| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Cse.google.com Problem eingefangenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
17.01.2017, 09:09
| #1 |
 |  Cse.google.com Problem eingefangen Hallo da rüber, habe da seit Tagen ein großes Problem mit meinen Browser Google Chrom. Er leitet mich immer um und im Link oben steht: https://cse.google.com/cse? und irgend was mit partner pub  Ich hatte da wohl nicht genau Recherchiert gehabt weil ich was bei CHIP und Computer-Bild gesaugt hatte. Und ich erst später gelesen hatte das man sich da solche sachen einfängt. So muss ich mir wohl was eingefangen haben. Dachte das man wenichstends diesen Seite trauen könnte :-( Das komische ist ich habe schon mit Anti-Malware, AdwCleaner und mal mit den ESET Online Scanner geschaut. Bei allen findet er auch was, was ich natürlich gelöscht hatte. Wenn dann der Rechner Neustartet und ich Google auf mache ist es auch erst mal ganz normal. Aber dann kommt das Problem einfach wieder, und die Programme zeigen wieder Fehler an. Verstehe nicht warum das einfach wieder kommt. Würde mich freuen wenn jemand mit mir mal die schritte durch gehen würde. Weil das echt nervt mit der Zeit. Ärger mich da schon Tage mit rum. |
|
17.01.2017, 10:19
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Cse.google.com Problem eingefangen hi,
__________________Zitat:
  Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
17.01.2017, 11:45
| #3 |
| | Cse.google.com Problem eingefangen AdwCleaner Logfile:
__________________Code:
ATTFilter # AdwCleaner v6.042 - Bericht erstellt am 17/01/2017 um 10:57:39
# Aktualisiert am 06/01/2017 von Malwarebytes
# Datenbank : 2017-01-17.1 [Lokal]
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (X64)
# Benutzername : Mike - MIKE-PC
# Gestartet von : D:\### Software ###\### Software\__Anti - Virus & Malware\adwcleaner_6.042.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocggccaacacpienfcgmgcihoombokbbj
[-] Ordner gelöscht: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ocggccaacacpienfcgmgcihoombokbbj_0
[-] Ordner gelöscht: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ocggccaacacpienfcgmgcihoombokbbj
***** [ Dateien ] *****
[-] Datei gelöscht: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ocggccaacacpienfcgmgcihoombokbbj_0.localstorage
[-] Datei gelöscht: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ocggccaacacpienfcgmgcihoombokbbj_0.localstorage-journal
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
[-] [C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default] [extension] Gelöscht: ocggccaacacpienfcgmgcihoombokbbj
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [3281 Bytes] - [15/01/2017 12:34:31]
C:\AdwCleaner\AdwCleaner[C2].txt - [2685 Bytes] - [15/01/2017 13:11:49]
C:\AdwCleaner\AdwCleaner[C3].txt - [1873 Bytes] - [15/01/2017 13:23:49]
C:\AdwCleaner\AdwCleaner[C4].txt - [2481 Bytes] - [15/01/2017 16:53:49]
C:\AdwCleaner\AdwCleaner[C5].txt - [2700 Bytes] - [16/01/2017 09:54:07]
C:\AdwCleaner\AdwCleaner[C6].txt - [2090 Bytes] - [17/01/2017 10:57:39]
C:\AdwCleaner\AdwCleaner[R0].txt - [1168 Bytes] - [15/06/2014 15:18:55]
C:\AdwCleaner\AdwCleaner[S0].txt - [1233 Bytes] - [15/06/2014 15:22:11]
C:\AdwCleaner\AdwCleaner[S10].txt - [3274 Bytes] - [17/01/2017 10:39:58]
C:\AdwCleaner\AdwCleaner[S11].txt - [3347 Bytes] - [17/01/2017 10:49:35]
C:\AdwCleaner\AdwCleaner[S1].txt - [3255 Bytes] - [15/01/2017 12:32:43]
C:\AdwCleaner\AdwCleaner[S2].txt - [2792 Bytes] - [15/01/2017 12:57:07]
C:\AdwCleaner\AdwCleaner[S3].txt - [2016 Bytes] - [15/01/2017 13:23:10]
C:\AdwCleaner\AdwCleaner[S4].txt - [1984 Bytes] - [15/01/2017 13:37:17]
C:\AdwCleaner\AdwCleaner[S5].txt - [3156 Bytes] - [15/01/2017 13:52:20]
C:\AdwCleaner\AdwCleaner[S6].txt - [2569 Bytes] - [15/01/2017 16:48:05]
C:\AdwCleaner\AdwCleaner[S7].txt - [2715 Bytes] - [16/01/2017 09:34:13]
C:\AdwCleaner\AdwCleaner[S8].txt - [2788 Bytes] - [16/01/2017 09:53:38]
C:\AdwCleaner\AdwCleaner[S9].txt - [2483 Bytes] - [16/01/2017 09:59:33]
########## EOF - C:\AdwCleaner\AdwCleaner[C6].txt - [3114 Bytes] ##########
[/CODE] mbam folgt gleich, da nach muss ich leider zur Arbeit. mbam Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 17.01.2017 Suchlaufzeit: 11:05 Protokolldatei: mbam.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2017.01.17.04 Rootkit-Datenbank: v2016.11.20.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Mike Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 355720 Abgelaufene Zeit: 22 Min., 41 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 1 Adware.Elex, C:\Windows\temp\g7722.tmp.exe, 3916, Löschen bei Neustart, [cc2c7507f9af3cfa5afd39a0837d956b] Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 1 Adware.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|wd, C:\Windows\TEMP\g7722.tmp.exe, In Quarantäne, [cc2c7507f9af3cfa5afd39a0837d956b] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 1 Adware.Elex, C:\Windows\temp\g7722.tmp.exe, Löschen bei Neustart, [cc2c7507f9af3cfa5afd39a0837d956b], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) |
|
17.01.2017, 11:47
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen Du solltest eigentlich keine neuen Scans machen sondern schon vorhandene Logs posten
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
17.01.2017, 11:54
| #5 |
| | Cse.google.com Problem eingefangen ich kann gerne die alten log's rein stellen werden ja gespeichert, wenn es hilft ? |
|
18.01.2017, 12:34
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen Wo sind denn jetzt alle Logs mit Funden??
__________________ --> Cse.google.com Problem eingefangen |
|
19.01.2017, 08:40
| #7 |
| | Cse.google.com Problem eingefangen ah so weil es eine Frage von mir wahr ob ich sie trotzdem nachreichen soll. Wird erledigt, aber leider erst etwas später muß wieder zur Arbeit. AdwCleaner1 Logfile: Code:
ATTFilter # AdwCleaner v6.042 - Bericht erstellt am 15/01/2017 um 12:32:43
# Aktualisiert am 06/01/2017 von Malwarebytes
# Datenbank : 2017-01-14.1 [Server]
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (X64)
# Benutzername : Mike - MIKE-PC
# Gestartet von : C:\Users\Mike\Desktop\adwcleaner_6.042.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
Keine schädlichen Dienste gefunden.
***** [ Ordner ] *****
Ordner Gefunden: C:\Users\Mike\AppData\Roaming\KW
Ordner Gefunden: C:\Users\Mike\AppData\Roaming\OpenCandy
Ordner Gefunden: C:\ProgramData\vCore
Ordner Gefunden: C:\ProgramData\Application Data\vCore
Ordner Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam
Ordner Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pbjikboenpfhbbejgkoklgkhjpfogcam
Ordner Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfmkllfplegemejikoabfpjdaoncphip
Ordner Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl
***** [ Dateien ] *****
Datei Gefunden: C:\END
Datei Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pbjikboenpfhbbejgkoklgkhjpfogcam_0.localstorage
Datei Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nonjdcjchghhkdoolnlbekcfllmednbl_0.localstorage
Datei Gefunden: C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_nonjdcjchghhkdoolnlbekcfllmednbl_0.localstorage-journal
***** [ DLL ] *****
Keine infizierten DLLs gefunden.
***** [ WMI ] *****
Keine schädlichen Schlüssel gefunden.
***** [ Verknüpfungen ] *****
Keine infizierten Verknüpfungen gefunden.
