| |
| |||||||
Log-Analyse und Auswertung: DHL Mail bekommen, Link geklickt und jetztWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
04.03.2015, 16:37
| #1 |
 |  DHL Mail bekommen, Link geklickt und jetzt Hallo, ich habe heute die schon mehrfach beschriebene DHL bekommen und auf den Sendungsverfolgungslink geklickt. Ich wusste halt nicht ob in der Familie jemand was erwartet. Nun weiß ich natürlich nicht ob etwas in Unordnung gekommen ist. Bisher sind auf jeden Fall keine Veränderungen festzustellen. Hier die Mail: <Liebe Kundin, lieber Kunde, Die Sendung zur Bestellung 82941967729772824196 ist nun intern bei DHL erfaßt. Die Auslieferung ist voraussichtlich für den 04.03.2015 geplant. Hier können Sie weitere Informationen betreffend Ihre Sendung einsehen: 82941967729772824196. Mit freundlichen Grüßen, Ihr Logistik-Team> Nach Klick auf den Link hat sich mein Firefox geöffnet...mehr ist nicht passiert. Dann habe ich sofort alles geschlossen und erstmal viel gelesen. FRST.txt und Addition.txt habe ich schon auf dem Desktop geladen, bei GMER ist mein Rechner zweimal abgestürzt. Wer kann helfen, was ist weiterhin zu tun? Gruß Juerk |
|
04.03.2015, 16:39
| #2 |
| /// the machine /// TB-Ausbilder    | DHL Mail bekommen, Link geklickt und jetzt Hi,
__________________poste bitte die FRST Logs.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
04.03.2015, 16:47
| #3 |
| | DHL Mail bekommen, Link geklickt und jetzt Hoffe, das es so richtig ist
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-03-2015 Ran by sgzoll (administrator) on SGZOLL-PC on 04-03-2015 15:26:26 Running from C:\Users\sgzoll\Downloads Loaded Profiles: sgzoll (Available profiles: sgzoll & JK) Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe () C:\Windows\System32\PSIService.exe () C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe () C:\Program Files\CyberLink\Shared Files\RichVideo.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (X10) C:\Program Files\Common Files\X10\Common\X10nets.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (Google Inc.) C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) C:\Windows\System32\mobsync.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Dropbox, Inc.) C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\Dropbox.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe (Nero AG) C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\conime.exe () C:\Users\sgzoll\Downloads\Defogger.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1111336 2008-05-08] (Synaptics, Inc.) HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150016 2008-08-20] (Hewlett-Packard) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [703280 2015-03-04] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [6609440 2008-10-31] (Realtek Semiconductor) HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [126712 2015-01-19] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Run: [HP ENVY 4500 series (NET)] => C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe [2427400 2014-03-06] (Hewlett-Packard Co.) HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation) HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1828136 2008-02-28] (Nero AG) HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5282584 2014-11-21] (Piriform Ltd) HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31087200 2015-01-23] (Skype Technologies S.A.) HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {207c082c-1a74-11df-bcdf-001f16145766} - G:\setup_vmc_lite.exe /checkApplicationPresence HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {5627ea16-18a9-11df-b82e-001f16145766} - G:\setup_vmc_lite.exe /checkApplicationPresence HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {5627ea1c-18a9-11df-b82e-001f16145766} - G:\setup_vmc_lite.exe /checkApplicationPresence HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {675b6761-1a52-11df-aade-806e6f6e6963} - G:\setup_vmc_lite.exe /checkApplicationPresence HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {8836821d-f4a7-11e3-b08b-001f16145766} - G:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {b61ef719-aad5-11de-ba99-001f16145766} - G:\setup_vmc_lite.exe /checkApplicationPresence HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\MountPoints2: {b61ef732-aad5-11de-ba99-001f16145766} - G:\setup_vmc_lite.exe /checkApplicationPresence HKU\S-1-5-18\...\Run: [Picasa Media Detector] => C:\Program Files\Picasa2\PicasaMediaDetector.exe [443968 2008-08-21] (Google Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\sgzoll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com HKU\S-1-5-21-1793512333-3686394424-291459576-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.searchnu.com/410 HKU\S-1-5-21-1793512333-3686394424-291459576-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms} SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms} SearchScopes: HKU\S-1-5-21-1793512333-3686394424-291459576-1000 -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms} SearchScopes: HKU\S-1-5-21-1793512333-3686394424-291459576-1000 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms} BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) Toolbar: HKU\S-1-5-21-1793512333-3686394424-291459576-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\sgzoll\AppData\Roaming\Mozilla\Firefox\Profiles\f60h71s2.default FF SearchEngineOrder.1: Search Results FF SelectedSearchEngine: Search Results FF Homepage: hxxp://www.sgzoll-hamburg.de/ FF Keyword.URL: hxxp://dts.search-results.com/sr?src=ffb&appid=0&systemid=410&sr=0&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @google.com/npPicasa2,version=2.0.0 -> C:\Program Files\Picasa2\npPicasa2.dll (Google, Inc.) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF user.js: detected! => C:\Users\sgzoll\AppData\Roaming\Mozilla\Firefox\Profiles\f60h71s2.default\user.js FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Users\sgzoll\AppData\Roaming\Mozilla\Firefox\Profiles\f60h71s2.default\searchplugins\Search_Results.xml FF Extension: Avira Browser Safety - C:\Users\sgzoll\AppData\Roaming\Mozilla\Firefox\Profiles\f60h71s2.default\Extensions\abs@avira.com [2015-02-02] FF Extension: Microsoft .NET Framework Assistant - C:\Users\sgzoll\AppData\Roaming\Mozilla\Firefox\Profiles\f60h71s2.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-28] FF Extension: Adblock Plus - C:\Users\sgzoll\AppData\Roaming\Mozilla\Firefox\Profiles\f60h71s2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-09-03] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-02-25] FF HKLM\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn FF HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] Chrome: ======= CHR Profile: C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-29] CHR Extension: (Google Drive) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-29] CHR Extension: (YouTube) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-29] CHR Extension: (McAfee Security Scan+) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-05-29] CHR Extension: (Google Search) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-29] CHR Extension: (Google Wallet) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-29] CHR Extension: (Gmail) - C:\Users\sgzoll\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-29] CHR HKLM\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - hxxp://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [432888 2015-03-04] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [432888 2015-03-04] (Avira Operations GmbH & Co. KG) R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [182520 2015-01-19] (Avira Operations GmbH & Co. KG) R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [217088 2007-11-06] (Hewlett-Packard Co.) [File not signed] R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [139264 2007-11-06] (Hewlett-Packard Co.) [File not signed] R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [663552 2007-10-14] (Hewlett-Packard Co.) [File not signed] S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.) S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed] R2 PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed] R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] () R2 resetWinService; C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe [70656 2008-10-29] () [File not signed] R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-06-28] () [File not signed] S3 TuneUp.Defrag; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [435016 2013-12-11] (TuneUp Software) R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [1051976 2010-05-10] (TuneUp Software) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation) S3 WLSetupSvc; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [266240 2007-10-25] (Microsoft Corporation) R2 x10nets; C:\Program Files\Common Files\X10\Common\X10nets.exe [20480 2001-11-12] (X10) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [306816 2010-02-13] (AfaTech ) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105864 2015-03-04] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2015-03-04] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-19] (Avira Operations GmbH & Co. KG) R3 Cam5607; C:\Windows\System32\Drivers\BisonC07.sys [1461032 2008-12-04] (Bison Electronics. Inc. ) S3 PhilCap; C:\Windows\System32\DRIVERS\PhilCap.sys [908896 2007-07-31] (NXP Semiconductors Germany GmbH) R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-03-23] (Avira GmbH) R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [10064 2009-10-14] (TuneUp Software) S3 WINIO; C:\Windows\system32\WinIo.sys [9336 2008-12-09] () [File not signed] R3 X10Hid; C:\Windows\System32\Drivers\x10hid.sys [13976 2006-11-17] (X10 Wireless Technology, Inc.) S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-04 15:26 - 2015-03-04 15:27 - 00019843 _____ () C:\Users\sgzoll\Downloads\FRST.txt 2015-03-04 15:26 - 2015-03-04 15:26 - 00000000 ____D () C:\FRST 2015-03-04 15:24 - 2015-03-04 15:24 - 01132032 _____ (Farbar) C:\Users\sgzoll\Downloads\FRST.exe 2015-03-04 15:22 - 2015-03-04 15:23 - 00000474 _____ () C:\Users\sgzoll\Downloads\defogger_disable.log 2015-03-04 15:22 - 2015-03-04 15:22 - 00000000 _____ () C:\Users\sgzoll\defogger_reenable 2015-03-04 15:09 - 2015-03-04 15:09 - 00050477 _____ () C:\Users\sgzoll\Downloads\Defogger.exe 2015-02-27 14:35 - 2015-02-27 14:35 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-02-26 20:48 - 2015-02-26 21:03 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird 2015-02-19 11:43 - 2015-01-09 01:20 - 02063360 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-02-19 11:43 - 2014-11-26 03:05 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2015-02-19 11:42 - 2015-01-13 02:39 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-02-19 11:40 - 2015-01-15 05:13 - 00440760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-02-19 11:39 - 2014-12-08 02:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll 2015-02-19 11:37 - 2015-02-03 12:57 - 01214976 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-02-19 11:37 - 2015-02-03 12:57 - 00916992 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-02-19 11:37 - 2015-02-03 12:57 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-02-19 11:37 - 2015-02-03 12:57 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-02-19 11:37 - 2015-02-03 12:55 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-02-19 11:37 - 2015-02-03 12:53 - 00630784 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll 2015-02-19 11:37 - 2015-02-03 12:52 - 06004736 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-02-19 11:37 - 2015-02-03 12:52 - 00630272 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-02-19 11:37 - 2015-02-03 12:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-02-19 11:37 - 2015-02-03 12:52 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-02-19 11:37 - 2015-02-03 12:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 11084288 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 02006016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 01469440 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-02-19 11:37 - 2015-02-03 12:51 - 00387584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-02-19 11:37 - 2015-02-03 12:51 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-02-19 11:37 - 2015-02-03 12:49 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-02-19 11:37 - 2015-02-03 12:49 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-02-19 11:37 - 2015-02-03 12:49 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\corpol.dll 2015-02-19 11:37 - 2015-02-03 11:13 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-02-19 11:37 - 2015-02-03 09:29 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-02-19 11:37 - 2015-02-03 09:29 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-02-19 11:37 - 2015-02-03 09:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-02-19 11:37 - 2015-02-03 09:26 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-02-15 20:58 - 2015-02-15 21:02 - 00000068 _____ () C:\Windows\setupact.log 2015-02-15 20:58 - 2015-02-15 20:58 - 00000000 _____ () C:\Windows\setuperr.log 2015-02-03 16:34 - 2015-03-04 14:48 - 00000982 _____ () C:\Windows\PFRO.log ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-04 15:27 - 2013-01-22 16:40 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-03-04 15:23 - 2006-11-02 13:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2015-03-04 15:23 - 2006-11-02 13:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2015-03-04 15:22 - 2009-02-21 11:13 - 00000000 ____D () C:\Users\sgzoll 2015-03-04 14:55 - 2009-02-21 10:52 - 01591420 _____ () C:\Windows\WindowsUpdate.log 2015-03-04 14:52 - 2015-01-29 19:02 - 00000000 ____D () C:\Users\sgzoll\AppData\Roaming\Skype 2015-03-04 14:52 - 2014-06-03 20:58 - 00000000 ___RD () C:\Users\sgzoll\Dropbox 2015-03-04 14:52 - 2014-06-03 20:54 - 00000000 ____D () C:\Users\sgzoll\AppData\Roaming\Dropbox 2015-03-04 14:51 - 2009-12-31 13:17 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics 2015-03-04 14:50 - 2013-06-25 20:36 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-03-04 14:50 - 2008-12-15 05:47 - 00235230 _____ () C:\ProgramData\nvModes.001 2015-03-04 14:49 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-03-04 14:48 - 2012-05-07 11:16 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2015-03-04 14:46 - 2006-11-02 14:01 - 00032530 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2015-03-04 14:41 - 2013-06-25 20:36 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-03-04 14:40 - 2013-03-23 21:13 - 00136216 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2015-03-04 14:40 - 2013-03-23 21:13 - 00105864 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-03-04 10:49 - 2008-12-15 05:37 - 00235230 _____ () C:\ProgramData\nvModes.dat 2015-02-27 13:18 - 2011-10-09 19:39 - 00000000 ____D () C:\Program Files\StarMoney 6.0 S-Edition 2015-02-27 13:10 - 2006-11-02 11:33 - 01715172 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-02-21 11:38 - 2009-02-25 19:15 - 00002631 _____ () C:\Users\sgzoll\Desktop\Microsoft Office Word 2007.lnk 2015-02-20 13:30 - 2013-06-25 20:36 - 00001967 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-02-19 12:00 - 2006-11-02 13:47 - 00314408 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-02-19 11:52 - 2013-07-13 10:46 - 00000000 ____D () C:\Windows\system32\MRT 2015-02-19 11:44 - 2006-11-02 11:24 - 113756392 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2015-02-19 11:43 - 2008-12-09 11:59 - 00000000 ____D () C:\ProgramData\Microsoft Help 2015-02-19 09:44 - 2014-06-03 20:58 - 00000965 _____ () C:\Users\sgzoll\Desktop\Dropbox.lnk 2015-02-19 09:44 - 2014-06-03 20:56 - 00000000 ____D () C:\Users\sgzoll\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-02-10 15:54 - 2014-08-05 10:58 - 00000000 ____D () C:\ProgramData\Package Cache 2015-02-10 15:54 - 2013-03-23 21:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-02-10 15:54 - 2013-03-23 21:13 - 00000000 ____D () C:\Program Files\Avira 2015-02-05 19:27 - 2012-04-16 18:32 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-02-05 19:27 - 2011-06-09 18:50 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-02-03 16:52 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET ==================== Files in the root of some directories ======= 2009-09-21 17:42 - 2009-09-21 17:42 - 0031007 _____ () C:\Users\sgzoll\AppData\Roaming\UserTile.png 2009-02-21 11:21 - 2012-11-29 21:56 - 0007868 _____ () C:\Users\sgzoll\AppData\Roaming\wklnhst.dat 2011-01-18 21:36 - 2011-01-18 21:36 - 0000680 _____ () C:\Users\sgzoll\AppData\Local\d3d9caps.dat 2009-10-26 20:31 - 2014-07-18 19:25 - 0017920 _____ () C:\Users\sgzoll\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-10-24 17:04 - 2014-10-24 17:04 - 0000057 _____ () C:\ProgramData\Ament.ini 2009-11-09 19:55 - 2014-04-26 10:38 - 0012983 _____ () C:\ProgramData\hpzinstall.log 2008-12-15 05:47 - 2015-03-04 14:50 - 0235230 _____ () C:\ProgramData\nvModes.001 2008-12-15 05:37 - 2015-03-04 10:49 - 0235230 _____ () C:\ProgramData\nvModes.dat Some content of TEMP: ==================== C:\Users\JK\AppData\Local\Temp\avgnt.exe C:\Users\sgzoll\AppData\Local\Temp\avgnt.exe C:\Users\sgzoll\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0fkcup.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-03-04 14:55 ==================== End Of Log ============================ |
|
04.03.2015, 17:31
| #4 |
| /// the machine /// TB-Ausbilder | DHL Mail bekommen, Link geklickt und jetzt Die Addition.txt fehlt noch 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.03.2015, 17:39
| #5 |
| | DHL Mail bekommen, Link geklickt und jetzt Kein Problem, hatte nicht verstanden das beide gemeint waren. Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 02-03-2015
Ran by sgzoll at 2015-03-04 15:27:42
Running from C:\Users\sgzoll\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 11 - Adobe Systems, Inc.)
AIO_Scan (Version: 100.0.206.000 - Hewlett-Packard) Hidden
Avira (HKLM\...\{bd538030-07d4-4999-a525-7fafa2483f56}) (Version: 1.1.30.21727 - Avira Operations & Co. KG)
Avira (Version: 1.1.30.21727 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 15.0.8.650 - Avira)
Azurewave Wireless LAN (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.00.0000 - RaLink)
Bison Webcam (HKLM\...\{4BB1DCED-84D3-47F9-B718-5947E904593E}) (Version: 7.96.701.12a - Bison Webcam)
BufferChm (Version: 100.0.170.000 - Hewlett-Packard) Hidden
C4380 (Version: 100.0.206.000 - Ihr Firmenname) Hidden
C4380_Help (Version: 100.0.206.000 - Hewlett-Packard) Hidden
C4380_Help (Version: 90.0.189.000 - Hewlett-Packard) Hidden
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
Copy (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Corel MediaOne (HKLM\...\{A062A15F-9CAC-4B88-98DF-87628A0BD721}) (Version: 2.00.0000 - Corel Corporation)
CorelDRAW Essential Edition 3 (HKLM\...\_{ADDBE07D-95B8-4789-9C76-187FFF9624B4}) (Version: - Corel Corporation)
CorelDRAW Essential Edition 3 (Version: 3.0 - Corel Corporation) Hidden
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
CyberLink MakeDisc (HKLM\...\{B145EC69-66F5-11D8-9D75-000129760D75}) (Version: 3.0.2601 - CyberLink Corp.)
CyberLink MediaShow (HKLM\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.2318 - CyberLink Corp.)
CyberLink PhotoNow (HKLM\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.5615 - CyberLink Corp.)
CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.2209b - CyberLink Corp.)
CyberLink PowerDVD 8 (HKLM\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.2217 - CyberLink Corp.)
CyberLink PowerProducer (HKLM\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.1111 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.2305 - CyberLink Corp.)
DE (Version: 3.0 - Corel Corporation) Hidden
Destination Component (Version: 100.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 100.0.190.000 - Hewlett-Packard) Hidden
DocProc (Version: 10.0.0.0 - Hewlett-Packard) Hidden
Dropbox (HKU\S-1-5-21-1793512333-3686394424-291459576-1000\...\Dropbox) (Version: 3.2.6 - Dropbox, Inc.)
Fax (Version: 100.0.187.000 - Hewlett-Packard) Hidden
Free Mp3 Wma Converter V 2.2 (HKLM\...\Free Mp3 Wma Converter_is1) (Version: 2.2.0.0 - Koyote Soft)
Google Chrome (HKLM\...\Google Chrome) (Version: 40.0.2214.115 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
GPBaseService (Version: 100.0.187.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 10.0 (HKLM\...\HPExtendedCapabilities) (Version: 10.0 - HP)
HP ENVY 4500 series - Grundlegende Software für das Gerät (HKLM\...\{D49DA768-9E6A-4C31-B2E2-EB7C2613EEB7}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP ENVY 4500 series Hilfe (HKLM\...\{6767CCD2-B939-4542-BF08-015B5496D4EC}) (Version: 30.0.0 - Hewlett Packard)
HP Imaging Device Functions 10.0 (HKLM\...\HP Imaging Device Functions) (Version: 10.0 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Photosmart All-In-One Driver Software 10.0 Rel .2 (HKLM\...\{20B30DC1-E423-4939-B51D-05C58B0F9BBB}) (Version: 10.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Solution Center 10.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 10.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
HPPhotoSmartDiscLabel_PaperLabel (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000 - Hewlett-Packard) Hidden
hpphotosmartdisclabelplugin (Version: 2.02.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 90.0.146.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Java(TM) 6 Update 11 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216011FF}) (Version: 6.0.110 - Sun Microsystems, Inc.)
MarketResearch (Version: 100.0.170.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office XP Professional mit FrontPage (HKLM\...\{90280407-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [DEU] (HKLM\...\{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{FDE96E86-7780-431C-92F7-679C6A7CEC51}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 36.0 (x86 de) (HKLM\...\Mozilla Firefox 36.0 (x86 de)) (Version: 36.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 31.5.0 (x86 de) (HKLM\...\Mozilla Thunderbird 31.5.0 (x86 de)) (Version: 31.5.0 - Mozilla)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nero 8 Essentials (HKLM\...\{47948554-90C6-4AAC-8CFA-D23CE11C1031}) (Version: 8.3.124 - Nero AG)
NetDeviceManager (Version: 100.0.170.000 - Hewlett-Packard) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: - NVIDIA Corporation)
OCR Software by I.R.I.S. 10.0 (HKLM\...\HPOCR) (Version: 10.0 - HP)
PanoStandAlone (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PS_AIO_02_ProductContext (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software_Min (Version: 100.0.206.000 - Hewlett-Packard) Hidden
PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5730 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: 6.0.6000.20111 - Realtek Semiconductor Corp.)
Redmark Vereinsverwaltung easy (HKLM\...\{06A75F9F-BB8B-4548-93F8-621A183536D2}) (Version: 8.0 - Ihr Firmenname)
Scan (Version: 10.1.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 10.0 - HP)
Skype™ 7.1 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.1.105 - Skype Technologies S.A.)
SolutionCenter (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
StarMoney (Version: 1.0 - StarFinanz) Hidden
StarMoney 6.0 S-Edition (HKLM\...\{593DB3D3-0B92-481F-97C2-B244673348C0}) (Version: 6.0 - StarFinanz GmbH)
Status (Version: 100.0.175.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.1.7.0 - Synaptics)
Toolbox (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TrayApp (Version: 100.0.170.000 - Hewlett-Packard) Hidden
TuneUp Utilities (HKLM\...\TuneUp Utilities) (Version: 9.0.4100.36 - TuneUp Software)
TuneUp Utilities (Version: 9.0.4100.36 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 9.0.4100.36 - TuneUp Software) Hidden
UnloadSupport (Version: 10.0.0 - Hewlett-Packard) Hidden
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (HKLM\...\{07629207-FAA0-4F1A-8092-BF5085BE511F}) (Version: 9.00.5000.00 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Update Manager (Version: 4.60 - Corel Corporation) Hidden
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden
WebReg (Version: 100.0.170.000 - Hewlett-Packard) Hidden
Windows Live Anmelde-Assistent (HKLM\...\{83E2CFA9-E0EB-4E08-9F85-43E577FF3D60}) (Version: 5.000.818.6 - Microsoft Corporation)
Windows Live Fotogalerie (HKLM\...\{A1D08B90-AE1A-4885-AC29-731496FD397E}) (Version: 12.0.1347.0718 - Microsoft Corporation)
Windows Live installer (HKLM\...\{7A7B0BF3-2F00-4F03-8A9B-6ABCC07B90C6}) (Version: 12.0.1471.1025 - Microsoft Corporation)
Windows Live Mail (HKLM\...\{82F2B38B-1426-443D-874C-AC25675E7BEB}) (Version: 12.0.1606.1023 - Microsoft Corporation)
Windows Live Writer (HKLM\...\{B8D42C3A-3CFF-4A8A-A7DA-4F44474D12C5}) (Version: 12.0.1370.0325 - Microsoft Corporation)
X10 Hardware(TM) (HKLM\...\X10Hardware) (Version: - )
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1793512333-3686394424-291459576-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
==================== Restore Points =========================
17-02-2015 14:52:56 Windows Update
18-02-2015 15:59:37 Geplanter Prüfpunkt
19-02-2015 11:37:51 Windows Update
20-02-2015 14:32:16 Geplanter Prüfpunkt
21-02-2015 13:43:42 Geplanter Prüfpunkt
22-02-2015 19:29:53 Geplanter Prüfpunkt
23-02-2015 16:50:14 Geplanter Prüfpunkt
24-02-2015 16:05:09 Windows Update
25-02-2015 16:12:45 Geplanter Prüfpunkt
26-02-2015 18:23:34 Geplanter Prüfpunkt
27-02-2015 14:11:53 Geplanter Prüfpunkt
28-02-2015 11:16:40 Geplanter Prüfpunkt
01-03-2015 12:44:48 Geplanter Prüfpunkt
02-03-2015 22:08:08 Geplanter Prüfpunkt
03-03-2015 15:17:36 Windows Update
04-03-2015 10:36:00 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {41841A14-58B6-496F-B6F5-5D99D6EED1DD} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {8684ED00-A234-4523-9853-5190A87BB949} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-25] (Google Inc.)
Task: {94B66A6F-22C5-4C00-A127-9989EE4BFD12} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11] (Hewlett-Packard Co.)
Task: {9B5A9340-ECBD-4D23-BFEB-3F6490EEB419} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {A59184FD-7353-4CE6-87A0-F2AC996BCAAA} - System32\Tasks\{179F65D3-F095-473E-85FC-F0CEB7B87EB4} => pcalua.exe -a E:\instmsia.exe -d E:\
Task: {B436D00E-5D7A-4256-A317-92A5F54E7547} - System32\Tasks\{5D9ED154-1219-4F81-9F22-544D20B719D0} => pcalua.exe -a E:\xp\INSTMSI.EXE -d E:\xp
Task: {ECB9495F-B050-4C57-B2F2-06C68117BC72} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-25] (Google Inc.)
Task: {F0D0241C-B474-46AE-9FBE-70E431367408} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated)
Task: {FAA7646C-05F2-40FD-93BB-F7EB1F371337} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files\TuneUp Utilities 2010\OneClick.exe [2010-05-10] (TuneUp Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2007-06-05 13:20 - 2007-06-05 13:20 - 00177704 _____ () C:\Windows\system32\PSIService.exe
2008-12-09 10:38 - 2008-10-29 16:20 - 00070656 _____ () C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe
2008-12-15 07:30 - 2008-06-28 08:00 - 00241734 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2008-12-15 07:53 - 2007-08-28 13:19 - 00172032 _____ () C:\Windows\system\BisonC07.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00750080 _____ () C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 14:52 - 2015-03-04 14:52 - 00043008 _____ () c:\users\sgzoll\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp0fkcup.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00047616 _____ () C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00865280 _____ () C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-02-10 22:00 - 2015-02-10 22:00 - 00200704 _____ () C:\Users\sgzoll\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-11-22 01:03 - 2014-11-22 01:03 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-03-04 15:09 - 2015-03-04 15:09 - 00050477 _____ () C:\Users\sgzoll\Downloads\Defogger.exe
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1793512333-3686394424-291459576-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\sgzoll\AppData\Roaming\Microsoft\Windows Photo Gallery\Hintergrundbild der Windows-Fotogalerie.jpg
DNS Servers: 192.168.2.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BsMnt => C:\Program Files\BisonCam\BsMnt.exe
MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe
MSCONFIG\startupreg: ISUSPM => "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
MSCONFIG\startupreg: MDS_Menu => "C:\Program Files\HomeCinema\MediaShow4\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\MediaShow4" UpdateWithCreateOnce "Software\CyberLink\MediaShow\4.1"
MSCONFIG\startupreg: MobileConnect => %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent
MSCONFIG\startupreg: NvCplDaemon => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
MSCONFIG\startupreg: PDVD8LanguageShortcut => "C:\Program Files\HomeCinema\PowerDVD8\Language\Language.exe"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
MSCONFIG\startupreg: UCam_Menu => "C:\Program Files\HomeCinema\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
MSCONFIG\startupreg: UpdatePDRShortCut => "C:\Program Files\HomeCinema\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\HomeCinema\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0"
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe
==================== Accounts: =============================
Administrator (S-1-5-21-1793512333-3686394424-291459576-500 - Administrator - Disabled)
Gast (S-1-5-21-1793512333-3686394424-291459576-501 - Limited - Enabled)
JK (S-1-5-21-1793512333-3686394424-291459576-1011 - Limited - Enabled) => C:\Users\JK
sgzoll (S-1-5-21-1793512333-3686394424-291459576-1000 - Administrator - Enabled) => C:\Users\sgzoll
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/04/2015 02:49:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (03/04/2015 11:28:16 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\SGZOLL\SGZ VORSTAND\2015\EINTRITTE\05SCHMIDT,F\EINTRITTSSCHREIBEN SCHMIDT.DOC> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (03/04/2015 11:28:16 AM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\SGZOLL\SGZ VORSTAND\2015\EINTRITTE\05SCHMIDT,F\EINTRITTSSCHREIBEN SCHMIDT.DOC> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (03/03/2015 03:15:54 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\SGZOLL\APPDATA\ROAMING\THUNDERBIRD\PROFILES\HRZ8L0BY.DEFAULT\GLOBAL-MESSAGES-DB.SQLITE-JOURNAL> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (03/03/2015 03:15:54 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\SGZOLL\APPDATA\ROAMING\THUNDERBIRD\PROFILES\HRZ8L0BY.DEFAULT\DOWNLOADS.SQLITE-JOURNAL> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (03/03/2015 03:15:53 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\SGZOLL\APPDATA\ROAMING\THUNDERBIRD\PROFILES\HRZ8L0BY.DEFAULT\GLOBAL-MESSAGES-DB.SQLITE-JOURNAL> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (03/01/2015 11:12:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung svchost.exe_HPSLPSVC, Version 6.0.6001.18000, Zeitstempel 0x47918b89, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x00000e8d,
Prozess-ID 0x1ab0, Anwendungsstartzeit svchost.exe_HPSLPSVC0.
Error: (02/27/2015 10:35:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung svchost.exe_HPSLPSVC, Version 6.0.6001.18000, Zeitstempel 0x47918b89, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x00000000,
Prozess-ID 0x1ad8, Anwendungsstartzeit svchost.exe_HPSLPSVC0.
Error: (02/27/2015 07:20:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung svchost.exe_HPSLPSVC, Version 6.0.6001.18000, Zeitstempel 0x47918b89, fehlerhaftes Modul hpslpsvc32.dll, Version 100.0.170.0, Zeitstempel 0x4712d173, Ausnahmecode 0xc0000005, Fehleroffset 0x000410c9,
Prozess-ID 0x23a8, Anwendungsstartzeit svchost.exe_HPSLPSVC0.
Error: (02/27/2015 09:40:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung svchost.exe_HPSLPSVC, Version 6.0.6001.18000, Zeitstempel 0x47918b89, fehlerhaftes Modul hpslpsvc32.dll, Version 100.0.170.0, Zeitstempel 0x4712d173, Ausnahmecode 0xc0000005, Fehleroffset 0x000410c9,
Prozess-ID 0x2640, Anwendungsstartzeit svchost.exe_HPSLPSVC0.
System errors:
=============
Error: (03/04/2015 02:51:12 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: Die DHCP-Zuweisung wurde für IP-Adresse 192.168.2.103 deaktiviert, da die IP-Adresse außerhalb des Bereichs 192.168.0.0/255.255.255.0 liegt, von der die Adressen DHCP-Clients zu gewiesen werden. Ändern Sie den Bereich, sodass die IP-Adresse mit einbezogen wird, oder ändern Sie die IP-Adresse, sodass sie innerhalb dieses Bereichs liegt, um die DHCP-Zuweisung zu aktivieren.
Error: (03/04/2015 02:51:12 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: ICS_IPV6 konnte den IPv6-Stapel nicht konfigurieren.
