| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Vermutung an Trojaner oder VirusWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
08.02.2016, 09:55
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Vermutung an Trojaner oder Virus Was denn jetzt??? Du hast doch eben geschrieben, dass du auf den Cleanup Button gedrückt hast. Wenn nichts gefunden wurde, gibt es keine Funktion für den cleanup Button
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
08.02.2016, 10:00
| #17 |
 | Vermutung an Trojaner oder Virus Von nichts gefunden habe ich nichts geschrieben er hat schon was gefunden aber nach den neutstart könnte ich halt nichts mehr machen Weil Windos ja nicht mehr richtig funktioniert hat
__________________ |
|
08.02.2016, 10:05
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus Ist das nicht zu verstehen, dass man dir nur helfen kann, wenn die Helfer wissen, was MBAR da entfernt hat?
__________________
__________________ |
|
08.02.2016, 10:07
| #19 |
| | Vermutung an Trojaner oder Virus Doch schon aber wie soll man es posten wenn man aus irgendeinen Grund kein Internet mehr hat ich poste das log jetzt dann kannst Du/Sie es anschauen |
|
08.02.2016, 10:08
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus Indem du das Log auf einen anderen Rechner kopierst und von da aus postest.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.02.2016, 10:10
| #21 |
| | Vermutung an Trojaner oder VirusCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.07.03
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
07.02.2016 16:11:10
mbar-log-2016-02-07 (16-11-10).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 420573
Time elapsed: 25 minute(s), 35 second(s)
Memory Processes Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> 5968 -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MPC (Rogue.TechSupportScam) -> Delete on reboot. [3ca3322b5643da5c02a863eff70db54b]
Registry Values Detected: 1
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MPC|URLInfoAbout (Rogue.TechSupportScam) -> Data: hxxp://www.mpc.am -> Delete on reboot. [3ca3322b5643da5c02a863eff70db54b]
Registry Data Items Detected: 6
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{2A0CA051-E15A-4939-8D32-89D1DD26A106}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [a33cd08d6c2d1323a60286562cd825db]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3E2E42D7-2E89-460C-B08E-350755D98225}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [af30b1ac1d7c2610cbdd19c3c93b16ea]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [409fb0ad396085b1d0d828b425df649c]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{98BE0671-7976-4BAF-8258-EFCCADA692A5}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [914e2f2eedac94a2cbdd07d5c0448f71]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{F95E4EC2-A13B-4F79-B08D-35254E8D4413}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [3ea1e4792277d75ff3b5defee3211fe1]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{FDD3E933-4486-4DB4-AB7E-B2FD291C8D90}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [fae52637b7e2db5b8c1cbe1e51b302fe]
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
Files Detected: 21
C:\WINDOWS\SYSTEM32\drivers\MPCKpt.sys (PUP.Optional.MorePowerfulCleaner) -> Delete on reboot. [9352aeb710669624da3f1a4057336a3e]
C:\Windows\System32\dnsapi.dll (Trojan.FilePatch.DNSApi) -> Replace on reboot. [6302a732e50d4e55c861c731404eb823]
C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \dnsapi.dll-k.mbam (Trojan.FilePatch.DNSApi) -> Delete on reboot. [429d0c5105940d29a0e0639deb15a65a]
C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \dnsapi.dll-u.mbam (Trojan.FilePatch.DNSApi) -> Delete on reboot. [37a8560762375ed86c14b44cb05053ad]
C:\Windows\SysWOW64\dnsapi.dll (Trojan.FilePatch.DNSApi) -> Replace on reboot. [259986ab2a2dac5f0f5a8a9abada0bdc]
C:\Users\Dom\AppData\Local\Temp\RarSFX0\keygen__7516_il735365.exe (Trojan.Jaik) -> Delete on reboot. [a837c994fc9d181e8a75e208ab566898]
C:\Windows\Temp\CD6B.tmp (Adware.AdLoad) -> Delete on reboot. [68778ad30a8f6ccae2e67868d03121df]
C:\Windows\Temp\3F54.tmp (Adware.EoRezo.Gen) -> Delete on reboot. [34abbca13d5c3402cac7d304e61ba060]
C:\Windows\SysWOW64\rlls.dll (Trojan.Agent) -> Delete on reboot. [2ab572ebc6d39d9940e066d636cd0ff1]
C:\Users\Dom\AppData\Local\Temp\rkinstaller.exe (Trojan.Agent) -> Delete on reboot. [8d52b8a525746fc7bef1c879c2415ca4]
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [657a1c415f3af3430d2da56a0afa6997]
C:\Users\Dom\AppData\Local\Temp\Z0W6CRNOT0\testversion.exe (Trojan.FakeAlert) -> Delete on reboot. [6c7369f4504990a6a6142a24699bb947]
Physical Sectors Detected: 0
(No malicious items detected)
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.07.03
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
07.02.2016 18:07:58
mbar-log-2016-02-07 (18-07-58).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 420645
Time elapsed: 28 minute(s), 17 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
Files Detected: 10
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [439c82dbe7b2c76f63d711fe5ba95ba5]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
08.02.2016, 10:11
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus Bitte MBAR solange wiederholen, bis es nichts mehr findet.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.02.2016, 11:02
| #23 |
| | Vermutung an Trojaner oder Virus Alles klar Soll ich dann jedes Log hier posten? |
|
08.02.2016, 11:22
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus Alle Logs mit Funden
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.02.2016, 15:28
| #25 |
| | Vermutung an Trojaner oder VirusCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.08.01
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
08.02.2016 10:17:09
mbar-log-2016-02-08 (10-17-09).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 421918
Time elapsed: 22 minute(s), 56 second(s)
Memory Processes Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> 3028 -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 6
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{2A0CA051-E15A-4939-8D32-89D1DD26A106}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [0c3595c9b1e8b086a76922bb8c78d12f]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{3E2E42D7-2E89-460C-B08E-350755D98225}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [42ffd08e6831d6607e92af2ea064ab55]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [330e86d83c5d2412ce42ca13828243bd]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{98BE0671-7976-4BAF-8258-EFCCADA692A5}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [360ba5b9d9c0191dc947f5e821e3619f]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{F95E4EC2-A13B-4F79-B08D-35254E8D4413}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [ba870d51a1f8a78f11ff9b4245bf2cd4]
HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\TCPIP\PARAMETERS\Interfaces\{FDD3E933-4486-4DB4-AB7E-B2FD291C8D90}|NameServer (Trojan.DNSChanger) -> Bad: (104.197.191.4) Good: () -> Replace on reboot. [a8998fcf92075bdba16f924bea1a10f0]
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
Files Detected: 19
C:\WINDOWS\SYSTEM32\drivers\MPCKpt.sys (PUP.Optional.MorePowerfulCleaner) -> Delete on reboot. [2b1d81d9c97eba58fa8b6d89aa602814]
C:\Windows\System32\dnsapi.dll (Trojan.FilePatch.DNSApi) -> Replace on reboot. [6302a732e50d4e55c861c731404eb823]
C:\$Recycle.Bin\S-1-5-21-1235700998-711781633-2637323769-1000\$RFTWX0G\mybestofferstoday_widget.exe (Adware.EoRezo) -> Delete on reboot. [132e510d8f0ac1756dc019b92ad79b65]
C:\$Recycle.Bin\S-1-5-21-1235700998-711781633-2637323769-1000\$RFTWX0G\predm.exe (Adware.EoRezo) -> Delete on reboot. [2f122d31f9a0f83e8d8448875ba622de]
C:\Windows\SysWOW64\dnsapi.dll (Trojan.FilePatch.DNSApi) -> Replace on reboot. [259986ab2a2dac5f0f5a8a9abada0bdc]
C:\Windows\System32\drivers\cherimoya.sys (Rootkit.Agent.A) -> Delete on reboot. [eb842d63d97f5f9eb90cb8da56c9f5c3]
C:\Windows\SysWOW64\rlls.dll (Trojan.Agent) -> Delete on reboot. [2a177ce202972511035f9ca0cb3807f9]
C:\Users\Dom\AppData\Local\Temp\rkinstaller.exe (Trojan.Agent) -> Delete on reboot. [63de540a4356c472c22f59e8ac57b54b]
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [39085707efaada5c9ce0d9362ed6a759]
C:\Users\Dom\AppData\Local\Temp\Z0W6CRNOT0\testversion.exe (Trojan.FakeAlert) -> Delete on reboot. [cf722539ebae91a528d4f9553fc5ba46]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.08.01
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
08.02.2016 10:58:51
mbar-log-2016-02-08 (10-58-51).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 421697
Time elapsed: 33 minute(s), 11 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
Files Detected: 10
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [80c16df1cdcc3afc4339848bc0440ff1]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.08.01
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
08.02.2016 11:45:23
mbar-log-2016-02-08 (11-45-23).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 420863
Time elapsed: 30 minute(s), 35 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
Files Detected: 10
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [004129358e0b191d98e47f90699b7e82]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
