0x1294 rdbss - ok
20:58:59.0765 0x1294 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:58:59.0774 0x1294 rdpbus - ok
20:58:59.0777 0x1294 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:58:59.0799 0x1294 RDPCDD - ok
20:58:59.0802 0x1294 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:58:59.0824 0x1294 RDPENCDD - ok
20:58:59.0828 0x1294 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:58:59.0850 0x1294 RDPREFMP - ok
20:58:59.0862 0x1294 [ 15B66C206B5CB095BAB980553F38ED23, 3CA50786A8D3D6BAF145AFD22C1ED92C2EB39F5D6AF4F6B09B69610FDE0C5B24 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:58:59.0887 0x1294 RDPWD - ok
20:58:59.0929 0x1294 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:58:59.0939 0x1294 rdyboost - ok
20:58:59.0970 0x1294 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:58:59.0995 0x1294 RemoteAccess - ok
20:59:00.0080 0x1294 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:59:00.0129 0x1294 RemoteRegistry - ok
20:59:00.0138 0x1294 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:59:00.0163 0x1294 RpcEptMapper - ok
20:59:00.0174 0x1294 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
20:59:00.0182 0x1294 RpcLocator - ok
20:59:00.0218 0x1294 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
20:59:00.0251 0x1294 RpcSs - ok
20:59:00.0274 0x1294 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:59:00.0298 0x1294 rspndr - ok
20:59:00.0353 0x1294 [ 7F4F11527AF5A7E4526CB6A146B3E40C, 705177014374AB2F12AF4558344C35C206C2820BD1A16770173EA10D094D182B ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:59:00.0370 0x1294 RTL8167 - ok
20:59:00.0386 0x1294 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] SamSs C:\Windows\system32\lsass.exe
20:59:00.0394 0x1294 SamSs - ok
20:59:00.0435 0x1294 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:59:00.0442 0x1294 sbp2port - ok
20:59:00.0490 0x1294 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:59:00.0524 0x1294 SCardSvr - ok
20:59:00.0557 0x1294 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:59:00.0598 0x1294 scfilter - ok
20:59:00.0686 0x1294 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
20:59:00.0731 0x1294 Schedule - ok
20:59:00.0775 0x1294 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:59:00.0817 0x1294 SCPolicySvc - ok
20:59:00.0835 0x1294 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:59:00.0846 0x1294 SDRSVC - ok
20:59:00.0863 0x1294 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:59:00.0885 0x1294 secdrv - ok
20:59:00.0903 0x1294 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
20:59:00.0926 0x1294 seclogon - ok
20:59:00.0976 0x1294 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
20:59:01.0000 0x1294 SENS - ok
20:59:01.0010 0x1294 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:59:01.0019 0x1294 SensrSvc - ok
20:59:01.0022 0x1294 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:59:01.0029 0x1294 Serenum - ok
20:59:01.0034 0x1294 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:59:01.0043 0x1294 Serial - ok
20:59:01.0057 0x1294 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:59:01.0064 0x1294 sermouse - ok
20:59:01.0107 0x1294 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
20:59:01.0147 0x1294 SessionEnv - ok
20:59:01.0175 0x1294 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:59:01.0184 0x1294 sffdisk - ok
20:59:01.0205 0x1294 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:59:01.0214 0x1294 sffp_mmc - ok
20:59:01.0232 0x1294 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:59:01.0242 0x1294 sffp_sd - ok
20:59:01.0254 0x1294 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:59:01.0261 0x1294 sfloppy - ok
20:59:01.0373 0x1294 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:59:01.0417 0x1294 SharedAccess - ok
20:59:01.0446 0x1294 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:59:01.0479 0x1294 ShellHWDetection - ok