Error: (03/04/2015 02:51:02 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: HP CUE DeviceDiscovery Service
Error: (03/04/2015 02:49:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058
Error: (03/04/2015 02:49:16 PM) (Source: Microsoft-Windows-ResourcePublication) (EventID: 1002) (User: NT-AUTORITÄT)
Description: Provider\Microsoft.Base.Publication/Publication/Computer
Error: (03/04/2015 02:45:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Avira Echtzeit-Scanner3
Error: (03/04/2015 02:45:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Avira Echtzeit-Scanner201Neustart des Diensts
Error: (03/04/2015 02:44:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Avira Echtzeit-Scanner101Neustart des Diensts
Error: (03/04/2015 09:35:16 AM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "EASYBOX",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{A621A4B3-D00F-472F-B0A5-736250662C-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (03/04/2015 08:39:16 AM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: 0 Bytes Speicher konnten durch den DNS-Proxy-Agenten nicht zugeordnet werden. Möglicherweise ist nicht genügend Speicher vorhanden oder ein interner Fehler ist im Speicher-Manager aufgetreten.
Microsoft Office Sessions:
=========================
Error: (02/11/2014 05:39:01 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 3422 seconds with 3300 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2014-08-24 20:36:39.569
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-24 20:36:38.838
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-18 20:18:55.602
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-18 20:18:54.920
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-18 20:07:58.540
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-18 20:07:57.837
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-04-21 11:30:51.822
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-04-21 11:30:51.186
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2010-11-13 20:53:12.177
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2010-11-13 20:53:11.890
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\nvd3dum.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
|
|
05.03.2015, 07:03
| #6 |
| /// the machine /// TB-Ausbilder | DHL Mail bekommen, Link geklickt und jetzt hi, Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ --> DHL Mail bekommen, Link geklickt und jetzt |
|
05.03.2015, 16:23
| #7 |
| | DHL Mail bekommen, Link geklickt und jetzt Hier die TDSSKiller... Code:
ATTFilter 15:12:59.0202 0x12e0 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
15:13:31.0376 0x12e0 ============================================================
15:13:31.0376 0x12e0 Current date / time: 2015/03/05 15:13:31.0376
15:13:31.0376 0x12e0 SystemInfo:
15:13:31.0376 0x12e0
15:13:31.0376 0x12e0 OS Version: 6.0.6002 ServicePack: 2.0
15:13:31.0376 0x12e0 Product type: Workstation
15:13:31.0377 0x12e0 ComputerName: SGZOLL-PC
15:13:31.0377 0x12e0 UserName: sgzoll
15:13:31.0377 0x12e0 Windows directory: C:\Windows
15:13:31.0377 0x12e0 System windows directory: C:\Windows
15:13:31.0377 0x12e0 Processor architecture: Intel x86
15:13:31.0377 0x12e0 Number of processors: 2
15:13:31.0377 0x12e0 Page size: 0x1000
15:13:31.0377 0x12e0 Boot type: Normal boot
15:13:31.0377 0x12e0 ============================================================
15:13:38.0224 0x12e0 KLMD registered as C:\Windows\system32\drivers\22799075.sys
15:13:38.0591 0x12e0 System UUID: {DEA09542-C48A-2E1A-F84F-06BF6A97D0BC}
15:13:39.0713 0x12e0 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:13:39.0837 0x12e0 ============================================================
15:13:39.0837 0x12e0 \Device\Harddisk0\DR0:
15:13:40.0002 0x12e0 MBR partitions:
15:13:40.0002 0x12e0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x22C29800
15:13:40.0002 0x12e0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x22C2A000, BlocksNum 0x2804000
15:13:40.0003 0x12e0 ============================================================
15:13:40.0038 0x12e0 C: <-> \Device\Harddisk0\DR0\Partition1
15:13:40.0161 0x12e0 D: <-> \Device\Harddisk0\DR0\Partition2
15:13:40.0162 0x12e0 ============================================================
15:13:40.0162 0x12e0 Initialize success
15:13:40.0162 0x12e0 ============================================================
15:13:44.0320 0x0850 ============================================================
15:13:44.0320 0x0850 Scan started
15:13:44.0320 0x0850 Mode: Manual;
15:13:44.0320 0x0850 ============================================================
15:13:44.0320 0x0850 KSN ping started
15:13:57.0742 0x0850 KSN ping finished: true
15:14:06.0032 0x0850 ================ Scan system memory ========================
15:14:06.0033 0x0850 System memory - ok
15:14:06.0033 0x0850 ================ Scan services =============================
15:14:06.0577 0x0850 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:14:06.0622 0x0850 ACPI - ok
15:14:07.0392 0x0850 [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:14:07.0399 0x0850 AdobeFlashPlayerUpdateSvc - ok
15:14:07.0568 0x0850 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:14:07.0591 0x0850 adp94xx - ok
15:14:07.0620 0x0850 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:14:07.0631 0x0850 adpahci - ok
15:14:07.0694 0x0850 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:14:07.0699 0x0850 adpu160m - ok
15:14:08.0090 0x0850 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:14:08.0096 0x0850 adpu320 - ok
15:14:08.0177 0x0850 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:14:08.0179 0x0850 AeLookupSvc - ok
15:14:08.0410 0x0850 [ 3CD15EBAA1D68BC18CE14A26683BC1EC, 5A39CEE48A7CB7B3D2401278D6443B1BA9F043C36A3DADE15AAB30D040A88C3B ] AF15BDA C:\Windows\system32\DRIVERS\AF15BDA.sys
15:14:08.0433 0x0850 AF15BDA - ok
15:14:08.0763 0x0850 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
15:14:08.0774 0x0850 AFD - ok
15:14:08.0864 0x0850 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:14:08.0868 0x0850 agp440 - ok
15:14:08.0943 0x0850 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:14:09.0133 0x0850 aic78xx - ok
15:14:09.0281 0x0850 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
15:14:09.0283 0x0850 ALG - ok
15:14:09.0626 0x0850 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
15:14:09.0629 0x0850 aliide - ok
15:14:09.0688 0x0850 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:14:09.0692 0x0850 amdagp - ok
15:14:09.0737 0x0850 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
15:14:09.0739 0x0850 amdide - ok
15:14:09.0893 0x0850 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:14:09.0897 0x0850 AmdK7 - ok
15:14:09.0937 0x0850 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:14:09.0941 0x0850 AmdK8 - ok
15:14:10.0222 0x0850 [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
15:14:10.0268 0x0850 AntiVirSchedulerService - ok
15:14:10.0438 0x0850 [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
15:14:10.0454 0x0850 AntiVirService - ok
15:14:10.0591 0x0850 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
15:14:10.0594 0x0850 Appinfo - ok
15:14:10.0685 0x0850 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
15:14:10.0691 0x0850 arc - ok
15:14:10.0772 0x0850 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:14:10.0778 0x0850 arcsas - ok
15:14:11.0371 0x0850 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:14:11.0508 0x0850 aspnet_state - ok
15:14:11.0541 0x0850 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:14:11.0544 0x0850 AsyncMac - ok
15:14:11.0597 0x0850 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
15:14:11.0598 0x0850 atapi - ok
15:14:11.0663 0x0850 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:14:11.0684 0x0850 AudioEndpointBuilder - ok
15:14:11.0699 0x0850 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:14:11.0707 0x0850 Audiosrv - ok
15:14:11.0768 0x0850 [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:14:11.0772 0x0850 avgntflt - ok
15:14:12.0085 0x0850 [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:14:12.0088 0x0850 avipbb - ok
15:14:12.0714 0x0850 [ ABDAEBEB09E98D13D765A0C57F3FAF88, F9E5F9A13E983BEAF32FA53736FB188280AAA44740696DFB95B8C10E8FEA466D ] Avira.OE.ServiceHost C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
15:14:12.0720 0x0850 Avira.OE.ServiceHost - ok
15:14:12.0972 0x0850 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:14:12.0974 0x0850 avkmgr - ok
15:14:13.0254 0x0850 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
15:14:13.0256 0x0850 Beep - ok
15:14:13.0371 0x0850 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
15:14:13.0385 0x0850 BFE - ok
15:14:13.0587 0x0850 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
15:14:13.0621 0x0850 BITS - ok
15:14:13.0793 0x0850 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:14:13.0795 0x0850 blbdrive - ok
15:14:13.0828 0x0850 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:14:13.0833 0x0850 bowser - ok
15:14:13.0916 0x0850 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:14:13.0918 0x0850 BrFiltLo - ok
15:14:13.0950 0x0850 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:14:13.0951 0x0850 BrFiltUp - ok
15:14:14.0098 0x0850 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
15:14:14.0102 0x0850 Browser - ok
15:14:14.0228 0x0850 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:14:14.0233 0x0850 Brserid - ok
15:14:14.0261 0x0850 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:14:14.0265 0x0850 BrSerWdm - ok
15:14:14.0382 0x0850 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:14:14.0385 0x0850 BrUsbMdm - ok
15:14:14.0476 0x0850 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:14:14.0478 0x0850 BrUsbSer - ok
15:14:14.0520 0x0850 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:14:14.0524 0x0850 BTHMODEM - ok
15:14:14.0690 0x0850 [ BC46E036AD1FEC3C56583D2802E68EFE, A925A2245D78EE3B1790B60354A58DCB487D96494DDD16F9ACEA88870993CE1F ] Cam5607 C:\Windows\system32\Drivers\BisonC07.sys
15:14:14.0812 0x0850 Cam5607 - ok
15:14:14.0890 0x0850 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:14:14.0894 0x0850 cdfs - ok
15:14:14.0919 0x0850 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:14:14.0924 0x0850 cdrom - ok
15:14:15.0004 0x0850 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
15:14:15.0007 0x0850 CertPropSvc - ok
15:14:15.0251 0x0850 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
15:14:15.0253 0x0850 circlass - ok
15:14:15.0338 0x0850 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
15:14:15.0347 0x0850 CLFS - ok
15:14:15.0500 0x0850 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:14:15.0503 0x0850 clr_optimization_v2.0.50727_32 - ok
15:14:16.0313 0x0850 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:14:16.0318 0x0850 clr_optimization_v4.0.30319_32 - ok
15:14:16.0431 0x0850 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:14:16.0432 0x0850 CmBatt - ok
15:14:16.0523 0x0850 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:14:17.0071 0x0850 cmdide - ok
15:14:17.0201 0x0850 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:14:17.0229 0x0850 Compbatt - ok
15:14:17.0238 0x0850 COMSysApp - ok
15:14:17.0359 0x0850 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:14:17.0361 0x0850 crcdisk - ok
15:14:17.0445 0x0850 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:14:17.0618 0x0850 Crusoe - ok
15:14:18.0153 0x0850 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:14:18.0159 0x0850 CryptSvc - ok
15:14:18.0270 0x0850 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:14:18.0308 0x0850 DcomLaunch - ok
15:14:18.0586 0x0850 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:14:18.0590 0x0850 DfsC - ok
15:14:18.0743 0x0850 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
15:14:18.0864 0x0850 DFSR - ok
15:14:18.0979 0x0850 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:14:18.0986 0x0850 Dhcp - ok
15:14:19.0983 0x0850 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
15:14:19.0987 0x0850 disk - ok
15:14:20.0028 0x0850 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:14:20.0034 0x0850 Dnscache - ok
15:14:20.0106 0x0850 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
15:14:20.0112 0x0850 dot3svc - ok
15:14:20.0159 0x0850 [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:14:20.0166 0x0850 Dot4 - ok
15:14:20.0204 0x0850 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:14:20.0206 0x0850 Dot4Print - ok
15:14:20.0545 0x0850 [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:14:20.0548 0x0850 dot4usb - ok
15:14:20.0601 0x0850 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
15:14:20.0607 0x0850 DPS - ok
15:14:20.0817 0x0850 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:14:20.0819 0x0850 drmkaud - ok
15:14:22.0627 0x0850 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:14:23.0201 0x0850 DXGKrnl - ok
15:14:23.0264 0x0850 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:14:23.0270 0x0850 E1G60 - ok
15:14:23.0525 0x0850 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
15:14:23.0529 0x0850 EapHost - ok
15:14:23.0590 0x0850 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
15:14:23.0596 0x0850 Ecache - ok
15:14:23.0832 0x0850 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:14:23.0842 0x0850 ehRecvr - ok
15:14:23.0871 0x0850 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
15:14:23.0875 0x0850 ehSched - ok
15:14:23.0910 0x0850 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
15:14:23.0911 0x0850 ehstart - ok
15:14:23.0950 0x0850 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:14:23.0973 0x0850 elxstor - ok
15:14:24.0253 0x0850 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:14:24.0274 0x0850 EMDMgmt - ok
15:14:24.0437 0x0850 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:14:24.0438 0x0850 ErrDev - ok
15:14:25.0117 0x0850 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
15:14:25.0138 0x0850 EventSystem - ok
15:14:25.0278 0x0850 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
15:14:25.0286 0x0850 exfat - ok
15:14:25.0437 0x0850 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:14:25.0443 0x0850 fastfat - ok
15:14:25.0514 0x0850 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:14:25.0516 0x0850 fdc - ok
15:14:25.0569 0x0850 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
15:14:25.0571 0x0850 fdPHost - ok
15:14:25.0592 0x0850 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
15:14:25.0595 0x0850 FDResPub - ok
15:14:25.0629 0x0850 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:14:25.0632 0x0850 FileInfo - ok
15:14:25.0687 0x0850 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:14:25.0689 0x0850 Filetrace - ok
15:14:25.0745 0x0850 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:14:25.0747 0x0850 flpydisk - ok
15:14:25.0834 0x0850 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:14:25.0842 0x0850 FltMgr - ok
15:14:26.0354 0x0850 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
15:14:26.0479 0x0850 FontCache - ok
15:14:26.0629 0x0850 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:14:26.0632 0x0850 FontCache3.0.0.0 - ok
15:14:26.0840 0x0850 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:14:26.0843 0x0850 Fs_Rec - ok
15:14:26.0926 0x0850 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:14:26.0929 0x0850 gagp30kx - ok
15:14:27.0039 0x0850 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
15:14:27.0084 0x0850 gpsvc - ok
15:14:28.0185 0x0850 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:14:28.0188 0x0850 gupdate - ok
15:14:28.0483 0x0850 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:14:28.0487 0x0850 gupdatem - ok
15:14:28.0799 0x0850 [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:14:28.0804 0x0850 gusvc - ok
15:14:29.0086 0x0850 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:14:29.0095 0x0850 HdAudAddService - ok
15:14:29.0175 0x0850 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:14:29.0221 0x0850 HDAudBus - ok
15:14:29.0299 0x0850 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:14:29.0301 0x0850 HidBth - ok
15:14:29.0324 0x0850 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
15:14:29.0326 0x0850 HidIr - ok
15:14:29.0578 0x0850 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
15:14:29.0801 0x0850 hidserv - ok
15:14:29.0988 0x0850 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:14:29.0990 0x0850 HidUsb - ok
15:14:30.0040 0x0850 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
15:14:30.0046 0x0850 hkmsvc - ok
15:14:30.0150 0x0850 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:14:30.0154 0x0850 HpCISSs - ok
15:14:30.0356 0x0850 [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
15:14:30.0365 0x0850 hpqcxs08 - ok
15:14:30.0772 0x0850 [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
15:14:30.0777 0x0850 hpqddsvc - ok
15:14:31.0118 0x0850 [ 75F122CDCA3C71BD09089F2CA824B796, E5060B1532666632C3384FADAFE4680CDCDFFA075298EA95B186A69F467B8F77 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
15:14:31.0174 0x0850 HPSLPSVC - ok
15:14:31.0361 0x0850 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:14:31.0407 0x0850 HTTP - ok
15:14:31.0562 0x0850 [ 19E6885A061011D8DABE8F64498423FA, 62B5680D7E7F26BEE7DDDA8F51434CC3219C840779E37072BA37E55B2EE82E3B ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
15:14:31.0569 0x0850 hwdatacard - ok
15:14:31.0653 0x0850 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:14:31.0656 0x0850 i2omp - ok
15:14:31.0680 0x0850 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:14:31.0684 0x0850 i8042prt - ok
15:14:31.0776 0x0850 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:14:31.0821 0x0850 iaStorV - ok
15:14:32.0031 0x0850 [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:14:32.0035 0x0850 IDriverT - ok
15:14:33.0099 0x0850 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:14:33.0233 0x0850 idsvc - ok
15:14:33.0311 0x0850 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:14:33.0315 0x0850 iirsp - ok
15:14:33.0716 0x0850 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
15:14:33.0751 0x0850 IKEEXT - ok
15:14:33.0919 0x0850 [ 56AC584FE02E0C1D5924892562CBD572, E0DAF8C3A16925F0F259ABCBA18F2B55FA5DF17DD9AB8FE231A476807BA62504 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
15:14:34.0023 0x0850 IntcAzAudAddService - ok
15:14:34.0110 0x0850 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
15:14:34.0310 0x0850 intelide - ok
15:14:34.0495 0x0850 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:14:34.0499 0x0850 intelppm - ok
15:14:34.0767 0x0850 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:14:34.0772 0x0850 IPBusEnum - ok
15:14:34.0962 0x0850 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:14:34.0966 0x0850 IpFilterDriver - ok
15:14:35.0597 0x0850 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:14:35.0607 0x0850 iphlpsvc - ok
15:14:35.0614 0x0850 IpInIp - ok
15:14:36.0223 0x0850 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:14:36.0227 0x0850 IPMIDRV - ok
15:14:36.0250 0x0850 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:14:36.0255 0x0850 IPNAT - ok
15:14:36.0313 0x0850 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:14:36.0315 0x0850 IRENUM - ok
15:14:36.0482 0x0850 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:14:36.0485 0x0850 isapnp - ok
15:14:36.0551 0x0850 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:14:36.0558 0x0850 iScsiPrt - ok
15:14:36.0665 0x0850 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:14:36.0667 0x0850 iteatapi - ok
15:14:37.0006 0x0850 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:14:37.0009 0x0850 iteraid - ok
15:14:37.0162 0x0850 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:14:37.0165 0x0850 kbdclass - ok
15:14:37.0218 0x0850 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:14:37.0220 0x0850 kbdhid - ok
15:14:37.0576 0x0850 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
15:14:37.0580 0x0850 KeyIso - ok
15:14:37.0978 0x0850 [ 5035EDF1F2E72F78BB1EC5BD9B97463F, 8AFAD580A96F002FFB22761B65D4B414917895C45B11B53089BB3E0331995EF7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:14:38.0012 0x0850 KSecDD - ok
15:14:38.0213 0x0850 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:14:38.0258 0x0850 KtmRm - ok
15:14:38.0789 0x0850 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
15:14:38.0798 0x0850 LanmanServer - ok
15:14:38.0995 0x0850 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:14:39.0006 0x0850 LanmanWorkstation - ok
15:14:39.0092 0x0850 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:14:39.0096 0x0850 lltdio - ok
15:14:39.0217 0x0850 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:14:39.0227 0x0850 lltdsvc - ok
15:14:39.0339 0x0850 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:14:39.0342 0x0850 lmhosts - ok
15:14:39.0578 0x0850 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:14:39.0584 0x0850 LSI_FC - ok
15:14:39.0694 0x0850 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:14:39.0700 0x0850 LSI_SAS - ok
15:14:39.0737 0x0850 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:14:39.0744 0x0850 LSI_SCSI - ok
15:14:39.0866 0x0850 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
15:14:39.0872 0x0850 luafv - ok
15:14:40.0326 0x0850 [ C3ED67C05F3923F9A8FEBA7A996337E1, 0A092A22339A9BFFAAB4A8A7C795480C058C0360C743BDF5D5DE042825F464A7 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
15:14:40.0350 0x0850 McComponentHostService - ok
15:14:40.0502 0x0850 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:14:40.0507 0x0850 Mcx2Svc - ok
15:14:40.0554 0x0850 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
15:14:40.0557 0x0850 megasas - ok
15:14:40.0597 0x0850 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
15:14:40.0664 0x0850 MegaSR - ok
15:14:40.0689 0x0850 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
15:14:40.0693 0x0850 MMCSS - ok
15:14:40.0807 0x0850 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
15:14:40.0811 0x0850 Modem - ok
15:14:40.0908 0x0850 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:14:40.0910 0x0850 monitor - ok
15:14:40.0948 0x0850 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:14:40.0951 0x0850 mouclass - ok
15:14:40.0984 0x0850 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:14:40.0986 0x0850 mouhid - ok
15:14:41.0055 0x0850 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:14:41.0058 0x0850 MountMgr - ok
15:14:41.0695 0x0850 [ 5C2B2F10C847834C6DA4E680A4093BA3, 0222EBC8789765613184F47339A1DBD118ED209B72BC5565A8A7D4FB4CCF5418 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:14:41.0701 0x0850 MozillaMaintenance - ok
15:14:41.0826 0x0850 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
15:14:41.0926 0x0850 mpio - ok
15:14:42.0042 0x0850 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:14:42.0046 0x0850 mpsdrv - ok
15:14:42.0195 0x0850 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:14:42.0239 0x0850 MpsSvc - ok
15:14:42.0326 0x0850 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:14:42.0328 0x0850 Mraid35x - ok
15:14:42.0564 0x0850 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:14:42.0569 0x0850 MRxDAV - ok
15:14:42.0847 0x0850 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:14:42.0851 0x0850 mrxsmb - ok
15:14:43.0018 0x0850 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:14:43.0027 0x0850 mrxsmb10 - ok
15:14:43.0036 0x0850 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:14:43.0040 0x0850 mrxsmb20 - ok
15:14:43.0149 0x0850 [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys
15:14:43.0151 0x0850 msahci - ok
15:14:43.0226 0x0850 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:14:43.0231 0x0850 msdsm - ok
15:14:43.0296 0x0850 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
15:14:43.0301 0x0850 MSDTC - ok
15:14:43.0348 0x0850 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:14:43.0351 0x0850 Msfs - ok
15:14:43.0558 0x0850 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:14:43.0561 0x0850 msisadrv - ok
15:14:43.0753 0x0850 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:14:43.0759 0x0850 MSiSCSI - ok
15:14:43.0767 0x0850 msiserver - ok
15:14:43.0795 0x0850 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:14:43.0797 0x0850 MSKSSRV - ok
15:14:43.0823 0x0850 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:14:43.0825 0x0850 MSPCLOCK - ok
15:14:43.0849 0x0850 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:14:43.0851 0x0850 MSPQM - ok
15:14:43.0908 0x0850 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:14:43.0915 0x0850 MsRPC - ok
15:14:43.0963 0x0850 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:14:43.0965 0x0850 mssmbios - ok
15:14:44.0134 0x0850 MSSQL$SQLEXPRESS - ok
15:14:45.0065 0x0850 [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
15:14:45.0067 0x0850 MSSQLServerADHelper - ok
15:14:45.0118 0x0850 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:14:45.0120 0x0850 MSTEE - ok
15:14:45.0205 0x0850 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
15:14:45.0208 0x0850 Mup - ok
15:14:45.0613 0x0850 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
15:14:45.0636 0x0850 napagent - ok
15:14:45.0667 0x0850 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:14:45.0674 0x0850 NativeWifiP - ok
15:14:45.0729 0x0850 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:14:45.0796 0x0850 NDIS - ok
15:14:46.0153 0x0850 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:14:46.0155 0x0850 NdisTapi - ok
15:14:46.0186 0x0850 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:14:46.0188 0x0850 Ndisuio - ok
15:14:46.0237 0x0850 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:14:46.0243 0x0850 NdisWan - ok
15:14:46.0308 0x0850 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:14:46.0311 0x0850 NDProxy - ok
15:14:47.0151 0x0850 [ 40D7D0A208EE863BCA8D89E299216F15, 4686E416A80D883B7C6CBE21E8D8D6C814D16DC48495F8ACFE7B4664560CA5E3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
15:14:47.0352 0x0850 Nero BackItUp Scheduler 3 - ok
15:14:47.0626 0x0850 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:14:47.0628 0x0850 Net Driver HPZ12 - ok
15:14:47.0689 0x0850 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:14:47.0691 0x0850 NetBIOS - ok
15:14:47.0760 0x0850 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:14:47.0768 0x0850 netbt - ok
15:14:47.0949 0x0850 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
15:14:47.0951 0x0850 Netlogon - ok
15:14:48.0099 0x0850 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
15:14:48.0110 0x0850 Netman - ok
15:14:48.0274 0x0850 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:14:48.0480 0x0850 NetMsmqActivator - ok
15:14:48.0489 0x0850 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:14:48.0493 0x0850 NetPipeActivator - ok
15:14:48.0672 0x0850 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
15:14:48.0680 0x0850 netprofm - ok
15:14:49.0233 0x0850 [ 3F540B257442CC1A2220DD8F73AC1C77, 469A0E6AFAE17B6E0886A646D13C394BC02048E0C05863B2AFAE2E61F0664A7A ] netr28 C:\Windows\system32\DRIVERS\netr28.sys
15:14:49.0357 0x0850 netr28 - ok
15:14:49.0786 0x0850 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:14:49.0796 0x0850 NetTcpActivator - ok
15:14:49.0819 0x0850 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:14:49.0823 0x0850 NetTcpPortSharing - ok
15:14:49.0910 0x0850 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:14:50.0132 0x0850 nfrd960 - ok
15:14:50.0433 0x0850 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:14:50.0439 0x0850 NlaSvc - ok
15:14:50.0744 0x0850 [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
15:14:50.0790 0x0850 NMIndexingService - ok
15:14:51.0049 0x0850 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:14:51.0052 0x0850 Npfs - ok
15:14:51.0091 0x0850 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
15:14:51.0093 0x0850 nsi - ok
15:14:51.0134 0x0850 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:14:51.0136 0x0850 nsiproxy - ok
15:14:51.0338 0x0850 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:14:51.0595 0x0850 Ntfs - ok
15:14:51.0715 0x0850 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:14:51.0718 0x0850 ntrigdigi - ok
15:14:51.0732 0x0850 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
15:14:51.0734 0x0850 Null - ok
15:14:51.0765 0x0850 [ 723931A765E8CDDF7FFCB42F5A72CE79, 207A113E5240F71976BA314CF375E261E4345D4AAB24C39D2B5670FA9D318318 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
15:14:51.0768 0x0850 NVHDA - ok
15:14:52.0129 0x0850 [ 99A7CD6662DB4E32F75A641C5D080DB3, CD55329F2B210914687DE0F172F3BC3AA039EAD7ECB8E31BFA35C9EEEFBE53A9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:14:52.0774 0x0850 nvlddmkm - ok
15:14:53.0037 0x0850 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:14:53.0042 0x0850 nvraid - ok
15:14:53.0187 0x0850 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:14:53.0191 0x0850 nvstor - ok
15:14:53.0237 0x0850 [ 3DFD9B00AAF472042E6D4FA8CCB74EFD, 00250091A3E5A818831646D9292A1F2B79AA00666198C4BE511D9470B364C62A ] nvsvc C:\Windows\system32\nvvsvc.exe
15:14:53.0247 0x0850 nvsvc - ok
15:14:53.0271 0x0850 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:14:53.0278 0x0850 nv_agp - ok
15:14:53.0285 0x0850 NwlnkFlt - ok
15:14:53.0294 0x0850 NwlnkFwd - ok
15:14:54.0180 0x0850 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:14:54.0278 0x0850 odserv - ok
15:14:54.0803 0x0850 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:14:54.0866 0x0850 ohci1394 - ok
15:14:54.0972 0x0850 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:14:54.0979 0x0850 ose - ok
15:14:55.0059 0x0850 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:14:55.0260 0x0850 p2pimsvc - ok
15:14:55.0293 0x0850 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
15:14:55.0310 0x0850 p2psvc - ok
15:14:55.0393 0x0850 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
15:14:55.0397 0x0850 Parport - ok
15:14:55.0968 0x0850 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:14:55.0971 0x0850 partmgr - ok
15:14:56.0048 0x0850 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:14:56.0050 0x0850 Parvdm - ok
15:14:56.0254 0x0850 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
15:14:56.0257 0x0850 PcaSvc - ok
15:14:56.0313 0x0850 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
15:14:56.0320 0x0850 pci - ok
15:14:56.0448 0x0850 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
15:14:56.0450 0x0850 pciide - ok
15:14:56.0503 0x0850 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:14:56.0511 0x0850 pcmcia - ok
15:14:56.0589 0x0850 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:14:56.0883 0x0850 PEAUTH - ok
15:14:57.0254 0x0850 [ F433B5AA6DBAC3C8626EEFAF134E4763, 128B218EC0C7D66B53A11C573A1A44244097EFABC597688EA1D2A21303DB432F ] PhilCap C:\Windows\system32\DRIVERS\PhilCap.sys
15:14:58.0039 0x0850 PhilCap - ok
15:14:58.0154 0x0850 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
15:14:58.0267 0x0850 pla - ok
15:14:58.0399 0x0850 [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
15:14:58.0404 0x0850 PLFlash DeviceIoControl Service - ok
15:14:58.0484 0x0850 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:14:58.0496 0x0850 PlugPlay - ok
15:14:58.0701 0x0850 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:14:58.0705 0x0850 Pml Driver HPZ12 - ok
15:14:58.0892 0x0850 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:14:58.0937 0x0850 PNRPAutoReg - ok
15:14:58.0973 0x0850 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:14:58.0994 0x0850 PNRPsvc - ok