08.02.2016, 15:29
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus Finder der jedesmal soviel??? 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.02.2016, 15:30
| #27 |
| | Vermutung an Trojaner oder VirusCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.08.01
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
08.02.2016 12:23:42
mbar-log-2016-02-08 (12-23-42).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 421182
Time elapsed: 32 minute(s), 11 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
Files Detected: 10
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [7ac7ef6f57424fe790ecde3108fc9769]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.08.01
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
08.02.2016 13:03:12
mbar-log-2016-02-08 (13-03-12).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 421810
Time elapsed: 32 minute(s), 51 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
Files Detected: 10
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [60e1a1bddfba8caab1cbb45bd72db14f]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.02.08.01
rootkit: v2016.01.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18163
Dom :: DOM-PC [administrator]
08.02.2016 13:41:56
mbar-log-2016-02-08 (13-41-56).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 422397
Time elapsed: 31 minute(s), 7 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\Users\Dom\AppData\Local\Temp\msupdate71 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
Files Detected: 10
C:\Users\Dom\AppData\Local\Temp\msupdate71\dwm.exe (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libcurl-4.dl1 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libiconv-2.dl1 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libidn-11.dl1 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libintl-8.dl1 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\libwinpthread-1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msupdate.7z (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\msvcrt.dll (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\proxy.conf (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
C:\Users\Dom\AppData\Local\Temp\msupdate71\zlib1.dl1 (Trojan.FakeAlert) -> Delete on reboot. [2e13b5a9d8c164d2f686e629a55f0df3]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
08.02.2016, 15:31
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus STOP, HALT! Bitte mit TDSS-Killer weitermachen Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.02.2016, 15:41
| #29 |
| | Vermutung an Trojaner oder Virus Ja aber die sind jetzt weg Code:
ATTFilter 15:37:09.0073 0x1840 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
15:37:16.0150 0x1840 ============================================================
15:37:16.0150 0x1840 Current date / time: 2016/02/08 15:37:16.0150
15:37:16.0150 0x1840 SystemInfo:
15:37:16.0150 0x1840
15:37:16.0150 0x1840 OS Version: 6.1.7601 ServicePack: 1.0
15:37:16.0150 0x1840 Product type: Workstation
15:37:16.0151 0x1840 ComputerName: DOM-PC
15:37:16.0151 0x1840 UserName: Dom
15:37:16.0151 0x1840 Windows directory: C:\Windows
15:37:16.0151 0x1840 System windows directory: C:\Windows
15:37:16.0151 0x1840 Running under WOW64
15:37:16.0151 0x1840 Processor architecture: Intel x64
15:37:16.0151 0x1840 Number of processors: 4
15:37:16.0151 0x1840 Page size: 0x1000
15:37:16.0151 0x1840 Boot type: Normal boot
15:37:16.0151 0x1840 ============================================================
15:37:34.0983 0x1840 KLMD registered as C:\Windows\system32\drivers\24042550.sys
15:37:35.0442 0x1840 System UUID: {E5FED96A-CD77-D50B-0677-68A60F2F5BB8}
15:37:36.0173 0x1840 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:37:36.0206 0x1840 Drive \Device\Harddisk5\DR6 - Size: 0xEFBFFE00 ( 3.75 Gb ), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:37:36.0209 0x1840 ============================================================
15:37:36.0209 0x1840 \Device\Harddisk0\DR0:
15:37:36.0209 0x1840 MBR partitions:
15:37:36.0209 0x1840 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:37:36.0209 0x1840 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
15:37:36.0209 0x1840 \Device\Harddisk5\DR6:
15:37:36.0209 0x1840 MBR partitions:
15:37:36.0209 0x1840 \Device\Harddisk5\DR6\Partition1: MBR, Type 0xB, StartLBA 0x26, BlocksNum 0x779FC2
15:37:36.0209 0x1840 ============================================================
15:37:36.0235 0x1840 C: <-> \Device\Harddisk0\DR0\Partition2
15:37:36.0235 0x1840 ============================================================
15:37:36.0235 0x1840 Initialize success
15:37:36.0235 0x1840 ============================================================
15:39:34.0930 0x2624 ============================================================
15:39:34.0930 0x2624 Scan started
15:39:34.0930 0x2624 Mode: Manual; SigCheck; TDLFS;
15:39:34.0930 0x2624 ============================================================
15:39:34.0930 0x2624 KSN ping started
15:39:34.0982 0x2624 KSN ping finished: false
15:39:37.0239 0x2624 ================ Scan system memory ========================
15:39:37.0239 0x2624 System memory - ok
15:39:37.0240 0x2624 ================ Scan services =============================
15:39:37.0412 0x2624 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:39:37.0502 0x2624 1394ohci - ok
15:39:37.0528 0x2624 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:39:37.0540 0x2624 ACPI - ok
15:39:37.0552 0x2624 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:39:37.0560 0x2624 AcpiPmi - ok
15:39:37.0649 0x2624 [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
15:39:37.0674 0x2624 Adobe LM Service - detected UnsignedFile.Multi.Generic ( 1 )
15:39:37.0785 0x2624 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
15:39:37.0905 0x2624 [ 295A5BFCE8D225D014DB4E6E69336279, F786F06F0EE3253FA936FA5D73FD9AC704FAB19BE76C60C65AEAD399DC93F9C5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:39:37.0956 0x2624 AdobeFlashPlayerUpdateSvc - ok
15:39:37.0993 0x2624 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:39:38.0018 0x2624 adp94xx - ok
15:39:38.0028 0x2624 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:39:38.0039 0x2624 adpahci - ok
15:39:38.0054 0x2624 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:39:38.0063 0x2624 adpu320 - ok
15:39:38.0121 0x2624 AdvancedSystemCareService9 - ok
15:39:38.0160 0x2624 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:39:38.0188 0x2624 AeLookupSvc - ok
15:39:38.0236 0x2624 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
15:39:38.0279 0x2624 AFD - ok
15:39:38.0294 0x2624 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
15:39:38.0301 0x2624 agp440 - ok
15:39:38.0338 0x2624 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
15:39:38.0382 0x2624 ALG - ok
15:39:38.0419 0x2624 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
15:39:38.0426 0x2624 aliide - ok
15:39:38.0450 0x2624 [ B0D65C6B8CE37F523DFF79DBF0D9B149, 274E488ED634141FDBFD218CD865EB3D9F7ADF6C859F9520293EA0DD6B0393CD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:39:38.0479 0x2624 AMD External Events Utility - ok
15:39:38.0506 0x2624 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
15:39:38.0520 0x2624 amdide - ok
15:39:38.0537 0x2624 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:39:38.0547 0x2624 AmdK8 - ok
15:39:38.0586 0x2624 amdkmdag - ok
15:39:38.0659 0x2624 [ AE0595A5C0B4A002F2E5AD0CE8B59AA1, F4F1DBA5F935DE9C8B1266591B65D2DF8D16F74BE08E328F4CCE77B60ADF9447 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:39:38.0691 0x2624 amdkmdap - ok
15:39:38.0694 0x2624 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:39:38.0702 0x2624 AmdPPM - ok
15:39:38.0745 0x2624 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:39:38.0772 0x2624 amdsata - ok
15:39:38.0789 0x2624 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:39:38.0802 0x2624 amdsbs - ok
15:39:38.0812 0x2624 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:39:38.0821 0x2624 amdxata - ok
15:39:38.0935 0x2624 [ 81E02299B534F61E104C1235519C37B3, B389458C13A0E0717365B7CE371A6B768EB2F98C4CDBAA6DCBBBDE3A2B1D8B14 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
15:39:38.0971 0x2624 AntiVirMailService - ok
15:39:39.0055 0x2624 [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:39:39.0084 0x2624 AntiVirSchedulerService - ok
15:39:39.0373 0x2624 [ 3CBE5047BB08BD363420D68364F9E829, 7A6C59E9B98C1A50CB5FB895050127C5A433BA825D3832FC6DDA2A41AE986543 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:39:39.0397 0x2624 AntiVirService - ok
15:39:39.0487 0x2624 [ CAA9D66CA6D21AF0AE7DA01D5AC6CC2F, 827400CFB53026757B3D75B6C5AC7BBECE7E62B335160C18CBF6A41047F4A400 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
15:39:39.0519 0x2624 AntiVirWebService - ok
15:39:39.0585 0x2624 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
15:39:39.0606 0x2624 AppID - ok
15:39:39.0622 0x2624 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:39:39.0643 0x2624 AppIDSvc - ok
15:39:39.0672 0x2624 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
15:39:39.0693 0x2624 Appinfo - ok
15:39:39.0768 0x2624 ApplicationHosting - ok
15:39:39.0800 0x2624 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
15:39:39.0821 0x2624 arc - ok