20:59:01.0493 0x1294 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:59:01.0499 0x1294 SiSRaid2 - ok
20:59:01.0503 0x1294 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:59:01.0510 0x1294 SiSRaid4 - ok
20:59:01.0515 0x1294 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:59:01.0539 0x1294 Smb - ok
20:59:01.0555 0x1294 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:59:01.0564 0x1294 SNMPTRAP - ok
20:59:01.0567 0x1294 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
20:59:01.0572 0x1294 spldr - ok
20:59:01.0599 0x1294 [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
20:59:01.0633 0x1294 Spooler - ok
20:59:01.0805 0x1294 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
20:59:01.0903 0x1294 sppsvc - ok
20:59:01.0939 0x1294 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:59:01.0964 0x1294 sppuinotify - ok
20:59:01.0996 0x1294 [ 2098B8556D1CEC2ACA9A29CD479E3692, D5826407C64F18C16EB36E6F00787CFAFCD9B24B5BD8AD126AD01E6E4134966F ] srv C:\Windows\system32\DRIVERS\srv.sys
20:59:02.0027 0x1294 srv - ok
20:59:02.0040 0x1294 [ D0F73A42040F21F92FD314B42AC5C9E7, A021C4318C9CFA594305458B2643BB0C22DDE1F3D51C93C9F3E7F7AB75B31278 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:59:02.0070 0x1294 srv2 - ok
20:59:02.0114 0x1294 [ 2BA8F3250828CCDB4204ECF2C6F40B6A, 22C4FBF9A87C46E69C48B681FF733D68D9CB7B7D73FB14C8C2A06E9009F9860E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:59:02.0139 0x1294 srvnet - ok
20:59:02.0166 0x1294 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:59:02.0193 0x1294 SSDPSRV - ok
20:59:02.0197 0x1294 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:59:02.0222 0x1294 SstpSvc - ok
20:59:02.0335 0x1294 [ 25C16F7D749F1BA7D573756338658727, 4A4056F34C0D34D793E0A24D37842F8122A5C072F9A2ED9192763FB0CC8FDADC ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:59:02.0358 0x1294 Steam Client Service - ok
20:59:02.0419 0x1294 [ 81F177C1954453AF407604160BD149CB, D6B05F7E399690233C71C1E4B88F95D566BC6A14D145715A8A8C0FFD591147F0 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:59:02.0436 0x1294 Stereo Service - ok
20:59:02.0462 0x1294 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:59:02.0467 0x1294 stexstor - ok
20:59:02.0534 0x1294 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
20:59:02.0562 0x1294 stisvc - ok
20:59:02.0588 0x1294 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
20:59:02.0593 0x1294 swenum - ok
20:59:02.0627 0x1294 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
20:59:02.0662 0x1294 swprv - ok
20:59:02.0769 0x1294 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
20:59:02.0818 0x1294 SysMain - ok
20:59:02.0859 0x1294 [ 324F5EDA743A3F1738356FE897D86C5C, 8F6D8399A1B936A90EE293E6EE720B789A003A562FCC5B491F71D39262EAFDE0 ] ta10avs C:\Windows\system32\Drivers\ta10avs.sys
20:59:02.0870 0x1294 ta10avs - ok
20:59:02.0913 0x1294 [ 742DACBA99676C4729D2C88529A6A610, 3526973701165DFEE11395C8194FD1990592313DAC1F69443F9A837791B1B1D7 ] ta10usb_svc C:\Windows\system32\Drivers\ta10usb.sys
20:59:02.0930 0x1294 ta10usb_svc - ok
20:59:02.0978 0x1294 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:59:03.0007 0x1294 TabletInputService - ok
20:59:03.0064 0x1294 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
20:59:03.0108 0x1294 TapiSrv - ok
20:59:03.0132 0x1294 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
20:59:03.0156 0x1294 TBS - ok
20:59:03.0252 0x1294 [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:59:03.0295 0x1294 Tcpip - ok
20:59:03.0402 0x1294 [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:59:03.0449 0x1294 TCPIP6 - ok
20:59:03.0475 0x1294 [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:59:03.0498 0x1294 tcpipreg - ok
20:59:03.0516 0x1294 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:59:03.0540 0x1294 TDPIPE - ok
20:59:03.0543 0x1294 [ E4245BDA3190A582D55ED09E137401A9, F59C983882997D68CC7B1B2080AEE9EBE2AE90D478F877559BD2AAA97158A116 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:59:03.0565 0x1294 TDTCP - ok