15:14:59.0442 0x0850 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:14:59.0521 0x0850 PolicyAgent - ok
15:14:59.0639 0x0850 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:14:59.0643 0x0850 PptpMiniport - ok
15:14:59.0732 0x0850 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
15:14:59.0736 0x0850 Processor - ok
15:14:59.0872 0x0850 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
15:14:59.0881 0x0850 ProfSvc - ok
15:15:00.0134 0x0850 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
15:15:00.0192 0x0850 ProtectedStorage - ok
15:15:00.0416 0x0850 [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
15:15:00.0425 0x0850 ProtexisLicensing - ok
15:15:00.0601 0x0850 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:15:00.0689 0x0850 PSched - ok
15:15:00.0995 0x0850 [ 49452BFCEC22F36A7A9B9C2181BC3042, C01A2005E9897B142FF9BC6155770F70C19725C425E48D14239195E81E2E42D0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:15:00.0998 0x0850 PxHelp20 - ok
15:15:01.0900 0x0850 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:15:01.0969 0x0850 ql2300 - ok
15:15:02.0012 0x0850 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:15:02.0019 0x0850 ql40xx - ok
15:15:02.0118 0x0850 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
15:15:02.0341 0x0850 QWAVE - ok
15:15:02.0447 0x0850 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:15:02.0450 0x0850 QWAVEdrv - ok
15:15:02.0484 0x0850 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:15:02.0487 0x0850 RasAcd - ok
15:15:03.0396 0x0850 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
15:15:03.0478 0x0850 RasAuto - ok
15:15:04.0545 0x0850 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:15:05.0813 0x0850 Rasl2tp - ok
15:15:07.0760 0x0850 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
15:15:07.0877 0x0850 RasMan - ok
15:15:08.0075 0x0850 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:15:08.0079 0x0850 RasPppoe - ok
15:15:08.0188 0x0850 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:15:08.0193 0x0850 RasSstp - ok
15:15:08.0579 0x0850 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:15:08.0722 0x0850 rdbss - ok
15:15:08.0754 0x0850 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:15:08.0757 0x0850 RDPCDD - ok
15:15:08.0794 0x0850 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:15:08.0816 0x0850 rdpdr - ok
15:15:08.0843 0x0850 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:15:08.0846 0x0850 RDPENCDD - ok
15:15:09.0087 0x0850 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:15:09.0097 0x0850 RDPWD - ok
15:15:09.0320 0x0850 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
15:15:09.0328 0x0850 RemoteAccess - ok
15:15:09.0384 0x0850 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:15:09.0394 0x0850 RemoteRegistry - ok
15:15:09.0452 0x0850 [ 0797F6AE018D3F992A1B8DF37BBF1786, E43A1B6CE316B157CE2C6C9780AD3698931C3E0BE5CE3B094B18847B83FF6D8C ] resetWinService C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe
15:15:09.0455 0x0850 resetWinService - ok
15:15:09.0541 0x0850 [ 805AE1F90C64758D19AAA001CF8CBA12, 28E389FD9D8106D922AAD0FF93107C4C2900565480ACD9E909D8C134E39E39A1 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
15:15:09.0548 0x0850 RichVideo - ok
15:15:09.0668 0x0850 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
15:15:09.0671 0x0850 RpcLocator - ok
15:15:09.0775 0x0850 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
15:15:09.0794 0x0850 RpcSs - ok
15:15:09.0940 0x0850 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:15:09.0945 0x0850 rspndr - ok
15:15:10.0731 0x0850 [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
15:15:10.0763 0x0850 RTL8169 - ok
15:15:10.0831 0x0850 [ 4501C8FE11DF3192FB68D0D595EA94CC, 2EAD1B58C12E72F95580F5A32CFE24874A7CB667AC21DF46B876629579648A68 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
15:15:10.0836 0x0850 RTSTOR - ok
15:15:10.0863 0x0850 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
15:15:10.0867 0x0850 SamSs - ok
15:15:10.0908 0x0850 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:15:10.0915 0x0850 sbp2port - ok
15:15:10.0955 0x0850 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:15:10.0964 0x0850 SCardSvr - ok
15:15:11.0147 0x0850 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
15:15:11.0188 0x0850 Schedule - ok
15:15:11.0216 0x0850 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
15:15:11.0219 0x0850 SCPolicySvc - ok
15:15:11.0274 0x0850 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:15:11.0284 0x0850 SDRSVC - ok
15:15:11.0483 0x0850 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:15:11.0486 0x0850 secdrv - ok
15:15:11.0527 0x0850 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
15:15:11.0533 0x0850 seclogon - ok
15:15:11.0549 0x0850 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
15:15:11.0555 0x0850 SENS - ok
15:15:11.0581 0x0850 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
15:15:11.0584 0x0850 Serenum - ok
15:15:11.0626 0x0850 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
15:15:11.0632 0x0850 Serial - ok
15:15:11.0751 0x0850 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:15:11.0754 0x0850 sermouse - ok
15:15:11.0820 0x0850 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
15:15:11.0828 0x0850 SessionEnv - ok
15:15:12.0259 0x0850 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:15:12.0262 0x0850 sffdisk - ok
15:15:12.0326 0x0850 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:15:12.0330 0x0850 sffp_mmc - ok
15:15:12.0392 0x0850 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:15:12.0395 0x0850 sffp_sd - ok
15:15:12.0434 0x0850 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:15:12.0437 0x0850 sfloppy - ok
15:15:12.0596 0x0850 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:15:12.0652 0x0850 SharedAccess - ok
15:15:12.0982 0x0850 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:15:12.0996 0x0850 ShellHWDetection - ok
15:15:13.0347 0x0850 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:15:13.0376 0x0850 sisagp - ok
15:15:13.0461 0x0850 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:15:13.0465 0x0850 SiSRaid2 - ok
15:15:13.0516 0x0850 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:15:13.0521 0x0850 SiSRaid4 - ok
15:15:14.0103 0x0850 [ A9C057A9463C25490CF99EA8DF8A4B35, 8F4D1C40D0F17EDBF84ED455B8946F782C7552383F0A07E410A9B6CFF7F51D63 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
15:15:14.0120 0x0850 SkypeUpdate - ok
15:15:14.0354 0x0850 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
15:15:14.0561 0x0850 slsvc - ok
15:15:14.0823 0x0850 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:15:14.0829 0x0850 SLUINotify - ok
15:15:14.0884 0x0850 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:15:14.0887 0x0850 Smb - ok
15:15:14.0977 0x0850 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:15:14.0981 0x0850 SNMPTRAP - ok
15:15:15.0046 0x0850 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
15:15:15.0048 0x0850 spldr - ok
15:15:15.0143 0x0850 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
15:15:15.0149 0x0850 Spooler - ok
15:15:15.0738 0x0850 [ 86EBD8B1F23E743AAD21F4D5B4D40985, 8FA4DFDAE15712266B878C364FEFDB63CB30A3DCC25F83CDFE8C8AB3AE864BE6 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
15:15:15.0749 0x0850 SQLBrowser - ok
15:15:16.0043 0x0850 [ D89083C4EB02DACA8F944B0E05E57F9D, F96416B5877C280B4EE088A83956E0202F82DC5EACDEEFF06D5979FFFAA9FA74 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
15:15:16.0047 0x0850 SQLWriter - ok
15:15:17.0331 0x0850 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
15:15:17.0821 0x0850 srv - ok
15:15:17.0852 0x0850 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:15:17.0861 0x0850 srv2 - ok
15:15:18.0122 0x0850 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:15:18.0126 0x0850 srvnet - ok
15:15:18.0265 0x0850 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:15:18.0272 0x0850 SSDPSRV - ok
15:15:18.0438 0x0850 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
15:15:18.0454 0x0850 ssmdrv - ok
15:15:18.0476 0x0850 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:15:18.0482 0x0850 SstpSvc - ok
15:15:18.0566 0x0850 [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
15:15:18.0568 0x0850 StillCam - ok
15:15:18.0677 0x0850 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
15:15:18.0731 0x0850 stisvc - ok
15:15:18.0793 0x0850 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:15:18.0795 0x0850 swenum - ok
15:15:19.0053 0x0850 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
15:15:19.0064 0x0850 swprv - ok
15:15:19.0098 0x0850 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:15:19.0101 0x0850 Symc8xx - ok
15:15:19.0144 0x0850 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:15:19.0146 0x0850 Sym_hi - ok
15:15:20.0185 0x0850 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:15:20.0281 0x0850 Sym_u3 - ok
15:15:20.0323 0x0850 [ CB01162BD6DD7B26D4CC6DCAC780E39C, A1A2CDB368B57787934F6ABAEBE1A171A0147E688528FA5337331BF7BBB7D80C ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:15:20.0348 0x0850 SynTP - ok
15:15:20.0442 0x0850 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
15:15:20.0783 0x0850 SysMain - ok
15:15:21.0362 0x0850 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:15:21.0370 0x0850 TabletInputService - ok
15:15:21.0826 0x0850 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:15:21.0840 0x0850 TapiSrv - ok
15:15:21.0985 0x0850 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
15:15:21.0992 0x0850 TBS - ok
15:15:22.0674 0x0850 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:15:22.0753 0x0850 Tcpip - ok
15:15:22.0806 0x0850 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:15:22.0832 0x0850 Tcpip6 - ok
15:15:23.0006 0x0850 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:15:23.0008 0x0850 tcpipreg - ok
15:15:23.0064 0x0850 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:15:23.0067 0x0850 TDPIPE - ok
15:15:23.0113 0x0850 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:15:23.0116 0x0850 TDTCP - ok
15:15:23.0266 0x0850 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:15:23.0270 0x0850 tdx - ok
15:15:23.0301 0x0850 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:15:23.0305 0x0850 TermDD - ok
15:15:23.0520 0x0850 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
15:15:23.0538 0x0850 TermService - ok
15:15:23.0586 0x0850 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
15:15:23.0608 0x0850 Themes - ok
15:15:23.0725 0x0850 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
15:15:23.0729 0x0850 THREADORDER - ok
15:15:23.0767 0x0850 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
15:15:23.0772 0x0850 TrkWks - ok
15:15:23.0840 0x0850 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:15:23.0843 0x0850 TrustedInstaller - ok
15:15:24.0025 0x0850 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:15:24.0027 0x0850 tssecsrv - ok
15:15:24.0312 0x0850 [ 6EB2DC366A0D69FF7295ADF7C4253475, 949BBC873CEE86D8C7FC6E47A21E5104E545C440CA3466C95B1EC9BFEC9A9DB1 ] TuneUp.Defrag C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
15:15:24.0346 0x0850 TuneUp.Defrag - ok
15:15:24.0489 0x0850 [ 38556055313BC87C21457E000BBAECA2, 44E88519AE1E5C4E29795093BA00369651AE22C21C5B6778D8F35421FC532844 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
15:15:24.0553 0x0850 TuneUp.UtilitiesSvc - ok
15:15:24.0635 0x0850 [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
15:15:24.0640 0x0850 TuneUpUtilitiesDrv - ok
15:15:24.0666 0x0850 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:15:24.0669 0x0850 tunmp - ok
15:15:24.0723 0x0850 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:15:24.0729 0x0850 tunnel - ok
15:15:24.0763 0x0850 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:15:24.0793 0x0850 uagp35 - ok
15:15:24.0876 0x0850 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:15:24.0885 0x0850 udfs - ok
15:15:24.0927 0x0850 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:15:24.0935 0x0850 UI0Detect - ok
15:15:24.0976 0x0850 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:15:24.0979 0x0850 uliagpkx - ok
15:15:25.0056 0x0850 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:15:25.0066 0x0850 uliahci - ok
15:15:25.0105 0x0850 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:15:25.0110 0x0850 UlSata - ok
15:15:25.0145 0x0850 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:15:25.0151 0x0850 ulsata2 - ok
15:15:25.0189 0x0850 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:15:25.0191 0x0850 umbus - ok
15:15:25.0236 0x0850 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
15:15:25.0245 0x0850 upnphost - ok
15:15:25.0284 0x0850 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:15:25.0289 0x0850 usbccgp - ok
15:15:25.0389 0x0850 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:15:25.0393 0x0850 usbcir - ok
15:15:25.0514 0x0850 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:15:25.0516 0x0850 usbehci - ok
15:15:25.0593 0x0850 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:15:25.0601 0x0850 usbhub - ok
15:15:25.0666 0x0850 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:15:25.0668 0x0850 usbohci - ok
15:15:25.0799 0x0850 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:15:26.0145 0x0850 usbprint - ok
15:15:26.0209 0x0850 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:15:26.0211 0x0850 usbscan - ok
15:15:26.0297 0x0850 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:15:26.0300 0x0850 USBSTOR - ok
15:15:26.0362 0x0850 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:15:26.0365 0x0850 usbuhci - ok
15:15:26.0457 0x0850 [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:15:26.0463 0x0850 usbvideo - ok
15:15:26.0520 0x0850 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
15:15:26.0524 0x0850 UxSms - ok
15:15:26.0628 0x0850 [ 5BCE34CFE78E80DDE4FD1F3249565BBB, 5C6D1CF7769495748DF15010F87091BF150F4702778C9E02E60E2C41C7A298AF ] UxTuneUp C:\Windows\System32\uxtuneup.dll
15:15:26.0632 0x0850 UxTuneUp - ok
15:15:26.0698 0x0850 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
15:15:26.0720 0x0850 vds - ok
15:15:26.0753 0x0850 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:15:26.0755 0x0850 vga - ok
15:15:26.0848 0x0850 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:15:26.0854 0x0850 VgaSave - ok
15:15:27.0003 0x0850 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:15:27.0007 0x0850 viaagp - ok
15:15:27.0052 0x0850 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:15:27.0055 0x0850 ViaC7 - ok
15:15:27.0158 0x0850 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
15:15:27.0160 0x0850 viaide - ok
15:15:27.0179 0x0850 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:15:27.0182 0x0850 volmgr - ok
15:15:27.0231 0x0850 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:15:27.0257 0x0850 volmgrx - ok
15:15:27.0347 0x0850 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:15:27.0356 0x0850 volsnap - ok
15:15:27.0437 0x0850 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:15:27.0443 0x0850 vsmraid - ok
15:15:27.0595 0x0850 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
15:15:27.0664 0x0850 VSS - ok
15:15:27.0725 0x0850 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
15:15:27.0736 0x0850 W32Time - ok
15:15:27.0771 0x0850 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:15:27.0774 0x0850 WacomPen - ok
15:15:27.0860 0x0850 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:15:27.0863 0x0850 Wanarp - ok
15:15:27.0873 0x0850 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:15:27.0875 0x0850 Wanarpv6 - ok
15:15:28.0026 0x0850 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:15:28.0045 0x0850 wcncsvc - ok
15:15:28.0107 0x0850 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:15:28.0112 0x0850 WcsPlugInService - ok
15:15:28.0182 0x0850 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
15:15:28.0185 0x0850 Wd - ok
15:15:28.0260 0x0850 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:15:28.0304 0x0850 Wdf01000 - ok
15:15:28.0398 0x0850 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:15:28.0403 0x0850 WdiServiceHost - ok
15:15:28.0409 0x0850 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:15:28.0413 0x0850 WdiSystemHost - ok
15:15:28.0507 0x0850 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
15:15:28.0529 0x0850 WebClient - ok
15:15:28.0607 0x0850 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:15:28.0616 0x0850 Wecsvc - ok
15:15:28.0669 0x0850 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:15:28.0675 0x0850 wercplsupport - ok
15:15:28.0718 0x0850 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
15:15:28.0724 0x0850 WerSvc - ok
15:15:28.0949 0x0850 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:15:28.0956 0x0850 WinDefend - ok
15:15:28.0967 0x0850 WinHttpAutoProxySvc - ok
15:15:29.0008 0x0850 [ 602FC1B19D72745C95E535932E54B932, 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070 ] WINIO C:\Windows\system32\WinIo.sys
15:15:29.0011 0x0850 Suspicious file ( Forged ): C:\Windows\system32\WinIo.sys. Real md5: 602FC1B19D72745C95E535932E54B932, sha256: 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070, fake md5: C5E3A2EE25A3D86761AF7971EAEAC40C, fake sha256: BA71302E06AECC4E69DDA5F22CE37F081B32796E5A42C80775C0F830031761BA
15:15:29.0012 0x0850 WINIO - detected ForgedFile.Multi.Generic ( 1 )
15:15:39.0147 0x0850 WINIO ( ForgedFile.Multi.Generic ) - warning
15:15:39.0147 0x0850 Force sending object to P2P due to detect: WINIO
15:15:41.0592 0x0850 Object send P2P result: true
15:15:44.0049 0x0850 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:15:44.0055 0x0850 Winmgmt - ok
15:15:44.0209 0x0850 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
15:15:44.0276 0x0850 WinRM - ok
15:15:44.0369 0x0850 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:15:44.0402 0x0850 Wlansvc - ok
15:15:44.0476 0x0850 [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe
15:15:44.0487 0x0850 WLSetupSvc - ok
15:15:44.0536 0x0850 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:15:44.0538 0x0850 WmiAcpi - ok
15:15:44.0603 0x0850 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:15:44.0609 0x0850 wmiApSrv - ok
15:15:44.0678 0x0850 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:15:44.0751 0x0850 WMPNetworkSvc - ok
15:15:44.0765 0x0850 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:15:44.0773 0x0850 WPCSvc - ok
15:15:44.0812 0x0850 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:15:44.0817 0x0850 WPDBusEnum - ok
15:15:44.0955 0x0850 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:15:44.0959 0x0850 WpdUsb - ok
15:15:45.0186 0x0850 [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:15:45.0273 0x0850 WPFFontCache_v0400 - ok
15:15:45.0311 0x0850 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:15:45.0314 0x0850 ws2ifsl - ok
15:15:45.0365 0x0850 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
15:15:45.0369 0x0850 wscsvc - ok
15:15:45.0374 0x0850 WSearch - ok
15:15:45.0527 0x0850 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
15:15:45.0620 0x0850 wuauserv - ok
15:15:45.0775 0x0850 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:15:45.0779 0x0850 WudfPf - ok
15:15:45.0829 0x0850 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:15:45.0837 0x0850 WUDFRd - ok
15:15:45.0922 0x0850 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:15:45.0927 0x0850 wudfsvc - ok
15:15:45.0953 0x0850 [ AB2D77BF7222B007717ABB61B15F9AE2, 9495D99385C91115583F6CD0E26B39D4F04FB3472EA53ADE51DA03043468A896 ] X10Hid C:\Windows\system32\Drivers\x10hid.sys
15:15:45.0955 0x0850 X10Hid - ok
15:15:46.0020 0x0850 [ 5A0C788C5BC5F2C993CB60940ADCF95E, FEEC158466040A6528E7FC8D33706B50D2F03479E0B62DF8F06B69A1A850A9FB ] x10nets C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
15:15:46.0021 0x0850 x10nets - ok
15:15:46.0031 0x0850 ================ Scan global ===============================
15:15:46.0218 0x0850 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
15:15:46.0368 0x0850 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
15:15:46.0489 0x0850 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
15:15:46.0566 0x0850 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
15:15:46.0575 0x0850 [ Global ] - ok
15:15:46.0576 0x0850 ================ Scan MBR ==================================
15:15:46.0623 0x0850 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
15:15:47.0465 0x0850 \Device\Harddisk0\DR0 - ok
15:15:47.0465 0x0850 ================ Scan VBR ==================================
15:15:47.0539 0x0850 [ 6DA75C813C2C36F893E01B504C35D536 ] \Device\Harddisk0\DR0\Partition1
15:15:47.0621 0x0850 \Device\Harddisk0\DR0\Partition1 - ok
15:15:47.0660 0x0850 [ 94103B76038FEC54196125683201477F ] \Device\Harddisk0\DR0\Partition2
15:15:47.0661 0x0850 \Device\Harddisk0\DR0\Partition2 - ok
15:15:47.0662 0x0850 ================ Scan generic autorun ======================
15:15:47.0737 0x0850 [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
15:15:48.0125 0x0850 Windows Defender - ok
15:15:48.0471 0x0850 [ 12DC04601A333610E043A0DF55EC2A5A, 4725CEC7BE8857E304976BE04A424C4F7703BF394CBFECFCED014097B93F2954 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
15:15:48.0783 0x0850 SynTPEnh - ok
15:15:49.0031 0x0850 [ FF473648E7B1B37C7F3249A6549FAC72, 632825038F5975415D129CCB84682243360821857D250D7827E21A08DE855BCC ] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
15:15:49.0040 0x0850 hpqSRMon - ok
15:15:49.0329 0x0850 [ 085F30DB0B38903940A4141E675BDC08, 3ABFB79C850D2B1976DB4DEF69AA031C4E18B5E240316908DDD16DEA4050365A ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
15:15:49.0465 0x0850 avgnt - ok
15:15:49.0871 0x0850 [ 1A1DBAE836F402FE2A0556985113786F, BCA295E91E2F5EE2486D8EA1B6477C69136BED743E810C765CDE713A72BDE552 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
15:15:50.0062 0x0850 RtHDVCpl - ok
15:15:50.0299 0x0850 [ 8CB85437667AEDBD8497D2CA85F4A17A, 196F1F3208674944C554624E5DA6A614F8070467E32F0C1BAB9AC409783E5804 ] C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
15:15:50.0303 0x0850 Avira Systray - ok
15:15:50.0451 0x0850 [ DA954CC82E63E3CC46CB3E219A273F2E, 072606ADAE900D80CC534DA7CC05ACE49C5979BCB02199CF93428AA7A3A1D25E ] C:\ProgramData\Package Cache\{d9ed6dcf-6bfc-4fbb-802e-81dd5b767d6e}\Avira.OE.Setup.Bundle.exe
15:15:50.0539 0x0850 {d9ed6dcf-6bfc-4fbb-802e-81dd5b767d6e} - ok
15:15:50.0769 0x0850 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
15:15:50.0907 0x0850 Sidebar - ok
15:15:50.0913 0x0850 WindowsWelcomeCenter - ok
15:15:50.0996 0x0850 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
15:15:51.0023 0x0850 Sidebar - ok
15:15:51.0028 0x0850 WindowsWelcomeCenter - ok
15:15:51.0075 0x0850 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
15:15:51.0101 0x0850 Sidebar - ok
15:15:51.0515 0x0850 [ FFC09EB41CAD53162461046130AD51DB, 264B08AB1D729BEA1390A936A00D5A3F6402A8177A3BAD53EFB609228020B473 ] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe
15:15:51.0622 0x0850 HP ENVY 4500 series (NET) - ok
15:15:51.0744 0x0850 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
15:15:51.0748 0x0850 ehTray.exe - ok
15:15:51.0879 0x0850 [ E4EFC2CDC71E0698CB81A4D60C3FADFF, 0278452E7FE903053A470EFA0C7813E9C43517EC0C8C9E42C5A9A3C99146D06B ] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
15:15:52.0023 0x0850 IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - ok
15:15:52.0332 0x0850 [ 2E4EE47FBD9BB663A5220DBC38579986, 264A48ADA13FEC6F49F34C3118ABFFEEB569B631E9EE35168FE19DE78AF9C7C8 ] C:\Program Files\CCleaner\CCleaner.exe
15:15:52.0568 0x0850 CCleaner Monitoring - ok
15:15:52.0850 0x0850 Skype - ok
15:15:53.0063 0x0850 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
15:15:53.0095 0x0850 Sidebar - ok
15:15:53.0102 0x0850 WindowsWelcomeCenter - ok
15:15:53.0227 0x0850 [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
15:15:53.0410 0x0850 ISUSPM - ok
15:15:53.0457 0x0850 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
15:15:53.0462 0x0850 ehTray.exe - ok
15:15:53.0489 0x0850 [ 35937EAD711207544E219C2A19A78A7D, EE6E5EAE00F577D7C3FFB8C0D8EE484552A337CEAA27FCB107174A9879FE7362 ] C:\Program Files\Windows Media Player\WMPNSCFG.exe
15:15:53.0496 0x0850 WMPNSCFG - ok
15:15:53.0497 0x0850 Waiting for KSN requests completion. In queue: 18
15:15:54.0497 0x0850 Waiting for KSN requests completion. In queue: 18
15:15:55.0497 0x0850 Waiting for KSN requests completion. In queue: 18
15:15:56.0960 0x0850 AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.8.650 ), 0x41000 ( enabled : updated )
15:15:57.0014 0x0850 Win FW state via NFP2: enabled
15:15:59.0389 0x0850 ============================================================
15:15:59.0389 0x0850 Scan finished
15:15:59.0389 0x0850 ============================================================
15:15:59.0405 0x0c70 Detected object count: 1
15:15:59.0405 0x0c70 Actual detected object count: 1
15:16:34.0811 0x0c70 WINIO ( ForgedFile.Multi.Generic ) - skipped by user
15:16:34.0811 0x0c70 WINIO ( ForgedFile.Multi.Generic ) - User select action: Skip
15:16:49.0023 0x1720 Deinitialize success
...und hier die mbar-log Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.09.1.1004
www.malwarebytes.org
Database version:
main: v2015.03.05.02
rootkit: v2015.02.25.01
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19600
sgzoll :: SGZOLL-PC [administrator]
05.03.2015 15:20:54
mbar-log-2015-03-05 (15-20-54).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 379222
Time elapsed: 23 minute(s), 55 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 1
HKU\S-1-5-21-1793512333-3686394424-291459576-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page (Hijack.StartPage) -> Bad: (hxxp://www.searchnu.com/410) Good: (www.google.com) -> Replace on reboot. [875f0f327e0c7eb8c343e7f4fb0aea16]
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Zumindest war ein Cleaup nicht mehr nötig. Hier die mbar-log nach dem 2. Durchlauf: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.09.1.1004
www.malwarebytes.org
Database version:
main: v2015.03.05.02
rootkit: v2015.02.25.01
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19600
sgzoll :: SGZOLL-PC [administrator]
05.03.2015 15:53:43
mbar-log-2015-03-05 (15-53-43).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 378373
Time elapsed: 21 minute(s), 52 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
05.03.2015, 21:18
| #8 |
| /// the machine /// TB-Ausbilder | DHL Mail bekommen, Link geklickt und jetzt Starte TDSSkiller.exe mit Doppelklick. Vista und Win7 User mit Rechtsklick "als Administrator starten"
Als Beispiel: C:\TDSSKiller.<version_date_time>log.txt Poste den Inhalt bitte hier in deinen Thread.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
05.03.2015, 21:40
| #9 |
| | DHL Mail bekommen, Link geklickt und jetzt Hier die TDSS Cure gab es im Fenster nicht, Reboot auch nicht Continue = neuer Scan Code:
ATTFilter 21:33:51.0731 0x178c TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
21:33:56.0407 0x178c ============================================================
21:33:56.0407 0x178c Current date / time: 2015/03/05 21:33:56.0407
21:33:56.0407 0x178c SystemInfo:
21:33:56.0407 0x178c
21:33:56.0407 0x178c OS Version: 6.0.6002 ServicePack: 2.0
21:33:56.0407 0x178c Product type: Workstation
21:33:56.0407 0x178c ComputerName: SGZOLL-PC
21:33:56.0408 0x178c UserName: sgzoll
21:33:56.0408 0x178c Windows directory: C:\Windows
21:33:56.0408 0x178c System windows directory: C:\Windows
21:33:56.0408 0x178c Processor architecture: Intel x86
21:33:56.0408 0x178c Number of processors: 2
21:33:56.0408 0x178c Page size: 0x1000
21:33:56.0408 0x178c Boot type: Normal boot
21:33:56.0408 0x178c ============================================================
21:33:58.0064 0x178c KLMD registered as C:\Windows\system32\drivers\30953420.sys
21:33:58.0233 0x178c System UUID: {DEA09542-C48A-2E1A-F84F-06BF6A97D0BC}
21:33:58.0867 0x178c Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:33:58.0879 0x178c ============================================================
21:33:58.0879 0x178c \Device\Harddisk0\DR0:
21:33:58.0879 0x178c MBR partitions:
21:33:58.0879 0x178c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x22C29800
21:33:58.0879 0x178c \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x22C2A000, BlocksNum 0x2804000
21:33:58.0879 0x178c ============================================================
21:33:58.0925 0x178c C: <-> \Device\Harddisk0\DR0\Partition1
21:33:58.0970 0x178c D: <-> \Device\Harddisk0\DR0\Partition2
21:33:58.0971 0x178c ============================================================
21:33:58.0971 0x178c Initialize success
21:33:58.0971 0x178c ============================================================
21:34:22.0828 0x1650 ============================================================
21:34:22.0828 0x1650 Scan started
21:34:22.0828 0x1650 Mode: Manual;
21:34:22.0828 0x1650 ============================================================
21:34:22.0828 0x1650 KSN ping started
21:34:36.0163 0x1650 KSN ping finished: true
21:34:36.0762 0x1650 ================ Scan system memory ========================
21:34:36.0762 0x1650 System memory - ok
21:34:36.0762 0x1650 ================ Scan services =============================
21:34:36.0947 0x1650 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:34:36.0955 0x1650 ACPI - ok
21:34:37.0078 0x1650 [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:34:37.0089 0x1650 AdobeFlashPlayerUpdateSvc - ok
21:34:37.0146 0x1650 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:34:37.0158 0x1650 adp94xx - ok
21:34:37.0189 0x1650 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:34:37.0197 0x1650 adpahci - ok
21:34:37.0219 0x1650 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:34:37.0222 0x1650 adpu160m - ok
21:34:37.0248 0x1650 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:34:37.0252 0x1650 adpu320 - ok
21:34:37.0293 0x1650 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:34:37.0294 0x1650 AeLookupSvc - ok
21:34:37.0326 0x1650 [ 3CD15EBAA1D68BC18CE14A26683BC1EC, 5A39CEE48A7CB7B3D2401278D6443B1BA9F043C36A3DADE15AAB30D040A88C3B ] AF15BDA C:\Windows\system32\DRIVERS\AF15BDA.sys
21:34:37.0340 0x1650 AF15BDA - ok
21:34:37.0400 0x1650 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
21:34:37.0409 0x1650 AFD - ok
21:34:37.0424 0x1650 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:34:37.0426 0x1650 agp440 - ok
21:34:37.0444 0x1650 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:34:37.0447 0x1650 aic78xx - ok
21:34:37.0463 0x1650 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
21:34:37.0466 0x1650 ALG - ok
21:34:37.0485 0x1650 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
21:34:37.0486 0x1650 aliide - ok
21:34:37.0505 0x1650 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:34:37.0508 0x1650 amdagp - ok
21:34:37.0526 0x1650 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
21:34:37.0527 0x1650 amdide - ok
21:34:37.0546 0x1650 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:34:37.0549 0x1650 AmdK7 - ok
21:34:37.0563 0x1650 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:34:37.0566 0x1650 AmdK8 - ok
21:34:37.0681 0x1650 [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
21:34:37.0697 0x1650 AntiVirSchedulerService - ok
21:34:37.0786 0x1650 [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
21:34:37.0801 0x1650 AntiVirService - ok
21:34:37.0850 0x1650 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
21:34:37.0853 0x1650 Appinfo - ok
21:34:37.0884 0x1650 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
21:34:37.0888 0x1650 arc - ok