15:39:39.0830 0x2624 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:39:39.0838 0x2624 arcsas - ok
15:39:39.0967 0x2624 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:39:39.0997 0x2624 aspnet_state - ok
15:39:40.0036 0x2624 [ E1AFEE1584C74050DE0DD16DE2A54BF3, 77C8D98159D8BCDC7917B04977949823D50C49D0D13587310E060A4B8893AE42 ] AsrAppCharger C:\Windows\system32\DRIVERS\AsrAppCharger.sys
15:39:40.0056 0x2624 AsrAppCharger - ok
15:39:40.0089 0x2624 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:39:40.0149 0x2624 AsyncMac - ok
15:39:40.0185 0x2624 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
15:39:40.0201 0x2624 atapi - ok
15:39:40.0259 0x2624 [ 80AA9265E820A8667EDEF731E31335B6, 549DC0BCF988F25CF3F89A784DC9B97C6D4DF697302F5CF467EFA2B816991A52 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:39:40.0285 0x2624 AtiHDAudioService - ok
15:39:40.0339 0x2624 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:39:40.0367 0x2624 AudioEndpointBuilder - ok
15:39:40.0380 0x2624 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:39:40.0395 0x2624 AudioSrv - ok
15:39:40.0502 0x2624 [ 29E019B4607E410BFE4DB778C3300BC5, 32D1A5A5836152BAAA168B4A06AC6F52DBC19150D339B5F87E8E3A1E1EE580C3 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:39:40.0526 0x2624 avgntflt - ok
15:39:40.0564 0x2624 [ 1AD2C8F543F261F0AB90AD80767AB21D, 364DA0D0B8A91688CE39FEDF68EB93260819849097444F6A10A3F95CC32F9EA5 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:39:40.0581 0x2624 avipbb - ok
15:39:40.0616 0x2624 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:39:40.0637 0x2624 avkmgr - ok
15:39:40.0692 0x2624 [ C6F4C466B654C1BE98AF31418BB5AC30, 62AA4456F8E22A6E508EB44DE4309615057117AAF923C13BBED15AA39630E76B ] AVM WLAN Connection Service C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
15:39:40.0727 0x2624 AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic ( 1 )
15:39:40.0727 0x2624 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - warning
15:39:40.0727 0x2624 Force sending object to P2P due to detect: AVM WLAN Connection Service
15:39:40.0729 0x2624 Object send P2P result: false
15:39:40.0781 0x2624 [ 1DC2F715792CF33428AD7993ACBD224D, 129FBD517E016914CD61C35894C0B9B2074E680F1EB21201597E5C13CAF4529F ] avmeject C:\Windows\system32\drivers\avmeject.sys
15:39:40.0786 0x2624 avmeject - ok
15:39:40.0818 0x2624 [ 99672CCD11058D6E2F627473B773F971, 4EF2BCDA4678F9ECE499F216AC0F8105F37D2AB0320064741A8DFB5C39E5048C ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
15:39:40.0827 0x2624 avnetflt - ok
15:39:40.0875 0x2624 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:39:40.0904 0x2624 AxInstSV - ok
15:39:40.0969 0x2624 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:39:41.0008 0x2624 b06bdrv - ok
15:39:41.0054 0x2624 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:39:41.0079 0x2624 b57nd60a - ok
15:39:41.0110 0x2624 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
15:39:41.0120 0x2624 BDESVC - ok
15:39:41.0126 0x2624 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
15:39:41.0163 0x2624 Beep - ok
15:39:41.0259 0x2624 [ 9E559FB3D4D4537CD8328A05D95E5B18, ACD4BEEFB4A470273FBE4D0F2303A32859C3D1A62F4590EA33F3360CB485C2C6 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
15:39:41.0288 0x2624 BEService - ok
15:39:41.0373 0x2624 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
15:39:41.0506 0x2624 BFE - ok
15:39:41.0609 0x2624 [ 35BAC943C9C9C501B2DB888858D41F99, 4EDA511CC7029ECB757E2B7B90903503DC649B7B5060238D6418EF4506E172A5 ] BfLwf C:\Windows\system32\DRIVERS\bflwfx64.sys
15:39:41.0629 0x2624 BfLwf - ok
15:39:41.0682 0x2624 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
15:39:41.0718 0x2624 BITS - ok
15:39:41.0748 0x2624 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:39:41.0770 0x2624 blbdrive - ok
15:39:41.0838 0x2624 [ 83073A32CE9AAA79640DA931A9FD2AEF, CC3F89ED1A345E67BCC80A99BF3F07037A96FCEC33A245F1C16176CD1B6A888E ] Boonty Games C:\Program Files (x86)\Common Files\BOONTY Shared\Service\Boonty.exe
15:39:41.0847 0x2624 Boonty Games - detected UnsignedFile.Multi.Generic ( 1 )
15:39:41.0848 0x2624 Boonty Games ( UnsignedFile.Multi.Generic ) - warning
15:39:41.0880 0x2624 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:39:41.0914 0x2624 bowser - ok
15:39:41.0934 0x2624 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:39:41.0953 0x2624 BrFiltLo - ok
15:39:41.0962 0x2624 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:39:41.0989 0x2624 BrFiltUp - ok
15:39:42.0022 0x2624 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
15:39:42.0030 0x2624 Browser - ok
15:39:42.0046 0x2624 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:39:42.0072 0x2624 Brserid - ok
15:39:42.0086 0x2624 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:39:42.0113 0x2624 BrSerWdm - ok
15:39:42.0228 0x2624 brsrv - ok
15:39:42.0251 0x2624 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:39:42.0269 0x2624 BrUsbMdm - ok
15:39:42.0279 0x2624 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:39:42.0291 0x2624 BrUsbSer - ok
15:39:42.0306 0x2624 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:39:42.0323 0x2624 BTHMODEM - ok
15:39:42.0374 0x2624 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
15:39:42.0428 0x2624 bthserv - ok
15:39:42.0448 0x2624 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:39:42.0480 0x2624 cdfs - ok
15:39:42.0517 0x2624 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:39:42.0539 0x2624 cdrom - ok
15:39:42.0571 0x2624 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
15:39:42.0590 0x2624 CertPropSvc - ok
15:39:42.0675 0x2624 [ 76FBFD583CCE97FD06FCD510805A5908, 9CBBCC49E3CB1882C89798C0FB1836EFD0ED84775CCDFFEC898DFAB3996A2E12 ] CGVPNCliService C:\Program Files\CyberGhost 5\Service.exe
15:39:42.0704 0x2624 CGVPNCliService - ok
15:39:42.0709 0x2624 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
15:39:42.0736 0x2624 circlass - ok
15:39:42.0782 0x2624 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
15:39:42.0820 0x2624 CLFS - ok
15:39:43.0009 0x2624 [ D9A36196E36388073CAB04F4A9DE4F1D, 8F050F8DE641A6F54B3D352CA1FA9E4275F5006F8FDACF2A0E39D26696828819 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
15:39:43.0055 0x2624 ClickToRunSvc - ok
15:39:43.0135 0x2624 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:39:43.0142 0x2624 clr_optimization_v2.0.50727_32 - ok
15:39:43.0167 0x2624 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:39:43.0176 0x2624 clr_optimization_v2.0.50727_64 - ok
15:39:43.0244 0x2624 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:39:43.0252 0x2624 clr_optimization_v4.0.30319_32 - ok
15:39:43.0261 0x2624 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:39:43.0269 0x2624 clr_optimization_v4.0.30319_64 - ok
15:39:43.0298 0x2624 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:39:43.0304 0x2624 CmBatt - ok
15:39:43.0318 0x2624 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:39:43.0323 0x2624 cmdide - ok
15:39:43.0373 0x2624 [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
15:39:43.0389 0x2624 CNG - ok
15:39:43.0424 0x2624 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:39:43.0430 0x2624 Compbatt - ok
15:39:43.0479 0x2624 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:39:43.0506 0x2624 CompositeBus - ok
15:39:43.0508 0x2624 COMSysApp - ok
15:39:43.0536 0x2624 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:39:43.0544 0x2624 crcdisk - ok
15:39:43.0599 0x2624 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:39:43.0844 0x2624 CryptSvc - ok
15:39:43.0981 0x2624 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:39:44.0031 0x2624 DcomLaunch - ok
15:39:44.0077 0x2624 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
15:39:44.0103 0x2624 defragsvc - ok
15:39:44.0114 0x2624 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:39:44.0150 0x2624 DfsC - ok
15:39:44.0185 0x2624 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:39:44.0196 0x2624 Dhcp - ok
15:39:44.0299 0x2624 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
15:39:44.0344 0x2624 DiagTrack - ok
15:39:44.0422 0x2624 [ DEE4A1F675EC604E9641B1A03CF1816F, A0AC84713DDFD9A94B8558DFA26B278FB29833C5663451CC582ACA85B29CBFD8 ] DigitalWave.Update.Service C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
15:39:44.0432 0x2624 DigitalWave.Update.Service - ok
15:39:44.0438 0x2624 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
15:39:44.0472 0x2624 discache - ok
15:39:44.0508 0x2624 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
15:39:44.0515 0x2624 Disk - ok
15:39:44.0542 0x2624 dlohn - ok
15:39:44.0572 0x2624 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:39:44.0599 0x2624 Dnscache - ok
15:39:44.0619 0x2624 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
15:39:44.0656 0x2624 dot3svc - ok
15:39:44.0687 0x2624 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:39:44.0717 0x2624 Dot4 - ok
15:39:44.0755 0x2624 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:39:44.0779 0x2624 Dot4Print - ok
15:39:44.0789 0x2624 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:39:44.0799 0x2624 dot4usb - ok
15:39:44.0816 0x2624 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
15:39:44.0853 0x2624 DPS - ok
15:39:44.0875 0x2624 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:39:44.0893 0x2624 drmkaud - ok