20:59:03.0595 0x1294 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:59:03.0619 0x1294 tdx - ok
20:59:03.0633 0x1294 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
20:59:03.0640 0x1294 TermDD - ok
20:59:03.0686 0x1294 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
20:59:03.0722 0x1294 TermService - ok
20:59:03.0734 0x1294 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
20:59:03.0745 0x1294 Themes - ok
20:59:03.0768 0x1294 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
20:59:03.0792 0x1294 THREADORDER - ok
20:59:03.0820 0x1294 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
20:59:03.0846 0x1294 TrkWks - ok
20:59:03.0883 0x1294 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:59:03.0909 0x1294 TrustedInstaller - ok
20:59:03.0934 0x1294 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:59:03.0956 0x1294 tssecsrv - ok
20:59:03.0991 0x1294 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:59:03.0999 0x1294 TsUsbFlt - ok
20:59:04.0037 0x1294 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:59:04.0060 0x1294 tunnel - ok
20:59:04.0084 0x1294 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:59:04.0091 0x1294 uagp35 - ok
20:59:04.0114 0x1294 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:59:04.0142 0x1294 udfs - ok
20:59:04.0174 0x1294 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:59:04.0184 0x1294 UI0Detect - ok
20:59:04.0194 0x1294 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:59:04.0200 0x1294 uliagpkx - ok
20:59:04.0219 0x1294 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
20:59:04.0228 0x1294 umbus - ok
20:59:04.0237 0x1294 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:59:04.0244 0x1294 UmPass - ok
20:59:04.0263 0x1294 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
20:59:04.0293 0x1294 upnphost - ok
20:59:04.0308 0x1294 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A, DE1CDDEEF2285CC8387E88ACB13C000576DC8819DF6DC648C988068B5C83BB15 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:59:04.0320 0x1294 usbaudio - ok
20:59:04.0337 0x1294 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829, 5D6E404FE0AB875202CA1A3E8E9D2F4368DF6ACCFA1C872ECFAF8399CBA3A485 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
20:59:04.0347 0x1294 usbccgp - ok
20:59:04.0369 0x1294 [ 84A8E67E6CB15B070A2A7A0B3A9F1609, 08AB5691024A5B69A23DEF4E69696EC46D5BAD01A24861CFE612FBD649D87BDB ] UsbCharger C:\Windows\system32\DRIVERS\UsbCharger.sys
20:59:04.0374 0x1294 UsbCharger - ok
20:59:04.0406 0x1294 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:59:04.0417 0x1294 usbcir - ok
20:59:04.0428 0x1294 [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:59:04.0437 0x1294 usbehci - ok
20:59:04.0462 0x1294 [ 504901430B6E03B99EBB6BF26E0868C6, D00C0904B7008305DCA5D1E6FED153DD8875CAD14D80348E59F42A182FA7E832 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:59:04.0467 0x1294 usbfilter - ok
20:59:04.0500 0x1294 [ DC96BD9CCB8403251BCF25047573558E, 66EBF8A6B3BC0634F32DDCC8BA31F1EB5987E8C6853E1DC26005E3EED0945565 ] usbhub C:\Windows\system32\drivers\usbhub.sys
20:59:04.0515 0x1294 usbhub - ok
20:59:04.0529 0x1294 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:59:04.0537 0x1294 usbohci - ok
20:59:04.0632 0x1294 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:59:04.0659 0x1294 usbprint - ok
20:59:04.0670 0x1294 [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:59:04.0681 0x1294 USBSTOR - ok
20:59:04.0696 0x1294 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:59:04.0706 0x1294 usbuhci - ok
20:59:04.0735 0x1294 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
20:59:04.0764 0x1294 UxSms - ok
20:59:04.0773 0x1294 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] VaultSvc C:\Windows\system32\lsass.exe
20:59:04.0781 0x1294 VaultSvc - ok
20:59:04.0800 0x1294 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:59:04.0806 0x1294 vdrvroot - ok