***** [ Aufgabenplanung ] *****
Aufgabe Gefunden: Microsoft\Windows\Media Center\VCore
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden: HKU\S-1-5-21-1794594290-1072583154-3088019648-1000\Software\ImInstaller
Schlüssel Gefunden: HKCU\Software\ImInstaller
Schlüssel Gefunden: HKLM\SOFTWARE\ImInstaller
Schlüssel Gefunden: [x64] HKCU\Software\ImInstaller
Wert Gefunden: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce [Wd]
***** [ Internetbrowser ] *****
Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Chrome pref Gefunden: [C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - hfmkllfplegemejikoabfpjdaoncphip
Chrome pref Gefunden: [C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - nonjdcjchghhkdoolnlbekcfllmednbl
Chrome pref Gefunden: [C:\Users\Mike\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - pbjikboenpfhbbejgkoklgkhjpfogcam
*************************
C:\AdwCleaner\AdwCleaner[R0].txt - [1168 Bytes] - [15/06/2014 15:18:55]
C:\AdwCleaner\AdwCleaner[S0].txt - [1233 Bytes] - [15/06/2014 15:22:11]
C:\AdwCleaner\AdwCleaner[S1].txt - [3095 Bytes] - [15/01/2017 12:32:43]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [3168 Bytes] ##########
[/CODE] Code:
ATTFilter mbam1
Suchlaufdatum: 17.01.2017
Suchlaufzeit: 08:28
Protokolldatei: mbam1.txt
Administrator: Ja
Version: 2.2.1.1043
Malware-Datenbank: v2017.01.17.04
Rootkit-Datenbank: v2016.11.20.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Mike
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 355455
Abgelaufene Zeit: 17 Min., 6 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 1
Adware.Elex, C:\Windows\temp\g54A5.tmp.exe, 852, Löschen bei Neustart, [4eaa9ddf4563d95d3e1913c659a7c53b]
Module: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswerte: 1
Adware.Elex, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|wd, C:\Windows\TEMP\g54A5.tmp.exe, In Quarantäne, [4eaa9ddf4563d95d3e1913c659a7c53b]
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Dateien: 2
Adware.Elex, C:\Windows\temp\g54A5.tmp.exe, Löschen bei Neustart, [4eaa9ddf4563d95d3e1913c659a7c53b],
Adware.Elex, C:\Users\Mike\AppData\Local\Temp\g5E95.tmp.exe, In Quarantäne, [c0387a027c2c73c39abd746558a846ba],
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter mbam2
Suchlaufdatum: 15.01.2017
Suchlaufzeit: 16:23
Protokolldatei: mbam2.txt
Administrator: Ja
Version: 2.2.1.1043
Malware-Datenbank: v2017.01.15.04
Rootkit-Datenbank: v2016.11.20.01
Lizenz: Kostenlose Version
Malware-Schutz: Deaktiviert
Schutz vor bösartigen Websites: Deaktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Mike
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 362109
Abgelaufene Zeit: 10 Min., 3 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 0
(keine bösartigen Elemente erkannt)
Module: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 2
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4AE073AB-B9F6-4A11-8532-E2BF23EA6A54}, Löschen bei Neustart, [3af6215b5a4e59dd67754692de22b34d],
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\186847v2a230h97, Löschen bei Neustart, [0927e4987f297fb766da22b6df21dc24],
Registrierungswerte: 1
Trojan.Agent.Generic, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{4AE073AB-B9F6-4A11-8532-E2BF23EA6A54}|Path, \186847v2a230h97, Löschen bei Neustart, [3af6215b5a4e59dd67754692de22b34d]
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Ordner: 1
Trojan.Agent.Generic, C:\ProgramData\186847v2a230h97, Löschen bei Neustart, [3ff18bf1129694a2f7e40fc91fe1de22],
Dateien: 3
Trojan.Agent.Generic, C:\ProgramData\186847v2a230h97\186847v2a230h97.dll, Löschen bei Neustart, [3ff18bf1129694a2f7e40fc91fe1de22],
Trojan.Agent.Generic, C:\ProgramData\186847v2a230h97\169.tmp, In Quarantäne, [3ff18bf1129694a2f7e40fc91fe1de22],
Trojan.Agent.Generic, C:\Windows\System32\Tasks\186847v2a230h97, In Quarantäne, [bd732359c3e5c67067f9c01946bae917],
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end)
|
|
19.01.2017, 09:34
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen adwCleane rmüssen wir später nochmal wiederholen. 1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.01.2017, 08:33
| #9 |
| | Cse.google.com Problem eingefangenCode:
ATTFilter
Malwarebytes Anti-Rootkit (Log 1)
Database version:
main: v2017.01.19.02
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18499
Mike :: MIKE-PC [administrator]
19.01.2017 10:36:17
mbar-log-2017-01-19 (10-36-17).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 357080
Time elapsed: 16 minute(s), 6 second(s)
Memory Processes Detected: 1
C:\Windows\temp\g7C7F.tmp.exe (Adware.Elex) -> 1456 -> Delete on reboot. [ac123a43169289adfe78716b4bb5af51]
Memory Modules Detected: 4
C:\Windows\temp\g1A43.tmp (Adware.Elex) -> Delete on reboot. [a519c4b9d3d5a09648610a94629e2ad6]
C:\Windows\temp\g1A43.tmp (Adware.Elex) -> Delete on reboot. [a519c4b9d3d5a09648610a94629e2ad6]
C:\Windows\temp\g1A43.tmp (Adware.Elex) -> Delete on reboot. [a519c4b9d3d5a09648610a94629e2ad6]
C:\Windows\temp\g1A43.tmp (Adware.Elex) -> Delete on reboot. [a519c4b9d3d5a09648610a94629e2ad6]
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 1
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|wd (Adware.Elex) -> Data: C:\Windows\TEMP\g7C7F.tmp.exe -> Delete on reboot. [ac123a43169289adfe78716b4bb5af51]
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\Windows\temp\g7C7F.tmp.exe (Adware.Elex) -> Delete on reboot. [ac123a43169289adfe78716b4bb5af51]
C:\Windows\temp\g1A43.tmp (Adware.Elex) -> Delete on reboot. [a519c4b9d3d5a09648610a94629e2ad6]
C:\Windows\temp\g5060.tmp.exe (Adware.Elex) -> Delete on reboot. [f4cade9f099f77bf2e1dcbd707f9837d]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter
Malwarebytes Anti-Rootkit Log 2
Database version:
main: v2017.01.19.02
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18499
Mike :: MIKE-PC [administrator]
19.01.2017 11:11:53
mbar-log-2017-01-19 (11-11-53).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 356582
Time elapsed: 16 minute(s), 43 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\Windows\temp\g7EDF.tmp (Adware.Elex) -> Delete on reboot. [0eb084f9d2d6082e1594ddc114ec03fd]
C:\Windows\temp\g7F4D.tmp.exe (Adware.Elex) -> Delete on reboot. [615d65183375f93d9caf525027d93cc4]
C:\Windows\temp\g7F8D.tmp.exe (Adware.Elex) -> Delete on reboot. [e5d937463771a591aec8edef4fb1ac54]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter
Malwarebytes Anti-Rootkit Log 3
Database version:
main: v2017.01.19.02
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18499
Mike :: MIKE-PC [administrator]
19.01.2017 11:36:30
mbar-log-2017-01-19 (11-36-30).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 356818
Time elapsed: 17 minute(s), 51 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 3
C:\Windows\temp\g72AF.tmp (Adware.Elex) -> Delete on reboot. [6c52116c5553d6604069930b728e8d73]
C:\Windows\temp\g72B0.tmp.exe (Adware.Elex) -> Delete on reboot. [f0ceec91c9df6dc9d07b138f21df54ac]
C:\Windows\temp\g72EF.tmp.exe (Adware.Elex) -> Delete on reboot. [9b238bf25f493ef8a3d35a8254ac43bd]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
TDSSKILLER Code:
ATTFilter
08:21:36.0933 0x0844 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
08:21:41.0167 0x0844 ============================================================
08:21:41.0167 0x0844 Current date / time: 2017/01/20 08:21:41.0167
08:21:41.0167 0x0844 SystemInfo:
08:21:41.0167 0x0844
08:21:41.0167 0x0844 OS Version: 6.1.7601 ServicePack: 1.0
08:21:41.0167 0x0844 Product type: Workstation
08:21:41.0167 0x0844 ComputerName: MIKE-PC
08:21:41.0167 0x0844 UserName: Mike
08:21:41.0167 0x0844 Windows directory: C:\Windows
08:21:41.0167 0x0844 System windows directory: C:\Windows
08:21:41.0167 0x0844 Running under WOW64
08:21:41.0167 0x0844 Processor architecture: Intel x64
08:21:41.0167 0x0844 Number of processors: 4
08:21:41.0167 0x0844 Page size: 0x1000
08:21:41.0167 0x0844 Boot type: Normal boot
08:21:41.0167 0x0844 CodeIntegrityOptions = 0x00000001
08:21:41.0167 0x0844 ============================================================
08:21:46.0606 0x0844 KLMD registered as C:\Windows\system32\drivers\07210420.sys
08:21:46.0606 0x0844 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23564, osProperties = 0x1
08:21:46.0871 0x0844 System UUID: {74E82C06-B160-26C7-1BE8-CFFAEF6E4FFC}