15:39:44.0966 0x2624 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:39:44.0996 0x2624 DXGKrnl - ok
15:39:45.0010 0x2624 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
15:39:45.0030 0x2624 EapHost - ok
15:39:45.0049 0x2624 EasyAntiCheat - ok
15:39:45.0132 0x2624 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:39:45.0214 0x2624 ebdrv - ok
15:39:45.0256 0x2624 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] EFS C:\Windows\System32\lsass.exe
15:39:45.0291 0x2624 EFS - ok
15:39:45.0383 0x2624 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:39:45.0431 0x2624 ehRecvr - ok
15:39:45.0449 0x2624 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
15:39:45.0483 0x2624 ehSched - ok
15:39:45.0524 0x2624 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:39:45.0553 0x2624 elxstor - ok
15:39:45.0570 0x2624 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:39:45.0578 0x2624 ErrDev - ok
15:39:45.0620 0x2624 [ 932C05033053ADA2404FD836C9AB2C70, 39E3C40DDDCA475F55CD6A044E8CF35A1C25A776B79204CBF76D0DD5D89568D8 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
15:39:45.0626 0x2624 EuMusDesignVirtualAudioCableWdm - ok
15:39:45.0680 0x2624 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
15:39:45.0721 0x2624 EventSystem - ok
15:39:45.0737 0x2624 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
15:39:45.0761 0x2624 exfat - ok
15:39:45.0771 0x2624 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:39:45.0810 0x2624 fastfat - ok
15:39:45.0851 0x2624 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
15:39:45.0867 0x2624 Fax - ok
15:39:45.0877 0x2624 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
15:39:45.0884 0x2624 fdc - ok
15:39:45.0929 0x2624 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
15:39:45.0991 0x2624 fdPHost - ok
15:39:46.0011 0x2624 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
15:39:46.0039 0x2624 FDResPub - ok
15:39:46.0045 0x2624 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:39:46.0052 0x2624 FileInfo - ok
15:39:46.0061 0x2624 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:39:46.0095 0x2624 Filetrace - ok
15:39:46.0110 0x2624 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:39:46.0154 0x2624 flpydisk - ok
15:39:46.0180 0x2624 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:39:46.0201 0x2624 FltMgr - ok
15:39:46.0251 0x2624 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
15:39:46.0280 0x2624 FontCache - ok
15:39:46.0350 0x2624 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:39:46.0370 0x2624 FontCache3.0.0.0 - ok
15:39:46.0383 0x2624 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:39:46.0395 0x2624 FsDepends - ok
15:39:46.0417 0x2624 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:39:46.0428 0x2624 Fs_Rec - ok
15:39:46.0463 0x2624 fuqucohuzbt - ok
15:39:46.0521 0x2624 [ 6807483EF10156362A67CEF0AF2FFDC7, C72E4D62D24324D35E188C038B14D992F0F1213ABBAC34A26584099242D2B7D2 ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe
15:39:46.0550 0x2624 Futuremark SystemInfo Service - ok
15:39:46.0609 0x2624 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:39:46.0639 0x2624 fvevol - ok
15:39:46.0706 0x2624 [ 4632BB93B668004965246D7911E2DD05, B4CCFFC488C94A0D82A6CC11A9BA2616B339217164719EABA3CF59913EA899FB ] fwlanusb4 C:\Windows\system32\DRIVERS\fwlanusb4.sys
15:39:46.0740 0x2624 fwlanusb4 - ok
15:39:46.0756 0x2624 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:39:46.0764 0x2624 gagp30kx - ok
15:39:46.0811 0x2624 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
15:39:46.0840 0x2624 gpsvc - ok
15:39:46.0859 0x2624 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
15:39:46.0864 0x2624 hamachi - ok
15:39:46.0956 0x2624 [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
15:39:46.0998 0x2624 Hamachi2Svc - ok
15:39:47.0008 0x2624 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:39:47.0033 0x2624 hcw85cir - ok
15:39:47.0088 0x2624 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:39:47.0150 0x2624 HdAudAddService - ok
15:39:47.0255 0x2624 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:39:47.0291 0x2624 HDAudBus - ok
15:39:47.0313 0x2624 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:39:47.0488 0x2624 HidBatt - ok
15:39:47.0515 0x2624 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:39:47.0540 0x2624 HidBth - ok
15:39:47.0584 0x2624 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
15:39:47.0612 0x2624 HidIr - ok
15:39:47.0625 0x2624 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
15:39:47.0660 0x2624 hidserv - ok
15:39:47.0702 0x2624 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:39:47.0716 0x2624 HidUsb - ok
15:39:47.0729 0x2624 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:39:47.0763 0x2624 hkmsvc - ok
15:39:47.0778 0x2624 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:39:47.0803 0x2624 HomeGroupListener - ok
15:39:47.0841 0x2624 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:39:47.0886 0x2624 HomeGroupProvider - ok
15:39:47.0905 0x2624 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:39:47.0918 0x2624 HpSAMD - ok
15:39:48.0063 0x2624 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:39:48.0081 0x2624 HTTP - ok
15:39:48.0092 0x2624 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:39:48.0097 0x2624 hwpolicy - ok
15:39:48.0135 0x2624 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:39:48.0144 0x2624 i8042prt - ok
15:39:48.0175 0x2624 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:39:48.0186 0x2624 iaStorV - ok
15:39:48.0218 0x2624 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:39:48.0237 0x2624 idsvc - ok
15:39:48.0239 0x2624 IEEtwCollectorService - ok
15:39:48.0279 0x2624 ihpmServer - ok
15:39:48.0302 0x2624 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:39:48.0316 0x2624 iirsp - ok
15:39:48.0398 0x2624 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
15:39:48.0428 0x2624 IKEEXT - ok
15:39:48.0564 0x2624 [ E9740A3BC0AE6EA035FF7ECE3A1B27B6, 4CA3E094B0057E143955DE5D41C3344688B6D2C4FFC0417235FF46312B600F99 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:39:48.0646 0x2624 IntcAzAudAddService - ok
15:39:48.0681 0x2624 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
15:39:48.0706 0x2624 intelide - ok
15:39:48.0743 0x2624 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:39:48.0770 0x2624 intelppm - ok
15:39:48.0810 0x2624 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:39:48.0854 0x2624 IPBusEnum - ok
15:39:48.0889 0x2624 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:39:48.0957 0x2624 IpFilterDriver - ok
15:39:49.0004 0x2624 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:39:49.0043 0x2624 iphlpsvc - ok
15:39:49.0062 0x2624 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:39:49.0073 0x2624 IPMIDRV - ok
15:39:49.0088 0x2624 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:39:49.0128 0x2624 IPNAT - ok
15:39:49.0156 0x2624 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:39:49.0192 0x2624 IRENUM - ok
15:39:49.0205 0x2624 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:39:49.0212 0x2624 isapnp - ok
15:39:49.0225 0x2624 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:39:49.0235 0x2624 iScsiPrt - ok
15:39:49.0282 0x2624 [ 45392E76EE30DC9C8F0181C785F0BA48, 7FB522E1AA9B877B9FB1A29C2ADC42EA794E8864AD2411AD275F00F00547F8F3 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
15:39:49.0288 0x2624 iusb3hcs - ok
15:39:49.0299 0x2624 [ C6E8FB7FF41877378CCB30DE6E9941DF, CA808A00C0CC21C1C7BE54F0D1E5D3F24C0032BE821C064E0A63901F20F3C6BC ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
15:39:49.0310 0x2624 iusb3hub - ok
15:39:49.0363 0x2624 [ 6FBA980433B2B21604CE990FBF542D3F, ACB35A5558DD9EF9A339C9D061207AF5527D3AEFC9AC99AB6CFBA1CE92F8B62D ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
15:39:49.0382 0x2624 iusb3xhc - ok
15:39:49.0390 0x2624 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:39:49.0396 0x2624 kbdclass - ok
15:39:49.0403 0x2624 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:39:49.0410 0x2624 kbdhid - ok
15:39:49.0444 0x2624 [ 819433A6CFC8771F0A2B0BB8EF6125B1, 37BE3545E3782CFA56F1A890B389CDF37C48F177CEE3EF23F4FDDF3D2A094DD3 ] Ke2200 C:\Windows\system32\DRIVERS\e22w7x64.sys
15:39:49.0452 0x2624 Ke2200 - ok
15:39:49.0457 0x2624 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] KeyIso C:\Windows\system32\lsass.exe
15:39:49.0463 0x2624 KeyIso - ok
15:39:49.0499 0x2624 [ 0F776895884B8DC430A307D57FD867BB, F9E8C8A04D757CEAD86938BEEFFAD9750589037E16FB1A2B0A90E4484E1A6B65 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:39:49.0507 0x2624 KSecDD - ok
15:39:49.0546 0x2624 [ 28E75F316CCCD79337E4957C53017D4B, 3BABDA50B4CE72F7F9A0FD7A33DDB19463A01F188D46354E0B411FC0389C01BE ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:39:49.0574 0x2624 KSecPkg - ok
15:39:49.0583 0x2624 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:39:49.0612 0x2624 ksthunk - ok
15:39:49.0652 0x2624 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
15:39:49.0694 0x2624 KtmRm - ok
15:39:49.0713 0x2624 Labtech - ok
15:39:49.0760 0x2624 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:39:49.0820 0x2624 LanmanServer - ok
15:39:49.0837 0x2624 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:39:49.0858 0x2624 LanmanWorkstation - ok
15:39:49.0969 0x2624 LiveUpdateSvc - ok