20:59:04.0871 0x1294 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
20:59:04.0911 0x1294 vds - ok
20:59:04.0915 0x1294 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:59:04.0924 0x1294 vga - ok
20:59:04.0927 0x1294 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:59:04.0950 0x1294 VgaSave - ok
20:59:05.0021 0x1294 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:59:05.0037 0x1294 vhdmp - ok
20:59:05.0053 0x1294 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
20:59:05.0059 0x1294 viaide - ok
20:59:05.0069 0x1294 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:59:05.0075 0x1294 volmgr - ok
20:59:05.0135 0x1294 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:59:05.0159 0x1294 volmgrx - ok
20:59:05.0195 0x1294 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:59:05.0208 0x1294 volsnap - ok
20:59:05.0243 0x1294 [ 8F1E531D36D95B0586DA00D546AB8B9A, 206C568E3698096D2C2C2E5BAB53382B74DEF2B354E6029E7C34912A55A0897C ] Vsdatant C:\Windows\system32\DRIVERS\vsdatant.sys
20:59:05.0256 0x1294 Vsdatant - ok
20:59:05.0527 0x1294 [ 21D22AC9B8B33AF6EEEBDB10D1661C37, 56C7A8E5C3084163342A433FD20DE8E9931C1C293B49C0F9CD9C8F45A56D135B ] vsmon C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
20:59:05.0598 0x1294 vsmon - ok
20:59:05.0646 0x1294 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:59:05.0655 0x1294 vsmraid - ok
20:59:05.0751 0x1294 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
20:59:05.0829 0x1294 VSS - ok
20:59:05.0842 0x1294 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:59:05.0866 0x1294 vwifibus - ok
20:59:05.0931 0x1294 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
20:59:05.0985 0x1294 W32Time - ok
20:59:05.0992 0x1294 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:59:06.0000 0x1294 WacomPen - ok
20:59:06.0026 0x1294 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:59:06.0049 0x1294 WANARP - ok
20:59:06.0052 0x1294 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:59:06.0076 0x1294 Wanarpv6 - ok
20:59:06.0182 0x1294 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
20:59:06.0225 0x1294 wbengine - ok
20:59:06.0255 0x1294 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:59:06.0270 0x1294 WbioSrvc - ok
20:59:06.0304 0x1294 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:59:06.0323 0x1294 wcncsvc - ok
20:59:06.0327 0x1294 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:59:06.0336 0x1294 WcsPlugInService - ok
20:59:06.0365 0x1294 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:59:06.0370 0x1294 Wd - ok
20:59:06.0388 0x1294 [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:59:06.0405 0x1294 Wdf01000 - ok
20:59:06.0420 0x1294 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:59:06.0434 0x1294 WdiServiceHost - ok
20:59:06.0438 0x1294 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:59:06.0451 0x1294 WdiSystemHost - ok
20:59:06.0483 0x1294 [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient C:\Windows\System32\webclnt.dll
20:59:06.0499 0x1294 WebClient - ok
20:59:06.0518 0x1294 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:59:06.0547 0x1294 Wecsvc - ok
20:59:06.0552 0x1294 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:59:06.0577 0x1294 wercplsupport - ok
20:59:06.0590 0x1294 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
20:59:06.0615 0x1294 WerSvc - ok
20:59:06.0618 0x1294 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:59:06.0640 0x1294 WfpLwf - ok
20:59:06.0644 0x1294 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:59:06.0650 0x1294 WIMMount - ok
20:59:06.0656 0x1294 WinDefend - ok
20:59:06.0660 0x1294 WinHttpAutoProxySvc - ok
20:59:06.0763 0x1294 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:59:06.0805 0x1294 Winmgmt - ok
20:59:06.0916 0x1294 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
20:59:06.0982 0x1294 WinRM - ok