08:21:47.0389 0x0844 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x7E2D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
08:21:47.0389 0x0844 ============================================================
08:21:47.0389 0x0844 \Device\Harddisk0\DR0:
08:21:47.0389 0x0844 MBR partitions:
08:21:47.0389 0x0844 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:21:47.0389 0x0844 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x74FE000
08:21:47.0389 0x0844 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x7530800, BlocksNum 0x15C94800
08:21:47.0389 0x0844 ============================================================
08:21:47.0420 0x0844 C: <-> \Device\Harddisk0\DR0\Partition2
08:21:47.0467 0x0844 D: <-> \Device\Harddisk0\DR0\Partition3
08:21:47.0513 0x0844 I: <-> \Device\Harddisk0\DR0\Partition1
08:21:47.0513 0x0844 ============================================================
08:21:47.0513 0x0844 Initialize success
08:21:47.0513 0x0844 ============================================================
08:22:38.0417 0x1bec ============================================================
08:22:38.0417 0x1bec Scan started
08:22:38.0417 0x1bec Mode: Manual; SigCheck; TDLFS;
08:22:38.0417 0x1bec ============================================================
08:22:38.0417 0x1bec KSN ping started
08:22:38.0511 0x1bec KSN ping finished: true
08:22:39.0979 0x1bec ================ Scan system memory ========================
08:22:39.0979 0x1bec System memory - ok
08:22:39.0979 0x1bec ================ Scan services =============================
08:22:40.0088 0x1bec [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
08:22:40.0151 0x1bec 1394ohci - ok
08:22:40.0182 0x1bec [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:22:40.0197 0x1bec ACPI - ok
08:22:40.0213 0x1bec [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:22:40.0291 0x1bec AcpiPmi - ok
08:22:40.0431 0x1bec [ CD41DFA7A778555B2055E2D388F5CB33, AE149AB7823AE3A97E2826C06968F32A7E50331484203E4581C83E441A1680F9 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
08:22:40.0463 0x1bec AcrSch2Svc - ok
08:22:40.0652 0x1bec [ CA363F172E1978FD155764F2840B0BE8, CB14E2C94ABB8C8809F4E96472F6D1A9A3A0860217631F592E0F62F043165575 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:22:40.0667 0x1bec AdobeFlashPlayerUpdateSvc - ok
08:22:40.0747 0x1bec [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:22:40.0779 0x1bec adp94xx - ok
08:22:40.0920 0x1bec [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:22:40.0982 0x1bec adpahci - ok
08:22:41.0029 0x1bec [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:22:41.0076 0x1bec adpu320 - ok
08:22:41.0123 0x1bec [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:22:41.0185 0x1bec AeLookupSvc - ok
08:22:41.0263 0x1bec [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
08:22:41.0294 0x1bec afcdp - ok
08:22:41.0718 0x1bec [ 3B1C11CB7006495F799F8A2AB8B2D530, B7B0C4922A1843BBF8104CDC705C4FEA1F1A760C1CC2BD6BC5E4213A0E4ED9FD ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
08:22:41.0797 0x1bec afcdpsrv - ok
08:22:41.0859 0x1bec [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
08:22:41.0921 0x1bec AFD - ok
08:22:41.0999 0x1bec [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
08:22:41.0999 0x1bec agp440 - ok
08:22:42.0031 0x1bec [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
08:22:42.0062 0x1bec ALG - ok
08:22:42.0062 0x1bec [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
08:22:42.0077 0x1bec aliide - ok
08:22:42.0093 0x1bec [ 3F6606CD1E96E1D74FFE466BE49F355C, BA380DEA42228E6F3CCB778157A66B68605D8A69B49BB48B7A4A97CED16F4447 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:22:42.0171 0x1bec AMD External Events Utility - ok
08:22:42.0218 0x1bec AMD FUEL Service - ok
08:22:42.0249 0x1bec [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
08:22:42.0265 0x1bec amdide - ok
08:22:42.0280 0x1bec [ 35D34AD337A1AC46F74C3377B4CCA88E, 046695BDF540EDCA87C36EDC725615ACA99DA57558A54CAC1B49F245D702B406 ] amdide64 C:\Windows\system32\DRIVERS\amdide64.sys
08:22:42.0280 0x1bec amdide64 - ok
08:22:42.0296 0x1bec [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:22:42.0327 0x1bec AmdK8 - ok
08:22:42.0343 0x1bec amdkmdag - ok
08:22:42.0389 0x1bec [ 6E373F069CD0FABC5B4D6D5D068CB879, DB25DB241656491C6A7FAAAC85878CD5ABD917950D953A02E5553EDA1A159C57 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
08:22:42.0421 0x1bec amdkmdap - ok
08:22:42.0436 0x1bec [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
08:22:42.0467 0x1bec AmdPPM - ok
08:22:42.0467 0x1bec [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:22:42.0483 0x1bec amdsata - ok
08:22:42.0499 0x1bec [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:22:42.0514 0x1bec amdsbs - ok
08:22:42.0514 0x1bec [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:22:42.0530 0x1bec amdxata - ok
08:22:42.0545 0x1bec [ E8CCB797DAF80779C768BD3A9FC8FCAF, 781BD878CA34D8B6D2FE238439CD173E95449260428859BEA92866D41B1284F4 ] AODDriver4.2.0 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
08:22:42.0545 0x1bec AODDriver4.2.0 - ok
08:22:42.0577 0x1bec [ 8B73FEE96B60EE597CBCAA735A842A36, AB3FC01FEC62AC115EC766770D8694DEDA2FF2286E0199DC238ABF2493EC1A22 ] AppID C:\Windows\system32\drivers\appid.sys
08:22:42.0608 0x1bec AppID - ok
08:22:42.0623 0x1bec [ F5800413C0DF45C2CA15FD3ACBB1365F, 741E09EED0FF0152B59704729BD700E7D7A671C88F0708884AAB7A56ECCBD8AB ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:22:42.0639 0x1bec AppIDSvc - ok
08:22:42.0655 0x1bec [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo C:\Windows\System32\appinfo.dll
08:22:42.0686 0x1bec Appinfo - ok
08:22:42.0733 0x1bec [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
08:22:42.0764 0x1bec AppMgmt - ok
08:22:42.0779 0x1bec [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
08:22:42.0795 0x1bec arc - ok
08:22:42.0811 0x1bec [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:22:42.0826 0x1bec arcsas - ok
08:22:42.0937 0x1bec [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:22:42.0953 0x1bec aspnet_state - ok
08:22:42.0969 0x1bec [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:22:43.0000 0x1bec AsyncMac - ok
08:22:43.0015 0x1bec [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
08:22:43.0031 0x1bec atapi - ok
08:22:43.0140 0x1bec [ EA0AF9B866DF07E8FE6C2342585788B0, BE8E799C1ED36B9DC6BEAB40E8B460464C01014DEC021760FB19626C77550792 ] athur C:\Windows\system32\DRIVERS\athurx.sys
08:22:43.0249 0x1bec athur - ok
08:22:43.0281 0x1bec [ F9DB31BC5CD3700D37DB136BA56E5E9D, 9AB7421975500EE7FE583CCF86914F94E697606A9199DC4F27D5609554C5D3F7 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
08:22:43.0296 0x1bec AtiHDAudioService - ok
08:22:43.0359 0x1bec [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:22:43.0390 0x1bec AudioEndpointBuilder - ok
08:22:43.0405 0x1bec [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:22:43.0437 0x1bec AudioSrv - ok
08:22:43.0483 0x1bec [ 0D2F8F4055903A762AD46204E5A42E86, D3270039E4F066C69D844060388D3F895137C37C0FBE4C106BE1C71AE9DBC17A ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security Technical Preview 14.0.0\avp.exe
08:22:43.0499 0x1bec AVP - ok
08:22:43.0546 0x1bec [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:22:43.0577 0x1bec AxInstSV - ok
08:22:43.0624 0x1bec [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:22:43.0655 0x1bec b06bdrv - ok
08:22:43.0671 0x1bec [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:22:43.0686 0x1bec b57nd60a - ok
08:22:43.0717 0x1bec [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
08:22:43.0733 0x1bec BDESVC - ok
08:22:43.0749 0x1bec [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
08:22:43.0780 0x1bec Beep - ok
08:22:43.0844 0x1bec [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
08:22:43.0875 0x1bec BFE - ok
08:22:43.0907 0x1bec BioNTDrv - ok
08:22:43.0985 0x1bec [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
08:22:44.0078 0x1bec BITS - ok
08:22:44.0094 0x1bec [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:22:44.0094 0x1bec blbdrive - ok
08:22:44.0125 0x1bec [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:22:44.0141 0x1bec bowser - ok
08:22:44.0156 0x1bec [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:22:44.0172 0x1bec BrFiltLo - ok