15:39:50.0008 0x2624 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:39:50.0060 0x2624 lltdio - ok
15:39:50.0095 0x2624 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:39:50.0157 0x2624 lltdsvc - ok
15:39:50.0179 0x2624 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:39:50.0221 0x2624 lmhosts - ok
15:39:50.0254 0x2624 [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
15:39:50.0267 0x2624 LMIGuardianSvc - ok
15:39:50.0316 0x2624 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:39:50.0334 0x2624 LSI_FC - ok
15:39:50.0341 0x2624 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:39:50.0357 0x2624 LSI_SAS - ok
15:39:50.0371 0x2624 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:39:50.0379 0x2624 LSI_SAS2 - ok
15:39:50.0383 0x2624 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:39:50.0391 0x2624 LSI_SCSI - ok
15:39:50.0411 0x2624 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
15:39:50.0446 0x2624 luafv - ok
15:39:50.0496 0x2624 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:39:50.0502 0x2624 MBAMProtector - ok
15:39:50.0571 0x2624 [ 86701B8E4C53280AA8642AC85F8500F4, 6839F2B840410857AE7DA215A17922A7499A9B99D96032756525878E98175103 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
15:39:50.0603 0x2624 MBAMScheduler - ok
15:39:50.0664 0x2624 [ E27891A49DF92004041FEC5C3A2D4230, A4679A1F10F84935875E35A83FC7075499B8F4CBB543209A38C0D946347CD264 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
15:39:50.0684 0x2624 MBAMService - ok
15:39:50.0715 0x2624 [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
15:39:50.0736 0x2624 MBAMWebAccessControl - ok
15:39:50.0777 0x2624 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:39:50.0808 0x2624 Mcx2Svc - ok
15:39:50.0825 0x2624 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
15:39:50.0835 0x2624 megasas - ok
15:39:50.0863 0x2624 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:39:50.0879 0x2624 MegaSR - ok
15:39:50.0905 0x2624 [ 1BC9159CF58BABD89419072EA180A8F6, 6C9AB779C2355A341800A8F93AAAF9B19FAFF444CD6A7BD27C63D53F379A75EF ] MEIx64 C:\Windows\system32\DRIVERS\TeeDriverx64.sys
15:39:50.0919 0x2624 MEIx64 - ok
15:39:50.0961 0x2624 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
15:39:51.0026 0x2624 MMCSS - ok
15:39:51.0042 0x2624 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
15:39:51.0079 0x2624 Modem - ok
15:39:51.0097 0x2624 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:39:51.0105 0x2624 monitor - ok
15:39:51.0114 0x2624 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:39:51.0121 0x2624 mouclass - ok
15:39:51.0163 0x2624 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:39:51.0171 0x2624 mouhid - ok
15:39:51.0202 0x2624 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:39:51.0209 0x2624 mountmgr - ok
15:39:51.0270 0x2624 [ 4DA42FB0A8294C9FBD52B0EF2EA9EE07, 4C327BC4DCE86CE5DFDD57F2CF09DD9EF52E3E1D0D74BB5825808975FFA7B0FD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:39:51.0293 0x2624 MozillaMaintenance - ok
15:39:51.0315 0x2624 MPCKpt - ok
15:39:51.0318 0x2624 MPCProtectService - ok
15:39:51.0325 0x2624 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
15:39:51.0340 0x2624 mpio - ok
15:39:51.0368 0x2624 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:39:51.0391 0x2624 mpsdrv - ok
15:39:51.0417 0x2624 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:39:51.0450 0x2624 MpsSvc - ok
15:39:51.0503 0x2624 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:39:51.0554 0x2624 MRxDAV - ok
15:39:51.0587 0x2624 [ 32B85C4923D895B2FB35821A799BA38D, 7A7E5D08F745DB9B498B4BE946325FF7DAA7FA27589D9423FCA4558D20780026 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:39:51.0618 0x2624 mrxsmb - ok
15:39:51.0632 0x2624 [ A572BEF41F3C55D7DAF24D2340C91FEC, 1E51EEFEABCDCB664CD39437C2275B160860FB433EAA8DC905D5BC742FD03529 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:39:51.0663 0x2624 mrxsmb10 - ok
15:39:51.0684 0x2624 [ C49F1C4CA74FC52AFB2E892D8E50EA39, 9E7A2453627A82AFF4CE3F285AFF105C3F92F423C07E5C43E76BEC523841B8F7 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:39:51.0693 0x2624 mrxsmb20 - ok
15:39:51.0724 0x2624 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
15:39:51.0730 0x2624 msahci - ok
15:39:51.0744 0x2624 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:39:51.0751 0x2624 msdsm - ok
15:39:51.0766 0x2624 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
15:39:51.0789 0x2624 MSDTC - ok
15:39:51.0821 0x2624 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:39:51.0841 0x2624 Msfs - ok
15:39:51.0870 0x2624 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:39:51.0923 0x2624 mshidkmdf - ok
15:39:51.0950 0x2624 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:39:51.0967 0x2624 msisadrv - ok
15:39:52.0018 0x2624 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:39:52.0068 0x2624 MSiSCSI - ok
15:39:52.0070 0x2624 msiserver - ok
15:39:52.0269 0x2624 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:39:52.0383 0x2624 MSKSSRV - ok
15:39:52.0413 0x2624 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:39:52.0476 0x2624 MSPCLOCK - ok
15:39:52.0544 0x2624 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:39:52.0678 0x2624 MSPQM - ok
15:39:52.0784 0x2624 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:39:52.0806 0x2624 MsRPC - ok
15:39:52.0817 0x2624 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:39:52.0828 0x2624 mssmbios - ok
15:39:52.0839 0x2624 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:39:52.0861 0x2624 MSTEE - ok
15:39:52.0872 0x2624 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:39:52.0879 0x2624 MTConfig - ok
15:39:52.0895 0x2624 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
15:39:52.0902 0x2624 Mup - ok
15:39:52.0943 0x2624 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
15:39:52.0970 0x2624 napagent - ok
15:39:53.0009 0x2624 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:39:53.0024 0x2624 NativeWifiP - ok
15:39:53.0072 0x2624 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:39:53.0091 0x2624 NDIS - ok
15:39:53.0099 0x2624 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:39:53.0119 0x2624 NdisCap - ok
15:39:53.0150 0x2624 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:39:53.0190 0x2624 NdisTapi - ok
15:39:53.0226 0x2624 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:39:53.0283 0x2624 Ndisuio - ok
15:39:53.0306 0x2624 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:39:53.0355 0x2624 NdisWan - ok
15:39:53.0386 0x2624 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:39:53.0435 0x2624 NDProxy - ok
15:39:53.0471 0x2624 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:39:53.0475 0x2624 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:39:53.0476 0x2624 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:39:53.0511 0x2624 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:39:53.0561 0x2624 NetBIOS - ok
15:39:53.0570 0x2624 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:39:53.0610 0x2624 NetBT - ok
15:39:53.0623 0x2624 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] Netlogon C:\Windows\system32\lsass.exe
15:39:53.0630 0x2624 Netlogon - ok
15:39:53.0684 0x2624 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
15:39:53.0734 0x2624 Netman - ok
15:39:53.0783 0x2624 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:39:53.0811 0x2624 NetMsmqActivator - ok
15:39:53.0816 0x2624 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:39:53.0830 0x2624 NetPipeActivator - ok
15:39:53.0853 0x2624 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
15:39:53.0898 0x2624 netprofm - ok
15:39:53.0902 0x2624 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:39:53.0910 0x2624 NetTcpActivator - ok
15:39:53.0913 0x2624 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:39:53.0921 0x2624 NetTcpPortSharing - ok
15:39:53.0954 0x2624 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:39:53.0966 0x2624 nfrd960 - ok
15:39:54.0033 0x2624 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
15:39:54.0057 0x2624 NlaSvc - ok
15:39:54.0069 0x2624 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:39:54.0092 0x2624 Npfs - ok
15:39:54.0094 0x2624 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
15:39:54.0114 0x2624 nsi - ok
15:39:54.0121 0x2624 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:39:54.0140 0x2624 nsiproxy - ok
15:39:54.0185 0x2624 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:39:54.0219 0x2624 Ntfs - ok
15:39:54.0230 0x2624 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
15:39:54.0250 0x2624 Null - ok
15:39:54.0294 0x2624 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:39:54.0302 0x2624 nvraid - ok
15:39:54.0313 0x2624 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:39:54.0321 0x2624 nvstor - ok
15:39:54.0381 0x2624 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:39:54.0471 0x2624 nv_agp - ok
15:39:54.0522 0x2624 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:39:54.0606 0x2624 ohci1394 - ok
15:39:54.0734 0x2624 [ A309633A4BA2DE3FC30468C3103E0BA5, 530C707A4FCD36A45E9D370D20105356C8019DE41EF1C1F1A728A523D5FBEE25 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
15:39:54.0786 0x2624 Origin Client Service - ok