20:59:07.0029 0x1294 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:59:07.0059 0x1294 Wlansvc - ok
20:59:07.0075 0x1294 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:59:07.0082 0x1294 WmiAcpi - ok
20:59:07.0100 0x1294 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:59:07.0111 0x1294 wmiApSrv - ok
20:59:07.0127 0x1294 WMPNetworkSvc - ok
20:59:07.0150 0x1294 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:59:07.0158 0x1294 WPCSvc - ok
20:59:07.0198 0x1294 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:59:07.0225 0x1294 WPDBusEnum - ok
20:59:07.0248 0x1294 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:59:07.0275 0x1294 ws2ifsl - ok
20:59:07.0287 0x1294 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
20:59:07.0300 0x1294 wscsvc - ok
20:59:07.0303 0x1294 WSearch - ok
20:59:07.0439 0x1294 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
20:59:07.0491 0x1294 wuauserv - ok
20:59:07.0544 0x1294 [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:59:07.0567 0x1294 WudfPf - ok
20:59:07.0609 0x1294 [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:59:07.0633 0x1294 wudfsvc - ok
20:59:07.0666 0x1294 [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:59:07.0682 0x1294 WwanSvc - ok
20:59:07.0713 0x1294 [ CEC8ED565F3663F0B8A862561BF08D79, FDDBEDC79C7061B20AA450BB3D09EDADEDD5F531D8EA100BBF542A63BDFCE593 ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
20:59:07.0719 0x1294 ZAPrivacyService - ok
20:59:07.0743 0x1294 ================ Scan global ===============================
20:59:07.0791 0x1294 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
20:59:07.0832 0x1294 [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
20:59:07.0860 0x1294 [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
20:59:07.0889 0x1294 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
20:59:07.0926 0x1294 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
20:59:07.0943 0x1294 [ Global ] - ok
20:59:07.0943 0x1294 ================ Scan MBR ==================================
20:59:07.0945 0x1294 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:59:07.0985 0x1294 \Device\Harddisk0\DR0 - ok
20:59:07.0994 0x1294 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:59:08.0251 0x1294 \Device\Harddisk1\DR1 - ok
20:59:08.0252 0x1294 ================ Scan VBR ==================================
20:59:08.0256 0x1294 [ 591DE1ACEA4DA45A0E5BE5B6C561F65D ] \Device\Harddisk0\DR0\Partition1
20:59:08.0260 0x1294 \Device\Harddisk0\DR0\Partition1 - ok
20:59:08.0264 0x1294 [ 66629D96629BE2BA2A5CEBE720546994 ] \Device\Harddisk0\DR0\Partition2
20:59:08.0267 0x1294 \Device\Harddisk0\DR0\Partition2 - ok
20:59:08.0272 0x1294 [ 90CF97BCECF4277E80EA0279E66FF715 ] \Device\Harddisk1\DR1\Partition1
20:59:08.0272 0x1294 \Device\Harddisk1\DR1\Partition1 - ok
20:59:08.0274 0x1294 [ 55EE6F36822F96445AB83418FF1C6220 ] \Device\Harddisk1\DR1\Partition2
20:59:08.0275 0x1294 \Device\Harddisk1\DR1\Partition2 - ok
20:59:08.0275 0x1294 ================ Scan generic autorun ======================
20:59:08.0849 0x1294 [ 16438B000BF56F2CD7FDB5E6C3B38C7E, 32D6E69E6367D3ADB2189DA89103CB9910CE791EFB0879515DDD380A96D85BAE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:59:09.0101 0x1294 RtHDVCpl - ok
20:59:09.0145 0x1294 [ F31CDC26F3624750C2AE2DEFF1E598DA, 06B606E849FB946A9E4CFC8E6799A6B18C4E3233A77ED62DEBCC375649F3D7A8 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
20:59:09.0174 0x1294 RtHDVBg_Dolby - ok
20:59:09.0250 0x1294 [ EE864CD35936E4AAD8120321907DA8F5, D4A37E70302DF0A76E20F1AC1CD427A831BA80A8E1729E0E5637DC48E7A85DF3 ] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
20:59:09.0272 0x1294 Dolby Home Theater v4 - ok
20:59:09.0445 0x1294 [ 0210577A83C3E30C724E21EC3211ED95, 1433DE5B47B5EC1F99E6BCD6C8538D8BD1F17B175AB4FE2CE7D480D46AAF3822 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
20:59:09.0476 0x1294 StartCCC - ok