08:22:44.0187 0x1bec [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:22:44.0203 0x1bec BrFiltUp - ok
08:22:44.0234 0x1bec [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
08:22:44.0265 0x1bec Browser - ok
08:22:44.0281 0x1bec [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:22:44.0328 0x1bec Brserid - ok
08:22:44.0328 0x1bec [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:22:44.0343 0x1bec BrSerWdm - ok
08:22:44.0359 0x1bec [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:22:44.0375 0x1bec BrUsbMdm - ok
08:22:44.0390 0x1bec [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:22:44.0406 0x1bec BrUsbSer - ok
08:22:44.0486 0x1bec [ 932E0FD6EA9AEE33DC6E5DF65790B352, 236EE266F6BA2158D88AB5DFB1214D10AB5D225A4064BA581BF4A5B368BFDAE1 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
08:22:44.0579 0x1bec BstHdAndroidSvc - ok
08:22:44.0621 0x1bec [ E3F8C3AEE0FA655FA934E4A886DF9843, 56CD64B707D2A1048B21954EC53D39BA85E8CE8C644E98EF683C26F2BECA6AA4 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
08:22:44.0636 0x1bec BstHdDrv - ok
08:22:44.0680 0x1bec [ E385AD07B0D950EF69956AEE227C8BC3, A5045AABB009D91A23C7EEB557C26B4D94B6D61E3DCBBC8B8E64B086D882772A ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
08:22:44.0696 0x1bec BstHdLogRotatorSvc - ok
08:22:44.0727 0x1bec [ 627281E9E97945A7CE678FD9157A02D2, 508111C2CC41DAC6D6BF9CC587931B8DA37F288B51BD49B9A987CD57BD847C1C ] BstHdPlusAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
08:22:44.0743 0x1bec BstHdPlusAndroidSvc - ok
08:22:44.0758 0x1bec [ FD2EFBD92116F5BCF26BC22620AE7BCC, ADB2FB890CC685F86B981FB96B7E5984463DF1C40D8E060BA7F1F2FEC3D125AC ] BstkDrv C:\Program Files (x86)\BlueStacks\BstkDrv.sys
08:22:44.0774 0x1bec BstkDrv - ok
08:22:44.0790 0x1bec [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:22:44.0805 0x1bec BTHMODEM - ok
08:22:44.0836 0x1bec [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
08:22:44.0883 0x1bec bthserv - ok
08:22:44.0899 0x1bec [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:22:44.0942 0x1bec cdfs - ok
08:22:44.0965 0x1bec [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:22:44.0992 0x1bec cdrom - ok
08:22:45.0020 0x1bec [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
08:22:45.0054 0x1bec CertPropSvc - ok
08:22:45.0080 0x1bec [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
08:22:45.0098 0x1bec circlass - ok
08:22:45.0129 0x1bec [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
08:22:45.0148 0x1bec CLFS - ok
08:22:45.0206 0x1bec [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:22:45.0217 0x1bec clr_optimization_v2.0.50727_32 - ok
08:22:45.0263 0x1bec [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:22:45.0285 0x1bec clr_optimization_v2.0.50727_64 - ok
08:22:45.0318 0x1bec [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:22:45.0333 0x1bec clr_optimization_v4.0.30319_32 - ok
08:22:45.0349 0x1bec [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:22:45.0364 0x1bec clr_optimization_v4.0.30319_64 - ok
08:22:45.0383 0x1bec [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
08:22:45.0404 0x1bec CmBatt - ok
08:22:45.0466 0x1bec [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:22:45.0485 0x1bec cmdide - ok
08:22:45.0567 0x1bec [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG C:\Windows\system32\Drivers\cng.sys
08:22:45.0649 0x1bec CNG - ok
08:22:45.0695 0x1bec [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
08:22:45.0711 0x1bec Compbatt - ok
08:22:45.0789 0x1bec [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
08:22:45.0828 0x1bec CompositeBus - ok
08:22:45.0832 0x1bec COMSysApp - ok
08:22:45.0862 0x1bec [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:22:45.0872 0x1bec crcdisk - ok
08:22:46.0194 0x1bec [ BB724567892383010B8436DCC0A84628, 2768F5FD7A096CB1CEA33F8818EF16F9F5E3E07BB8442949A49A9CF24B62C6E6 ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:22:46.0204 0x1bec CryptSvc - ok
08:22:46.0250 0x1bec [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
08:22:46.0282 0x1bec CSC - ok
08:22:46.0375 0x1bec [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
08:22:46.0391 0x1bec CscService - ok
08:22:46.0453 0x1bec [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:22:46.0484 0x1bec DcomLaunch - ok
08:22:46.0562 0x1bec [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
08:22:46.0609 0x1bec defragsvc - ok
08:22:46.0640 0x1bec [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:22:46.0656 0x1bec DfsC - ok
08:22:46.0687 0x1bec [ C87A8C8454AD2900F852376BE9E80603, 102B4D1E1C3F0938148BEAFFBD65F720DDDB6E92D279AEBED1D2D307D2E2E6A6 ] DFX12 C:\Windows\system32\drivers\dfx12x64.sys
08:22:46.0703 0x1bec DFX12 - ok
08:22:46.0734 0x1bec [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
08:22:46.0781 0x1bec Dhcp - ok
08:22:46.0812 0x1bec [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
08:22:46.0828 0x1bec discache - ok
08:22:46.0874 0x1bec [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
08:22:46.0890 0x1bec Disk - ok
08:22:46.0906 0x1bec [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
08:22:46.0938 0x1bec dmvsc - ok
08:22:46.0971 0x1bec [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:22:46.0997 0x1bec Dnscache - ok
08:22:47.0015 0x1bec [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
08:22:47.0046 0x1bec dot3svc - ok
08:22:47.0077 0x1bec [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
08:22:47.0106 0x1bec DPS - ok
08:22:47.0109 0x1bec DRHARD - ok
08:22:47.0147 0x1bec [ 8D204535D6E0727DF89AF6D962A36359, 8EB84D4AAB280D46EDDD2FF0306FA6F341BF812F913A4964155514EF330D63B5 ] DRHARD64 C:\Windows\system32\drivers\DRHARD64.sys
08:22:47.0157 0x1bec DRHARD64 - ok
08:22:47.0181 0x1bec [ 5F8D4D82CB212774980F15258825F8E1, 67F6274B4632163197E7BB026E3EB00B75937DA8F98A566FAA3586E04DA54D1F ] DRHMSR64 C:\Windows\system32\drivers\DRHMSR64.sys
08:22:47.0190 0x1bec DRHMSR64 - ok
08:22:47.0215 0x1bec [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:22:47.0252 0x1bec drmkaud - ok
08:22:47.0335 0x1bec [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:22:47.0364 0x1bec DXGKrnl - ok
08:22:47.0427 0x1bec [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
08:22:47.0467 0x1bec EapHost - ok
08:22:47.0796 0x1bec [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:22:47.0943 0x1bec ebdrv - ok
08:22:47.0966 0x1bec [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] EFS C:\Windows\System32\lsass.exe
08:22:48.0013 0x1bec EFS - ok
08:22:48.0169 0x1bec [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:22:48.0212 0x1bec ehRecvr - ok
08:22:48.0228 0x1bec [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
08:22:48.0254 0x1bec ehSched - ok
08:22:48.0306 0x1bec [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:22:48.0349 0x1bec elxstor - ok
08:22:48.0379 0x1bec [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:22:48.0414 0x1bec ErrDev - ok
08:22:48.0488 0x1bec [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
08:22:48.0531 0x1bec EventSystem - ok
08:22:48.0548 0x1bec [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
08:22:48.0651 0x1bec exfat - ok
08:22:48.0700 0x1bec [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:22:48.0748 0x1bec fastfat - ok
08:22:48.0901 0x1bec [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
08:22:48.0968 0x1bec Fax - ok
08:22:49.0005 0x1bec [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
08:22:49.0044 0x1bec fdc - ok
08:22:49.0067 0x1bec [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
08:22:49.0107 0x1bec fdPHost - ok
08:22:49.0124 0x1bec [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
08:22:49.0164 0x1bec FDResPub - ok
08:22:49.0192 0x1bec [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:22:49.0212 0x1bec FileInfo - ok
08:22:49.0227 0x1bec [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:22:49.0266 0x1bec Filetrace - ok
08:22:49.0449 0x1bec [ 92CB6C6A9CC93050E48D2E20683481C0, 3241BC2F47F6E3B06597B137B362199DFD4D694A970092BE6944AA516A251583 ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
08:22:49.0587 0x1bec FLEXnet Licensing Service 64 - ok
08:22:49.0608 0x1bec [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
08:22:49.0651 0x1bec flpydisk - ok
08:22:49.0717 0x1bec [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:22:49.0802 0x1bec FltMgr - ok