15:39:54.0894 0x2624 [ 77EDFA844BE98C04308D0DA54D2A90B8, 55A173F5A13801B531E6115D47EAFDD23403A7A253DC8DBA9287471937F23ABE ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:39:54.0924 0x2624 ose64 - ok
15:39:55.0127 0x2624 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:39:55.0327 0x2624 osppsvc - ok
15:39:55.0372 0x2624 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:39:55.0395 0x2624 p2pimsvc - ok
15:39:55.0437 0x2624 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
15:39:55.0450 0x2624 p2psvc - ok
15:39:55.0472 0x2624 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
15:39:55.0480 0x2624 Parport - ok
15:39:55.0508 0x2624 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:39:55.0514 0x2624 partmgr - ok
15:39:55.0563 0x2624 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:39:55.0588 0x2624 PcaSvc - ok
15:39:55.0599 0x2624 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
15:39:55.0611 0x2624 pci - ok
15:39:55.0640 0x2624 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
15:39:55.0646 0x2624 pciide - ok
15:39:55.0660 0x2624 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:39:55.0669 0x2624 pcmcia - ok
15:39:55.0683 0x2624 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
15:39:55.0689 0x2624 pcw - ok
15:39:55.0716 0x2624 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:39:55.0748 0x2624 PEAUTH - ok
15:39:55.0826 0x2624 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:39:55.0851 0x2624 PerfHost - ok
15:39:55.0909 0x2624 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
15:39:55.0950 0x2624 pla - ok
15:39:56.0027 0x2624 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:39:56.0060 0x2624 PlugPlay - ok
15:39:56.0087 0x2624 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:39:56.0111 0x2624 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:39:56.0111 0x2624 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:39:56.0137 0x2624 PnkBstrA - ok
15:39:56.0159 0x2624 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:39:56.0184 0x2624 PNRPAutoReg - ok
15:39:56.0205 0x2624 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:39:56.0222 0x2624 PNRPsvc - ok
15:39:56.0276 0x2624 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:39:56.0336 0x2624 PolicyAgent - ok
15:39:56.0381 0x2624 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
15:39:56.0435 0x2624 Power - ok
15:39:56.0481 0x2624 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:39:56.0502 0x2624 PptpMiniport - ok
15:39:56.0580 0x2624 prgductyy - ok
15:39:56.0594 0x2624 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
15:39:56.0602 0x2624 Processor - ok
15:39:56.0649 0x2624 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
15:39:56.0659 0x2624 ProfSvc - ok
15:39:56.0665 0x2624 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] ProtectedStorage C:\Windows\system32\lsass.exe
15:39:56.0671 0x2624 ProtectedStorage - ok
15:39:56.0701 0x2624 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:39:56.0721 0x2624 Psched - ok
15:39:56.0777 0x2624 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:39:56.0806 0x2624 ql2300 - ok
15:39:56.0820 0x2624 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:39:56.0829 0x2624 ql40xx - ok
15:39:56.0909 0x2624 [ 86D9A906B8467AE1E331296AFE0F083F, 01B332F0A291C64EB537D17E8B971D0157C72606F9396BAAF2C4479519E26353 ] Qualcomm Atheros Killer Service V2 C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
15:39:56.0962 0x2624 Qualcomm Atheros Killer Service V2 - detected UnsignedFile.Multi.Generic ( 1 )
15:39:56.0962 0x2624 Qualcomm Atheros Killer Service V2 ( UnsignedFile.Multi.Generic ) - warning
15:39:57.0018 0x2624 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
15:39:57.0053 0x2624 QWAVE - ok
15:39:57.0064 0x2624 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:39:57.0091 0x2624 QWAVEdrv - ok
15:39:57.0112 0x2624 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:39:57.0139 0x2624 RasAcd - ok
15:39:57.0199 0x2624 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:39:57.0250 0x2624 RasAgileVpn - ok
15:39:57.0260 0x2624 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
15:39:57.0299 0x2624 RasAuto - ok
15:39:57.0314 0x2624 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:39:57.0353 0x2624 Rasl2tp - ok
15:39:57.0374 0x2624 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
15:39:57.0411 0x2624 RasMan - ok
15:39:57.0433 0x2624 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:39:57.0468 0x2624 RasPppoe - ok
15:39:57.0502 0x2624 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:39:57.0546 0x2624 RasSstp - ok
15:39:57.0599 0x2624 [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
15:39:57.0623 0x2624 Razer Game Scanner Service - ok
15:39:57.0643 0x2624 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:39:57.0682 0x2624 rdbss - ok
15:39:57.0696 0x2624 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:39:57.0706 0x2624 rdpbus - ok
15:39:57.0743 0x2624 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:39:57.0771 0x2624 RDPCDD - ok
15:39:57.0939 0x2624 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:39:58.0069 0x2624 RDPENCDD - ok
15:39:58.0087 0x2624 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:39:58.0127 0x2624 RDPREFMP - ok
15:39:58.0168 0x2624 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:39:58.0177 0x2624 RDPWD - ok
15:39:58.0190 0x2624 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:39:58.0199 0x2624 rdyboost - ok
15:39:58.0227 0x2624 REACHit - ok
15:39:58.0229 0x2624 RelevantKnowledge - ok
15:39:58.0264 0x2624 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:39:58.0311 0x2624 RemoteAccess - ok
15:39:58.0349 0x2624 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:39:58.0393 0x2624 RemoteRegistry - ok
15:39:58.0419 0x2624 rowugoqo - ok
15:39:58.0451 0x2624 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:39:58.0525 0x2624 RpcEptMapper - ok
15:39:58.0559 0x2624 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
15:39:58.0569 0x2624 RpcLocator - ok
15:39:58.0733 0x2624 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
15:39:58.0790 0x2624 RpcSs - ok
15:39:58.0811 0x2624 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:39:58.0831 0x2624 rspndr - ok
15:39:58.0899 0x2624 [ 027E10A5048B135862D638B9085D1402, BAC1CD96BA242CDF29F8FEAC501110739F1524F0DB1C8FCAD59409E77B8928BA ] RTCore64 C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
15:39:58.0919 0x2624 RTCore64 - ok
15:39:58.0967 0x2624 [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk C:\Windows\system32\drivers\rzpmgrk.sys
15:39:58.0974 0x2624 rzpmgrk - ok
15:39:59.0008 0x2624 [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk C:\Windows\system32\drivers\rzpnk.sys
15:39:59.0015 0x2624 rzpnk - ok
15:39:59.0058 0x2624 [ 6F59DE8AD8A6946D9133550BA481E6AD, CE4DE15872C0E9694793FC73710A4C6A163A335C2BD44FF2EFC3B553A465B40E ] RZSURROUNDVADService C:\Windows\system32\drivers\RzSurroundVAD.sys
15:39:59.0064 0x2624 RZSURROUNDVADService - ok
15:39:59.0344 0x2624 [ 4B4A98A85F40EDDB22F61D645FD9441B, 9A7692263B03C48A28AA6C1A881F1B0F5DE72ECF4BB18D080CADDDBBEC694069 ] RzSurroundVADStreamingService C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
15:39:59.0532 0x2624 RzSurroundVADStreamingService - detected UnsignedFile.Multi.Generic ( 1 )
15:39:59.0532 0x2624 RzSurroundVADStreamingService ( UnsignedFile.Multi.Generic ) - warning
15:39:59.0532 0x2624 Force sending object to P2P due to detect: RzSurroundVADStreamingService
15:39:59.0542 0x2624 Object send P2P result: false
15:39:59.0557 0x2624 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] SamSs C:\Windows\system32\lsass.exe
15:39:59.0564 0x2624 SamSs - ok
15:39:59.0579 0x2624 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:39:59.0586 0x2624 sbp2port - ok
15:39:59.0602 0x2624 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:39:59.0624 0x2624 SCardSvr - ok
15:39:59.0634 0x2624 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:39:59.0667 0x2624 scfilter - ok
15:39:59.0718 0x2624 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
15:39:59.0754 0x2624 Schedule - ok
15:39:59.0789 0x2624 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:39:59.0809 0x2624 SCPolicySvc - ok
15:39:59.0856 0x2624 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:39:59.0881 0x2624 SDRSVC - ok
15:39:59.0925 0x2624 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:39:59.0963 0x2624 secdrv - ok
15:39:59.0981 0x2624 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
15:40:00.0028 0x2624 seclogon - ok
15:40:00.0036 0x2624 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
15:40:00.0058 0x2624 SENS - ok
15:40:00.0063 0x2624 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:40:00.0070 0x2624 SensrSvc - ok
15:40:00.0104 0x2624 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:40:00.0110 0x2624 Serenum - ok
15:40:00.0153 0x2624 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:40:00.0162 0x2624 Serial - ok
15:40:00.0171 0x2624 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:40:00.0180 0x2624 sermouse - ok
15:40:00.0198 0x2624 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
15:40:00.0218 0x2624 SessionEnv - ok
15:40:00.0231 0x2624 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:40:00.0258 0x2624 sffdisk - ok
15:40:00.0275 0x2624 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:40:00.0302 0x2624 sffp_mmc - ok