20:59:09.0505 0x1294 [ BA59761B013B65B6DB008EA19A557B42, 641E5A4B836CC0FE35B836CBA6ADA79729558137C9D404BEDD221D13833E40A9 ] C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
20:59:09.0511 0x1294 ZoneAlarm - ok
20:59:09.0588 0x1294 [ 6A188ECFCA5A2A6F41CA145FC93F96A6, 48D70FAA4C4F6F1F6542E2C54085857CE6906A69C0412E8A08BF69010FDF07CF ] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
20:59:09.0598 0x1294 EasyTuneVI - detected UnsignedFile.Multi.Generic ( 1 )
20:59:09.0598 0x1294 Detect skipped due to KSN trusted
20:59:09.0598 0x1294 EasyTuneVI - ok
20:59:09.0699 0x1294 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:59:09.0736 0x1294 Sidebar - ok
20:59:09.0757 0x1294 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:59:09.0769 0x1294 mctadmin - ok
20:59:09.0836 0x1294 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:59:09.0868 0x1294 Sidebar - ok
20:59:09.0873 0x1294 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:59:09.0886 0x1294 mctadmin - ok
20:59:10.0135 0x1294 [ 3255867AE34EDD5346C750677EE63354, 3FC8E1EFF33EE83717C285D0CD388886135C5BF977B69CF6ADCFD4196139D483 ] C:\Program Files (x86)\Steam\steam.exe
20:59:10.0190 0x1294 Steam - ok
20:59:10.0285 0x1294 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
20:59:10.0320 0x1294 Sidebar - ok
20:59:10.0325 0x1294 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
20:59:10.0337 0x1294 mctadmin - ok
20:59:10.0340 0x1294 AV detected via SS2: ZoneAlarm Antivirus, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 13.3.209.0 ), 0x41000 ( enabled : updated )
20:59:10.0341 0x1294 FW detected via SS2: ZoneAlarm Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 13.3.209.0 ), 0x41010 ( enabled )
20:59:13.0029 0x1294 ============================================================
20:59:13.0029 0x1294 Scan finished
20:59:13.0029 0x1294 ============================================================
20:59:13.0042 0x0250 Detected object count: 0
20:59:13.0042 0x0250 Actual detected object count: 0
|
|
20.02.2015, 19:38
| #9 |
| /// the machine /// TB-Ausbilder | Komische Ip taucht auf Alles sauber. Du bist nicht zufällig aus Berlin und hast Versatel als Anbieter?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
20.02.2015, 20:08
| #10 |
| | Komische Ip taucht auf Ich bin aus Gladbeck und bin bei Gelsennet (läuft bei denen über Versatel). Da wird die Ip gefunden: hxxp://www.speedguide.net/ip/89.27.131.20 Aber warum taucht auf einmal die Ip auf? Und wenn ich gucke welche Ip ich habe ist die immer abweichen!? Ich verstehe einfach nicht warum die auf einmal immer auftaucht.... Ist das neuerdings normal oder werde ich überwacht  ???Sorry für den Anhang, aber habs nicht anders geschafft. Guck dir mal an wie oft und in welche Variationen die auftaucht... Grüße |
|
21.02.2015, 13:30
| #11 |
| /// the machine /// TB-Ausbilder | Komische Ip taucht auf Is alles normal. Ein wenig Google sollte dir das alles beantworten. Die öffentliche IP zb wird alle 24h erneuert
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
21.02.2015, 19:18
| #12 |
| | Komische Ip taucht auf Okay, dann bedanke ich mich recht herzlich! Hatte mich nur gewundert, weil diese Ip ist früher echt nie in der Liste gewesen - seit gestern taucht sie aber auch aufm Laptop auf. Ich weiß nur nicht was diese Ip auf einmal soll und warum sie sich nicht ändert xD Vorsicht ist besser als Nachsicht ^^ Danke und liebe Grüße |
|
22.02.2015, 09:10
| #13 |
| /// the machine /// TB-Ausbilder | Komische Ip taucht auf Es gibt da so nen Grundsatz: Den netstat Befehl sollte man nur benutzen wenn man in der Lage ist einem andern zu erklären was genau jeder Abschnitt in dem Log davon was genau macht
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Komische Ip taucht auf |
| besitzer, blocken, cmd, datei, gen, geschichte, hack, hacker, hallo zusammen, meldungen, netgear, netstat, neuinstallation, nichts, panda, problem, router, software, systemstart, teamspeak, total, verbindungen, vorschläge, warum, windows, windows 7, zonealarm |
Linear-Darstellung