21:34:37.0906 0x1650 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:34:37.0910 0x1650 arcsas - ok
21:34:38.0035 0x1650 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:34:38.0037 0x1650 aspnet_state - ok
21:34:38.0055 0x1650 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:34:38.0057 0x1650 AsyncMac - ok
21:34:38.0078 0x1650 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
21:34:38.0079 0x1650 atapi - ok
21:34:38.0146 0x1650 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:34:38.0158 0x1650 AudioEndpointBuilder - ok
21:34:38.0202 0x1650 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:34:38.0214 0x1650 Audiosrv - ok
21:34:38.0231 0x1650 [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
21:34:38.0236 0x1650 avgntflt - ok
21:34:38.0278 0x1650 [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
21:34:38.0283 0x1650 avipbb - ok
21:34:38.0395 0x1650 [ ABDAEBEB09E98D13D765A0C57F3FAF88, F9E5F9A13E983BEAF32FA53736FB188280AAA44740696DFB95B8C10E8FEA466D ] Avira.OE.ServiceHost C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
21:34:38.0402 0x1650 Avira.OE.ServiceHost - ok
21:34:38.0443 0x1650 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
21:34:38.0445 0x1650 avkmgr - ok
21:34:38.0479 0x1650 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
21:34:38.0480 0x1650 Beep - ok
21:34:38.0532 0x1650 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
21:34:38.0545 0x1650 BFE - ok
21:34:38.0629 0x1650 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
21:34:38.0656 0x1650 BITS - ok
21:34:38.0678 0x1650 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:34:38.0679 0x1650 blbdrive - ok
21:34:38.0708 0x1650 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:34:38.0711 0x1650 bowser - ok
21:34:38.0729 0x1650 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:34:38.0730 0x1650 BrFiltLo - ok
21:34:38.0747 0x1650 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:34:38.0747 0x1650 BrFiltUp - ok
21:34:38.0777 0x1650 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
21:34:38.0781 0x1650 Browser - ok
21:34:38.0805 0x1650 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:34:38.0807 0x1650 Brserid - ok
21:34:38.0820 0x1650 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:34:38.0822 0x1650 BrSerWdm - ok
21:34:38.0839 0x1650 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:34:38.0840 0x1650 BrUsbMdm - ok
21:34:38.0860 0x1650 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:34:38.0860 0x1650 BrUsbSer - ok
21:34:38.0880 0x1650 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:34:38.0881 0x1650 BTHMODEM - ok
21:34:39.0024 0x1650 [ BC46E036AD1FEC3C56583D2802E68EFE, A925A2245D78EE3B1790B60354A58DCB487D96494DDD16F9ACEA88870993CE1F ] Cam5607 C:\Windows\system32\Drivers\BisonC07.sys
21:34:39.0076 0x1650 Cam5607 - ok
21:34:39.0104 0x1650 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:34:39.0107 0x1650 cdfs - ok
21:34:39.0133 0x1650 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:34:39.0136 0x1650 cdrom - ok
21:34:39.0162 0x1650 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
21:34:39.0165 0x1650 CertPropSvc - ok
21:34:39.0182 0x1650 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
21:34:39.0184 0x1650 circlass - ok
21:34:39.0220 0x1650 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
21:34:39.0230 0x1650 CLFS - ok
21:34:39.0294 0x1650 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:34:39.0298 0x1650 clr_optimization_v2.0.50727_32 - ok
21:34:39.0348 0x1650 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:34:39.0353 0x1650 clr_optimization_v4.0.30319_32 - ok
21:34:39.0387 0x1650 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:34:39.0388 0x1650 CmBatt - ok
21:34:39.0411 0x1650 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:34:39.0412 0x1650 cmdide - ok
21:34:39.0420 0x1650 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:34:39.0422 0x1650 Compbatt - ok
21:34:39.0433 0x1650 COMSysApp - ok
21:34:39.0452 0x1650 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:34:39.0453 0x1650 crcdisk - ok
21:34:39.0471 0x1650 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:34:39.0473 0x1650 Crusoe - ok
21:34:39.0533 0x1650 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:34:39.0539 0x1650 CryptSvc - ok
21:34:39.0603 0x1650 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:34:39.0627 0x1650 DcomLaunch - ok
21:34:39.0674 0x1650 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:34:39.0677 0x1650 DfsC - ok
21:34:39.0797 0x1650 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
21:34:39.0852 0x1650 DFSR - ok
21:34:39.0978 0x1650 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:34:39.0983 0x1650 Dhcp - ok
21:34:40.0005 0x1650 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
21:34:40.0007 0x1650 disk - ok
21:34:40.0036 0x1650 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:34:40.0040 0x1650 Dnscache - ok
21:34:40.0082 0x1650 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
21:34:40.0087 0x1650 dot3svc - ok
21:34:40.0119 0x1650 [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
21:34:40.0122 0x1650 Dot4 - ok
21:34:40.0139 0x1650 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:34:40.0140 0x1650 Dot4Print - ok
21:34:40.0166 0x1650 [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
21:34:40.0167 0x1650 dot4usb - ok
21:34:40.0200 0x1650 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
21:34:40.0204 0x1650 DPS - ok
21:34:40.0224 0x1650 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:34:40.0224 0x1650 drmkaud - ok
21:34:40.0296 0x1650 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:34:40.0315 0x1650 DXGKrnl - ok
21:34:40.0348 0x1650 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:34:40.0352 0x1650 E1G60 - ok
21:34:40.0378 0x1650 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
21:34:40.0381 0x1650 EapHost - ok
21:34:40.0410 0x1650 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
21:34:40.0415 0x1650 Ecache - ok
21:34:40.0496 0x1650 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:34:40.0505 0x1650 ehRecvr - ok
21:34:40.0523 0x1650 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
21:34:40.0528 0x1650 ehSched - ok
21:34:40.0540 0x1650 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
21:34:40.0541 0x1650 ehstart - ok
21:34:40.0577 0x1650 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:34:40.0586 0x1650 elxstor - ok
21:34:40.0641 0x1650 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:34:40.0658 0x1650 EMDMgmt - ok
21:34:40.0679 0x1650 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:34:40.0680 0x1650 ErrDev - ok
21:34:40.0744 0x1650 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
21:34:40.0753 0x1650 EventSystem - ok
21:34:40.0789 0x1650 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
21:34:40.0793 0x1650 exfat - ok
21:34:40.0857 0x1650 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:34:40.0864 0x1650 fastfat - ok
21:34:40.0882 0x1650 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:34:40.0884 0x1650 fdc - ok
21:34:40.0910 0x1650 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
21:34:40.0912 0x1650 fdPHost - ok
21:34:40.0933 0x1650 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
21:34:40.0936 0x1650 FDResPub - ok
21:34:40.0959 0x1650 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:34:40.0963 0x1650 FileInfo - ok
21:34:40.0980 0x1650 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:34:40.0982 0x1650 Filetrace - ok
21:34:40.0999 0x1650 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:34:41.0001 0x1650 flpydisk - ok
21:34:41.0028 0x1650 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:34:41.0036 0x1650 FltMgr - ok
21:34:41.0123 0x1650 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
21:34:41.0155 0x1650 FontCache - ok
21:34:41.0215 0x1650 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:34:41.0217 0x1650 FontCache3.0.0.0 - ok
21:34:41.0258 0x1650 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:34:41.0260 0x1650 Fs_Rec - ok
21:34:41.0277 0x1650 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:34:41.0280 0x1650 gagp30kx - ok
21:34:41.0339 0x1650 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
21:34:41.0362 0x1650 gpsvc - ok
21:34:41.0448 0x1650 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:34:41.0453 0x1650 gupdate - ok
21:34:41.0463 0x1650 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:34:41.0468 0x1650 gupdatem - ok
21:34:41.0500 0x1650 [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:34:41.0510 0x1650 gusvc - ok
21:34:41.0553 0x1650 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:34:41.0562 0x1650 HdAudAddService - ok
21:34:41.0611 0x1650 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:34:41.0632 0x1650 HDAudBus - ok
21:34:41.0652 0x1650 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:34:41.0653 0x1650 HidBth - ok
21:34:41.0664 0x1650 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
21:34:41.0665 0x1650 HidIr - ok
21:34:41.0717 0x1650 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
21:34:41.0719 0x1650 hidserv - ok
21:34:41.0748 0x1650 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:34:41.0749 0x1650 HidUsb - ok
21:34:41.0789 0x1650 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
21:34:41.0792 0x1650 hkmsvc - ok
21:34:41.0810 0x1650 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:34:41.0811 0x1650 HpCISSs - ok
21:34:41.0915 0x1650 [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:34:41.0921 0x1650 hpqcxs08 - ok
21:34:41.0966 0x1650 [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:34:41.0970 0x1650 hpqddsvc - ok
21:34:42.0034 0x1650 [ 75F122CDCA3C71BD09089F2CA824B796, E5060B1532666632C3384FADAFE4680CDCDFFA075298EA95B186A69F467B8F77 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
21:34:42.0053 0x1650 HPSLPSVC - ok
21:34:42.0118 0x1650 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:34:42.0130 0x1650 HTTP - ok
21:34:42.0156 0x1650 [ 19E6885A061011D8DABE8F64498423FA, 62B5680D7E7F26BEE7DDDA8F51434CC3219C840779E37072BA37E55B2EE82E3B ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:34:42.0159 0x1650 hwdatacard - ok
21:34:42.0187 0x1650 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:34:42.0189 0x1650 i2omp - ok
21:34:42.0206 0x1650 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:34:42.0208 0x1650 i8042prt - ok
21:34:42.0235 0x1650 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:34:42.0242 0x1650 iaStorV - ok
21:34:42.0316 0x1650 [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
21:34:42.0319 0x1650 IDriverT - ok
21:34:42.0433 0x1650 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:34:42.0459 0x1650 idsvc - ok
21:34:42.0476 0x1650 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:34:42.0477 0x1650 iirsp - ok
21:34:42.0538 0x1650 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
21:34:42.0552 0x1650 IKEEXT - ok
21:34:42.0681 0x1650 [ 56AC584FE02E0C1D5924892562CBD572, E0DAF8C3A16925F0F259ABCBA18F2B55FA5DF17DD9AB8FE231A476807BA62504 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:34:42.0744 0x1650 IntcAzAudAddService - ok
21:34:42.0760 0x1650 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
21:34:42.0761 0x1650 intelide - ok
21:34:42.0775 0x1650 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:34:42.0776 0x1650 intelppm - ok
21:34:42.0813 0x1650 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:34:42.0817 0x1650 IPBusEnum - ok
21:34:42.0838 0x1650 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:34:42.0840 0x1650 IpFilterDriver - ok
21:34:42.0897 0x1650 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:34:42.0903 0x1650 iphlpsvc - ok
21:34:42.0908 0x1650 IpInIp - ok
21:34:42.0929 0x1650 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:34:42.0931 0x1650 IPMIDRV - ok
21:34:42.0950 0x1650 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:34:42.0953 0x1650 IPNAT - ok
21:34:42.0973 0x1650 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:34:42.0974 0x1650 IRENUM - ok
21:34:42.0985 0x1650 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:34:42.0986 0x1650 isapnp - ok
21:34:43.0019 0x1650 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:34:43.0024 0x1650 iScsiPrt - ok
21:34:43.0037 0x1650 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:34:43.0038 0x1650 iteatapi - ok
21:34:43.0052 0x1650 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:34:43.0054 0x1650 iteraid - ok
21:34:43.0086 0x1650 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:34:43.0087 0x1650 kbdclass - ok
21:34:43.0120 0x1650 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:34:43.0121 0x1650 kbdhid - ok
21:34:43.0144 0x1650 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
21:34:43.0147 0x1650 KeyIso - ok
21:34:43.0212 0x1650 [ 5035EDF1F2E72F78BB1EC5BD9B97463F, 8AFAD580A96F002FFB22761B65D4B414917895C45B11B53089BB3E0331995EF7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:34:43.0225 0x1650 KSecDD - ok
21:34:43.0281 0x1650 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:34:43.0293 0x1650 KtmRm - ok
21:34:43.0333 0x1650 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
21:34:43.0339 0x1650 LanmanServer - ok
21:34:43.0372 0x1650 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:34:43.0380 0x1650 LanmanWorkstation - ok
21:34:43.0403 0x1650 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:34:43.0405 0x1650 lltdio - ok
21:34:43.0444 0x1650 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:34:43.0453 0x1650 lltdsvc - ok
21:34:43.0473 0x1650 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:34:43.0476 0x1650 lmhosts - ok
21:34:43.0507 0x1650 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:34:43.0512 0x1650 LSI_FC - ok
21:34:43.0525 0x1650 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:34:43.0529 0x1650 LSI_SAS - ok
21:34:43.0549 0x1650 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:34:43.0552 0x1650 LSI_SCSI - ok
21:34:43.0576 0x1650 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
21:34:43.0579 0x1650 luafv - ok
21:34:43.0647 0x1650 [ C3ED67C05F3923F9A8FEBA7A996337E1, 0A092A22339A9BFFAAB4A8A7C795480C058C0360C743BDF5D5DE042825F464A7 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
21:34:43.0653 0x1650 McComponentHostService - ok
21:34:43.0675 0x1650 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:34:43.0679 0x1650 Mcx2Svc - ok
21:34:43.0698 0x1650 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
21:34:43.0699 0x1650 megasas - ok
21:34:43.0736 0x1650 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:34:43.0748 0x1650 MegaSR - ok
21:34:43.0766 0x1650 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
21:34:43.0770 0x1650 MMCSS - ok
21:34:43.0785 0x1650 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
21:34:43.0787 0x1650 Modem - ok
21:34:43.0808 0x1650 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:34:43.0810 0x1650 monitor - ok
21:34:43.0826 0x1650 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:34:43.0827 0x1650 mouclass - ok
21:34:43.0839 0x1650 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:34:43.0840 0x1650 mouhid - ok
21:34:43.0854 0x1650 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:34:43.0857 0x1650 MountMgr - ok
21:34:43.0961 0x1650 [ 5C2B2F10C847834C6DA4E680A4093BA3, 0222EBC8789765613184F47339A1DBD118ED209B72BC5565A8A7D4FB4CCF5418 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:34:43.0988 0x1650 MozillaMaintenance - ok
21:34:44.0019 0x1650 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
21:34:44.0024 0x1650 mpio - ok
21:34:44.0064 0x1650 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:34:44.0067 0x1650 mpsdrv - ok
21:34:44.0153 0x1650 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:34:44.0171 0x1650 MpsSvc - ok
21:34:44.0188 0x1650 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:34:44.0190 0x1650 Mraid35x - ok
21:34:44.0249 0x1650 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:34:44.0255 0x1650 MRxDAV - ok
21:34:44.0302 0x1650 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:34:44.0308 0x1650 mrxsmb - ok
21:34:44.0364 0x1650 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:34:44.0374 0x1650 mrxsmb10 - ok
21:34:44.0386 0x1650 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:34:44.0390 0x1650 mrxsmb20 - ok
21:34:44.0425 0x1650 [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys
21:34:44.0427 0x1650 msahci - ok
21:34:44.0459 0x1650 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:34:44.0463 0x1650 msdsm - ok
21:34:44.0480 0x1650 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
21:34:44.0487 0x1650 MSDTC - ok
21:34:44.0510 0x1650 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:34:44.0513 0x1650 Msfs - ok
21:34:44.0535 0x1650 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:34:44.0536 0x1650 msisadrv - ok
21:34:44.0581 0x1650 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:34:44.0586 0x1650 MSiSCSI - ok
21:34:44.0592 0x1650 msiserver - ok
21:34:44.0613 0x1650 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:34:44.0615 0x1650 MSKSSRV - ok
21:34:44.0621 0x1650 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:34:44.0623 0x1650 MSPCLOCK - ok
21:34:44.0635 0x1650 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:34:44.0636 0x1650 MSPQM - ok
21:34:44.0674 0x1650 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:34:44.0679 0x1650 MsRPC - ok
21:34:44.0695 0x1650 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:34:44.0696 0x1650 mssmbios - ok
21:34:44.0755 0x1650 MSSQL$SQLEXPRESS - ok
21:34:44.0822 0x1650 [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:34:44.0824 0x1650 MSSQLServerADHelper - ok
21:34:44.0842 0x1650 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:34:44.0843 0x1650 MSTEE - ok
21:34:44.0852 0x1650 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
21:34:44.0854 0x1650 Mup - ok
21:34:44.0901 0x1650 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
21:34:44.0912 0x1650 napagent - ok
21:34:44.0944 0x1650 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:34:44.0949 0x1650 NativeWifiP - ok
21:34:45.0018 0x1650 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:34:45.0033 0x1650 NDIS - ok
21:34:45.0050 0x1650 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:34:45.0052 0x1650 NdisTapi - ok
21:34:45.0072 0x1650 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:34:45.0074 0x1650 Ndisuio - ok
21:34:45.0102 0x1650 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:34:45.0106 0x1650 NdisWan - ok
21:34:45.0117 0x1650 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:34:45.0119 0x1650 NDProxy - ok
21:34:45.0218 0x1650 [ 40D7D0A208EE863BCA8D89E299216F15, 4686E416A80D883B7C6CBE21E8D8D6C814D16DC48495F8ACFE7B4664560CA5E3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
21:34:45.0243 0x1650 Nero BackItUp Scheduler 3 - ok
21:34:45.0301 0x1650 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:34:45.0304 0x1650 Net Driver HPZ12 - ok
21:34:45.0319 0x1650 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:34:45.0322 0x1650 NetBIOS - ok
21:34:45.0359 0x1650 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:34:45.0367 0x1650 netbt - ok
21:34:45.0380 0x1650 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
21:34:45.0383 0x1650 Netlogon - ok
21:34:45.0433 0x1650 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
21:34:45.0448 0x1650 Netman - ok
21:34:45.0495 0x1650 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:34:45.0502 0x1650 NetMsmqActivator - ok
21:34:45.0529 0x1650 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:34:45.0535 0x1650 NetPipeActivator - ok
21:34:45.0561 0x1650 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
21:34:45.0572 0x1650 netprofm - ok
21:34:45.0623 0x1650 [ 3F540B257442CC1A2220DD8F73AC1C77, 469A0E6AFAE17B6E0886A646D13C394BC02048E0C05863B2AFAE2E61F0664A7A ] netr28 C:\Windows\system32\DRIVERS\netr28.sys
21:34:45.0637 0x1650 netr28 - ok
21:34:45.0650 0x1650 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:34:45.0656 0x1650 NetTcpActivator - ok
21:34:45.0682 0x1650 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:34:45.0688 0x1650 NetTcpPortSharing - ok
21:34:45.0721 0x1650 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:34:45.0724 0x1650 nfrd960 - ok
21:34:45.0754 0x1650 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:34:45.0764 0x1650 NlaSvc - ok
21:34:45.0868 0x1650 [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
21:34:45.0888 0x1650 NMIndexingService - ok
21:34:45.0922 0x1650 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:34:45.0925 0x1650 Npfs - ok
21:34:45.0953 0x1650 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
21:34:45.0957 0x1650 nsi - ok
21:34:45.0973 0x1650 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:34:45.0975 0x1650 nsiproxy - ok
21:34:46.0102 0x1650 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:34:46.0142 0x1650 Ntfs - ok
21:34:46.0182 0x1650 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:34:46.0183 0x1650 ntrigdigi - ok
21:34:46.0194 0x1650 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
21:34:46.0195 0x1650 Null - ok
21:34:46.0227 0x1650 [ 723931A765E8CDDF7FFCB42F5A72CE79, 207A113E5240F71976BA314CF375E261E4345D4AAB24C39D2B5670FA9D318318 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
21:34:46.0228 0x1650 NVHDA - ok
21:34:46.0575 0x1650 [ 99A7CD6662DB4E32F75A641C5D080DB3, CD55329F2B210914687DE0F172F3BC3AA039EAD7ECB8E31BFA35C9EEEFBE53A9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:34:46.0735 0x1650 nvlddmkm - ok
21:34:46.0814 0x1650 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:34:46.0818 0x1650 nvraid - ok
21:34:46.0831 0x1650 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:34:46.0833 0x1650 nvstor - ok
21:34:46.0861 0x1650 [ 3DFD9B00AAF472042E6D4FA8CCB74EFD, 00250091A3E5A818831646D9292A1F2B79AA00666198C4BE511D9470B364C62A ] nvsvc C:\Windows\system32\nvvsvc.exe
21:34:46.0868 0x1650 nvsvc - ok
21:34:46.0892 0x1650 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:34:46.0896 0x1650 nv_agp - ok
21:34:46.0902 0x1650 NwlnkFlt - ok
21:34:46.0908 0x1650 NwlnkFwd - ok
21:34:47.0031 0x1650 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:34:47.0043 0x1650 odserv - ok
21:34:47.0073 0x1650 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:34:47.0076 0x1650 ohci1394 - ok
21:34:47.0124 0x1650 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:34:47.0131 0x1650 ose - ok
21:34:47.0188 0x1650 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:34:47.0209 0x1650 p2pimsvc - ok
21:34:47.0258 0x1650 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
21:34:47.0285 0x1650 p2psvc - ok
21:34:47.0306 0x1650 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
21:34:47.0312 0x1650 Parport - ok
21:34:47.0362 0x1650 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:34:47.0365 0x1650 partmgr - ok
21:34:47.0380 0x1650 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:34:47.0382 0x1650 Parvdm - ok
21:34:47.0414 0x1650 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
21:34:47.0419 0x1650 PcaSvc - ok
21:34:47.0441 0x1650 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
21:34:47.0447 0x1650 pci - ok
21:34:47.0472 0x1650 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
21:34:47.0474 0x1650 pciide - ok
21:34:47.0506 0x1650 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:34:47.0515 0x1650 pcmcia - ok
21:34:47.0581 0x1650 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:34:47.0613 0x1650 PEAUTH - ok
21:34:47.0705 0x1650 [ F433B5AA6DBAC3C8626EEFAF134E4763, 128B218EC0C7D66B53A11C573A1A44244097EFABC597688EA1D2A21303DB432F ] PhilCap C:\Windows\system32\DRIVERS\PhilCap.sys
21:34:47.0751 0x1650 PhilCap - ok
21:34:47.0843 0x1650 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
21:34:47.0887 0x1650 pla - ok
21:34:47.0923 0x1650 [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
21:34:47.0927 0x1650 PLFlash DeviceIoControl Service - ok
21:34:47.0974 0x1650 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:34:47.0996 0x1650 PlugPlay - ok
21:34:48.0082 0x1650 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:34:48.0086 0x1650 Pml Driver HPZ12 - ok
21:34:48.0139 0x1650 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:34:48.0167 0x1650 PNRPAutoReg - ok
21:34:48.0217 0x1650 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:34:48.0243 0x1650 PNRPsvc - ok
21:34:48.0285 0x1650 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:34:48.0297 0x1650 PolicyAgent - ok
21:34:48.0329 0x1650 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:34:48.0332 0x1650 PptpMiniport - ok
21:34:48.0351 0x1650 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
21:34:48.0353 0x1650 Processor - ok
21:34:48.0405 0x1650 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
21:34:48.0411 0x1650 ProfSvc - ok
21:34:48.0425 0x1650 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:34:48.0427 0x1650 ProtectedStorage - ok
21:34:48.0460 0x1650 [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
21:34:48.0466 0x1650 ProtexisLicensing - ok
21:34:48.0490 0x1650 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:34:48.0493 0x1650 PSched - ok
21:34:48.0518 0x1650 [ 49452BFCEC22F36A7A9B9C2181BC3042, C01A2005E9897B142FF9BC6155770F70C19725C425E48D14239195E81E2E42D0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
21:34:48.0520 0x1650 PxHelp20 - ok
21:34:48.0580 0x1650 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:34:48.0625 0x1650 ql2300 - ok
21:34:48.0654 0x1650 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:34:48.0658 0x1650 ql40xx - ok
21:34:48.0694 0x1650 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
21:34:48.0701 0x1650 QWAVE - ok
21:34:48.0714 0x1650 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:34:48.0716 0x1650 QWAVEdrv - ok
21:34:48.0722 0x1650 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:34:48.0724 0x1650 RasAcd - ok
21:34:48.0740 0x1650 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
21:34:48.0744 0x1650 RasAuto - ok
21:34:48.0755 0x1650 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:34:48.0757 0x1650 Rasl2tp - ok
21:34:48.0811 0x1650 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
21:34:48.0819 0x1650 RasMan - ok
21:34:48.0850 0x1650 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:34:48.0852 0x1650 RasPppoe - ok
21:34:48.0885 0x1650 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:34:48.0887 0x1650 RasSstp - ok
21:34:48.0932 0x1650 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:34:48.0938 0x1650 rdbss - ok
21:34:48.0963 0x1650 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:34:48.0964 0x1650 RDPCDD - ok
21:34:48.0990 0x1650 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:34:49.0000 0x1650 rdpdr - ok
21:34:49.0006 0x1650 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:34:49.0007 0x1650 RDPENCDD - ok
21:34:49.0065 0x1650 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:34:49.0073 0x1650 RDPWD - ok
21:34:49.0105 0x1650 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
21:34:49.0109 0x1650 RemoteAccess - ok
21:34:49.0136 0x1650 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:34:49.0142 0x1650 RemoteRegistry - ok
21:34:49.0182 0x1650 [ 0797F6AE018D3F992A1B8DF37BBF1786, E43A1B6CE316B157CE2C6C9780AD3698931C3E0BE5CE3B094B18847B83FF6D8C ] resetWinService C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe
21:34:49.0184 0x1650 resetWinService - ok
21:34:49.0249 0x1650 [ 805AE1F90C64758D19AAA001CF8CBA12, 28E389FD9D8106D922AAD0FF93107C4C2900565480ACD9E909D8C134E39E39A1 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
21:34:49.0256 0x1650 RichVideo - ok
21:34:49.0276 0x1650 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
21:34:49.0278 0x1650 RpcLocator - ok
21:34:49.0338 0x1650 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
21:34:49.0356 0x1650 RpcSs - ok
21:34:49.0392 0x1650 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:34:49.0394 0x1650 rspndr - ok
21:34:49.0459 0x1650 [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
21:34:49.0469 0x1650 RTL8169 - ok
21:34:49.0506 0x1650 [ 4501C8FE11DF3192FB68D0D595EA94CC, 2EAD1B58C12E72F95580F5A32CFE24874A7CB667AC21DF46B876629579648A68 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
21:34:49.0509 0x1650 RTSTOR - ok
21:34:49.0526 0x1650 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
21:34:49.0529 0x1650 SamSs - ok
21:34:49.0552 0x1650 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:34:49.0557 0x1650 sbp2port - ok
21:34:49.0595 0x1650 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:34:49.0602 0x1650 SCardSvr - ok
21:34:49.0677 0x1650 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
21:34:49.0722 0x1650 Schedule - ok
21:34:49.0746 0x1650 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
21:34:49.0749 0x1650 SCPolicySvc - ok
21:34:49.0792 0x1650 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:34:49.0800 0x1650 SDRSVC - ok
21:34:49.0812 0x1650 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:34:49.0814 0x1650 secdrv - ok
21:34:49.0835 0x1650 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
21:34:49.0840 0x1650 seclogon - ok
21:34:49.0856 0x1650 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
21:34:49.0861 0x1650 SENS - ok
21:34:49.0876 0x1650 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:34:49.0878 0x1650 Serenum - ok
21:34:49.0894 0x1650 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
21:34:49.0898 0x1650 Serial - ok
21:34:49.0920 0x1650 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:34:49.0921 0x1650 sermouse - ok
21:34:49.0959 0x1650 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
21:34:49.0965 0x1650 SessionEnv - ok
21:34:49.0993 0x1650 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:34:49.0994 0x1650 sffdisk - ok
21:34:50.0008 0x1650 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:34:50.0009 0x1650 sffp_mmc - ok
21:34:50.0017 0x1650 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:34:50.0018 0x1650 sffp_sd - ok
21:34:50.0029 0x1650 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:34:50.0030 0x1650 sfloppy - ok
21:34:50.0067 0x1650 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:34:50.0077 0x1650 SharedAccess - ok
21:34:50.0131 0x1650 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:34:50.0141 0x1650 ShellHWDetection - ok
21:34:50.0157 0x1650 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:34:50.0160 0x1650 sisagp - ok
21:34:50.0172 0x1650 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:34:50.0174 0x1650 SiSRaid2 - ok
21:34:50.0191 0x1650 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:34:50.0194 0x1650 SiSRaid4 - ok
21:34:50.0264 0x1650 [ A9C057A9463C25490CF99EA8DF8A4B35, 8F4D1C40D0F17EDBF84ED455B8946F782C7552383F0A07E410A9B6CFF7F51D63 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:34:50.0271 0x1650 SkypeUpdate - ok
21:34:50.0424 0x1650 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
21:34:50.0569 0x1650 slsvc - ok
21:34:50.0606 0x1650 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:34:50.0610 0x1650 SLUINotify - ok
21:34:50.0634 0x1650 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:34:50.0636 0x1650 Smb - ok
21:34:50.0672 0x1650 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:34:50.0675 0x1650 SNMPTRAP - ok
21:34:50.0718 0x1650 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
21:34:50.0720 0x1650 spldr - ok
21:34:50.0749 0x1650 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
21:34:50.0754 0x1650 Spooler - ok
21:34:50.0804 0x1650 [ 86EBD8B1F23E743AAD21F4D5B4D40985, 8FA4DFDAE15712266B878C364FEFDB63CB30A3DCC25F83CDFE8C8AB3AE864BE6 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:34:50.0809 0x1650 SQLBrowser - ok