15:40:00.0315 0x2624 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:40:00.0324 0x2624 sffp_sd - ok
15:40:00.0336 0x2624 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:40:00.0343 0x2624 sfloppy - ok
15:40:00.0377 0x2624 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:40:00.0402 0x2624 SharedAccess - ok
15:40:00.0415 0x2624 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:40:00.0440 0x2624 ShellHWDetection - ok
15:40:00.0470 0x2624 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:40:00.0477 0x2624 SiSRaid2 - ok
15:40:00.0492 0x2624 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:40:00.0499 0x2624 SiSRaid4 - ok
15:40:00.0525 0x2624 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:40:00.0536 0x2624 SkypeUpdate - ok
15:40:00.0571 0x2624 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:40:00.0591 0x2624 Smb - ok
15:40:00.0606 0x2624 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:40:00.0632 0x2624 SNMPTRAP - ok
15:40:00.0652 0x2624 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
15:40:00.0659 0x2624 spldr - ok
15:40:00.0684 0x2624 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
15:40:00.0700 0x2624 Spooler - ok
15:40:00.0789 0x2624 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
15:40:00.0871 0x2624 sppsvc - ok
15:40:00.0886 0x2624 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:40:00.0924 0x2624 sppuinotify - ok
15:40:00.0961 0x2624 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:40:00.0974 0x2624 srv - ok
15:40:00.0991 0x2624 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:40:01.0016 0x2624 srv2 - ok
15:40:01.0039 0x2624 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:40:01.0064 0x2624 srvnet - ok
15:40:01.0095 0x2624 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:40:01.0133 0x2624 SSDPSRV - ok
15:40:01.0146 0x2624 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:40:01.0195 0x2624 SstpSvc - ok
15:40:01.0295 0x2624 [ 591249EA969797C2A24629AF7C71A6F8, 61F28FB495657916514DE2A7FFD4AD833A1B2BBA5591616BE0C9CCD7DAFA40B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:40:01.0323 0x2624 Steam Client Service - ok
15:40:01.0352 0x2624 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:40:01.0357 0x2624 stexstor - ok
15:40:01.0406 0x2624 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
15:40:01.0426 0x2624 stisvc - ok
15:40:01.0436 0x2624 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:40:01.0443 0x2624 swenum - ok
15:40:01.0456 0x2624 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
15:40:01.0483 0x2624 swprv - ok
15:40:01.0555 0x2624 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
15:40:01.0599 0x2624 SysMain - ok
15:40:01.0616 0x2624 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:40:01.0627 0x2624 TabletInputService - ok
15:40:01.0696 0x2624 [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
15:40:01.0703 0x2624 tap0901 - ok
15:40:01.0712 0x2624 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
15:40:01.0750 0x2624 TapiSrv - ok
15:40:01.0769 0x2624 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
15:40:01.0789 0x2624 TBS - ok
15:40:01.0852 0x2624 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:40:01.0886 0x2624 Tcpip - ok
15:40:01.0932 0x2624 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:40:01.0966 0x2624 TCPIP6 - ok
15:40:02.0004 0x2624 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:40:02.0012 0x2624 tcpipreg - ok
15:40:02.0043 0x2624 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:40:02.0050 0x2624 TDPIPE - ok
15:40:02.0064 0x2624 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:40:02.0088 0x2624 TDTCP - ok
15:40:02.0127 0x2624 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:40:02.0136 0x2624 tdx - ok
15:40:02.0148 0x2624 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:40:02.0155 0x2624 TermDD - ok
15:40:02.0203 0x2624 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
15:40:02.0220 0x2624 TermService - ok
15:40:02.0228 0x2624 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
15:40:02.0256 0x2624 Themes - ok
15:40:02.0284 0x2624 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
15:40:02.0305 0x2624 THREADORDER - ok
15:40:02.0318 0x2624 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
15:40:02.0357 0x2624 TrkWks - ok
15:40:02.0435 0x2624 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:40:02.0504 0x2624 TrustedInstaller - ok
15:40:02.0545 0x2624 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:02.0568 0x2624 tssecsrv - ok
15:40:02.0607 0x2624 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:40:02.0633 0x2624 TsUsbFlt - ok
15:40:02.0651 0x2624 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:40:02.0657 0x2624 TsUsbGD - ok
15:40:02.0699 0x2624 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:40:02.0720 0x2624 tunnel - ok
15:40:02.0903 0x2624 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:40:02.0927 0x2624 uagp35 - ok
15:40:03.0005 0x2624 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:40:03.0050 0x2624 udfs - ok
15:40:03.0062 0x2624 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:40:03.0070 0x2624 UI0Detect - ok
15:40:03.0200 0x2624 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:40:03.0225 0x2624 uliagpkx - ok
15:40:03.0362 0x2624 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:40:03.0429 0x2624 umbus - ok
15:40:03.0469 0x2624 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
15:40:03.0492 0x2624 UmPass - ok
15:40:03.0517 0x2624 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
15:40:03.0550 0x2624 upnphost - ok
15:40:03.0604 0x2624 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:40:03.0648 0x2624 usbaudio - ok
15:40:03.0682 0x2624 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:03.0705 0x2624 usbccgp - ok
15:40:03.0750 0x2624 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:40:03.0773 0x2624 usbcir - ok
15:40:03.0793 0x2624 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:40:03.0819 0x2624 usbehci - ok
15:40:03.0857 0x2624 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:40:03.0868 0x2624 usbhub - ok
15:40:03.0883 0x2624 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:40:03.0890 0x2624 usbohci - ok
15:40:03.0900 0x2624 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:40:03.0908 0x2624 usbprint - ok
15:40:03.0947 0x2624 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:40:03.0981 0x2624 usbscan - ok
15:40:04.0003 0x2624 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:04.0011 0x2624 USBSTOR - ok
15:40:04.0020 0x2624 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:40:04.0040 0x2624 usbuhci - ok
15:40:04.0076 0x2624 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
15:40:04.0131 0x2624 UxSms - ok
15:40:04.0148 0x2624 [ CB0E57424A776C51EF42469064ADBF08, 2E4EFE070560F4CCE6AF6D142C559EEF3672631C846E612968D57BE7F71C1C4F ] VaultSvc C:\Windows\system32\lsass.exe
15:40:04.0154 0x2624 VaultSvc - ok
15:40:04.0176 0x2624 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:40:04.0182 0x2624 vdrvroot - ok
15:40:04.0203 0x2624 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
15:40:04.0229 0x2624 vds - ok
15:40:04.0241 0x2624 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:04.0248 0x2624 vga - ok
15:40:04.0260 0x2624 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:40:04.0280 0x2624 VgaSave - ok
15:40:04.0295 0x2624 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:40:04.0303 0x2624 vhdmp - ok
15:40:04.0346 0x2624 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
15:40:04.0367 0x2624 viaide - ok
15:40:04.0378 0x2624 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:40:04.0391 0x2624 volmgr - ok
15:40:04.0410 0x2624 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:40:04.0425 0x2624 volmgrx - ok
15:40:04.0435 0x2624 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:40:04.0444 0x2624 volsnap - ok
15:40:04.0460 0x2624 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:40:04.0468 0x2624 vsmraid - ok
15:40:04.0515 0x2624 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
15:40:04.0556 0x2624 VSS - ok
15:40:04.0570 0x2624 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:40:04.0578 0x2624 vwifibus - ok
15:40:04.0595 0x2624 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
15:40:04.0619 0x2624 W32Time - ok
15:40:04.0635 0x2624 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:40:04.0664 0x2624 WacomPen - ok
15:40:04.0703 0x2624 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:40:04.0751 0x2624 WANARP - ok
15:40:04.0756 0x2624 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:40:04.0776 0x2624 Wanarpv6 - ok
15:40:04.0888 0x2624 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:40:04.0920 0x2624 WatAdminSvc - ok
15:40:04.0957 0x2624 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
15:40:05.0004 0x2624 wbengine - ok
15:40:05.0025 0x2624 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:40:05.0038 0x2624 WbioSrvc - ok
15:40:05.0050 0x2624 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:40:05.0065 0x2624 wcncsvc - ok
15:40:05.0073 0x2624 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:40:05.0080 0x2624 WcsPlugInService - ok
15:40:05.0095 0x2624 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
15:40:05.0101 0x2624 Wd - ok