08:22:49.0840 0x1bec [ FDD776FAC4159A2983940D1E411FE9F3, 3B147B4D3C5CC67117D65152FA8BD3A603728C92B023AE45CD166E6FF3F474C5 ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
08:22:49.0850 0x1bec fltsrv - ok
08:22:49.0921 0x1bec [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll
08:22:50.0003 0x1bec FontCache - ok
08:22:50.0051 0x1bec [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:22:50.0060 0x1bec FontCache3.0.0.0 - ok
08:22:50.0073 0x1bec [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:22:50.0083 0x1bec FsDepends - ok
08:22:50.0106 0x1bec [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:22:50.0115 0x1bec Fs_Rec - ok
08:22:50.0123 0x1bec [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:22:50.0140 0x1bec fvevol - ok
08:22:50.0165 0x1bec [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:22:50.0175 0x1bec gagp30kx - ok
08:22:50.0236 0x1bec [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
08:22:50.0279 0x1bec gpsvc - ok
08:22:50.0317 0x1bec [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:22:50.0333 0x1bec gupdate - ok
08:22:50.0333 0x1bec [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:22:50.0348 0x1bec gupdatem - ok
08:22:50.0348 0x1bec [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:22:50.0380 0x1bec hcw85cir - ok
08:22:50.0411 0x1bec [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:22:50.0426 0x1bec HdAudAddService - ok
08:22:50.0442 0x1bec [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:22:50.0458 0x1bec HDAudBus - ok
08:22:50.0475 0x1bec [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:22:50.0475 0x1bec HidBatt - ok
08:22:50.0491 0x1bec [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:22:50.0506 0x1bec HidBth - ok
08:22:50.0553 0x1bec [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
08:22:50.0569 0x1bec HidIr - ok
08:22:50.0618 0x1bec [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
08:22:50.0710 0x1bec hidserv - ok
08:22:50.0769 0x1bec [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:22:50.0831 0x1bec HidUsb - ok
08:22:50.0862 0x1bec [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:22:50.0896 0x1bec hkmsvc - ok
08:22:50.0961 0x1bec [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:22:50.0992 0x1bec HomeGroupListener - ok
08:22:51.0008 0x1bec [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:22:51.0023 0x1bec HomeGroupProvider - ok
08:22:51.0055 0x1bec [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:22:51.0070 0x1bec HpSAMD - ok
08:22:51.0117 0x1bec [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:22:51.0148 0x1bec HTTP - ok
08:22:51.0243 0x1bec [ EF558A02D734A1403583E95CCEEC2487, F0D052DAF48A62E4A90D067BFCB5EE9563804DE68D0EA82E0E11C8D16AD19D29 ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
08:22:51.0243 0x1bec HWiNFO32 - ok
08:22:51.0258 0x1bec [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:22:51.0258 0x1bec hwpolicy - ok
08:22:51.0274 0x1bec [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
08:22:51.0290 0x1bec i8042prt - ok
08:22:51.0305 0x1bec [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:22:51.0336 0x1bec iaStorV - ok
08:22:51.0399 0x1bec [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:22:51.0446 0x1bec idsvc - ok
08:22:51.0446 0x1bec IEEtwCollectorService - ok
08:22:51.0461 0x1bec [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:22:51.0477 0x1bec iirsp - ok
08:22:51.0555 0x1bec [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
08:22:51.0602 0x1bec IKEEXT - ok
08:22:51.0825 0x1bec [ 69FE611FEFE57AD7DAA9627D1F47AAE2, BC66AFFBC8354D4BC3D7BD91DCCF265EFAE202F296D581D8B782EC8E6F916C36 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:22:51.0941 0x1bec IntcAzAudAddService - ok
08:22:51.0957 0x1bec [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
08:22:51.0972 0x1bec intelide - ok
08:22:52.0004 0x1bec [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
08:22:52.0004 0x1bec intelppm - ok
08:22:52.0044 0x1bec [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:22:52.0077 0x1bec IPBusEnum - ok
08:22:52.0092 0x1bec [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:22:52.0117 0x1bec IpFilterDriver - ok
08:22:52.0153 0x1bec [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:22:52.0191 0x1bec iphlpsvc - ok
08:22:52.0204 0x1bec [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:22:52.0228 0x1bec IPMIDRV - ok
08:22:52.0245 0x1bec [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:22:52.0268 0x1bec IPNAT - ok
08:22:52.0284 0x1bec [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:22:52.0300 0x1bec IRENUM - ok
08:22:52.0321 0x1bec [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:22:52.0330 0x1bec isapnp - ok
08:22:52.0364 0x1bec [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:22:52.0380 0x1bec iScsiPrt - ok
08:22:52.0391 0x1bec [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:22:52.0400 0x1bec kbdclass - ok
08:22:52.0412 0x1bec [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
08:22:52.0422 0x1bec kbdhid - ok
08:22:52.0432 0x1bec [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] KeyIso C:\Windows\system32\lsass.exe
08:22:52.0441 0x1bec KeyIso - ok
08:22:52.0482 0x1bec [ 795EC29BA21F1D948FD6FD740C00B599, 780900717A812C5DB78C67057010BD62DF2C756C087599A6F8C67CB4EFA7518C ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
08:22:52.0498 0x1bec kl1 - ok
08:22:52.0523 0x1bec [ D0C3AEF67932D2A80736FBCB956C017D, 166C2FD5F1B6FFE7A71CD821DFDD02B68D25CBF0D44BD6F2522C65CF1DEB363C ] klflt C:\Windows\system32\DRIVERS\klflt.sys
08:22:52.0533 0x1bec klflt - ok
08:22:52.0561 0x1bec [ 41DF293A7F0418F5DDED9F0297DC68F3, 25DE4BB7F2D915FCF576ABD46EEDC5574B694A2D1E5CB7AB565792C7BB57C76B ] KLIF C:\Windows\system32\DRIVERS\klif.sys
08:22:52.0582 0x1bec KLIF - ok
08:22:52.0622 0x1bec [ 31B69BFF28348503E4BD10C2A4F66D05, 891318C2DDF85E43DFCEE73717AEFCE79BC3DCD83FCD58E6F794AB6BF1739688 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
08:22:52.0630 0x1bec KLIM6 - ok
08:22:52.0636 0x1bec [ 8DA5BC75C3E8A995335642F26CAEA54B, 3995AAB499A37077AA4FB372E75CD9259BA3EA7020B961CF482AC948D2D47AB4 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
08:22:52.0636 0x1bec klkbdflt - ok
08:22:52.0652 0x1bec [ 72CF64FBF38CD681FA7F37176047E967, BE5683C119DCEF7E678EE477D6CADF873E32D42372A253B7E86B8C335DF28E1C ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
08:22:52.0667 0x1bec klmouflt - ok
08:22:52.0683 0x1bec [ 8C0EC95AD65A0DE3D6C040591D02BF02, 272FB83752B73684FA7BDBE256FAFD56138E4755AAEFED9E7EF8F0E3D0ACFAF2 ] klpd C:\Windows\system32\DRIVERS\klpd.sys
08:22:52.0683 0x1bec klpd - ok
08:22:52.0717 0x1bec [ 4828B3D2BC89B05E07101C6E60CE0A6A, C2D40EA03A526286AEDF27DE80CB0576EB59EB7581C9E9ECFCB867349593D7CE ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
08:22:52.0717 0x1bec kltdi - ok
08:22:52.0733 0x1bec [ 91BC1C5B00275A4D7FD669EFF0DDEB2A, B745518E1916441A49565478EA77C8DBC784E7B4D9DAD1EA1F648ED1727F413D ] kneps C:\Windows\system32\DRIVERS\kneps.sys
08:22:52.0748 0x1bec kneps - ok
08:22:52.0764 0x1bec [ B6D6F12C214DE823FA22709F7BD0EB0B, 312BCBAEF6D35EAC2514E8D89DE65EA9E524CA1506A3F7410337DF2FDFB052FF ] KoneFltr C:\Windows\system32\drivers\Kone.sys
08:22:52.0795 0x1bec KoneFltr - ok
08:22:52.0811 0x1bec [ CF11CC2B73D5155533C67354F9188E09, D59C30B9651F8E0952DFF34A010BC60A1D27AE10F5705C54424BF6BB7ADF9F62 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:22:52.0826 0x1bec KSecDD - ok
08:22:52.0842 0x1bec [ 2E56D51B184EFB8E353B7AF446299DC8, CE7AAFF89F3A0BFE191DE90430A04C7FB899F5CF3B704AA5A96F47D5F37192B2 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:22:52.0858 0x1bec KSecPkg - ok
08:22:52.0873 0x1bec [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:22:52.0906 0x1bec ksthunk - ok
08:22:52.0953 0x1bec [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
08:22:52.0984 0x1bec KtmRm - ok
08:22:53.0016 0x1bec [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
08:22:53.0062 0x1bec LanmanServer - ok
08:22:53.0094 0x1bec [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:22:53.0125 0x1bec LanmanWorkstation - ok
08:22:53.0156 0x1bec [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
08:22:53.0156 0x1bec LGBusEnum - ok
08:22:53.0172 0x1bec [ F705A641C18DF31B48B5DBDA94B425E4, 1F47EE43CAFE5458E56467E127EE99B5FDBFF8B810CF92B232094B475DD42B21 ] LGPBTDD C:\Windows\system32\Drivers\LGPBTDD.sys