21:34:50.0836 0x1650 [ D89083C4EB02DACA8F944B0E05E57F9D, F96416B5877C280B4EE088A83956E0202F82DC5EACDEEFF06D5979FFFAA9FA74 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:34:50.0838 0x1650 SQLWriter - ok
21:34:50.0890 0x1650 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
21:34:50.0897 0x1650 srv - ok
21:34:50.0932 0x1650 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:34:50.0936 0x1650 srv2 - ok
21:34:50.0969 0x1650 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:34:50.0972 0x1650 srvnet - ok
21:34:50.0990 0x1650 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:34:50.0996 0x1650 SSDPSRV - ok
21:34:51.0053 0x1650 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
21:34:51.0054 0x1650 ssmdrv - ok
21:34:51.0068 0x1650 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:34:51.0075 0x1650 SstpSvc - ok
21:34:51.0126 0x1650 [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
21:34:51.0126 0x1650 StillCam - ok
21:34:51.0180 0x1650 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
21:34:51.0196 0x1650 stisvc - ok
21:34:51.0219 0x1650 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:34:51.0220 0x1650 swenum - ok
21:34:51.0269 0x1650 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
21:34:51.0292 0x1650 swprv - ok
21:34:51.0314 0x1650 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:34:51.0317 0x1650 Symc8xx - ok
21:34:51.0328 0x1650 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:34:51.0330 0x1650 Sym_hi - ok
21:34:51.0340 0x1650 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:34:51.0343 0x1650 Sym_u3 - ok
21:34:51.0380 0x1650 [ CB01162BD6DD7B26D4CC6DCAC780E39C, A1A2CDB368B57787934F6ABAEBE1A171A0147E688528FA5337331BF7BBB7D80C ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:34:51.0386 0x1650 SynTP - ok
21:34:51.0441 0x1650 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
21:34:51.0460 0x1650 SysMain - ok
21:34:51.0486 0x1650 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:34:51.0491 0x1650 TabletInputService - ok
21:34:51.0526 0x1650 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:34:51.0536 0x1650 TapiSrv - ok
21:34:51.0553 0x1650 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
21:34:51.0558 0x1650 TBS - ok
21:34:51.0645 0x1650 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:34:51.0690 0x1650 Tcpip - ok
21:34:51.0741 0x1650 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:34:51.0773 0x1650 Tcpip6 - ok
21:34:51.0852 0x1650 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:34:51.0854 0x1650 tcpipreg - ok
21:34:51.0883 0x1650 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:34:51.0885 0x1650 TDPIPE - ok
21:34:51.0897 0x1650 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:34:51.0901 0x1650 TDTCP - ok
21:34:51.0934 0x1650 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:34:51.0938 0x1650 tdx - ok
21:34:51.0970 0x1650 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:34:51.0973 0x1650 TermDD - ok
21:34:52.0036 0x1650 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
21:34:52.0057 0x1650 TermService - ok
21:34:52.0091 0x1650 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
21:34:52.0103 0x1650 Themes - ok
21:34:52.0116 0x1650 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
21:34:52.0121 0x1650 THREADORDER - ok
21:34:52.0158 0x1650 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
21:34:52.0166 0x1650 TrkWks - ok
21:34:52.0231 0x1650 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:34:52.0233 0x1650 TrustedInstaller - ok
21:34:52.0287 0x1650 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:34:52.0289 0x1650 tssecsrv - ok
21:34:52.0395 0x1650 [ 6EB2DC366A0D69FF7295ADF7C4253475, 949BBC873CEE86D8C7FC6E47A21E5104E545C440CA3466C95B1EC9BFEC9A9DB1 ] TuneUp.Defrag C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
21:34:52.0411 0x1650 TuneUp.Defrag - ok
21:34:52.0522 0x1650 [ 38556055313BC87C21457E000BBAECA2, 44E88519AE1E5C4E29795093BA00369651AE22C21C5B6778D8F35421FC532844 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
21:34:52.0558 0x1650 TuneUp.UtilitiesSvc - ok
21:34:52.0601 0x1650 [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
21:34:52.0602 0x1650 TuneUpUtilitiesDrv - ok
21:34:52.0634 0x1650 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:34:52.0636 0x1650 tunmp - ok
21:34:52.0691 0x1650 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:34:52.0693 0x1650 tunnel - ok
21:34:52.0711 0x1650 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:34:52.0714 0x1650 uagp35 - ok
21:34:52.0751 0x1650 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:34:52.0762 0x1650 udfs - ok
21:34:52.0806 0x1650 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:34:52.0810 0x1650 UI0Detect - ok
21:34:52.0832 0x1650 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:34:52.0836 0x1650 uliagpkx - ok
21:34:52.0850 0x1650 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:34:52.0860 0x1650 uliahci - ok
21:34:52.0877 0x1650 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:34:52.0882 0x1650 UlSata - ok
21:34:52.0900 0x1650 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:34:52.0906 0x1650 ulsata2 - ok
21:34:52.0923 0x1650 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:34:52.0925 0x1650 umbus - ok
21:34:52.0949 0x1650 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
21:34:52.0959 0x1650 upnphost - ok
21:34:53.0008 0x1650 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:34:53.0010 0x1650 usbccgp - ok
21:34:53.0025 0x1650 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:34:53.0029 0x1650 usbcir - ok
21:34:53.0059 0x1650 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:34:53.0061 0x1650 usbehci - ok
21:34:53.0094 0x1650 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:34:53.0101 0x1650 usbhub - ok
21:34:53.0122 0x1650 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:34:53.0123 0x1650 usbohci - ok
21:34:53.0161 0x1650 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:34:53.0163 0x1650 usbprint - ok
21:34:53.0211 0x1650 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:34:53.0214 0x1650 usbscan - ok
21:34:53.0232 0x1650 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:34:53.0236 0x1650 USBSTOR - ok
21:34:53.0252 0x1650 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:34:53.0254 0x1650 usbuhci - ok
21:34:53.0317 0x1650 [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:34:53.0324 0x1650 usbvideo - ok
21:34:53.0354 0x1650 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
21:34:53.0361 0x1650 UxSms - ok
21:34:53.0407 0x1650 [ 5BCE34CFE78E80DDE4FD1F3249565BBB, 5C6D1CF7769495748DF15010F87091BF150F4702778C9E02E60E2C41C7A298AF ] UxTuneUp C:\Windows\System32\uxtuneup.dll
21:34:53.0413 0x1650 UxTuneUp - ok
21:34:53.0459 0x1650 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
21:34:53.0477 0x1650 vds - ok
21:34:53.0498 0x1650 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:34:53.0500 0x1650 vga - ok
21:34:53.0515 0x1650 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:34:53.0518 0x1650 VgaSave - ok
21:34:53.0538 0x1650 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:34:53.0541 0x1650 viaagp - ok
21:34:53.0557 0x1650 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:34:53.0560 0x1650 ViaC7 - ok
21:34:53.0581 0x1650 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
21:34:53.0582 0x1650 viaide - ok
21:34:53.0602 0x1650 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:34:53.0604 0x1650 volmgr - ok
21:34:53.0643 0x1650 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:34:53.0652 0x1650 volmgrx - ok
21:34:53.0702 0x1650 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:34:53.0709 0x1650 volsnap - ok
21:34:53.0733 0x1650 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:34:53.0738 0x1650 vsmraid - ok
21:34:53.0800 0x1650 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
21:34:53.0832 0x1650 VSS - ok
21:34:53.0882 0x1650 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
21:34:53.0893 0x1650 W32Time - ok
21:34:53.0914 0x1650 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:34:53.0915 0x1650 WacomPen - ok
21:34:53.0938 0x1650 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:34:53.0941 0x1650 Wanarp - ok
21:34:53.0948 0x1650 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:34:53.0952 0x1650 Wanarpv6 - ok
21:34:53.0995 0x1650 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:34:54.0011 0x1650 wcncsvc - ok
21:34:54.0051 0x1650 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:34:54.0056 0x1650 WcsPlugInService - ok
21:34:54.0069 0x1650 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
21:34:54.0070 0x1650 Wd - ok
21:34:54.0126 0x1650 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:34:54.0149 0x1650 Wdf01000 - ok
21:34:54.0164 0x1650 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:34:54.0169 0x1650 WdiServiceHost - ok
21:34:54.0175 0x1650 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:34:54.0181 0x1650 WdiSystemHost - ok
21:34:54.0216 0x1650 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
21:34:54.0223 0x1650 WebClient - ok
21:34:54.0252 0x1650 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:34:54.0260 0x1650 Wecsvc - ok
21:34:54.0291 0x1650 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:34:54.0295 0x1650 wercplsupport - ok
21:34:54.0329 0x1650 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
21:34:54.0334 0x1650 WerSvc - ok
21:34:54.0393 0x1650 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:34:54.0400 0x1650 WinDefend - ok
21:34:54.0410 0x1650 WinHttpAutoProxySvc - ok
21:34:54.0455 0x1650 [ 602FC1B19D72745C95E535932E54B932, 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070 ] WINIO C:\Windows\system32\WinIo.sys
21:34:54.0459 0x1650 Suspicious file ( Forged ): C:\Windows\system32\WinIo.sys. Real md5: 602FC1B19D72745C95E535932E54B932, sha256: 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070, fake md5: C5E3A2EE25A3D86761AF7971EAEAC40C, fake sha256: BA71302E06AECC4E69DDA5F22CE37F081B32796E5A42C80775C0F830031761BA
21:34:54.0460 0x1650 WINIO - detected ForgedFile.Multi.Generic ( 1 )
21:34:56.0939 0x1650 WINIO ( ForgedFile.Multi.Generic ) - warning
21:34:59.0399 0x1650 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:34:59.0405 0x1650 Winmgmt - ok
21:34:59.0510 0x1650 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
21:34:59.0585 0x1650 WinRM - ok
21:34:59.0664 0x1650 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:34:59.0682 0x1650 Wlansvc - ok
21:34:59.0738 0x1650 [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe
21:34:59.0745 0x1650 WLSetupSvc - ok
21:34:59.0773 0x1650 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:34:59.0775 0x1650 WmiAcpi - ok
21:34:59.0819 0x1650 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:34:59.0826 0x1650 wmiApSrv - ok
21:34:59.0887 0x1650 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:34:59.0931 0x1650 WMPNetworkSvc - ok
21:34:59.0944 0x1650 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:34:59.0952 0x1650 WPCSvc - ok
21:34:59.0984 0x1650 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:34:59.0989 0x1650 WPDBusEnum - ok
21:35:00.0053 0x1650 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
21:35:00.0055 0x1650 WpdUsb - ok
21:35:00.0171 0x1650 [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:35:00.0192 0x1650 WPFFontCache_v0400 - ok
21:35:00.0219 0x1650 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:35:00.0221 0x1650 ws2ifsl - ok
21:35:00.0258 0x1650 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
21:35:00.0264 0x1650 wscsvc - ok
21:35:00.0270 0x1650 WSearch - ok
21:35:00.0407 0x1650 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
21:35:00.0497 0x1650 wuauserv - ok
21:35:00.0568 0x1650 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:35:00.0570 0x1650 WudfPf - ok
21:35:00.0588 0x1650 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:35:00.0592 0x1650 WUDFRd - ok
21:35:00.0648 0x1650 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:35:00.0653 0x1650 wudfsvc - ok
21:35:00.0680 0x1650 [ AB2D77BF7222B007717ABB61B15F9AE2, 9495D99385C91115583F6CD0E26B39D4F04FB3472EA53ADE51DA03043468A896 ] X10Hid C:\Windows\system32\Drivers\x10hid.sys
21:35:00.0681 0x1650 X10Hid - ok
21:35:00.0802 0x1650 [ 5A0C788C5BC5F2C993CB60940ADCF95E, FEEC158466040A6528E7FC8D33706B50D2F03479E0B62DF8F06B69A1A850A9FB ] x10nets C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
21:35:00.0803 0x1650 x10nets - ok
21:35:00.0813 0x1650 ================ Scan global ===============================
21:35:00.0866 0x1650 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
21:35:00.0925 0x1650 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:35:00.0959 0x1650 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:35:01.0002 0x1650 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
21:35:01.0011 0x1650 [ Global ] - ok
21:35:01.0011 0x1650 ================ Scan MBR ==================================
21:35:01.0027 0x1650 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:35:01.0410 0x1650 \Device\Harddisk0\DR0 - ok
21:35:01.0411 0x1650 ================ Scan VBR ==================================
21:35:01.0417 0x1650 [ 6DA75C813C2C36F893E01B504C35D536 ] \Device\Harddisk0\DR0\Partition1
21:35:01.0458 0x1650 \Device\Harddisk0\DR0\Partition1 - ok
21:35:01.0463 0x1650 [ 94103B76038FEC54196125683201477F ] \Device\Harddisk0\DR0\Partition2
21:35:01.0464 0x1650 \Device\Harddisk0\DR0\Partition2 - ok
21:35:01.0466 0x1650 ================ Scan generic autorun ======================
21:35:01.0531 0x1650 [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
21:35:01.0558 0x1650 Windows Defender - ok
21:35:01.0630 0x1650 [ 12DC04601A333610E043A0DF55EC2A5A, 4725CEC7BE8857E304976BE04A424C4F7703BF394CBFECFCED014097B93F2954 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
21:35:01.0657 0x1650 SynTPEnh - ok
21:35:01.0843 0x1650 [ FF473648E7B1B37C7F3249A6549FAC72, 632825038F5975415D129CCB84682243360821857D250D7827E21A08DE855BCC ] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
21:35:01.0847 0x1650 hpqSRMon - ok
21:35:01.0979 0x1650 [ 085F30DB0B38903940A4141E675BDC08, 3ABFB79C850D2B1976DB4DEF69AA031C4E18B5E240316908DDD16DEA4050365A ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
21:35:01.0994 0x1650 avgnt - ok
21:35:02.0889 0x1650 [ 1A1DBAE836F402FE2A0556985113786F, BCA295E91E2F5EE2486D8EA1B6477C69136BED743E810C765CDE713A72BDE552 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
21:35:03.0037 0x1650 RtHDVCpl - ok
21:35:03.0192 0x1650 [ 8CB85437667AEDBD8497D2CA85F4A17A, 196F1F3208674944C554624E5DA6A614F8070467E32F0C1BAB9AC409783E5804 ] C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
21:35:03.0195 0x1650 Avira Systray - ok
21:35:03.0563 0x1650 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:35:03.0596 0x1650 Sidebar - ok
21:35:03.0602 0x1650 WindowsWelcomeCenter - ok
21:35:03.0831 0x1650 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:35:03.0863 0x1650 Sidebar - ok
21:35:03.0869 0x1650 WindowsWelcomeCenter - ok
21:35:03.0931 0x1650 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
21:35:03.0965 0x1650 Sidebar - ok
21:35:04.0199 0x1650 [ FFC09EB41CAD53162461046130AD51DB, 264B08AB1D729BEA1390A936A00D5A3F6402A8177A3BAD53EFB609228020B473 ] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe
21:35:04.0273 0x1650 HP ENVY 4500 series (NET) - ok
21:35:04.0336 0x1650 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
21:35:04.0340 0x1650 ehTray.exe - ok
21:35:04.0490 0x1650 [ E4EFC2CDC71E0698CB81A4D60C3FADFF, 0278452E7FE903053A470EFA0C7813E9C43517EC0C8C9E42C5A9A3C99146D06B ] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
21:35:04.0539 0x1650 IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - ok
21:35:04.0797 0x1650 [ 2E4EE47FBD9BB663A5220DBC38579986, 264A48ADA13FEC6F49F34C3118ABFFEEB569B631E9EE35168FE19DE78AF9C7C8 ] C:\Program Files\CCleaner\CCleaner.exe
21:35:04.0907 0x1650 CCleaner Monitoring - ok
21:35:04.0975 0x1650 Skype - ok
21:35:05.0047 0x1650 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
21:35:05.0073 0x1650 Sidebar - ok
21:35:05.0080 0x1650 WindowsWelcomeCenter - ok
21:35:05.0149 0x1650 [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
21:35:05.0158 0x1650 ISUSPM - ok
21:35:05.0180 0x1650 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
21:35:05.0183 0x1650 ehTray.exe - ok
21:35:05.0200 0x1650 [ 35937EAD711207544E219C2A19A78A7D, EE6E5EAE00F577D7C3FFB8C0D8EE484552A337CEAA27FCB107174A9879FE7362 ] C:\Program Files\Windows Media Player\WMPNSCFG.exe
21:35:05.0204 0x1650 WMPNSCFG - ok
21:35:05.0205 0x1650 Waiting for KSN requests completion. In queue: 36
21:35:06.0205 0x1650 Waiting for KSN requests completion. In queue: 36
21:35:07.0205 0x1650 Waiting for KSN requests completion. In queue: 36
21:35:08.0231 0x1650 AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.8.650 ), 0x41000 ( enabled : updated )
21:35:08.0279 0x1650 Win FW state via NFP2: enabled
21:35:10.0647 0x1650 ============================================================
21:35:10.0647 0x1650 Scan finished
21:35:10.0647 0x1650 ============================================================
21:35:10.0662 0x1adc Detected object count: 1
21:35:10.0662 0x1adc Actual detected object count: 1
21:35:46.0426 0x1adc WINIO ( ForgedFile.Multi.Generic ) - skipped by user
21:35:46.0426 0x1adc WINIO ( ForgedFile.Multi.Generic ) - User select action: Skip
21:35:50.0720 0x18cc Deinitialize success
|
|
06.03.2015, 11:56
| #10 |
| /// the machine /// TB-Ausbilder | DHL Mail bekommen, Link geklickt und jetzt Gab es Delete oder Quarantine?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
06.03.2015, 12:48
| #11 |
| | DHL Mail bekommen, Link geklickt und jetzt Es gibt Copy to Quarantine oder Delete |
|
06.03.2015, 16:34
| #12 |
| /// the machine /// TB-Ausbilder | DHL Mail bekommen, Link geklickt und jetzt Quarantine bitte
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
06.03.2015, 18:01
| #13 |
| | DHL Mail bekommen, Link geklickt und jetzt Hier die Logfile nach Quarantine Teil 1 Code:
ATTFilter 17:45:46.0233 0x1d90 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
17:45:48.0252 0x1d90 ============================================================
17:45:48.0252 0x1d90 Current date / time: 2015/03/06 17:45:48.0252
17:45:48.0252 0x1d90 SystemInfo:
17:45:48.0252 0x1d90
17:45:48.0252 0x1d90 OS Version: 6.0.6002 ServicePack: 2.0
17:45:48.0252 0x1d90 Product type: Workstation
17:45:48.0253 0x1d90 ComputerName: SGZOLL-PC
17:45:48.0253 0x1d90 UserName: sgzoll
17:45:48.0253 0x1d90 Windows directory: C:\Windows
17:45:48.0253 0x1d90 System windows directory: C:\Windows
17:45:48.0253 0x1d90 Processor architecture: Intel x86
17:45:48.0253 0x1d90 Number of processors: 2
17:45:48.0253 0x1d90 Page size: 0x1000
17:45:48.0253 0x1d90 Boot type: Normal boot
17:45:48.0253 0x1d90 ============================================================
17:45:50.0072 0x1d90 KLMD registered as C:\Windows\system32\drivers\29020194.sys
17:45:50.0238 0x1d90 System UUID: {DEA09542-C48A-2E1A-F84F-06BF6A97D0BC}
17:45:50.0874 0x1d90 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:45:50.0885 0x1d90 ============================================================
17:45:50.0885 0x1d90 \Device\Harddisk0\DR0:
17:45:50.0885 0x1d90 MBR partitions:
17:45:50.0885 0x1d90 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x22C29800
17:45:50.0885 0x1d90 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x22C2A000, BlocksNum 0x2804000
17:45:50.0885 0x1d90 ============================================================
17:45:50.0921 0x1d90 C: <-> \Device\Harddisk0\DR0\Partition1
17:45:50.0944 0x1d90 D: <-> \Device\Harddisk0\DR0\Partition2
17:45:50.0944 0x1d90 ============================================================
17:45:50.0944 0x1d90 Initialize success
17:45:50.0944 0x1d90 ============================================================
17:45:52.0348 0x169c ============================================================
17:45:52.0348 0x169c Scan started
17:45:52.0348 0x169c Mode: Manual;
17:45:52.0348 0x169c ============================================================
17:45:52.0348 0x169c KSN ping started
17:46:06.0027 0x169c KSN ping finished: true
17:46:06.0601 0x169c ================ Scan system memory ========================
17:46:06.0601 0x169c System memory - ok
17:46:06.0601 0x169c ================ Scan services =============================
17:46:06.0795 0x169c [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
17:46:06.0805 0x169c ACPI - ok
17:46:06.0927 0x169c [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:46:06.0937 0x169c AdobeFlashPlayerUpdateSvc - ok
17:46:06.0995 0x169c [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:46:07.0011 0x169c adp94xx - ok
17:46:07.0041 0x169c [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:46:07.0052 0x169c adpahci - ok
17:46:07.0069 0x169c [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
17:46:07.0073 0x169c adpu160m - ok
17:46:07.0096 0x169c [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:46:07.0101 0x169c adpu320 - ok
17:46:07.0141 0x169c [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:46:07.0143 0x169c AeLookupSvc - ok
17:46:07.0174 0x169c [ 3CD15EBAA1D68BC18CE14A26683BC1EC, 5A39CEE48A7CB7B3D2401278D6443B1BA9F043C36A3DADE15AAB30D040A88C3B ] AF15BDA C:\Windows\system32\DRIVERS\AF15BDA.sys
17:46:07.0183 0x169c AF15BDA - ok
17:46:07.0238 0x169c [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
17:46:07.0247 0x169c AFD - ok
17:46:07.0261 0x169c [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:46:07.0264 0x169c agp440 - ok
17:46:07.0282 0x169c [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
17:46:07.0284 0x169c aic78xx - ok
17:46:07.0322 0x169c [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
17:46:07.0325 0x169c ALG - ok
17:46:07.0344 0x169c [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
17:46:07.0346 0x169c aliide - ok
17:46:07.0364 0x169c [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:46:07.0367 0x169c amdagp - ok
17:46:07.0385 0x169c [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
17:46:07.0387 0x169c amdide - ok
17:46:07.0406 0x169c [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
17:46:07.0408 0x169c AmdK7 - ok
17:46:07.0423 0x169c [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:46:07.0425 0x169c AmdK8 - ok
17:46:07.0552 0x169c [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:46:07.0568 0x169c AntiVirSchedulerService - ok
17:46:07.0657 0x169c [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:46:07.0673 0x169c AntiVirService - ok
17:46:07.0721 0x169c [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
17:46:07.0723 0x169c Appinfo - ok
17:46:07.0755 0x169c [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
17:46:07.0758 0x169c arc - ok
17:46:07.0777 0x169c [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:46:07.0780 0x169c arcsas - ok
17:46:07.0894 0x169c [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:46:07.0896 0x169c aspnet_state - ok
17:46:07.0915 0x169c [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:46:07.0916 0x169c AsyncMac - ok
17:46:07.0937 0x169c [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
17:46:07.0938 0x169c atapi - ok
17:46:08.0005 0x169c [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:46:08.0017 0x169c AudioEndpointBuilder - ok
17:46:08.0050 0x169c [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:46:08.0062 0x169c Audiosrv - ok
17:46:08.0080 0x169c [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:46:08.0085 0x169c avgntflt - ok
17:46:08.0127 0x169c [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:46:08.0133 0x169c avipbb - ok
17:46:08.0245 0x169c [ ABDAEBEB09E98D13D765A0C57F3FAF88, F9E5F9A13E983BEAF32FA53736FB188280AAA44740696DFB95B8C10E8FEA466D ] Avira.OE.ServiceHost C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
17:46:08.0255 0x169c Avira.OE.ServiceHost - ok
17:46:08.0291 0x169c [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:46:08.0293 0x169c avkmgr - ok
17:46:08.0327 0x169c [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
17:46:08.0329 0x169c Beep - ok
17:46:08.0401 0x169c [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
17:46:08.0411 0x169c BFE - ok
17:46:08.0493 0x169c [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
17:46:08.0518 0x169c BITS - ok
17:46:08.0537 0x169c [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
17:46:08.0539 0x169c blbdrive - ok
17:46:08.0568 0x169c [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:46:08.0570 0x169c bowser - ok
17:46:08.0589 0x169c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
17:46:08.0591 0x169c BrFiltLo - ok
17:46:08.0606 0x169c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
17:46:08.0608 0x169c BrFiltUp - ok
17:46:08.0637 0x169c [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
17:46:08.0641 0x169c Browser - ok
17:46:08.0664 0x169c [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
17:46:08.0667 0x169c Brserid - ok
17:46:08.0680 0x169c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
17:46:08.0682 0x169c BrSerWdm - ok
17:46:08.0699 0x169c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
17:46:08.0700 0x169c BrUsbMdm - ok
17:46:08.0708 0x169c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
17:46:08.0710 0x169c BrUsbSer - ok
17:46:08.0729 0x169c [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:46:08.0731 0x169c BTHMODEM - ok
17:46:08.0850 0x169c [ BC46E036AD1FEC3C56583D2802E68EFE, A925A2245D78EE3B1790B60354A58DCB487D96494DDD16F9ACEA88870993CE1F ] Cam5607 C:\Windows\system32\Drivers\BisonC07.sys
17:46:08.0890 0x169c Cam5607 - ok
17:46:08.0907 0x169c [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:46:08.0910 0x169c cdfs - ok
17:46:08.0937 0x169c [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:46:08.0941 0x169c cdrom - ok
17:46:08.0977 0x169c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
17:46:08.0979 0x169c CertPropSvc - ok
17:46:08.0997 0x169c [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
17:46:08.0999 0x169c circlass - ok
17:46:09.0044 0x169c [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
17:46:09.0052 0x169c CLFS - ok
17:46:09.0109 0x169c [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:46:09.0112 0x169c clr_optimization_v2.0.50727_32 - ok
17:46:09.0163 0x169c [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:46:09.0167 0x169c clr_optimization_v4.0.30319_32 - ok
17:46:09.0202 0x169c [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:46:09.0203 0x169c CmBatt - ok
17:46:09.0226 0x169c [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:46:09.0227 0x169c cmdide - ok
17:46:09.0239 0x169c [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:46:09.0240 0x169c Compbatt - ok
17:46:09.0245 0x169c COMSysApp - ok
17:46:09.0255 0x169c [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:46:09.0257 0x169c crcdisk - ok
17:46:09.0275 0x169c [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
17:46:09.0277 0x169c Crusoe - ok
17:46:09.0336 0x169c [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:46:09.0341 0x169c CryptSvc - ok
17:46:09.0404 0x169c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:46:09.0424 0x169c DcomLaunch - ok
17:46:09.0467 0x169c [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:46:09.0470 0x169c DfsC - ok
17:46:09.0570 0x169c [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
17:46:09.0626 0x169c DFSR - ok
17:46:09.0672 0x169c [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
17:46:09.0678 0x169c Dhcp - ok
17:46:09.0698 0x169c [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
17:46:09.0700 0x169c disk - ok
17:46:09.0752 0x169c [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:46:09.0755 0x169c Dnscache - ok
17:46:09.0797 0x169c [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
17:46:09.0802 0x169c dot3svc - ok
17:46:09.0834 0x169c [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
17:46:09.0838 0x169c Dot4 - ok
17:46:09.0854 0x169c [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:46:09.0856 0x169c Dot4Print - ok
17:46:09.0881 0x169c [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
17:46:09.0883 0x169c dot4usb - ok
17:46:09.0915 0x169c [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
17:46:09.0920 0x169c DPS - ok
17:46:09.0939 0x169c [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:46:09.0940 0x169c drmkaud - ok
17:46:09.0998 0x169c [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:46:10.0015 0x169c DXGKrnl - ok
17:46:10.0041 0x169c [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
17:46:10.0045 0x169c E1G60 - ok
17:46:10.0071 0x169c [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
17:46:10.0074 0x169c EapHost - ok
17:46:10.0103 0x169c [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
17:46:10.0107 0x169c Ecache - ok
17:46:10.0189 0x169c [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:46:10.0197 0x169c ehRecvr - ok
17:46:10.0217 0x169c [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
17:46:10.0221 0x169c ehSched - ok
17:46:10.0233 0x169c [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
17:46:10.0235 0x169c ehstart - ok
17:46:10.0270 0x169c [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:46:10.0280 0x169c elxstor - ok
17:46:10.0333 0x169c [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
17:46:10.0350 0x169c EMDMgmt - ok
17:46:10.0372 0x169c [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:46:10.0373 0x169c ErrDev - ok
17:46:10.0437 0x169c [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
17:46:10.0446 0x169c EventSystem - ok
17:46:10.0482 0x169c [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
17:46:10.0486 0x169c exfat - ok
17:46:10.0539 0x169c [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:46:10.0544 0x169c fastfat - ok
17:46:10.0586 0x169c [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:46:10.0588 0x169c fdc - ok
17:46:10.0607 0x169c [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
17:46:10.0609 0x169c fdPHost - ok
17:46:10.0626 0x169c [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
17:46:10.0629 0x169c FDResPub - ok
17:46:10.0641 0x169c [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:46:10.0644 0x169c FileInfo - ok
17:46:10.0662 0x169c [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:46:10.0664 0x169c Filetrace - ok
17:46:10.0681 0x169c [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:46:10.0682 0x169c flpydisk - ok
17:46:10.0708 0x169c [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:46:10.0714 0x169c FltMgr - ok
17:46:10.0788 0x169c [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
17:46:10.0810 0x169c FontCache - ok
17:46:10.0863 0x169c [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:46:10.0866 0x169c FontCache3.0.0.0 - ok
17:46:10.0918 0x169c [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:46:10.0920 0x169c Fs_Rec - ok
17:46:10.0947 0x169c [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:46:10.0950 0x169c gagp30kx - ok
17:46:11.0017 0x169c [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
17:46:11.0035 0x169c gpsvc - ok
17:46:11.0162 0x169c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:46:11.0166 0x169c gupdate - ok
17:46:11.0182 0x169c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:46:11.0185 0x169c gupdatem - ok
17:46:11.0224 0x169c [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:46:11.0229 0x169c gusvc - ok
17:46:11.0264 0x169c [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:46:11.0270 0x169c HdAudAddService - ok
17:46:11.0307 0x169c [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:46:11.0322 0x169c HDAudBus - ok
17:46:11.0334 0x169c [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:46:11.0335 0x169c HidBth - ok