15:40:05.0149 0x2624 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:40:05.0169 0x2624 Wdf01000 - ok
15:40:05.0183 0x2624 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:40:05.0192 0x2624 WdiServiceHost - ok
15:40:05.0195 0x2624 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:40:05.0203 0x2624 WdiSystemHost - ok
15:40:05.0248 0x2624 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
15:40:05.0259 0x2624 WebClient - ok
15:40:05.0270 0x2624 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:40:05.0294 0x2624 Wecsvc - ok
15:40:05.0303 0x2624 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:40:05.0323 0x2624 wercplsupport - ok
15:40:05.0354 0x2624 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
15:40:05.0416 0x2624 WerSvc - ok
15:40:05.0445 0x2624 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:40:05.0493 0x2624 WfpLwf - ok
15:40:05.0503 0x2624 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:40:05.0513 0x2624 WIMMount - ok
15:40:05.0528 0x2624 WinDefend - ok
15:40:05.0546 0x2624 WinHttpAutoProxySvc - ok
15:40:05.0625 0x2624 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:40:05.0680 0x2624 Winmgmt - ok
15:40:05.0747 0x2624 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
15:40:05.0786 0x2624 WinRM - ok
15:40:05.0844 0x2624 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:40:05.0871 0x2624 WinUsb - ok
15:40:05.0911 0x2624 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:40:05.0941 0x2624 Wlansvc - ok
15:40:06.0064 0x2624 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:40:06.0113 0x2624 wlidsvc - ok
15:40:06.0122 0x2624 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:40:06.0129 0x2624 WmiAcpi - ok
15:40:06.0146 0x2624 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:40:06.0156 0x2624 wmiApSrv - ok
15:40:06.0178 0x2624 WMPNetworkSvc - ok
15:40:06.0218 0x2624 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:40:06.0256 0x2624 WPCSvc - ok
15:40:06.0273 0x2624 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:40:06.0282 0x2624 WPDBusEnum - ok
15:40:06.0316 0x2624 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:40:06.0350 0x2624 ws2ifsl - ok
15:40:06.0379 0x2624 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
15:40:06.0410 0x2624 wscsvc - ok
15:40:06.0412 0x2624 WSearch - ok
15:40:06.0480 0x2624 [ 6075791ED85E47A2A2916B1F34582944, 25B5FAD161711875B38BDD014A26FA527C8EE4854D485989D19A72D5EBBA4054 ] wuauserv C:\Windows\system32\wuaueng.dll
15:40:06.0526 0x2624 wuauserv - ok
15:40:06.0553 0x2624 wucotusy - ok
15:40:06.0589 0x2624 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:40:06.0630 0x2624 WudfPf - ok
15:40:06.0664 0x2624 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:06.0675 0x2624 WUDFRd - ok
15:40:06.0702 0x2624 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:40:06.0712 0x2624 wudfsvc - ok
15:40:06.0752 0x2624 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
15:40:06.0780 0x2624 WwanSvc - ok
15:40:06.0783 0x2624 zutuzuni - ok
15:40:06.0804 0x2624 ================ Scan global ===============================
15:40:06.0834 0x2624 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
15:40:06.0883 0x2624 [ CE14A4BBF890A7D4C898CF886D145EC9, AD4BE7CBB0C624EC00E8496AF33AC5AB8C5689C75C66C4C99F2FB7149E912D18 ] C:\Windows\system32\winsrv.dll
15:40:06.0907 0x2624 [ CE14A4BBF890A7D4C898CF886D145EC9, AD4BE7CBB0C624EC00E8496AF33AC5AB8C5689C75C66C4C99F2FB7149E912D18 ] C:\Windows\system32\winsrv.dll
15:40:06.0949 0x2624 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:40:07.0107 0x2624 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
15:40:07.0127 0x2624 [ Global ] - ok
15:40:07.0127 0x2624 ================ Scan MBR ==================================
15:40:07.0142 0x2624 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:40:07.0375 0x2624 \Device\Harddisk0\DR0 - ok
15:40:07.0382 0x2624 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR6
15:40:07.0496 0x2624 \Device\Harddisk5\DR6 - ok
15:40:07.0496 0x2624 ================ Scan VBR ==================================
15:40:07.0498 0x2624 [ 771FD9E9F6A16B55FB4FA63170661643 ] \Device\Harddisk0\DR0\Partition1
15:40:07.0550 0x2624 \Device\Harddisk0\DR0\Partition1 - ok
15:40:07.0551 0x2624 [ 87AABBBAD321A08EFEB3765DF2841689 ] \Device\Harddisk0\DR0\Partition2
15:40:07.0599 0x2624 \Device\Harddisk0\DR0\Partition2 - ok
15:40:07.0602 0x2624 [ 6759C27CDD99BE9B4E794248BA2F40E4 ] \Device\Harddisk5\DR6\Partition1
15:40:07.0602 0x2624 \Device\Harddisk5\DR6\Partition1 - ok
15:40:07.0603 0x2624 ================ Scan generic autorun ======================
15:40:07.0909 0x2624 [ 324B8DDDF70D28B7A767E0608256DF36, 2FA4AA3F5E6D9C16A50F986027708AF657ADE9AE2A286E4F7686A1DF510FC2C1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:40:08.0114 0x2624 RTHDVCPL - ok
15:40:08.0317 0x2624 [ E250A6257C93C9C504497D85BBF9AB7A, 4CD2E5958A7658E3A533E26DDD29C843640C9086A11AA925DDB8F983D2AC0F25 ] C:\Program Files\AMD\CNext\CNext\cnext.exe
15:40:08.0462 0x2624 StartCN - ok
15:40:08.0618 0x2624 [ 504C916D52ABA407FD4DC1E709AEA71E, 8F279620247481F28DF7D9FD4A81173396E39EB807E24587E89CAF1172CC846C ] C:\Program Files (x86)\avmwlanstick\wlangui.exe
15:40:08.0657 0x2624 AVMWlanClient - detected UnsignedFile.Multi.Generic ( 1 )
15:40:08.0657 0x2624 AVMWlanClient ( UnsignedFile.Multi.Generic ) - warning
15:40:08.0657 0x2624 Force sending object to P2P due to detect: C:\Program Files (x86)\avmwlanstick\wlangui.exe
15:40:08.0662 0x2624 Object send P2P result: false
15:40:08.0739 0x2624 [ E4E7B29D050F5480071984FE6543C311, 9A4D8D1702AE74AB4FE4367EAF4AD6500F59D4F25B3CCACE3EF07613B7B5853C ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
15:40:08.0748 0x2624 USB3MON - ok
15:40:08.0873 0x2624 [ C3C11B38503519BE925A3221EAD703F1, 9904973C0BD57F1B561FAAEAF0DB2203D91D5DFC17BD9F9C417FE48A78DE0619 ] C:\Program Files (x86)\Raptr\raptrstub.exe
15:40:08.0896 0x2624 Raptr - ok
15:40:08.0937 0x2624 [ 84CEC01EDA8D2C2F65C6E0C22E87E15A, 2209D629FAD8C0FB5681349128801ECB5F886A3BB77EDD084F3A89EE9BB7610A ] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
15:40:08.0950 0x2624 Razer Synapse - ok
15:40:09.0027 0x2624 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
15:40:09.0048 0x2624 HP Software Update - ok
15:40:09.0147 0x2624 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:40:09.0196 0x2624 Sidebar - ok
15:40:09.0536 0x2624 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:40:09.0648 0x2624 mctadmin - ok
15:40:09.0679 0x2624 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:40:09.0701 0x2624 Sidebar - ok
15:40:09.0704 0x2624 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:40:09.0714 0x2624 mctadmin - ok
15:40:09.0868 0x2624 [ FF74D2A2E3A3615A765B5181DB18551D, C38F06705B4E3264ABA10317BF3DE6D022E9B9D5B3016B08121512E84880963C ] C:\Program Files (x86)\Steam\steam.exe
15:40:09.0914 0x2624 Steam - ok
15:40:09.0921 0x2624 ts3index_musicbot_service - ok
15:40:09.0961 0x2624 [ 2B134B3277A36CBA1BA54EBF2B2FAD5F, 72F72AF5FB5BE36858573CFBC4D2BBC3EB3EFC4BCB66081C2D7787BF31C6BB12 ] C:\Program Files\CyberGhost 5\CyberGhost.exe
15:40:09.0980 0x2624 CyberGhost - ok
15:40:10.0062 0x2624 [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\Windows\SysWOW64\rundll32.exe
15:40:10.0086 0x2624 tsiVideo - ok
15:40:10.0150 0x2624 Advanced SystemCare 9 - ok
15:40:10.0240 0x2624 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.15.106 ), 0x40000 ( disabled : updated )
15:40:10.0248 0x2624 Win FW state via NFP2: enabled ( trusted )
15:40:10.0249 0x2624 ============================================================
15:40:10.0249 0x2624 Scan finished
15:40:10.0249 0x2624 ============================================================
15:40:10.0253 0x27a0 Detected object count: 8
15:40:10.0254 0x27a0 Actual detected object count: 8
15:40:34.0791 0x27a0 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0791 0x27a0 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0792 0x27a0 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0792 0x27a0 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0793 0x27a0 Boonty Games ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0793 0x27a0 Boonty Games ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0794 0x27a0 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0794 0x27a0 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0795 0x27a0 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0795 0x27a0 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0796 0x27a0 Qualcomm Atheros Killer Service V2 ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0796 0x27a0 Qualcomm Atheros Killer Service V2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0797 0x27a0 RzSurroundVADStreamingService ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0797 0x27a0 RzSurroundVADStreamingService ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:40:34.0798 0x27a0 AVMWlanClient ( UnsignedFile.Multi.Generic ) - skipped by user
15:40:34.0798 0x27a0 AVMWlanClient ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
08.02.2016, 15:44
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Vermutung an Trojaner oder Virus Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Vermutung an Trojaner oder Virus |
| dringend, einfach, hilfe, nichts, programme, sämtliche, troja, trojaner, vermute, vermutung, virenprogramme, virus |
Linear-Darstellung