08:22:53.0187 0x1bec LGPBTDD - ok
08:22:53.0203 0x1bec [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
08:22:53.0218 0x1bec LGVirHid - ok
08:22:53.0218 0x1bec [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:22:53.0250 0x1bec lltdio - ok
08:22:53.0281 0x1bec [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:22:53.0312 0x1bec lltdsvc - ok
08:22:53.0343 0x1bec [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:22:53.0374 0x1bec lmhosts - ok
08:22:53.0406 0x1bec [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:22:53.0406 0x1bec LSI_FC - ok
08:22:53.0437 0x1bec [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:22:53.0452 0x1bec LSI_SAS - ok
08:22:53.0468 0x1bec [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:22:53.0468 0x1bec LSI_SAS2 - ok
08:22:53.0484 0x1bec [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:22:53.0499 0x1bec LSI_SCSI - ok
08:22:53.0515 0x1bec [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
08:22:53.0546 0x1bec luafv - ok
08:22:53.0577 0x1bec [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:22:53.0577 0x1bec Mcx2Svc - ok
08:22:53.0593 0x1bec [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
08:22:53.0608 0x1bec megasas - ok
08:22:53.0624 0x1bec [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:22:53.0640 0x1bec MegaSR - ok
08:22:53.0671 0x1bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
08:22:53.0702 0x1bec MMCSS - ok
08:22:53.0733 0x1bec [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
08:22:53.0796 0x1bec Modem - ok
08:22:53.0842 0x1bec [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:22:53.0858 0x1bec monitor - ok
08:22:53.0921 0x1bec [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:22:53.0937 0x1bec mouclass - ok
08:22:53.0999 0x1bec [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:22:54.0015 0x1bec mouhid - ok
08:22:54.0062 0x1bec [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:22:54.0109 0x1bec mountmgr - ok
08:22:54.0155 0x1bec [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
08:22:54.0218 0x1bec mpio - ok
08:22:54.0249 0x1bec [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:22:54.0280 0x1bec mpsdrv - ok
08:22:54.0343 0x1bec [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:22:54.0406 0x1bec MpsSvc - ok
08:22:54.0437 0x1bec [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:22:54.0468 0x1bec MRxDAV - ok
08:22:54.0500 0x1bec [ FCA01B0C70DAE9BE557577E719469D17, F9868B7B50EF6323BF6690F087A83928A1E82B96A19B27F344E10BF11E520C32 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:22:54.0515 0x1bec mrxsmb - ok
08:22:54.0531 0x1bec [ 386BE96797C5B480AD31E8B50CEE337C, 88E826F42BEB38CAA7C84AE6ED4D8EBC4D382A8A37CF9F7B8517B297F168F1B3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:22:54.0562 0x1bec mrxsmb10 - ok
08:22:54.0593 0x1bec [ 841474CF2EB14F826038FBCC7D85B857, 4B1BC8AFDA54D1F16AC2AAB7EDDAE07FBF1E3B65D1658F8901A3E3175AF72800 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:22:54.0593 0x1bec mrxsmb20 - ok
08:22:54.0624 0x1bec [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
08:22:54.0640 0x1bec msahci - ok
08:22:54.0656 0x1bec [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:22:54.0671 0x1bec msdsm - ok
08:22:54.0687 0x1bec [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
08:22:54.0702 0x1bec MSDTC - ok
08:22:54.0718 0x1bec [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:22:54.0749 0x1bec Msfs - ok
08:22:54.0765 0x1bec [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:22:54.0780 0x1bec mshidkmdf - ok
08:22:54.0780 0x1bec [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:22:54.0796 0x1bec msisadrv - ok
08:22:54.0827 0x1bec [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:22:54.0858 0x1bec MSiSCSI - ok
08:22:54.0858 0x1bec msiserver - ok
08:22:54.0874 0x1bec [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:22:54.0907 0x1bec MSKSSRV - ok
08:22:54.0907 0x1bec [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:22:54.0938 0x1bec MSPCLOCK - ok
08:22:54.0954 0x1bec [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:22:54.0985 0x1bec MSPQM - ok
08:22:55.0016 0x1bec [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:22:55.0032 0x1bec MsRPC - ok
08:22:55.0048 0x1bec [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
08:22:55.0048 0x1bec mssmbios - ok
08:22:55.0063 0x1bec [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:22:55.0094 0x1bec MSTEE - ok
08:22:55.0110 0x1bec [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:22:55.0110 0x1bec MTConfig - ok
08:22:55.0126 0x1bec [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
08:22:55.0141 0x1bec Mup - ok
08:22:55.0172 0x1bec [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
08:22:55.0219 0x1bec napagent - ok
08:22:55.0235 0x1bec [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:22:55.0266 0x1bec NativeWifiP - ok
08:22:55.0328 0x1bec [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:22:55.0360 0x1bec NDIS - ok
08:22:55.0375 0x1bec [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:22:55.0406 0x1bec NdisCap - ok
08:22:55.0422 0x1bec [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:22:55.0438 0x1bec NdisTapi - ok
08:22:55.0453 0x1bec [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:22:55.0484 0x1bec Ndisuio - ok
08:22:55.0484 0x1bec [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:22:55.0531 0x1bec NdisWan - ok
08:22:55.0547 0x1bec [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:22:55.0562 0x1bec NDProxy - ok
08:22:55.0578 0x1bec [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:22:55.0597 0x1bec NetBIOS - ok
08:22:55.0628 0x1bec [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:22:55.0643 0x1bec NetBT - ok
08:22:55.0659 0x1bec [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] Netlogon C:\Windows\system32\lsass.exe
08:22:55.0675 0x1bec Netlogon - ok
08:22:55.0706 0x1bec [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
08:22:55.0737 0x1bec Netman - ok
08:22:55.0799 0x1bec [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:22:55.0815 0x1bec NetMsmqActivator - ok
08:22:55.0815 0x1bec [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:22:55.0831 0x1bec NetPipeActivator - ok
08:22:55.0925 0x1bec [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
08:22:56.0130 0x1bec netprofm - ok
08:22:56.0208 0x1bec [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:22:56.0224 0x1bec NetTcpActivator - ok
08:22:56.0255 0x1bec [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:22:56.0270 0x1bec NetTcpPortSharing - ok
08:22:56.0302 0x1bec [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:22:56.0302 0x1bec nfrd960 - ok
08:22:56.0333 0x1bec [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
08:22:56.0364 0x1bec NlaSvc - ok
08:22:56.0380 0x1bec [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:22:56.0411 0x1bec Npfs - ok
08:22:56.0426 0x1bec [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
08:22:56.0473 0x1bec nsi - ok
08:22:56.0489 0x1bec [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:22:56.0504 0x1bec nsiproxy - ok
08:22:56.0598 0x1bec [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:22:56.0660 0x1bec Ntfs - ok
08:22:56.0660 0x1bec [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
08:22:56.0707 0x1bec Null - ok
08:22:57.0100 0x1bec [ DD81FBC57AB9134CDDC5CE90880BFD80, 16DF4D9645238D1014FA9189FF171DCF7B7C7573F759B5AC73025518139D86B1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
08:22:57.0521 0x1bec nvlddmkm - ok
08:22:57.0568 0x1bec [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:22:57.0568 0x1bec nvraid - ok
08:22:57.0584 0x1bec [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:22:57.0599 0x1bec nvstor - ok
08:22:57.0646 0x1bec [ E2ABF40D5E04ACE17064EC1D3B1F7834, 191285D4E476DA5DDE39EC772253B99FD3C5F472B26C673D814F4BE0549C21BF ] nvsvc C:\Windows\system32\nvvsvc.exe
08:22:57.0677 0x1bec nvsvc - ok
08:22:57.0693 0x1bec [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:22:57.0709 0x1bec nv_agp - ok
08:22:57.0724 0x1bec [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:22:57.0740 0x1bec ohci1394 - ok
08:22:57.0802 0x1bec [ 58327B7E7C4E325C66B7C4A5220CE5F4, FF66411B23A195CA3C64F5409F2E2C6F88CB01034A4C9DDCA565DE0E144ABC13 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:22:57.0818 0x1bec ose64 - ok