17:46:11.0346 0x169c [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
17:46:11.0347 0x169c HidIr - ok
17:46:11.0376 0x169c [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
17:46:11.0378 0x169c hidserv - ok
17:46:11.0408 0x169c [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:46:11.0409 0x169c HidUsb - ok
17:46:11.0437 0x169c [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
17:46:11.0440 0x169c hkmsvc - ok
17:46:11.0458 0x169c [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
17:46:11.0460 0x169c HpCISSs - ok
17:46:11.0563 0x169c [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
17:46:11.0570 0x169c hpqcxs08 - ok
17:46:11.0615 0x169c [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
17:46:11.0620 0x169c hpqddsvc - ok
17:46:11.0695 0x169c [ 75F122CDCA3C71BD09089F2CA824B796, E5060B1532666632C3384FADAFE4680CDCDFFA075298EA95B186A69F467B8F77 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
17:46:11.0715 0x169c HPSLPSVC - ok
17:46:11.0778 0x169c [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:46:11.0789 0x169c HTTP - ok
17:46:11.0815 0x169c [ 19E6885A061011D8DABE8F64498423FA, 62B5680D7E7F26BEE7DDDA8F51434CC3219C840779E37072BA37E55B2EE82E3B ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:46:11.0819 0x169c hwdatacard - ok
17:46:11.0847 0x169c [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
17:46:11.0849 0x169c i2omp - ok
17:46:11.0866 0x169c [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:46:11.0868 0x169c i8042prt - ok
17:46:11.0894 0x169c [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
17:46:11.0900 0x169c iaStorV - ok
17:46:11.0975 0x169c [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:46:11.0978 0x169c IDriverT - ok
17:46:12.0077 0x169c [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:46:12.0097 0x169c idsvc - ok
17:46:12.0113 0x169c [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:46:12.0115 0x169c iirsp - ok
17:46:12.0173 0x169c [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
17:46:12.0184 0x169c IKEEXT - ok
17:46:12.0319 0x169c [ 56AC584FE02E0C1D5924892562CBD572, E0DAF8C3A16925F0F259ABCBA18F2B55FA5DF17DD9AB8FE231A476807BA62504 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:46:12.0380 0x169c IntcAzAudAddService - ok
17:46:12.0408 0x169c [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
17:46:12.0410 0x169c intelide - ok
17:46:12.0423 0x169c [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:46:12.0425 0x169c intelppm - ok
17:46:12.0462 0x169c [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:46:12.0465 0x169c IPBusEnum - ok
17:46:12.0486 0x169c [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:46:12.0488 0x169c IpFilterDriver - ok
17:46:12.0556 0x169c [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:46:12.0562 0x169c iphlpsvc - ok
17:46:12.0568 0x169c IpInIp - ok
17:46:12.0589 0x169c [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
17:46:12.0591 0x169c IPMIDRV - ok
17:46:12.0610 0x169c [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
17:46:12.0613 0x169c IPNAT - ok
17:46:12.0633 0x169c [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:46:12.0634 0x169c IRENUM - ok
17:46:12.0644 0x169c [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:46:12.0646 0x169c isapnp - ok
17:46:12.0679 0x169c [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:46:12.0684 0x169c iScsiPrt - ok
17:46:12.0697 0x169c [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
17:46:12.0699 0x169c iteatapi - ok
17:46:12.0712 0x169c [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
17:46:12.0714 0x169c iteraid - ok
17:46:12.0745 0x169c [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:46:12.0747 0x169c kbdclass - ok
17:46:12.0779 0x169c [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:46:12.0781 0x169c kbdhid - ok
17:46:12.0804 0x169c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
17:46:12.0807 0x169c KeyIso - ok
17:46:12.0873 0x169c [ 5035EDF1F2E72F78BB1EC5BD9B97463F, 8AFAD580A96F002FFB22761B65D4B414917895C45B11B53089BB3E0331995EF7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:46:12.0883 0x169c KSecDD - ok
17:46:12.0928 0x169c [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:46:12.0938 0x169c KtmRm - ok
17:46:12.0981 0x169c [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
17:46:12.0986 0x169c LanmanServer - ok
17:46:13.0020 0x169c [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:46:13.0027 0x169c LanmanWorkstation - ok
17:46:13.0063 0x169c [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:46:13.0064 0x169c lltdio - ok
17:46:13.0103 0x169c [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:46:13.0108 0x169c lltdsvc - ok
17:46:13.0121 0x169c [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:46:13.0123 0x169c lmhosts - ok
17:46:13.0142 0x169c [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:46:13.0146 0x169c LSI_FC - ok
17:46:13.0162 0x169c [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:46:13.0165 0x169c LSI_SAS - ok
17:46:13.0186 0x169c [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:46:13.0189 0x169c LSI_SCSI - ok
17:46:13.0213 0x169c [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
17:46:13.0216 0x169c luafv - ok
17:46:13.0283 0x169c [ C3ED67C05F3923F9A8FEBA7A996337E1, 0A092A22339A9BFFAAB4A8A7C795480C058C0360C743BDF5D5DE042825F464A7 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
17:46:13.0289 0x169c McComponentHostService - ok
17:46:13.0301 0x169c [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:46:13.0306 0x169c Mcx2Svc - ok
17:46:13.0324 0x169c [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
17:46:13.0326 0x169c megasas - ok
17:46:13.0363 0x169c [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
17:46:13.0375 0x169c MegaSR - ok
17:46:13.0393 0x169c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
17:46:13.0396 0x169c MMCSS - ok
17:46:13.0412 0x169c [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
17:46:13.0414 0x169c Modem - ok
17:46:13.0434 0x169c [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:46:13.0437 0x169c monitor - ok
17:46:13.0452 0x169c [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:46:13.0455 0x169c mouclass - ok
17:46:13.0465 0x169c [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:46:13.0467 0x169c mouhid - ok
17:46:13.0481 0x169c [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
17:46:13.0483 0x169c MountMgr - ok
17:46:13.0586 0x169c [ 81E8AF6407EC3F41908FE37F054353EA, 756C7656ED68AEAE4225E952ED1CED0717264D3378DB8DF0B2D70B6EBC67C62F ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:46:13.0591 0x169c MozillaMaintenance - ok
17:46:13.0612 0x169c [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
17:46:13.0617 0x169c mpio - ok
17:46:13.0646 0x169c [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:46:13.0650 0x169c mpsdrv - ok
17:46:13.0702 0x169c [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:46:13.0734 0x169c MpsSvc - ok
17:46:13.0748 0x169c [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
17:46:13.0750 0x169c Mraid35x - ok
17:46:13.0808 0x169c [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:46:13.0814 0x169c MRxDAV - ok
17:46:13.0862 0x169c [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:46:13.0867 0x169c mrxsmb - ok
17:46:13.0924 0x169c [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:46:13.0933 0x169c mrxsmb10 - ok
17:46:13.0943 0x169c [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:46:13.0947 0x169c mrxsmb20 - ok
17:46:13.0985 0x169c [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys
17:46:13.0988 0x169c msahci - ok
17:46:14.0008 0x169c [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:46:14.0014 0x169c msdsm - ok
17:46:14.0044 0x169c [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
17:46:14.0051 0x169c MSDTC - ok
17:46:14.0085 0x169c [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:46:14.0088 0x169c Msfs - ok
17:46:14.0105 0x169c [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:46:14.0107 0x169c msisadrv - ok
17:46:14.0142 0x169c [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:46:14.0148 0x169c MSiSCSI - ok
17:46:14.0155 0x169c msiserver - ok
17:46:14.0173 0x169c [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:46:14.0175 0x169c MSKSSRV - ok
17:46:14.0182 0x169c [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:46:14.0184 0x169c MSPCLOCK - ok
17:46:14.0194 0x169c [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:46:14.0196 0x169c MSPQM - ok
17:46:14.0235 0x169c [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:46:14.0242 0x169c MsRPC - ok
17:46:14.0266 0x169c [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:46:14.0268 0x169c mssmbios - ok
17:46:14.0325 0x169c MSSQL$SQLEXPRESS - ok
17:46:14.0394 0x169c [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
17:46:14.0396 0x169c MSSQLServerADHelper - ok
17:46:14.0413 0x169c [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:46:14.0415 0x169c MSTEE - ok
17:46:14.0426 0x169c [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
17:46:14.0429 0x169c Mup - ok
17:46:14.0475 0x169c [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
17:46:14.0490 0x169c napagent - ok
17:46:14.0526 0x169c [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:46:14.0533 0x169c NativeWifiP - ok
17:46:14.0593 0x169c [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:46:14.0613 0x169c NDIS - ok
17:46:14.0632 0x169c [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:46:14.0634 0x169c NdisTapi - ok
17:46:14.0654 0x169c [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:46:14.0656 0x169c Ndisuio - ok
17:46:14.0684 0x169c [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:46:14.0690 0x169c NdisWan - ok
17:46:14.0710 0x169c [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:46:14.0713 0x169c NDProxy - ok
17:46:14.0830 0x169c [ 40D7D0A208EE863BCA8D89E299216F15, 4686E416A80D883B7C6CBE21E8D8D6C814D16DC48495F8ACFE7B4664560CA5E3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
17:46:14.0862 0x169c Nero BackItUp Scheduler 3 - ok
17:46:14.0916 0x169c [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:46:14.0920 0x169c Net Driver HPZ12 - ok
17:46:14.0957 0x169c [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:46:14.0959 0x169c NetBIOS - ok
17:46:14.0997 0x169c [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
17:46:15.0004 0x169c netbt - ok
17:46:15.0017 0x169c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
17:46:15.0020 0x169c Netlogon - ok
17:46:15.0070 0x169c [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
17:46:15.0083 0x169c Netman - ok
17:46:15.0133 0x169c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:46:15.0139 0x169c NetMsmqActivator - ok
17:46:15.0155 0x169c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:46:15.0161 0x169c NetPipeActivator - ok
17:46:15.0187 0x169c [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
17:46:15.0199 0x169c netprofm - ok
17:46:15.0249 0x169c [ 3F540B257442CC1A2220DD8F73AC1C77, 469A0E6AFAE17B6E0886A646D13C394BC02048E0C05863B2AFAE2E61F0664A7A ] netr28 C:\Windows\system32\DRIVERS\netr28.sys
17:46:15.0264 0x169c netr28 - ok
17:46:15.0276 0x169c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:46:15.0282 0x169c NetTcpActivator - ok
17:46:15.0293 0x169c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:46:15.0299 0x169c NetTcpPortSharing - ok
17:46:15.0314 0x169c [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:46:15.0317 0x169c nfrd960 - ok
17:46:15.0346 0x169c [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:46:15.0356 0x169c NlaSvc - ok
17:46:15.0457 0x169c [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
17:46:15.0472 0x169c NMIndexingService - ok
17:46:15.0504 0x169c [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:46:15.0507 0x169c Npfs - ok
17:46:15.0534 0x169c [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
17:46:15.0538 0x169c nsi - ok
17:46:15.0555 0x169c [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:46:15.0557 0x169c nsiproxy - ok
17:46:15.0653 0x169c [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:46:15.0683 0x169c Ntfs - ok
17:46:15.0720 0x169c [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
17:46:15.0722 0x169c ntrigdigi - ok
17:46:15.0731 0x169c [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
17:46:15.0733 0x169c Null - ok
17:46:15.0764 0x169c [ 723931A765E8CDDF7FFCB42F5A72CE79, 207A113E5240F71976BA314CF375E261E4345D4AAB24C39D2B5670FA9D318318 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys
17:46:15.0767 0x169c NVHDA - ok
17:46:16.0111 0x169c [ 99A7CD6662DB4E32F75A641C5D080DB3, CD55329F2B210914687DE0F172F3BC3AA039EAD7ECB8E31BFA35C9EEEFBE53A9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:46:16.0277 0x169c nvlddmkm - ok
17:46:16.0362 0x169c [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:46:16.0366 0x169c nvraid - ok
17:46:16.0379 0x169c [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:46:16.0381 0x169c nvstor - ok
17:46:16.0411 0x169c [ 3DFD9B00AAF472042E6D4FA8CCB74EFD, 00250091A3E5A818831646D9292A1F2B79AA00666198C4BE511D9470B364C62A ] nvsvc C:\Windows\system32\nvvsvc.exe
17:46:16.0419 0x169c nvsvc - ok
17:46:16.0441 0x169c [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:46:16.0445 0x169c nv_agp - ok
17:46:16.0451 0x169c NwlnkFlt - ok
17:46:16.0459 0x169c NwlnkFwd - ok
17:46:16.0580 0x169c [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:46:16.0592 0x169c odserv - ok
17:46:16.0611 0x169c [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:46:16.0614 0x169c ohci1394 - ok
17:46:16.0662 0x169c [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:46:16.0666 0x169c ose - ok
17:46:16.0726 0x169c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
17:46:16.0746 0x169c p2pimsvc - ok
17:46:16.0782 0x169c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
17:46:16.0801 0x169c p2psvc - ok
17:46:16.0821 0x169c [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
17:46:16.0824 0x169c Parport - ok
17:46:16.0877 0x169c [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:46:16.0879 0x169c partmgr - ok
17:46:16.0895 0x169c [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
17:46:16.0897 0x169c Parvdm - ok
17:46:16.0929 0x169c [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
17:46:16.0935 0x169c PcaSvc - ok
17:46:16.0977 0x169c [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
17:46:16.0982 0x169c pci - ok
17:46:16.0995 0x169c [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
17:46:16.0996 0x169c pciide - ok
17:46:17.0018 0x169c [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:46:17.0024 0x169c pcmcia - ok
17:46:17.0089 0x169c [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:46:17.0114 0x169c PEAUTH - ok
17:46:17.0199 0x169c [ F433B5AA6DBAC3C8626EEFAF134E4763, 128B218EC0C7D66B53A11C573A1A44244097EFABC597688EA1D2A21303DB432F ] PhilCap C:\Windows\system32\DRIVERS\PhilCap.sys
17:46:17.0225 0x169c PhilCap - ok
17:46:17.0303 0x169c [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
17:46:17.0347 0x169c pla - ok
17:46:17.0383 0x169c [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
17:46:17.0387 0x169c PLFlash DeviceIoControl Service - ok
17:46:17.0433 0x169c [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:46:17.0443 0x169c PlugPlay - ok
17:46:17.0519 0x169c [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:46:17.0524 0x169c Pml Driver HPZ12 - ok
17:46:17.0587 0x169c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
17:46:17.0614 0x169c PNRPAutoReg - ok
17:46:17.0665 0x169c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
17:46:17.0692 0x169c PNRPsvc - ok
17:46:17.0737 0x169c [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:46:17.0752 0x169c PolicyAgent - ok
17:46:17.0801 0x169c [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:46:17.0804 0x169c PptpMiniport - ok
17:46:17.0823 0x169c [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
17:46:17.0826 0x169c Processor - ok
17:46:17.0878 0x169c [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
17:46:17.0887 0x169c ProfSvc - ok
17:46:17.0907 0x169c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
17:46:17.0910 0x169c ProtectedStorage - ok
17:46:17.0944 0x169c [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] ProtexisLicensing C:\Windows\system32\PSIService.exe
17:46:17.0954 0x169c ProtexisLicensing - ok
17:46:17.0984 0x169c [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
17:46:17.0988 0x169c PSched - ok
17:46:18.0023 0x169c [ 49452BFCEC22F36A7A9B9C2181BC3042, C01A2005E9897B142FF9BC6155770F70C19725C425E48D14239195E81E2E42D0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
17:46:18.0026 0x169c PxHelp20 - ok
17:46:18.0110 0x169c [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:46:18.0151 0x169c ql2300 - ok
17:46:18.0180 0x169c [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:46:18.0185 0x169c ql40xx - ok
17:46:18.0221 0x169c [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
17:46:18.0231 0x169c QWAVE - ok
17:46:18.0251 0x169c [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:46:18.0253 0x169c QWAVEdrv - ok
17:46:18.0261 0x169c [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:46:18.0263 0x169c RasAcd - ok
17:46:18.0278 0x169c [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
17:46:18.0283 0x169c RasAuto - ok
17:46:18.0304 0x169c [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:46:18.0307 0x169c Rasl2tp - ok
17:46:18.0349 0x169c [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
17:46:18.0359 0x169c RasMan - ok
17:46:18.0388 0x169c [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:46:18.0390 0x169c RasPppoe - ok
17:46:18.0423 0x169c [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:46:18.0426 0x169c RasSstp - ok
17:46:18.0448 0x169c [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:46:18.0456 0x169c rdbss - ok
17:46:18.0478 0x169c [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:46:18.0479 0x169c RDPCDD - ok
17:46:18.0507 0x169c [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
17:46:18.0516 0x169c rdpdr - ok
17:46:18.0540 0x169c [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:46:18.0541 0x169c RDPENCDD - ok
17:46:18.0602 0x169c [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:46:18.0606 0x169c RDPWD - ok
17:46:18.0631 0x169c [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
17:46:18.0634 0x169c RemoteAccess - ok
17:46:18.0661 0x169c [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:46:18.0666 0x169c RemoteRegistry - ok
17:46:18.0697 0x169c [ 0797F6AE018D3F992A1B8DF37BBF1786, E43A1B6CE316B157CE2C6C9780AD3698931C3E0BE5CE3B094B18847B83FF6D8C ] resetWinService C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe
17:46:18.0699 0x169c resetWinService - ok
17:46:18.0763 0x169c [ 805AE1F90C64758D19AAA001CF8CBA12, 28E389FD9D8106D922AAD0FF93107C4C2900565480ACD9E909D8C134E39E39A1 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
17:46:18.0769 0x169c RichVideo - ok
17:46:18.0802 0x169c [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
17:46:18.0804 0x169c RpcLocator - ok
17:46:18.0851 0x169c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
17:46:18.0866 0x169c RpcSs - ok
17:46:18.0907 0x169c [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:46:18.0910 0x169c rspndr - ok
17:46:18.0972 0x169c [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
17:46:18.0980 0x169c RTL8169 - ok
17:46:19.0019 0x169c [ 4501C8FE11DF3192FB68D0D595EA94CC, 2EAD1B58C12E72F95580F5A32CFE24874A7CB667AC21DF46B876629579648A68 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
17:46:19.0022 0x169c RTSTOR - ok
17:46:19.0030 0x169c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
17:46:19.0032 0x169c SamSs - ok
17:46:19.0056 0x169c [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:46:19.0059 0x169c sbp2port - ok
17:46:19.0087 0x169c [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:46:19.0093 0x169c SCardSvr - ok
17:46:19.0176 0x169c [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
17:46:19.0195 0x169c Schedule - ok
17:46:19.0228 0x169c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
17:46:19.0230 0x169c SCPolicySvc - ok
17:46:19.0262 0x169c [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:46:19.0269 0x169c SDRSVC - ok
17:46:19.0283 0x169c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:46:19.0285 0x169c secdrv - ok
17:46:19.0294 0x169c [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
17:46:19.0298 0x169c seclogon - ok
17:46:19.0307 0x169c [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
17:46:19.0311 0x169c SENS - ok
17:46:19.0325 0x169c [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
17:46:19.0327 0x169c Serenum - ok
17:46:19.0342 0x169c [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
17:46:19.0345 0x169c Serial - ok
17:46:19.0357 0x169c [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:46:19.0359 0x169c sermouse - ok
17:46:19.0386 0x169c [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
17:46:19.0391 0x169c SessionEnv - ok
17:46:19.0408 0x169c [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:46:19.0410 0x169c sffdisk - ok
17:46:19.0423 0x169c [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:46:19.0425 0x169c sffp_mmc - ok
17:46:19.0432 0x169c [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:46:19.0433 0x169c sffp_sd - ok
17:46:19.0444 0x169c [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:46:19.0446 0x169c sfloppy - ok
17:46:19.0508 0x169c [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:46:19.0521 0x169c SharedAccess - ok
17:46:19.0580 0x169c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:46:19.0590 0x169c ShellHWDetection - ok
17:46:19.0606 0x169c [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
17:46:19.0609 0x169c sisagp - ok
17:46:19.0620 0x169c [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
17:46:19.0623 0x169c SiSRaid2 - ok
17:46:19.0640 0x169c [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:46:19.0643 0x169c SiSRaid4 - ok
17:46:19.0714 0x169c [ A9C057A9463C25490CF99EA8DF8A4B35, 8F4D1C40D0F17EDBF84ED455B8946F782C7552383F0A07E410A9B6CFF7F51D63 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
17:46:19.0723 0x169c SkypeUpdate - ok
17:46:19.0986 0x169c [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
17:46:20.0082 0x169c slsvc - ok
17:46:20.0155 0x169c [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
17:46:20.0160 0x169c SLUINotify - ok
17:46:20.0205 0x169c [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:46:20.0208 0x169c Smb - ok
17:46:20.0243 0x169c [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:46:20.0246 0x169c SNMPTRAP - ok
17:46:20.0289 0x169c [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
17:46:20.0291 0x169c spldr - ok
17:46:20.0320 0x169c [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
17:46:20.0327 0x169c Spooler - ok
17:46:20.0375 0x169c [ 86EBD8B1F23E743AAD21F4D5B4D40985, 8FA4DFDAE15712266B878C364FEFDB63CB30A3DCC25F83CDFE8C8AB3AE864BE6 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
17:46:20.0383 0x169c SQLBrowser - ok
17:46:20.0419 0x169c [ D89083C4EB02DACA8F944B0E05E57F9D, F96416B5877C280B4EE088A83956E0202F82DC5EACDEEFF06D5979FFFAA9FA74 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
17:46:20.0423 0x169c SQLWriter - ok
17:46:20.0476 0x169c [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
17:46:20.0488 0x169c srv - ok
17:46:20.0538 0x169c [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:46:20.0544 0x169c srv2 - ok
17:46:20.0574 0x169c [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:46:20.0579 0x169c srvnet - ok
17:46:20.0607 0x169c [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:46:20.0617 0x169c SSDPSRV - ok
17:46:20.0668 0x169c [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
17:46:20.0671 0x169c ssmdrv - ok
17:46:20.0696 0x169c [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:46:20.0705 0x169c SstpSvc - ok
17:46:20.0741 0x169c [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
17:46:20.0743 0x169c StillCam - ok
17:46:20.0799 0x169c [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
17:46:20.0820 0x169c stisvc - ok
17:46:20.0846 0x169c [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:46:20.0848 0x169c swenum - ok
17:46:20.0898 0x169c [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
17:46:20.0913 0x169c swprv - ok
17:46:20.0930 0x169c [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
17:46:20.0933 0x169c Symc8xx - ok
17:46:20.0943 0x169c [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
17:46:20.0946 0x169c Sym_hi - ok
17:46:20.0967 0x169c [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
17:46:20.0971 0x169c Sym_u3 - ok
17:46:21.0007 0x169c [ CB01162BD6DD7B26D4CC6DCAC780E39C, A1A2CDB368B57787934F6ABAEBE1A171A0147E688528FA5337331BF7BBB7D80C ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:46:21.0013 0x169c SynTP - ok
17:46:21.0067 0x169c [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
17:46:21.0085 0x169c SysMain - ok
17:46:21.0113 0x169c [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:46:21.0118 0x169c TabletInputService - ok
17:46:21.0153 0x169c [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:46:21.0162 0x169c TapiSrv - ok
17:46:21.0180 0x169c [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
17:46:21.0185 0x169c TBS - ok
17:46:21.0271 0x169c [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:46:21.0297 0x169c Tcpip - ok
17:46:21.0357 0x169c [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
17:46:21.0387 0x169c Tcpip6 - ok
17:46:21.0456 0x169c [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:46:21.0458 0x169c tcpipreg - ok
17:46:21.0487 0x169c [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:46:21.0489 0x169c TDPIPE - ok
17:46:21.0501 0x169c [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:46:21.0503 0x169c TDTCP - ok
17:46:21.0560 0x169c [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:46:21.0563 0x169c tdx - ok
17:46:21.0596 0x169c [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:46:21.0598 0x169c TermDD - ok
17:46:21.0659 0x169c [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
17:46:21.0674 0x169c TermService - ok
17:46:21.0705 0x169c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
17:46:21.0718 0x169c Themes - ok
17:46:21.0731 0x169c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
17:46:21.0736 0x169c THREADORDER - ok
17:46:21.0773 0x169c [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
17:46:21.0779 0x169c TrkWks - ok
17:46:21.0835 0x169c [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:46:21.0837 0x169c TrustedInstaller - ok
17:46:21.0891 0x169c [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:46:21.0893 0x169c tssecsrv - ok
17:46:21.0995 0x169c [ 6EB2DC366A0D69FF7295ADF7C4253475, 949BBC873CEE86D8C7FC6E47A21E5104E545C440CA3466C95B1EC9BFEC9A9DB1 ] TuneUp.Defrag C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
17:46:22.0007 0x169c TuneUp.Defrag - ok
17:46:22.0093 0x169c [ 38556055313BC87C21457E000BBAECA2, 44E88519AE1E5C4E29795093BA00369651AE22C21C5B6778D8F35421FC532844 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
17:46:22.0130 0x169c TuneUp.UtilitiesSvc - ok
17:46:22.0172 0x169c [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
17:46:22.0173 0x169c TuneUpUtilitiesDrv - ok
17:46:22.0205 0x169c [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
17:46:22.0207 0x169c tunmp - ok
17:46:22.0262 0x169c [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:46:22.0264 0x169c tunnel - ok
17:46:22.0281 0x169c [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:46:22.0284 0x169c uagp35 - ok
17:46:22.0322 0x169c [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:46:22.0329 0x169c udfs - ok
17:46:22.0366 0x169c [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:46:22.0370 0x169c UI0Detect - ok
17:46:22.0392 0x169c [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:46:22.0395 0x169c uliagpkx - ok
17:46:22.0410 0x169c [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
17:46:22.0417 0x169c uliahci - ok
17:46:22.0437 0x169c [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
17:46:22.0440 0x169c UlSata - ok
17:46:22.0460 0x169c [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
17:46:22.0464 0x169c ulsata2 - ok
17:46:22.0483 0x169c [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:46:22.0485 0x169c umbus - ok
17:46:22.0509 0x169c [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
17:46:22.0520 0x169c upnphost - ok
17:46:22.0579 0x169c [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:46:22.0582 0x169c usbccgp - ok
17:46:22.0596 0x169c [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:46:22.0599 0x169c usbcir - ok
17:46:22.0630 0x169c [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:46:22.0633 0x169c usbehci - ok
17:46:22.0667 0x169c [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:46:22.0675 0x169c usbhub - ok
17:46:22.0693 0x169c [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:46:22.0695 0x169c usbohci - ok
17:46:22.0732 0x169c [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:46:22.0734 0x169c usbprint - ok
17:46:22.0782 0x169c [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:46:22.0784 0x169c usbscan - ok
17:46:22.0802 0x169c [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:46:22.0806 0x169c USBSTOR - ok
17:46:22.0822 0x169c [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:46:22.0824 0x169c usbuhci - ok
17:46:22.0875 0x169c [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:46:22.0880 0x169c usbvideo - ok
17:46:22.0903 0x169c [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
17:46:22.0907 0x169c UxSms - ok
17:46:22.0955 0x169c [ 5BCE34CFE78E80DDE4FD1F3249565BBB, 5C6D1CF7769495748DF15010F87091BF150F4702778C9E02E60E2C41C7A298AF ] UxTuneUp C:\Windows\System32\uxtuneup.dll
17:46:22.0960 0x169c UxTuneUp - ok
17:46:23.0007 0x169c [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
17:46:23.0025 0x169c vds - ok
17:46:23.0058 0x169c [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:46:23.0061 0x169c vga - ok
17:46:23.0075 0x169c [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:46:23.0078 0x169c VgaSave - ok
17:46:23.0097 0x169c [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
17:46:23.0101 0x169c viaagp - ok
17:46:23.0117 0x169c [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
17:46:23.0120 0x169c ViaC7 - ok
17:46:23.0141 0x169c [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
17:46:23.0143 0x169c viaide - ok
17:46:23.0162 0x169c [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:46:23.0165 0x169c volmgr - ok
17:46:23.0217 0x169c [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:46:23.0229 0x169c volmgrx - ok
17:46:23.0286 0x169c [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:46:23.0295 0x169c volsnap - ok
17:46:23.0316 0x169c [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:46:23.0323 0x169c vsmraid - ok
17:46:23.0390 0x169c [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
17:46:23.0433 0x169c VSS - ok
17:46:23.0488 0x169c [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
17:46:23.0503 0x169c W32Time - ok
17:46:23.0529 0x169c [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:46:23.0532 0x169c WacomPen - ok
17:46:23.0554 0x169c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
17:46:23.0557 0x169c Wanarp - ok
17:46:23.0566 0x169c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:46:23.0570 0x169c Wanarpv6 - ok
17:46:23.0603 0x169c [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:46:23.0623 0x169c wcncsvc - ok
17:46:23.0667 0x169c [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:46:23.0673 0x169c WcsPlugInService - ok
17:46:23.0696 0x169c [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
17:46:23.0698 0x169c Wd - ok
17:46:23.0770 0x169c [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:46:23.0791 0x169c Wdf01000 - ok
17:46:23.0814 0x169c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:46:23.0821 0x169c WdiServiceHost - ok
17:46:23.0829 0x169c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:46:23.0837 0x169c WdiSystemHost - ok
17:46:23.0879 0x169c [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
17:46:23.0890 0x169c WebClient - ok
17:46:23.0925 0x169c [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:46:23.0935 0x169c Wecsvc - ok
17:46:23.0963 0x169c [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:46:23.0970 0x169c wercplsupport - ok
17:46:24.0001 0x169c [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
17:46:24.0011 0x169c WerSvc - ok
17:46:24.0068 0x169c [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
17:46:24.0078 0x169c WinDefend - ok
17:46:24.0091 0x169c WinHttpAutoProxySvc - ok
17:46:24.0137 0x169c [ 602FC1B19D72745C95E535932E54B932, 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070 ] WINIO C:\Windows\system32\WinIo.sys
17:46:24.0142 0x169c Suspicious file ( Forged ): C:\Windows\system32\WinIo.sys. Real md5: 602FC1B19D72745C95E535932E54B932, sha256: 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070, fake md5: C5E3A2EE25A3D86761AF7971EAEAC40C, fake sha256: BA71302E06AECC4E69DDA5F22CE37F081B32796E5A42C80775C0F830031761BA
17:46:24.0143 0x169c WINIO - detected ForgedFile.Multi.Generic ( 1 )
17:46:26.0656 0x169c WINIO ( ForgedFile.Multi.Generic ) - warning
17:46:26.0657 0x169c Force sending object to P2P due to detect: WINIO
17:46:29.0170 0x169c Object send P2P result: true
17:46:31.0627 0x169c [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:46:31.0633 0x169c Winmgmt - ok
17:46:31.0758 0x169c [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
17:46:31.0790 0x169c WinRM - ok
17:46:31.0867 0x169c [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:46:31.0882 0x169c Wlansvc - ok
17:46:31.0942 0x169c [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe
17:46:31.0949 0x169c WLSetupSvc - ok
17:46:31.0990 0x169c [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:46:31.0991 0x169c WmiAcpi - ok
17:46:32.0069 0x169c [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:46:32.0073 0x169c wmiApSrv - ok
17:46:32.0137 0x169c [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
17:46:32.0162 0x169c WMPNetworkSvc - ok
17:46:32.0175 0x169c [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:46:32.0181 0x169c WPCSvc - ok
17:46:32.0222 0x169c [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:46:32.0227 0x169c WPDBusEnum - ok
17:46:32.0277 0x169c [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
17:46:32.0279 0x169c WpdUsb - ok
17:46:32.0440 0x169c [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:46:32.0457 0x169c WPFFontCache_v0400 - ok
17:46:32.0492 0x169c [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:46:32.0493 0x169c ws2ifsl - ok
17:46:32.0531 0x169c [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
17:46:32.0535 0x169c wscsvc - ok
17:46:32.0540 0x169c WSearch - ok
17:46:32.0678 0x169c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
17:46:32.0733 0x169c wuauserv - ok
17:46:32.0796 0x169c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:46:32.0799 0x169c WudfPf - ok
17:46:32.0816 0x169c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:46:32.0822 0x169c WUDFRd - ok
17:46:32.0866 0x169c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:46:32.0871 0x169c wudfsvc - ok
17:46:32.0897 0x169c [ AB2D77BF7222B007717ABB61B15F9AE2, 9495D99385C91115583F6CD0E26B39D4F04FB3472EA53ADE51DA03043468A896 ] X10Hid C:\Windows\system32\Drivers\x10hid.sys
17:46:32.0898 0x169c X10Hid - ok
17:46:32.0963 0x169c [ 5A0C788C5BC5F2C993CB60940ADCF95E, FEEC158466040A6528E7FC8D33706B50D2F03479E0B62DF8F06B69A1A850A9FB ] x10nets C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
17:46:32.0966 0x169c x10nets - ok
17:46:32.0979 0x169c ================ Scan global
|
|
06.03.2015, 18:04
| #14 |
| | DHL Mail bekommen, Link geklickt und jetzt Jetzt Teil 2 Code:
ATTFilter =============================== 17:46:33.0027 0x169c [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll 17:46:33.0088 0x169c [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll 17:46:33.0124 0x169c [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll 17:46:33.0176 0x169c [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe 17:46:33.0186 0x169c [ Global ] - ok 17:46:33.0187 0x169c ================ Scan MBR ================================== 17:46:33.0200 0x169c [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 17:46:33.0602 0x169c \Device\Harddisk0\DR0 - ok 17:46:33.0602 0x169c ================ Scan VBR ================================== 17:46:33.0607 0x169c [ 6DA75C813C2C36F893E01B504C35D536 ] \Device\Harddisk0\DR0\Partition1 17:46:33.0642 0x169c \Device\Harddisk0\DR0\Partition1 - ok 17:46:33.0647 0x169c [ 94103B76038FEC54196125683201477F ] \Device\Harddisk0\DR0\Partition2 17:46:33.0649 0x169c \Device\Harddisk0\DR0\Partition2 - ok 17:46:33.0652 0x169c ================ Scan generic autorun ====================== 17:46:33.0721 0x169c [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe 17:46:33.0756 0x169c Windows Defender - ok 17:46:33.0835 0x169c [ 12DC04601A333610E043A0DF55EC2A5A, 4725CEC7BE8857E304976BE04A424C4F7703BF394CBFECFCED014097B93F2954 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 17:46:33.0864 0x169c SynTPEnh - ok 17:46:33.0983 0x169c [ FF473648E7B1B37C7F3249A6549FAC72, 632825038F5975415D129CCB84682243360821857D250D7827E21A08DE855BCC ] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe 17:46:33.0988 0x169c hpqSRMon - ok 17:46:34.0099 0x169c [ 085F30DB0B38903940A4141E675BDC08, 3ABFB79C850D2B1976DB4DEF69AA031C4E18B5E240316908DDD16DEA4050365A ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 17:46:34.0124 0x169c avgnt - ok 17:46:34.0415 0x169c [ 1A1DBAE836F402FE2A0556985113786F, BCA295E91E2F5EE2486D8EA1B6477C69136BED743E810C765CDE713A72BDE552 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 17:46:34.0553 0x169c RtHDVCpl - ok 17:46:34.0664 0x169c [ 8CB85437667AEDBD8497D2CA85F4A17A, 196F1F3208674944C554624E5DA6A614F8070467E32F0C1BAB9AC409783E5804 ] C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe 17:46:34.0667 0x169c Avira Systray - ok 17:46:34.0758 0x169c [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 17:46:34.0790 0x169c Sidebar - ok 17:46:34.0796 0x169c WindowsWelcomeCenter - ok 17:46:34.0858 0x169c [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 17:46:34.0890 0x169c Sidebar - ok 17:46:34.0895 0x169c WindowsWelcomeCenter - ok 17:46:34.0953 0x169c [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe 17:46:34.0985 0x169c Sidebar - ok 17:46:35.0189 0x169c [ FFC09EB41CAD53162461046130AD51DB, 264B08AB1D729BEA1390A936A00D5A3F6402A8177A3BAD53EFB609228020B473 ] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe 17:46:35.0270 0x169c HP ENVY 4500 series (NET) - ok 17:46:35.0329 0x169c [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe 17:46:35.0332 0x169c ehTray.exe - ok 17:46:35.0464 0x169c [ E4EFC2CDC71E0698CB81A4D60C3FADFF, 0278452E7FE903053A470EFA0C7813E9C43517EC0C8C9E42C5A9A3C99146D06B ] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe 17:46:35.0502 0x169c IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - ok 17:46:35.0780 0x169c [ 2E4EE47FBD9BB663A5220DBC38579986, 264A48ADA13FEC6F49F34C3118ABFFEEB569B631E9EE35168FE19DE78AF9C7C8 ] C:\Program Files\CCleaner\CCleaner.exe 17:46:35.0889 0x169c CCleaner Monitoring - ok 17:46:35.0957 0x169c Skype - ok 17:46:36.0031 0x169c [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe 17:46:36.0057 0x169c Sidebar - ok 17:46:36.0064 0x169c WindowsWelcomeCenter - ok 17:46:36.0143 0x169c [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe 17:46:36.0148 0x169c ISUSPM - ok 17:46:36.0174 0x169c [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe 17:46:36.0177 0x169c ehTray.exe - ok 17:46:36.0193 0x169c [ 35937EAD711207544E219C2A19A78A7D, EE6E5EAE00F577D7C3FFB8C0D8EE484552A337CEAA27FCB107174A9879FE7362 ] C:\Program Files\Windows Media Player\WMPNSCFG.exe 17:46:36.0198 0x169c WMPNSCFG - ok 17:46:36.0199 0x169c Waiting for KSN requests completion. In queue: 36 17:46:37.0199 0x169c Waiting for KSN requests completion. In queue: 36 17:46:38.0199 0x169c Waiting for KSN requests completion. In queue: 36 17:46:39.0235 0x169c AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.8.650 ), 0x41000 ( enabled : updated ) 17:46:39.0245 0x169c Win FW state via NFP2: enabled 17:46:41.0617 0x169c ============================================================ 17:46:41.0617 0x169c Scan finished 17:46:41.0617 0x169c ============================================================ 17:46:41.0632 0x1d4c Detected object count: 1 17:46:41.0632 0x1d4c Actual detected object count: 1 17:46:46.0432 0x1d4c C:\Windows\system32\WinIo.sys - copied to quarantine 17:46:46.0433 0x1d4c WINIO ( ForgedFile.Multi.Generic ) - User select action: Quarantine 17:47:00.0189 0x1ac0 ============================================================ 17:47:00.0189 0x1ac0 Scan started 17:47:00.0189 0x1ac0 Mode: Manual; 17:47:00.0189 0x1ac0 ============================================================ 17:47:00.0189 0x1ac0 KSN ping started 17:47:02.0547 0x1ac0 KSN ping finished: true 17:47:02.0974 0x1ac0 ================ Scan system memory ======================== 17:47:02.0974 0x1ac0 System memory - ok 17:47:02.0974 0x1ac0 ================ Scan services ============================= 17:47:03.0174 0x1ac0 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys 17:47:03.0181 0x1ac0 ACPI - ok 17:47:03.0270 0x1ac0 [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 17:47:03.0277 0x1ac0 AdobeFlashPlayerUpdateSvc - ok 17:47:03.0329 0x1ac0 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 17:47:03.0344 0x1ac0 adp94xx - ok 17:47:03.0374 0x1ac0 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys 17:47:03.0386 0x1ac0 adpahci - ok 17:47:03.0402 0x1ac0 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 17:47:03.0406 0x1ac0 adpu160m - ok 17:47:03.0431 0x1ac0 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 17:47:03.0438 0x1ac0 adpu320 - ok 17:47:03.0475 0x1ac0 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 17:47:03.0477 0x1ac0 AeLookupSvc - ok 17:47:03.0523 0x1ac0 [ 3CD15EBAA1D68BC18CE14A26683BC1EC, 5A39CEE48A7CB7B3D2401278D6443B1BA9F043C36A3DADE15AAB30D040A88C3B ] AF15BDA C:\Windows\system32\DRIVERS\AF15BDA.sys 17:47:03.0535 0x1ac0 AF15BDA - ok 17:47:03.0596 0x1ac0 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys 17:47:03.0607 0x1ac0 AFD - ok 17:47:03.0629 0x1ac0 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys 17:47:03.0632 0x1ac0 agp440 - ok 17:47:03.0649 0x1ac0 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys 17:47:03.0653 0x1ac0 aic78xx - ok 17:47:03.0668 0x1ac0 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe 17:47:03.0671 0x1ac0 ALG - ok 17:47:03.0690 0x1ac0 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys 17:47:03.0691 0x1ac0 aliide - ok 17:47:03.0710 0x1ac0 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys 17:47:03.0712 0x1ac0 amdagp - ok 17:47:03.0730 0x1ac0 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys 17:47:03.0732 0x1ac0 amdide - ok 17:47:03.0751 0x1ac0 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 17:47:03.0753 0x1ac0 AmdK7 - ok 17:47:03.0768 0x1ac0 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 17:47:03.0770 0x1ac0 AmdK8 - ok 17:47:03.0875 0x1ac0 [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe 17:47:03.0891 0x1ac0 AntiVirSchedulerService - ok 17:47:03.0957 0x1ac0 [ 963F57EDF1A5C72AC66173F3B7CB329B, 0934361B0A55F4C082D70F264FAB5D36BAC482C135275AE552D442E64B3D5C1D ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe 17:47:03.0973 0x1ac0 AntiVirService - ok 17:47:04.0022 0x1ac0 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll 17:47:04.0024 0x1ac0 Appinfo - ok 17:47:04.0067 0x1ac0 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys 17:47:04.0070 0x1ac0 arc - ok 17:47:04.0111 0x1ac0 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys 17:47:04.0115 0x1ac0 arcsas - ok 17:47:04.0228 0x1ac0 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe 17:47:04.0231 0x1ac0 aspnet_state - ok 17:47:04.0249 0x1ac0 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 17:47:04.0251 0x1ac0 AsyncMac - ok 17:47:04.0271 0x1ac0 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys 17:47:04.0273 0x1ac0 atapi - ok 17:47:04.0340 0x1ac0 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 17:47:04.0352 0x1ac0 AudioEndpointBuilder - ok 17:47:04.0384 0x1ac0 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll 17:47:04.0397 0x1ac0 Audiosrv - ok 17:47:04.0414 0x1ac0 [ AF5DA81B19AFA730F1E5246AD81D140A, 532951071F56896A3B5D47874C14D996C8620EA02F87D4BA21B083EC804FB166 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 17:47:04.0419 0x1ac0 avgntflt - ok 17:47:04.0460 0x1ac0 [ A5674637BCA212D9FE136ADFA04C9857, 95F3632EBB041C539816D285EBE1F379D46A4187379C69D4683D9F4DECBDB80C ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 17:47:04.0466 0x1ac0 avipbb - ok 17:47:04.0533 0x1ac0 [ ABDAEBEB09E98D13D765A0C57F3FAF88, F9E5F9A13E983BEAF32FA53736FB188280AAA44740696DFB95B8C10E8FEA466D ] Avira.OE.ServiceHost C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe 17:47:04.0541 0x1ac0 Avira.OE.ServiceHost - ok 17:47:04.0558 0x1ac0 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 17:47:04.0560 0x1ac0 avkmgr - ok 17:47:04.0606 0x1ac0 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys 17:47:04.0607 0x1ac0 Beep - ok 17:47:04.0659 0x1ac0 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll 17:47:04.0672 0x1ac0 BFE - ok 17:47:04.0745 0x1ac0 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll 17:47:04.0776 0x1ac0 BITS - ok 17:47:04.0805 0x1ac0 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 17:47:04.0807 0x1ac0 blbdrive - ok 17:47:04.0847 0x1ac0 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 17:47:04.0850 0x1ac0 bowser - ok 17:47:04.0868 0x1ac0 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 17:47:04.0869 0x1ac0 BrFiltLo - ok 17:47:04.0885 0x1ac0 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 17:47:04.0886 0x1ac0 BrFiltUp - ok 17:47:04.0927 0x1ac0 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll 17:47:04.0932 0x1ac0 Browser - ok 17:47:04.0954 0x1ac0 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys 17:47:04.0958 0x1ac0 Brserid - ok 17:47:04.0981 0x1ac0 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 17:47:04.0984 0x1ac0 BrSerWdm - ok 17:47:05.0000 0x1ac0 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 17:47:05.0001 0x1ac0 BrUsbMdm - ok 17:47:05.0020 0x1ac0 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 17:47:05.0021 0x1ac0 BrUsbSer - ok 17:47:05.0041 0x1ac0 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 17:47:05.0043 0x1ac0 BTHMODEM - ok 17:47:05.0152 0x1ac0 [ BC46E036AD1FEC3C56583D2802E68EFE, A925A2245D78EE3B1790B60354A58DCB487D96494DDD16F9ACEA88870993CE1F ] Cam5607 C:\Windows\system32\Drivers\BisonC07.sys 17:47:05.0206 0x1ac0 Cam5607 - ok 17:47:05.0231 0x1ac0 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 17:47:05.0234 0x1ac0 cdfs - ok 17:47:05.0260 0x1ac0 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 17:47:05.0263 0x1ac0 cdrom - ok 17:47:05.0289 0x1ac0 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll 17:47:05.0292 0x1ac0 CertPropSvc - ok 17:47:05.0309 0x1ac0 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys 17:47:05.0311 0x1ac0 circlass - ok 17:47:05.0348 0x1ac0 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys 17:47:05.0357 0x1ac0 CLFS - ok 17:47:05.0421 0x1ac0 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 17:47:05.0425 0x1ac0 clr_optimization_v2.0.50727_32 - ok 17:47:05.0475 0x1ac0 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 17:47:05.0480 0x1ac0 clr_optimization_v4.0.30319_32 - ok 17:47:05.0514 0x1ac0 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 17:47:05.0516 0x1ac0 CmBatt - ok 17:47:05.0538 0x1ac0 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys 17:47:05.0539 0x1ac0 cmdide - ok 17:47:05.0547 0x1ac0 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 17:47:05.0549 0x1ac0 Compbatt - ok 17:47:05.0556 0x1ac0 COMSysApp - ok 17:47:05.0579 0x1ac0 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 17:47:05.0580 0x1ac0 crcdisk - ok 17:47:05.0598 0x1ac0 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys 17:47:05.0601 0x1ac0 Crusoe - ok 17:47:05.0660 0x1ac0 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll 17:47:05.0666 0x1ac0 CryptSvc - ok 17:47:05.0732 0x1ac0 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll 17:47:05.0756 0x1ac0 DcomLaunch - ok 17:47:05.0801 0x1ac0 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 17:47:05.0804 0x1ac0 DfsC - ok 17:47:05.0924 0x1ac0 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe 17:47:05.0982 0x1ac0 DFSR - ok 17:47:06.0094 0x1ac0 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll 17:47:06.0100 0x1ac0 Dhcp - ok 17:47:06.0121 0x1ac0 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys 17:47:06.0123 0x1ac0 disk - ok 17:47:06.0164 0x1ac0 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll 17:47:06.0167 0x1ac0 Dnscache - ok 17:47:06.0209 0x1ac0 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll 17:47:06.0214 0x1ac0 dot3svc - ok 17:47:06.0246 0x1ac0 [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys 17:47:06.0249 0x1ac0 Dot4 - ok 17:47:06.0266 0x1ac0 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys 17:47:06.0267 0x1ac0 Dot4Print - ok 17:47:06.0293 0x1ac0 [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys 17:47:06.0294 0x1ac0 dot4usb - ok 17:47:06.0328 0x1ac0 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll 17:47:06.0333 0x1ac0 DPS - ok 17:47:06.0362 0x1ac0 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 17:47:06.0363 0x1ac0 drmkaud - ok 17:47:06.0435 0x1ac0 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 17:47:06.0453 0x1ac0 DXGKrnl - ok 17:47:06.0486 0x1ac0 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 17:47:06.0490 0x1ac0 E1G60 - ok 17:47:06.0505 0x1ac0 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll 17:47:06.0509 0x1ac0 EapHost - ok 17:47:06.0537 0x1ac0 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys 17:47:06.0541 0x1ac0 Ecache - ok 17:47:06.0611 0x1ac0 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe 17:47:06.0620 0x1ac0 ehRecvr - ok 17:47:06.0639 0x1ac0 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe 17:47:06.0644 0x1ac0 ehSched - ok 17:47:06.0656 0x1ac0 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll 17:47:06.0657 0x1ac0 ehstart - ok 17:47:06.0693 0x1ac0 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys 17:47:06.0702 0x1ac0 elxstor - ok 17:47:06.0756 0x1ac0 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 17:47:06.0773 0x1ac0 EMDMgmt - ok 17:47:06.0795 0x1ac0 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys 17:47:06.0796 0x1ac0 ErrDev - ok 17:47:06.0849 0x1ac0 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll 17:47:06.0858 0x1ac0 EventSystem - ok 17:47:06.0893 0x1ac0 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys 17:47:06.0898 0x1ac0 exfat - ok 17:47:06.0951 0x1ac0 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys 17:47:06.0957 0x1ac0 fastfat - ok 17:47:06.0976 0x1ac0 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys 17:47:06.0977 0x1ac0 fdc - ok 17:47:06.0996 0x1ac0 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll 17:47:06.0999 0x1ac0 fdPHost - ok 17:47:07.0016 0x1ac0 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll 17:47:07.0019 0x1ac0 FDResPub - ok 17:47:07.0042 0x1ac0 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 17:47:07.0045 0x1ac0 FileInfo - ok 17:47:07.0073 0x1ac0 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 17:47:07.0076 0x1ac0 Filetrace - ok 17:47:07.0093 0x1ac0 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 17:47:07.0094 0x1ac0 flpydisk - ok 17:47:07.0122 0x1ac0 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 17:47:07.0130 0x1ac0 FltMgr - ok 17:47:07.0217 0x1ac0 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll 17:47:07.0248 0x1ac0 FontCache - ok 17:47:07.0297 0x1ac0 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 17:47:07.0300 0x1ac0 FontCache3.0.0.0 - ok 17:47:07.0340 0x1ac0 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 17:47:07.0342 0x1ac0 Fs_Rec - ok 17:47:07.0359 0x1ac0 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 17:47:07.0363 0x1ac0 gagp30kx - ok 17:47:07.0422 0x1ac0 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll 17:47:07.0446 0x1ac0 gpsvc - ok 17:47:07.0553 0x1ac0 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe 17:47:07.0557 0x1ac0 gupdate - ok 17:47:07.0568 0x1ac0 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe 17:47:07.0572 0x1ac0 gupdatem - ok 17:47:07.0605 0x1ac0 [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 17:47:07.0612 0x1ac0 gusvc - ok 17:47:07.0657 0x1ac0 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 17:47:07.0666 0x1ac0 HdAudAddService - ok 17:47:07.0715 0x1ac0 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 17:47:07.0736 0x1ac0 HDAudBus - ok 17:47:07.0757 0x1ac0 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys 17:47:07.0759 0x1ac0 HidBth - ok 17:47:07.0780 0x1ac0 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys 17:47:07.0781 0x1ac0 HidIr - ok 17:47:07.0811 0x1ac0 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll 17:47:07.0814 0x1ac0 hidserv - ok 17:47:07.0842 0x1ac0 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 17:47:07.0843 0x1ac0 HidUsb - ok 17:47:07.0872 0x1ac0 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll 17:47:07.0877 0x1ac0 hkmsvc - ok 17:47:07.0892 0x1ac0 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 17:47:07.0895 0x1ac0 HpCISSs - ok 17:47:07.0999 0x1ac0 [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll 17:47:08.0008 0x1ac0 hpqcxs08 - ok 17:47:08.0039 0x1ac0 [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll 17:47:08.0044 0x1ac0 hpqddsvc - ok 17:47:08.0122 0x1ac0 [ 75F122CDCA3C71BD09089F2CA824B796, E5060B1532666632C3384FADAFE4680CDCDFFA075298EA95B186A69F467B8F77 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL 17:47:08.0146 0x1ac0 HPSLPSVC - ok 17:47:08.0215 0x1ac0 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys 17:47:08.0231 0x1ac0 HTTP - ok 17:47:08.0261 0x1ac0 [ 19E6885A061011D8DABE8F64498423FA, 62B5680D7E7F26BEE7DDDA8F51434CC3219C840779E37072BA37E55B2EE82E3B ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys 17:47:08.0265 0x1ac0 hwdatacard - ok 17:47:08.0281 0x1ac0 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys 17:47:08.0283 0x1ac0 i2omp - ok 17:47:08.0300 0x1ac0 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 17:47:08.0303 0x1ac0 i8042prt - ok 17:47:08.0331 0x1ac0 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 17:47:08.0340 0x1ac0 iaStorV - ok 17:47:08.0421 0x1ac0 [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe 17:47:08.0425 0x1ac0 IDriverT - ok 17:47:08.0545 0x1ac0 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 17:47:08.0576 0x1ac0 idsvc - ok 17:47:08.0592 0x1ac0 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys 17:47:08.0594 0x1ac0 iirsp - ok 17:47:08.0657 0x1ac0 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll 17:47:08.0675 0x1ac0 IKEEXT - ok 17:47:08.0826 0x1ac0 [ 56AC584FE02E0C1D5924892562CBD572, E0DAF8C3A16925F0F259ABCBA18F2B55FA5DF17DD9AB8FE231A476807BA62504 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys 17:47:08.0899 0x1ac0 IntcAzAudAddService - ok 17:47:08.0987 0x1ac0 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys 17:47:08.0988 0x1ac0 intelide - ok 17:47:09.0002 0x1ac0 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 17:47:09.0004 0x1ac0 intelppm - ok 17:47:09.0041 0x1ac0 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 17:47:09.0045 0x1ac0 IPBusEnum - ok 17:47:09.0076 0x1ac0 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 17:47:09.0078 0x1ac0 IpFilterDriver - ok 17:47:09.0125 0x1ac0 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 17:47:09.0132 0x1ac0 iphlpsvc - ok 17:47:09.0139 0x1ac0 IpInIp - ok 17:47:09.0156 0x1ac0 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 17:47:09.0159 0x1ac0 IPMIDRV - ok 17:47:09.0178 0x1ac0 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 17:47:09.0182 0x1ac0 IPNAT - ok 17:47:09.0200 0x1ac0 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys 17:47:09.0201 0x1ac0 IRENUM - ok 17:47:09.0223 0x1ac0 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys 17:47:09.0225 0x1ac0 isapnp - ok 17:47:09.0270 0x1ac0 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 17:47:09.0275 0x1ac0 iScsiPrt - ok 17:47:09.0287 0x1ac0 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 17:47:09.0289 0x1ac0 iteatapi - ok 17:47:09.0301 0x1ac0 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys 17:47:09.0303 0x1ac0 iteraid - ok 17:47:09.0324 0x1ac0 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 17:47:09.0325 0x1ac0 kbdclass - ok 17:47:09.0358 0x1ac0 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 17:47:09.0359 0x1ac0 kbdhid - ok 17:47:09.0382 0x1ac0 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe 17:47:09.0384 0x1ac0 KeyIso - ok 17:47:09.0437 0x1ac0 [ 5035EDF1F2E72F78BB1EC5BD9B97463F, 8AFAD580A96F002FFB22761B65D4B414917895C45B11B53089BB3E0331995EF7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 17:47:09.0447 0x1ac0 KSecDD - ok 17:47:09.0485 0x1ac0 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll 17:47:09.0495 0x1ac0 KtmRm - ok 17:47:09.0537 0x1ac0 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll 17:47:09.0542 0x1ac0 LanmanServer - ok 17:47:09.0576 0x1ac0 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 17:47:09.0583 0x1ac0 LanmanWorkstation - ok 17:47:09.0597 0x1ac0 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 17:47:09.0598 0x1ac0 lltdio - ok 17:47:09.0637 0x1ac0 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll 17:47:09.0643 0x1ac0 lltdsvc - ok 17:47:09.0655 0x1ac0 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll 17:47:09.0658 0x1ac0 lmhosts - ok 17:47:09.0676 0x1ac0 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 17:47:09.0679 0x1ac0 LSI_FC - ok 17:47:09.0696 0x1ac0 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 17:47:09.0698 0x1ac0 LSI_SAS - ok 17:47:09.0720 0x1ac0 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 17:47:09.0723 0x1ac0 LSI_SCSI - ok 17:47:09.0736 0x1ac0 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys 17:47:09.0739 0x1ac0 luafv - ok 17:47:09.0784 0x1ac0 [ C3ED67C05F3923F9A8FEBA7A996337E1, 0A092A22339A9BFFAAB4A8A7C795480C058C0360C743BDF5D5DE042825F464A7 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe 17:47:09.0789 0x1ac0 McComponentHostService - ok 17:47:09.0802 0x1ac0 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 17:47:09.0805 0x1ac0 Mcx2Svc - ok 17:47:09.0825 0x1ac0 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys 17:47:09.0826 0x1ac0 megasas - ok 17:47:09.0862 0x1ac0 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys 17:47:09.0870 0x1ac0 MegaSR - ok 17:47:09.0915 0x1ac0 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll 17:47:09.0919 0x1ac0 MMCSS - ok 17:47:09.0935 0x1ac0 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys 17:47:09.0937 0x1ac0 Modem - ok 17:47:09.0957 0x1ac0 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 17:47:09.0959 0x1ac0 monitor - ok 17:47:09.0975 0x1ac0 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 17:47:09.0978 0x1ac0 mouclass - ok 17:47:09.0988 0x1ac0 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 17:47:09.0989 0x1ac0 mouhid - ok 17:47:10.0015 0x1ac0 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 17:47:10.0017 0x1ac0 MountMgr - ok 17:47:10.0109 0x1ac0 [ 81E8AF6407EC3F41908FE37F054353EA, 756C7656ED68AEAE4225E952ED1CED0717264D3378DB8DF0B2D70B6EBC67C62F ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 17:47:10.0114 0x1ac0 MozillaMaintenance - ok 17:47:10.0134 0x1ac0 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys 17:47:10.0137 0x1ac0 mpio - ok 17:47:10.0157 0x1ac0 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 17:47:10.0160 0x1ac0 mpsdrv - ok 17:47:10.0199 0x1ac0 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll 17:47:10.0211 0x1ac0 MpsSvc - ok 17:47:10.0259 0x1ac0 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 17:47:10.0261 0x1ac0 Mraid35x - ok 17:47:10.0319 0x1ac0 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 17:47:10.0323 0x1ac0 MRxDAV - ok 17:47:10.0373 0x1ac0 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 17:47:10.0377 0x1ac0 mrxsmb - ok 17:47:10.0436 0x1ac0 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 17:47:10.0444 0x1ac0 mrxsmb10 - ok 17:47:10.0457 0x1ac0 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 17:47:10.0461 0x1ac0 mrxsmb20 - ok 17:47:10.0497 0x1ac0 [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys 17:47:10.0498 0x1ac0 msahci - ok 17:47:10.0520 0x1ac0 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys 17:47:10.0526 0x1ac0 msdsm - ok 17:47:10.0551 0x1ac0 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe 17:47:10.0556 0x1ac0 MSDTC - ok 17:47:10.0568 0x1ac0 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys 17:47:10.0570 0x1ac0 Msfs - ok 17:47:10.0595 0x1ac0 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 17:47:10.0596 0x1ac0 msisadrv - ok 17:47:10.0630 0x1ac0 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 17:47:10.0635 0x1ac0 MSiSCSI - ok 17:47:10.0641 0x1ac0 msiserver - ok 17:47:10.0662 0x1ac0 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 17:47:10.0664 0x1ac0 MSKSSRV - ok 17:47:10.0670 0x1ac0 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 17:47:10.0672 0x1ac0 MSPCLOCK - ok 17:47:10.0684 0x1ac0 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 17:47:10.0685 0x1ac0 MSPQM - ok 17:47:10.0723 0x1ac0 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 17:47:10.0729 0x1ac0 MsRPC - ok 17:47:10.0744 0x1ac0 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 17:47:10.0746 0x1ac0 mssmbios - ok 17:47:10.0804 0x1ac0 MSSQL$SQLEXPRESS - ok 17:47:10.0872 0x1ac0 [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe 17:47:10.0874 0x1ac0 MSSQLServerADHelper - ok 17:47:10.0891 0x1ac0 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 17:47:10.0893 0x1ac0 MSTEE - ok 17:47:10.0902 0x1ac0 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys 17:47:10.0905 0x1ac0 Mup - ok 17:47:10.0953 0x1ac0 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll 17:47:10.0968 0x1ac0 napagent - ok 17:47:11.0016 0x1ac0 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 17:47:11.0022 0x1ac0 NativeWifiP - ok 17:47:11.0082 0x1ac0 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys 17:47:11.0102 0x1ac0 NDIS - ok 17:47:11.0122 0x1ac0 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 17:47:11.0124 0x1ac0 NdisTapi - ok 17:47:11.0144 0x1ac0 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 17:47:11.0146 0x1ac0 Ndisuio - ok 17:47:11.0163 0x1ac0 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 17:47:11.0169 0x1ac0 NdisWan - ok 17:47:11.0188 0x1ac0 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 17:47:11.0191 0x1ac0 NDProxy - ok 17:47:11.0290 0x1ac0 [ 40D7D0A208EE863BCA8D89E299216F15, 4686E416A80D883B7C6CBE21E8D8D6C814D16DC48495F8ACFE7B4664560CA5E3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe 17:47:11.0315 0x1ac0 Nero BackItUp Scheduler 3 - ok 17:47:11.0361 0x1ac0 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll 17:47:11.0363 0x1ac0 Net Driver HPZ12 - ok 17:47:11.0379 0x1ac0 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 17:47:11.0381 0x1ac0 NetBIOS - ok 17:47:11.0418 0x1ac0 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys 17:47:11.0424 0x1ac0 netbt - ok 17:47:11.0439 0x1ac0 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe 17:47:11.0442 0x1ac0 Netlogon - ok 17:47:11.0480 0x1ac0 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll 17:47:11.0490 0x1ac0 Netman - ok 17:47:11.0532 0x1ac0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 17:47:11.0537 0x1ac0 NetMsmqActivator - ok 17:47:11.0555 0x1ac0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 17:47:11.0559 0x1ac0 NetPipeActivator - ok 17:47:11.0586 0x1ac0 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll 17:47:11.0594 0x1ac0 netprofm - ok 17:47:11.0635 0x1ac0 [ 3F540B257442CC1A2220DD8F73AC1C77, 469A0E6AFAE17B6E0886A646D13C394BC02048E0C05863B2AFAE2E61F0664A7A ] netr28 C:\Windows\system32\DRIVERS\netr28.sys 17:47:11.0646 0x1ac0 netr28 - ok 17:47:11.0656 0x1ac0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 17:47:11.0661 0x1ac0 NetTcpActivator - ok 17:47:11.0685 0x1ac0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 17:47:11.0690 0x1ac0 NetTcpPortSharing - ok 17:47:11.0714 0x1ac0 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 17:47:11.0716 0x1ac0 nfrd960 - ok 17:47:11.0745 0x1ac0 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll 17:47:11.0753 0x1ac0 NlaSvc - ok 17:47:11.0862 0x1ac0 [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe 17:47:11.0881 0x1ac0 NMIndexingService - ok 17:47:11.0905 0x1ac0 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys 17:47:11.0907 0x1ac0 Npfs - ok 17:47:11.0935 0x1ac0 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll 17:47:11.0939 0x1ac0 nsi - ok 17:47:11.0956 0x1ac0 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 17:47:11.0958 0x1ac0 nsiproxy - ok 17:47:12.0062 0x1ac0 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 17:47:12.0102 0x1ac0 Ntfs - ok 17:47:12.0142 0x1ac0 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 17:47:12.0144 0x1ac0 ntrigdigi - ok 17:47:12.0154 0x1ac0 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys 17:47:12.0156 0x1ac0 Null - ok 17:47:12.0187 0x1ac0 [ 723931A765E8CDDF7FFCB42F5A72CE79, 207A113E5240F71976BA314CF375E261E4345D4AAB24C39D2B5670FA9D318318 ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys 17:47:12.0190 0x1ac0 NVHDA - ok 17:47:12.0571 0x1ac0 [ 99A7CD6662DB4E32F75A641C5D080DB3, CD55329F2B210914687DE0F172F3BC3AA039EAD7ECB8E31BFA35C9EEEFBE53A9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 17:47:12.0752 0x1ac0 nvlddmkm - ok 17:47:12.0830 0x1ac0 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys 17:47:12.0832 0x1ac0 nvraid - ok 17:47:12.0846 0x1ac0 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys 17:47:12.0848 0x1ac0 nvstor - ok 17:47:12.0877 0x1ac0 [ 3DFD9B00AAF472042E6D4FA8CCB74EFD, 00250091A3E5A818831646D9292A1F2B79AA00666198C4BE511D9470B364C62A ] nvsvc C:\Windows\system32\nvvsvc.exe 17:47:12.0883 0x1ac0 nvsvc - ok 17:47:12.0908 0x1ac0 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 17:47:12.0911 0x1ac0 nv_agp - ok 17:47:12.0916 0x1ac0 NwlnkFlt - ok 17:47:12.0923 0x1ac0 NwlnkFwd - ok 17:47:13.0036 0x1ac0 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 17:47:13.0048 0x1ac0 odserv - ok 17:47:13.0067 0x1ac0 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 17:47:13.0069 0x1ac0 ohci1394 - ok 17:47:13.0117 0x1ac0 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 17:47:13.0121 0x1ac0 ose - ok 17:47:13.0179 0x1ac0 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll 17:47:13.0195 0x1ac0 p2pimsvc - ok 17:47:13.0235 0x1ac0 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll 17:47:13.0251 0x1ac0 p2psvc - ok 17:47:13.0266 0x1ac0 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys 17:47:13.0268 0x1ac0 Parport - ok 17:47:13.0321 0x1ac0 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys 17:47:13.0323 0x1ac0 partmgr - ok 17:47:13.0340 0x1ac0 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 17:47:13.0341 0x1ac0 Parvdm - ok 17:47:13.0373 0x1ac0 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll 17:47:13.0377 0x1ac0 PcaSvc - ok 17:47:13.0411 0x1ac0 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys 17:47:13.0416 0x1ac0 pci - ok 17:47:13.0429 0x1ac0 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys 17:47:13.0430 0x1ac0 pciide - ok 17:47:13.0452 0x1ac0 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 17:47:13.0457 0x1ac0 pcmcia - ok 17:47:13.0514 0x1ac0 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 17:47:13.0539 0x1ac0 PEAUTH - ok 17:47:13.0621 0x1ac0 [ F433B5AA6DBAC3C8626EEFAF134E4763, 128B218EC0C7D66B53A11C573A1A44244097EFABC597688EA1D2A21303DB432F ] PhilCap C:\Windows\system32\DRIVERS\PhilCap.sys 17:47:13.0646 0x1ac0 PhilCap - ok 17:47:13.0726 0x1ac0 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll 17:47:13.0769 0x1ac0 pla - ok 17:47:13.0805 0x1ac0 [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe 17:47:13.0808 0x1ac0 PLFlash DeviceIoControl Service - ok 17:47:13.0844 0x1ac0 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll 17:47:13.0851 0x1ac0 PlugPlay - ok 17:47:13.0897 0x1ac0 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll 17:47:13.0899 0x1ac0 Pml Driver HPZ12 - ok 17:47:13.0935 0x1ac0 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 17:47:13.0951 0x1ac0 PNRPAutoReg - ok 17:47:13.0990 0x1ac0 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll 17:47:14.0007 0x1ac0 PNRPsvc - ok 17:47:14.0043 0x1ac0 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 17:47:14.0053 0x1ac0 PolicyAgent - ok 17:47:14.0100 0x1ac0 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 17:47:14.0102 0x1ac0 PptpMiniport - ok 17:47:14.0122 0x1ac0 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys 17:47:14.0124 0x1ac0 Processor - ok 17:47:14.0176 0x1ac0 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll 17:47:14.0182 0x1ac0 ProfSvc - ok 17:47:14.0196 0x1ac0 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe 17:47:14.0198 0x1ac0 ProtectedStorage - ok 17:47:14.0232 0x1ac0 [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] ProtexisLicensing C:\Windows\system32\PSIService.exe 17:47:14.0239 0x1ac0 ProtexisLicensing - ok 17:47:14.0262 0x1ac0 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys 17:47:14.0265 0x1ac0 PSched - ok 17:47:14.0301 0x1ac0 [ 49452BFCEC22F36A7A9B9C2181BC3042, C01A2005E9897B142FF9BC6155770F70C19725C425E48D14239195E81E2E42D0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys 17:47:14.0303 0x1ac0 PxHelp20 - ok 17:47:14.0368 0x1ac0 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys 17:47:14.0399 0x1ac0 ql2300 - ok 17:47:14.0425 0x1ac0 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 17:47:14.0429 0x1ac0 ql40xx - ok 17:47:14.0466 0x1ac0 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll 17:47:14.0475 0x1ac0 QWAVE - ok 17:47:14.0496 0x1ac0 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 17:47:14.0498 0x1ac0 QWAVEdrv - ok 17:47:14.0508 0x1ac0 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 17:47:14.0511 0x1ac0 RasAcd - ok 17:47:14.0534 0x1ac0 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll 17:47:14.0539 0x1ac0 RasAuto - ok 17:47:14.0560 0x1ac0 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 17:47:14.0563 0x1ac0 Rasl2tp - ok 17:47:14.0594 0x1ac0 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll 17:47:14.0604 0x1ac0 RasMan - ok 17:47:14.0632 0x1ac0 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 17:47:14.0634 0x1ac0 RasPppoe - ok 17:47:14.0668 0x1ac0 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 17:47:14.0670 0x1ac0 RasSstp - ok 17:47:14.0717 0x1ac0 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 17:47:14.0726 0x1ac0 rdbss - ok 17:47:14.0756 0x1ac0 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 17:47:14.0758 0x1ac0 RDPCDD - ok 17:47:14.0787 0x1ac0 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 17:47:14.0796 0x1ac0 rdpdr - ok 17:47:14.0803 0x1ac0 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 17:47:14.0805 0x1ac0 RDPENCDD - ok 17:47:14.0871 0x1ac0 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 17:47:14.0879 0x1ac0 RDPWD - ok 17:47:14.0910 0x1ac0 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll 17:47:14.0915 0x1ac0 RemoteAccess - ok 17:47:14.0952 0x1ac0 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll 17:47:14.0960 0x1ac0 RemoteRegistry - ok 17:47:14.0998 0x1ac0 [ 0797F6AE018D3F992A1B8DF37BBF1786, E43A1B6CE316B157CE2C6C9780AD3698931C3E0BE5CE3B094B18847B83FF6D8C ] resetWinService C:\Program Files\Realtek Semiconductor Corp\Realtek USB 2.0 Card Reader\reset.exe 17:47:15.0001 0x1ac0 resetWinService - ok 17:47:15.0066 0x1ac0 [ 805AE1F90C64758D19AAA001CF8CBA12, 28E389FD9D8106D922AAD0FF93107C4C2900565480ACD9E909D8C134E39E39A1 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe 17:47:15.0075 0x1ac0 RichVideo - ok 17:47:15.0114 0x1ac0 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe 17:47:15.0117 0x1ac0 RpcLocator - ok 17:47:15.0180 0x1ac0 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll 17:47:15.0204 0x1ac0 RpcSs - ok 17:47:15.0241 0x1ac0 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 17:47:15.0245 0x1ac0 rspndr - ok 17:47:15.0297 0x1ac0 [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys 17:47:15.0307 0x1ac0 RTL8169 - ok 17:47:15.0342 0x1ac0 [ 4501C8FE11DF3192FB68D0D595EA94CC, 2EAD1B58C12E72F95580F5A32CFE24874A7CB667AC21DF46B876629579648A68 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS 17:47:15.0345 0x1ac0 RTSTOR - ok 17:47:15.0364 0x1ac0 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe 17:47:15.0367 0x1ac0 SamSs - ok 17:47:15.0390 0x1ac0 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 17:47:15.0394 0x1ac0 sbp2port - ok 17:47:15.0422 0x1ac0 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll 17:47:15.0429 0x1ac0 SCardSvr - ok 17:47:15.0503 0x1ac0 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll 17:47:15.0531 0x1ac0 Schedule - ok 17:47:15.0562 0x1ac0 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll 17:47:15.0565 0x1ac0 SCPolicySvc - ok 17:47:15.0607 0x1ac0 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll 17:47:15.0613 0x1ac0 SDRSVC - ok 17:47:15.0628 0x1ac0 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys 17:47:15.0630 0x1ac0 secdrv - ok 17:47:15.0639 0x1ac0 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll 17:47:15.0643 0x1ac0 seclogon - ok 17:47:15.0650 0x1ac0 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll 17:47:15.0655 0x1ac0 SENS - ok 17:47:15.0670 0x1ac0 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys 17:47:15.0671 0x1ac0 Serenum - ok 17:47:15.0687 0x1ac0 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys 17:47:15.0690 0x1ac0 Serial - ok 17:47:15.0702 0x1ac0 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys 17:47:15.0703 0x1ac0 sermouse - ok 17:47:15.0731 0x1ac0 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll 17:47:15.0736 0x1ac0 SessionEnv - ok 17:47:15.0753 0x1ac0 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 17:47:15.0754 0x1ac0 sffdisk - ok 17:47:15.0768 0x1ac0 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 17:47:15.0769 0x1ac0 sffp_mmc - ok 17:47:15.0776 0x1ac0 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 17:47:15.0777 0x1ac0 sffp_sd - ok 17:47:15.0789 0x1ac0 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 17:47:15.0790 0x1ac0 sfloppy - ok 17:47:15.0827 0x1ac0 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll 17:47:15.0837 0x1ac0 SharedAccess - ok 17:47:15.0892 0x1ac0 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 17:47:15.0902 0x1ac0 ShellHWDetection - ok 17:47:15.0918 0x1ac0 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys 17:47:15.0921 0x1ac0 sisagp - ok 17:47:15.0944 0x1ac0 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 17:47:15.0946 0x1ac0 SiSRaid2 - ok 17:47:15.0963 0x1ac0 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 17:47:15.0966 0x1ac0 SiSRaid4 - ok 17:47:16.0025 0x1ac0 [ A9C057A9463C25490CF99EA8DF8A4B35, 8F4D1C40D0F17EDBF84ED455B8946F782C7552383F0A07E410A9B6CFF7F51D63 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 17:47:16.0035 0x1ac0 SkypeUpdate - ok 17:47:16.0212 0x1ac0 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe 17:47:16.0303 0x1ac0 slsvc - ok 17:47:16.0378 0x1ac0 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll 17:47:16.0382 0x1ac0 SLUINotify - ok 17:47:16.0416 0x1ac0 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys 17:47:16.0418 0x1ac0 Smb - ok 17:47:16.0454 0x1ac0 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 17:47:16.0457 0x1ac0 SNMPTRAP - ok 17:47:16.0467 0x1ac0 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys 17:47:16.0469 0x1ac0 spldr - ok 17:47:16.0498 0x1ac0 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe 17:47:16.0504 0x1ac0 Spooler - ok 17:47:16.0552 0x1ac0 [ 86EBD8B1F23E743AAD21F4D5B4D40985, 8FA4DFDAE15712266B878C364FEFDB63CB30A3DCC25F83CDFE8C8AB3AE864BE6 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe 17:47:16.0558 0x1ac0 SQLBrowser - ok 17:47:16.0585 0x1ac0 [ D89083C4EB02DACA8F944B0E05E57F9D, F96416B5877C280B4EE088A83956E0202F82DC5EACDEEFF06D5979FFFAA9FA74 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe 17:47:16.0587 0x1ac0 SQLWriter - ok 17:47:16.0640 0x1ac0 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys 17:47:16.0649 0x1ac0 srv - ok 17:47:16.0681 0x1ac0 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 17:47:16.0686 0x1ac0 srv2 - ok 17:47:16.0718 0x1ac0 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 17:47:16.0722 0x1ac0 srvnet - ok 17:47:16.0739 0x1ac0 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 17:47:16.0747 0x1ac0 SSDPSRV - ok 17:47:16.0791 0x1ac0 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys 17:47:16.0792 0x1ac0 ssmdrv - ok 17:47:16.0806 0x1ac0 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll 17:47:16.0813 0x1ac0 SstpSvc - ok 17:47:16.0852 0x1ac0 [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 17:47:16.0853 0x1ac0 StillCam - ok 17:47:16.0896 0x1ac0 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll 17:47:16.0912 0x1ac0 stisvc - ok 17:47:16.0935 0x1ac0 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys 17:47:16.0936 0x1ac0 swenum - ok 17:47:16.0985 0x1ac0 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll 17:47:16.0997 0x1ac0 swprv - ok 17:47:17.0019 0x1ac0 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 17:47:17.0021 0x1ac0 Symc8xx - ok 17:47:17.0032 0x1ac0 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 17:47:17.0034 0x1ac0 Sym_hi - ok 17:47:17.0045 0x1ac0 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 17:47:17.0047 0x1ac0 Sym_u3 - ok 17:47:17.0085 0x1ac0 [ CB01162BD6DD7B26D4CC6DCAC780E39C, A1A2CDB368B57787934F6ABAEBE1A171A0147E688528FA5337331BF7BBB7D80C ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 17:47:17.0091 0x1ac0 SynTP - ok 17:47:17.0161 0x1ac0 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll 17:47:17.0182 0x1ac0 SysMain - ok 17:47:17.0213 0x1ac0 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll 17:47:17.0218 0x1ac0 TabletInputService - ok 17:47:17.0253 0x1ac0 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll 17:47:17.0264 0x1ac0 TapiSrv - ok 17:47:17.0280 0x1ac0 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll 17:47:17.0285 0x1ac0 TBS - ok 17:47:17.0372 0x1ac0 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 17:47:17.0397 0x1ac0 Tcpip - ok 17:47:17.0450 0x1ac0 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 17:47:17.0475 0x1ac0 Tcpip6 - ok 17:47:17.0534 0x1ac0 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 17:47:17.0536 0x1ac0 tcpipreg - ok 17:47:17.0565 0x1ac0 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 17:47:17.0567 0x1ac0 TDPIPE - ok 17:47:17.0580 0x1ac0 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 17:47:17.0581 0x1ac0 TDTCP - ok 17:47:17.0616 0x1ac0 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 17:47:17.0620 0x1ac0 tdx - ok 17:47:17.0652 0x1ac0 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 17:47:17.0655 0x1ac0 TermDD - ok 17:47:17.0719 0x1ac0 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll 17:47:17.0739 0x1ac0 TermService - ok 17:47:17.0773 0x1ac0 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll 17:47:17.0785 0x1ac0 Themes - ok 17:47:17.0798 0x1ac0 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll 17:47:17.0803 0x1ac0 THREADORDER - ok 17:47:17.0840 0x1ac0 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll 17:47:17.0848 0x1ac0 TrkWks - ok 17:47:17.0902 0x1ac0 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 17:47:17.0904 0x1ac0 TrustedInstaller - ok 17:47:17.0958 0x1ac0 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 17:47:17.0960 0x1ac0 tssecsrv - ok 17:47:18.0054 0x1ac0 [ 6EB2DC366A0D69FF7295ADF7C4253475, 949BBC873CEE86D8C7FC6E47A21E5104E545C440CA3466C95B1EC9BFEC9A9DB1 ] TuneUp.Defrag C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe 17:47:18.0070 0x1ac0 TuneUp.Defrag - ok 17:47:18.0168 0x1ac0 [ 38556055313BC87C21457E000BBAECA2, 44E88519AE1E5C4E29795093BA00369651AE22C21C5B6778D8F35421FC532844 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe 17:47:18.0206 0x1ac0 TuneUp.UtilitiesSvc - ok 17:47:18.0250 0x1ac0 [ F2107C9D85EC0DF116939CCCE06AE697, 4608E3D0CA0B252130B4DF2505DB4D89635C327A343B470FCB81B8B02CD9FA44 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys 17:47:18.0251 0x1ac0 TuneUpUtilitiesDrv - ok 17:47:18.0283 0x1ac0 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 17:47:18.0285 0x1ac0 tunmp - ok 17:47:18.0340 0x1ac0 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 17:47:18.0343 0x1ac0 tunnel - ok 17:47:18.0360 0x1ac0 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 17:47:18.0363 0x1ac0 uagp35 - ok 17:47:18.0413 0x1ac0 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys 17:47:18.0422 0x1ac0 udfs - ok 17:47:18.0466 0x1ac0 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 17:47:18.0472 0x1ac0 UI0Detect - ok 17:47:18.0493 0x1ac0 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 17:47:18.0496 0x1ac0 uliagpkx - ok 17:47:18.0516 0x1ac0 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys 17:47:18.0526 0x1ac0 uliahci - ok 17:47:18.0549 0x1ac0 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys 17:47:18.0553 0x1ac0 UlSata - ok 17:47:18.0573 0x1ac0 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 17:47:18.0578 0x1ac0 ulsata2 - ok 17:47:18.0594 0x1ac0 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys 17:47:18.0597 0x1ac0 umbus - ok 17:47:18.0622 0x1ac0 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll 17:47:18.0635 0x1ac0 upnphost - ok 17:47:18.0691 0x1ac0 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 17:47:18.0694 0x1ac0 usbccgp - ok 17:47:18.0719 0x1ac0 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys 17:47:18.0722 0x1ac0 usbcir - ok 17:47:18.0753 0x1ac0 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 17:47:18.0755 0x1ac0 usbehci - ok 17:47:18.0778 0x1ac0 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 17:47:18.0786 0x1ac0 usbhub - ok 17:47:18.0804 0x1ac0 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys 17:47:18.0806 0x1ac0 usbohci - ok 17:47:18.0844 0x1ac0 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 17:47:18.0845 0x1ac0 usbprint - ok 17:47:18.0893 0x1ac0 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 17:47:18.0896 0x1ac0 usbscan - ok 17:47:18.0914 0x1ac0 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 17:47:18.0917 0x1ac0 USBSTOR - ok 17:47:18.0934 0x1ac0 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 17:47:18.0936 0x1ac0 usbuhci - ok 17:47:18.0999 0x1ac0 [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 17:47:19.0005 0x1ac0 usbvideo - ok 17:47:19.0037 0x1ac0 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll 17:47:19.0043 0x1ac0 UxSms - ok 17:47:19.0089 0x1ac0 [ 5BCE34CFE78E80DDE4FD1F3249565BBB, 5C6D1CF7769495748DF15010F87091BF150F4702778C9E02E60E2C41C7A298AF ] UxTuneUp C:\Windows\System32\uxtuneup.dll 17:47:19.0094 0x1ac0 UxTuneUp - ok 17:47:19.0141 0x1ac0 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe 17:47:19.0159 0x1ac0 vds - ok 17:47:19.0181 0x1ac0 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 17:47:19.0183 0x1ac0 vga - ok 17:47:19.0198 0x1ac0 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys 17:47:19.0200 0x1ac0 VgaSave - ok 17:47:19.0220 0x1ac0 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys 17:47:19.0223 0x1ac0 viaagp - ok 17:47:19.0240 0x1ac0 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys 17:47:19.0242 0x1ac0 ViaC7 - ok 17:47:19.0263 0x1ac0 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys 17:47:19.0265 0x1ac0 viaide - ok 17:47:19.0284 0x1ac0 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys 17:47:19.0287 0x1ac0 volmgr - ok 17:47:19.0340 0x1ac0 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 17:47:19.0352 0x1ac0 volmgrx - ok 17:47:19.0407 0x1ac0 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys 17:47:19.0413 0x1ac0 volsnap - ok 17:47:19.0438 0x1ac0 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 17:47:19.0442 0x1ac0 vsmraid - ok 17:47:19.0505 0x1ac0 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe 17:47:19.0539 0x1ac0 VSS - ok 17:47:19.0586 0x1ac0 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll 17:47:19.0597 0x1ac0 W32Time - ok 17:47:19.0619 0x1ac0 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 17:47:19.0620 0x1ac0 WacomPen - ok 17:47:19.0631 0x1ac0 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 17:47:19.0634 0x1ac0 Wanarp - ok 17:47:19.0640 0x1ac0 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 17:47:19.0644 0x1ac0 Wanarpv6 - ok 17:47:19.0678 0x1ac0 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll 17:47:19.0693 0x1ac0 wcncsvc - ok 17:47:19.0723 0x1ac0 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 17:47:19.0727 0x1ac0 WcsPlugInService - ok 17:47:19.0740 0x1ac0 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys 17:47:19.0742 0x1ac0 Wd - ok 17:47:19.0800 0x1ac0 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 17:47:19.0815 0x1ac0 Wdf01000 - ok 17:47:19.0836 0x1ac0 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll 17:47:19.0842 0x1ac0 WdiServiceHost - ok 17:47:19.0848 0x1ac0 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll 17:47:19.0854 0x1ac0 WdiSystemHost - ok 17:47:19.0899 0x1ac0 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll 17:47:19.0908 0x1ac0 WebClient - ok 17:47:19.0935 0x1ac0 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll 17:47:19.0943 0x1ac0 Wecsvc - ok 17:47:19.0974 0x1ac0 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll 17:47:19.0979 0x1ac0 wercplsupport - ok 17:47:20.0012 0x1ac0 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll 17:47:20.0019 0x1ac0 WerSvc - ok 17:47:20.0088 0x1ac0 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 17:47:20.0096 0x1ac0 WinDefend - ok 17:47:20.0108 0x1ac0 WinHttpAutoProxySvc - ok 17:47:20.0138 0x1ac0 [ 602FC1B19D72745C95E535932E54B932, 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070 ] WINIO C:\Windows\system32\WinIo.sys 17:47:20.0142 0x1ac0 Suspicious file ( Forged ): C:\Windows\system32\WinIo.sys. Real md5: 602FC1B19D72745C95E535932E54B932, sha256: 3FAA89D52597125F3C632798554796E461BF7B288704F247972CCB3D20FC4070, fake md5: C5E3A2EE25A3D86761AF7971EAEAC40C, fake sha256: BA71302E06AECC4E69DDA5F22CE37F081B32796E5A42C80775C0F830031761BA 17:47:20.0143 0x1ac0 WINIO - detected ForgedFile.Multi.Generic ( 1 ) 17:47:20.0143 0x1ac0 WINIO ( ForgedFile.Multi.Generic ) - warning 17:47:20.0143 0x1ac0 Force sending object to P2P due to detect: WINIO 17:47:33.0609 0x1ac0 Object send P2P result: true 17:47:36.0078 0x1ac0 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 17:47:36.0086 0x1ac0 Winmgmt - ok 17:47:36.0186 0x1ac0 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll 17:47:36.0236 0x1ac0 WinRM - ok 17:47:36.0413 0x1ac0 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll 17:47:36.0436 0x1ac0 Wlansvc - ok 17:47:36.0496 0x1ac0 [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe 17:47:36.0506 0x1ac0 WLSetupSvc - ok 17:47:36.0540 0x1ac0 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 17:47:36.0542 0x1ac0 WmiAcpi - ok 17:47:36.0587 0x1ac0 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 17:47:36.0593 0x1ac0 wmiApSrv - ok 17:47:36.0672 0x1ac0 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 17:47:36.0704 0x1ac0 WMPNetworkSvc - ok 17:47:36.0720 0x1ac0 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll 17:47:36.0729 0x1ac0 WPCSvc - ok 17:47:36.0762 0x1ac0 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 17:47:36.0770 0x1ac0 WPDBusEnum - ok 17:47:36.0820 0x1ac0 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 17:47:36.0822 0x1ac0 WpdUsb - ok 17:47:36.0944 0x1ac0 [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 17:47:36.0972 0x1ac0 WPFFontCache_v0400 - ok 17:47:36.0986 0x1ac0 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 17:47:36.0988 0x1ac0 ws2ifsl - ok 17:47:37.0026 0x1ac0 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll 17:47:37.0033 0x1ac0 wscsvc - ok 17:47:37.0040 0x1ac0 WSearch - ok 17:47:37.0172 0x1ac0 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll 17:47:37.0227 0x1ac0 wuauserv - ok 17:47:37.0279 0x1ac0 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 17:47:37.0282 0x1ac0 WudfPf - ok 17:47:37.0300 0x1ac0 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 17:47:37.0305 0x1ac0 WUDFRd - ok 17:47:37.0349 0x1ac0 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll 17:47:37.0354 0x1ac0 wudfsvc - ok 17:47:37.0380 0x1ac0 [ AB2D77BF7222B007717ABB61B15F9AE2, 9495D99385C91115583F6CD0E26B39D4F04FB3472EA53ADE51DA03043468A896 ] X10Hid C:\Windows\system32\Drivers\x10hid.sys 17:47:37.0381 0x1ac0 X10Hid - ok 17:47:37.0446 0x1ac0 [ 5A0C788C5BC5F2C993CB60940ADCF95E, FEEC158466040A6528E7FC8D33706B50D2F03479E0B62DF8F06B69A1A850A9FB ] x10nets C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe 17:47:37.0448 0x1ac0 x10nets - ok 17:47:37.0461 0x1ac0 ================ Scan global =============================== 17:47:37.0500 0x1ac0 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll 17:47:37.0564 0x1ac0 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll 17:47:37.0608 0x1ac0 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll 17:47:37.0662 0x1ac0 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe 17:47:37.0675 0x1ac0 [ Global ] - ok 17:47:37.0676 0x1ac0 ================ Scan MBR ================================== 17:47:37.0683 0x1ac0 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 17:47:38.0075 0x1ac0 \Device\Harddisk0\DR0 - ok 17:47:38.0075 0x1ac0 ================ Scan VBR ================================== 17:47:38.0080 0x1ac0 [ 6DA75C813C2C36F893E01B504C35D536 ] \Device\Harddisk0\DR0\Partition1 17:47:38.0114 0x1ac0 \Device\Harddisk0\DR0\Partition1 - ok 17:47:38.0119 0x1ac0 [ 94103B76038FEC54196125683201477F ] \Device\Harddisk0\DR0\Partition2 17:47:38.0121 0x1ac0 \Device\Harddisk0\DR0\Partition2 - ok 17:47:38.0123 0x1ac0 ================ Scan generic autorun ====================== 17:47:38.0193 0x1ac0 [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe 17:47:38.0228 0x1ac0 Windows Defender - ok 17:47:38.0328 0x1ac0 [ 12DC04601A333610E043A0DF55EC2A5A, 4725CEC7BE8857E304976BE04A424C4F7703BF394CBFECFCED014097B93F2954 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 17:47:38.0366 0x1ac0 SynTPEnh - ok 17:47:38.0478 0x1ac0 [ FF473648E7B1B37C7F3249A6549FAC72, 632825038F5975415D129CCB84682243360821857D250D7827E21A08DE855BCC ] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe 17:47:38.0485 0x1ac0 hpqSRMon - ok 17:47:38.0599 0x1ac0 [ 085F30DB0B38903940A4141E675BDC08, 3ABFB79C850D2B1976DB4DEF69AA031C4E18B5E240316908DDD16DEA4050365A ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 17:47:38.0624 0x1ac0 avgnt - ok 17:47:38.0959 0x1ac0 [ 1A1DBAE836F402FE2A0556985113786F, BCA295E91E2F5EE2486D8EA1B6477C69136BED743E810C765CDE713A72BDE552 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 17:47:39.0119 0x1ac0 RtHDVCpl - ok 17:47:39.0225 0x1ac0 [ 8CB85437667AEDBD8497D2CA85F4A17A, 196F1F3208674944C554624E5DA6A614F8070467E32F0C1BAB9AC409783E5804 ] C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe 17:47:39.0228 0x1ac0 Avira Systray - ok 17:47:39.0313 0x1ac0 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 17:47:39.0339 0x1ac0 Sidebar - ok 17:47:39.0346 0x1ac0 WindowsWelcomeCenter - ok 17:47:39.0401 0x1ac0 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe 17:47:39.0427 0x1ac0 Sidebar - ok 17:47:39.0435 0x1ac0 WindowsWelcomeCenter - ok 17:47:39.0485 0x1ac0 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe 17:47:39.0512 0x1ac0 Sidebar - ok 17:47:39.0705 0x1ac0 [ FFC09EB41CAD53162461046130AD51DB, 264B08AB1D729BEA1390A936A00D5A3F6402A8177A3BAD53EFB609228020B473 ] C:\Program Files\HP\HP ENVY 4500 series\Bin\ScanToPCActivationApp.exe 17:47:39.0756 0x1ac0 HP ENVY 4500 series (NET) - ok 17:47:39.0823 0x1ac0 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe 17:47:39.0826 0x1ac0 ehTray.exe - ok 17:47:39.0967 0x1ac0 [ E4EFC2CDC71E0698CB81A4D60C3FADFF, 0278452E7FE903053A470EFA0C7813E9C43517EC0C8C9E42C5A9A3C99146D06B ] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe 17:47:40.0015 0x1ac0 IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - ok 17:47:40.0261 0x1ac0 [ 2E4EE47FBD9BB663A5220DBC38579986, 264A48ADA13FEC6F49F34C3118ABFFEEB569B631E9EE35168FE19DE78AF9C7C8 ] C:\Program Files\CCleaner\CCleaner.exe 17:47:40.0378 0x1ac0 CCleaner Monitoring - ok 17:47:40.0463 0x1ac0 Skype - ok 17:47:40.0550 0x1ac0 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe 17:47:40.0583 0x1ac0 Sidebar - ok 17:47:40.0591 0x1ac0 WindowsWelcomeCenter - ok 17:47:40.0672 0x1ac0 [ 43D083268A0919F3527A2837390BAF63, 58B62697B01B8C9396271A64424178691FA85D4625DAF2AC8DE7F06A64F64C2A ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe 17:47:40.0678 0x1ac0 ISUSPM - ok 17:47:40.0702 0x1ac0 [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe 17:47:40.0706 0x1ac0 ehTray.exe - ok 17:47:40.0733 0x1ac0 [ 35937EAD711207544E219C2A19A78A7D, EE6E5EAE00F577D7C3FFB8C0D8EE484552A337CEAA27FCB107174A9879FE7362 ] C:\Program Files\Windows Media Player\WMPNSCFG.exe 17:47:40.0739 0x1ac0 WMPNSCFG - ok 17:47:40.0749 0x1ac0 AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.8.650 ), 0x41000 ( enabled : updated ) 17:47:40.0755 0x1ac0 Win FW state via NFP2: enabled 17:47:43.0117 0x1ac0 ============================================================ 17:47:43.0117 0x1ac0 Scan finished 17:47:43.0117 0x1ac0 ============================================================ 17:47:43.0127 0x1a80 Detected object count: 1 17:47:43.0127 0x1a80 Actual detected object count: 1 17:47:56.0597 0x1a80 C:\Windows\system32\WinIo.sys - copied to quarantine 17:47:56.0598 0x1a80 WINIO ( ForgedFile.Multi.Generic ) - User select action: Quarantine 17:48:05.0807 0x1f54 Deinitialize success |
|
07.03.2015, 12:55
| #15 |
| /// the machine /// TB-Ausbilder | DHL Mail bekommen, Link geklickt und jetzt hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu DHL Mail bekommen, Link geklickt und jetzt |
| abges, betreffend, desktop, dhl mail, ellung, firefox, geklickt, geladen, gen, geschlossen, gmer, heute, informationen, inter, intern, liebe, lieber, link, mail, mehrfach, natürlich, ordnung, rechner, sofort, veränderungen, zweimal |
Linear-Darstellung