08:22:58.0042 0x1bec [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:22:58.0261 0x1bec osppsvc - ok
08:22:58.0323 0x1bec [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:22:58.0354 0x1bec p2pimsvc - ok
08:22:58.0385 0x1bec [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
08:22:58.0417 0x1bec p2psvc - ok
08:22:58.0448 0x1bec [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
08:22:58.0463 0x1bec Parport - ok
08:22:58.0495 0x1bec [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:22:58.0510 0x1bec partmgr - ok
08:22:58.0541 0x1bec [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
08:22:58.0573 0x1bec PcaSvc - ok
08:22:58.0588 0x1bec [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
08:22:58.0604 0x1bec pci - ok
08:22:58.0604 0x1bec [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
08:22:58.0619 0x1bec pciide - ok
08:22:58.0635 0x1bec [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:22:58.0651 0x1bec pcmcia - ok
08:22:58.0651 0x1bec [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
08:22:58.0666 0x1bec pcw - ok
08:22:58.0729 0x1bec [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:22:58.0744 0x1bec PEAUTH - ok
08:22:58.0822 0x1bec [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
08:22:58.0885 0x1bec PeerDistSvc - ok
08:22:58.0965 0x1bec [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:22:58.0980 0x1bec PerfHost - ok
08:22:59.0058 0x1bec [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
08:22:59.0136 0x1bec pla - ok
08:22:59.0183 0x1bec [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:22:59.0199 0x1bec PlugPlay - ok
08:22:59.0214 0x1bec [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:22:59.0245 0x1bec PNRPAutoReg - ok
08:22:59.0261 0x1bec [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:22:59.0277 0x1bec PNRPsvc - ok
08:22:59.0323 0x1bec [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:22:59.0355 0x1bec PolicyAgent - ok
08:22:59.0401 0x1bec [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
08:22:59.0433 0x1bec Power - ok
08:22:59.0448 0x1bec [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:22:59.0479 0x1bec PptpMiniport - ok
08:22:59.0495 0x1bec [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
08:22:59.0511 0x1bec Processor - ok
08:22:59.0542 0x1bec [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
08:22:59.0573 0x1bec ProfSvc - ok
08:22:59.0573 0x1bec [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:22:59.0589 0x1bec ProtectedStorage - ok
08:22:59.0604 0x1bec [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:22:59.0635 0x1bec Psched - ok
08:22:59.0698 0x1bec [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:22:59.0760 0x1bec ql2300 - ok
08:22:59.0776 0x1bec [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:22:59.0791 0x1bec ql40xx - ok
08:22:59.0823 0x1bec [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
08:22:59.0838 0x1bec QWAVE - ok
08:22:59.0854 0x1bec [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:22:59.0869 0x1bec QWAVEdrv - ok
08:22:59.0885 0x1bec [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:22:59.0923 0x1bec RasAcd - ok
08:22:59.0969 0x1bec [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:23:00.0001 0x1bec RasAgileVpn - ok
08:23:00.0016 0x1bec [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
08:23:00.0047 0x1bec RasAuto - ok
08:23:00.0063 0x1bec [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:23:00.0079 0x1bec Rasl2tp - ok
08:23:00.0110 0x1bec [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
08:23:00.0163 0x1bec RasMan - ok
08:23:00.0176 0x1bec [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:23:00.0214 0x1bec RasPppoe - ok
08:23:00.0219 0x1bec [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:23:00.0246 0x1bec RasSstp - ok
08:23:00.0268 0x1bec [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:23:00.0300 0x1bec rdbss - ok
08:23:00.0315 0x1bec [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
08:23:00.0328 0x1bec rdpbus - ok
08:23:00.0342 0x1bec [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:23:00.0367 0x1bec RDPCDD - ok
08:23:00.0386 0x1bec [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
08:23:00.0402 0x1bec RDPDR - ok
08:23:00.0417 0x1bec [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:23:00.0433 0x1bec RDPENCDD - ok
08:23:00.0449 0x1bec [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:23:00.0464 0x1bec RDPREFMP - ok
08:23:00.0495 0x1bec [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
08:23:00.0512 0x1bec RdpVideoMiniport - ok
08:23:00.0543 0x1bec [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:23:00.0559 0x1bec RDPWD - ok
08:23:00.0574 0x1bec [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:23:00.0590 0x1bec rdyboost - ok
08:23:00.0637 0x1bec [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:23:00.0652 0x1bec RemoteAccess - ok
08:23:00.0684 0x1bec [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:23:00.0715 0x1bec RemoteRegistry - ok
08:23:00.0746 0x1bec [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
08:23:00.0746 0x1bec Revoflt - ok
08:23:00.0777 0x1bec [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:23:00.0793 0x1bec RpcEptMapper - ok
08:23:00.0824 0x1bec [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
08:23:00.0840 0x1bec RpcLocator - ok
08:23:00.0886 0x1bec [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
08:23:00.0919 0x1bec RpcSs - ok
08:23:00.0950 0x1bec [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:23:00.0997 0x1bec rspndr - ok
08:23:01.0059 0x1bec [ 2C867ADB4DB91E93F4C1A1B9234D85B8, D09CB75F6FB61E534BA4368E32463D696DCA209AD2020C02E1B847827F4E7B2B ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
08:23:01.0090 0x1bec RTL8167 - ok
08:23:01.0121 0x1bec [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
08:23:01.0153 0x1bec s3cap - ok
08:23:01.0168 0x1bec [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] SamSs C:\Windows\system32\lsass.exe
08:23:01.0184 0x1bec SamSs - ok
08:23:01.0355 0x1bec [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\Sandra.sys
08:23:01.0371 0x1bec SANDRA - ok
08:23:01.0387 0x1bec [ 2415052B778693900B61944A09266C41, 5FBFEC29ADCAEA319435146BFAECB391CB9FEB4A03ED502747C8D76A7E530933 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe
08:23:01.0402 0x1bec SandraAgentSrv - detected UnsignedFile.Multi.Generic ( 1 )
08:23:01.0480 0x1bec Detect skipped due to KSN trusted
08:23:01.0480 0x1bec SandraAgentSrv - ok
08:23:01.0511 0x1bec [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:23:01.0511 0x1bec sbp2port - ok
08:23:01.0558 0x1bec [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:23:01.0589 0x1bec SCardSvr - ok
08:23:01.0589 0x1bec [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:23:01.0621 0x1bec scfilter - ok
08:23:01.0699 0x1bec [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
08:23:01.0761 0x1bec Schedule - ok
08:23:01.0792 0x1bec [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
08:23:01.0823 0x1bec SCPolicySvc - ok
08:23:01.0839 0x1bec [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:23:01.0855 0x1bec SDRSVC - ok
08:23:01.0949 0x1bec [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:23:01.0980 0x1bec secdrv - ok
08:23:02.0012 0x1bec [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
08:23:02.0105 0x1bec seclogon - ok
08:23:02.0136 0x1bec [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
08:23:02.0199 0x1bec SENS - ok
08:23:02.0214 0x1bec [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:23:02.0230 0x1bec SensrSvc - ok
08:23:02.0246 0x1bec [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
08:23:02.0246 0x1bec Serenum - ok
08:23:02.0277 0x1bec [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
08:23:02.0292 0x1bec Serial - ok
08:23:02.0308 0x1bec [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:23:02.0308 0x1bec sermouse - ok
08:23:02.0339 0x1bec [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
08:23:02.0370 0x1bec SessionEnv - ok
08:23:02.0386 0x1bec [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:23:02.0386 0x1bec sffdisk - ok
08:23:02.0402 0x1bec [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:23:02.0417 0x1bec sffp_mmc - ok
08:23:02.0433 0x1bec [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:23:02.0433 0x1bec sffp_sd - ok
08:23:02.0448 0x1bec [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:23:02.0464 0x1bec sfloppy - ok
08:23:02.0511 0x1bec [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:23:02.0542 0x1bec SharedAccess - ok
08:23:02.0604 0x1bec [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:23:02.0644 0x1bec ShellHWDetection - ok
08:23:02.0661 0x1bec [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:23:02.0671 0x1bec SiSRaid2 - ok
08:23:02.0685 0x1bec [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:23:02.0696 0x1bec SiSRaid4 - ok
08:23:02.0715 0x1bec [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:23:02.0751 0x1bec Smb - ok
08:23:02.0786 0x1bec [ FBE0201AB61E18934C812C34D31A4403, 549E51FC11CCA30B21970C90F4799D6CB94481CDC623B8C319F16DAEFC8A190B ] snapman C:\Windows\system32\DRIVERS\snapman.sys
08:23:02.0801 0x1bec snapman - ok
08:23:02.0820 0x1bec [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:23:02.0830 0x1bec SNMPTRAP - ok
08:23:02.0857 0x1bec [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\Windows\SysWOW64\speedfan.sys
08:23:02.0866 0x1bec speedfan - ok
08:23:02.0871 0x1bec [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
08:23:02.0880 0x1bec spldr - ok
08:23:02.0918 0x1bec [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler C:\Windows\System32\spoolsv.exe
08:23:02.0959 0x1bec Spooler - ok
08:23:03.0094 0x1bec [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
08:23:03.0250 0x1bec sppsvc - ok
08:23:03.0266 0x1bec [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:23:03.0313 0x1bec sppuinotify - ok
08:23:03.0360 0x1bec [ A7E590AFFAECB800837410033ED1BD23, CF4D5AF4FC193693D2CA648E15EAFC526F36CAACC83F2A52B73E4F2C1289F9AF ] SRSHDAudioService C:\Program Files (x86)\Common Files\SRS Labs\SRS HD Audio Lab Service\SRSAudioLabService.exe
08:23:03.0360 0x1bec SRSHDAudioService - ok
08:23:03.0406 0x1bec [ 46BE3584FE0F72D3430E669225ACCB40, 1B19C555E1399BC7ECAC727F6E76000B9B146A100ABFBB0A498D58F697FF9023 ] SRS_AE_Service C:\Windows\system32\drivers\SRS_AE_amd64.sys
08:23:03.0422 0x1bec SRS_AE_Service - ok
08:23:03.0469 0x1bec [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys
08:23:03.0500 0x1bec srv - ok
08:23:03.0516 0x1bec [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:23:03.0547 0x1bec srv2 - ok
08:23:03.0547 0x1bec [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:23:03.0562 0x1bec srvnet - ok
08:23:03.0609 0x1bec [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:23:03.0640 0x1bec SSDPSRV - ok
08:23:03.0656 0x1bec [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:23:03.0687 0x1bec SstpSvc - ok
08:23:03.0718 0x1bec [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:23:03.0734 0x1bec stexstor - ok
08:23:03.0796 0x1bec [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
08:23:03.0828 0x1bec stisvc - ok
08:23:03.0859 0x1bec [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
08:23:03.0859 0x1bec storflt - ok
08:23:03.0890 0x1bec [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
08:23:03.0890 0x1bec storvsc - ok
08:23:03.0921 0x1bec [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
08:23:03.0937 0x1bec swenum - ok
08:23:03.0984 0x1bec [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
08:23:04.0015 0x1bec swprv - ok
08:23:04.0311 0x1bec [ 0FE29D81F372CA2DCE9E49736A3BD3E6, 10ED93BEE7ECBD2AF5E7AB0197CC82A5424FD63A2ED90F0417B266AD06E5F32C ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
08:23:04.0452 0x1bec syncagentsrv - ok
08:23:04.0483 0x1bec [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys
08:23:04.0498 0x1bec Synth3dVsc - ok
08:23:04.0592 0x1bec [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
08:23:04.0686 0x1bec SysMain - ok
08:23:04.0717 0x1bec [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:23:04.0732 0x1bec TabletInputService - ok
08:23:04.0748 0x1bec [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
08:23:04.0795 0x1bec TapiSrv - ok
08:23:04.0810 0x1bec [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
08:23:04.0842 0x1bec TBS - ok
08:23:04.0943 0x1bec [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:23:05.0006 0x1bec Tcpip - ok
08:23:05.0084 0x1bec [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:23:05.0115 0x1bec TCPIP6 - ok
08:23:05.0162 0x1bec [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:23:05.0177 0x1bec tcpipreg - ok
08:23:05.0193 0x1bec [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:23:05.0208 0x1bec TDPIPE - ok
08:23:05.0286 0x1bec [ 07330E30921C70E9D9B416EE43A06349, 398500C12E685BCF732C7F80A2C0E95181E5377A0E6C14CF9A3EE8580083A556 ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys
08:23:05.0349 0x1bec tdrpman - ok
08:23:05.0380 0x1bec [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:23:05.0380 0x1bec TDTCP - ok
08:23:05.0411 0x1bec [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:23:05.0427 0x1bec tdx - ok
08:23:05.0442 0x1bec [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
08:23:05.0442 0x1bec TermDD - ok
08:23:05.0458 0x1bec [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt C:\Windows\system32\drivers\terminpt.sys
08:23:05.0474 0x1bec terminpt - ok
08:23:05.0536 0x1bec [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
08:23:05.0583 0x1bec TermService - ok
08:23:05.0598 0x1bec [ 9201BE2BAB8A9FF8E20D8439AE3BB04D, D973C4FE5B8D02B15476D72B49105840A04DBFF8BCB77117C0354D046E6C02FB ] Themes C:\Windows\system32\themeservice.dll
08:23:05.0614 0x1bec Themes - detected UnsignedFile.Multi.Generic ( 1 )
08:23:05.0692 0x1bec Detect skipped due to KSN trusted
08:23:05.0692 0x1bec Themes - ok
08:23:05.0723 0x1bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
08:23:05.0739 0x1bec THREADORDER - ok
08:23:05.0817 0x1bec [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib C:\Windows\system32\DRIVERS\tib.sys
08:23:05.0864 0x1bec tib - ok
08:23:05.0879 0x1bec [ 3C29FB9FC9B4C511AD69DC50257FEC75, 4906DADE076FD363C53044C805602EEA4D0EF6E92041C693E1BED2286614B36E ] tib_mounter C:\Windows\system32\DRIVERS\tib_mounter.sys
08:23:05.0879 0x1bec tib_mounter - ok
08:23:05.0917 0x1bec [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
08:23:05.0964 0x1bec TrkWks - ok
08:23:06.0027 0x1bec [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:23:06.0073 0x1bec TrustedInstaller - ok
08:23:06.0120 0x1bec [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:23:06.0120 0x1bec tssecsrv - ok
08:23:06.0151 0x1bec [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:23:06.0151 0x1bec TsUsbFlt - ok
08:23:06.0198 0x1bec [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:23:06.0214 0x1bec TsUsbGD - ok
08:23:06.0245 0x1bec [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
08:23:06.0261 0x1bec tsusbhub - ok
08:23:06.0417 0x1bec [ 4645910BE6CB805DB15CC49D8B6BAA39, A773290E200E8E7BCD52A88EA2464D93D2BFF47434592DF46B626F9C86BC9ED1 ] TuneUp.UtilitiesSvc D:\### Installiert ###\AVG PC TuneUp\TuneUpUtilitiesService64.exe
08:23:06.0479 0x1bec TuneUp.UtilitiesSvc - ok
08:23:06.0510 0x1bec [ DB3C912A851FCA6358FED4D53DAA7E91, B35375EC9AF61D829489D9B278605E2098D6402419E79EB24C65D3B65816AEBC ] TuneUpUtilitiesDrv D:\### Installiert ###\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
08:23:06.0526 0x1bec TuneUpUtilitiesDrv - ok
08:23:06.0557 0x1bec [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:23:06.0604 0x1bec tunnel - ok
08:23:06.0604 0x1bec [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
08:23:06.0619 0x1bec uagp35 - ok
08:23:06.0651 0x1bec [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:23:06.0682 0x1bec udfs - ok
08:23:06.0713 0x1bec [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:23:06.0713 0x1bec UI0Detect - ok
08:23:06.0744 0x1bec [ 6E566C1708DDC93ADF9286E9C714B652, AF179BCA9395D51ACDFB5BACE29388E2B4D5587FCAB53898AAA4F4011851B115 ] UimBus C:\Windows\system32\DRIVERS\UimBus.sys
08:23:06.0744 0x1bec UimBus - ok
08:23:06.0760 0x1bec [ 7DF6A08B0B74C4F9357EFBAE309B87F1, 9A5BB8EA70709519A3599D0818923321AE691CC9EBC1ABC3F5BB008AF18B797B ] Uim_DEVIM C:\Windows\system32\DRIVERS\uim_devim.sys
08:23:06.0775 0x1bec Uim_DEVIM - ok
08:23:06.0807 0x1bec [ 2DDD63E0948474B91046CF1AB7661189, A91A1F1E646B928C95C30DA4D70220262D3A67C1B66E365C981AA23A401624E9 ] Uim_IM C:\Windows\system32\DRIVERS\uim_im.sys
08:23:06.0838 0x1bec Uim_IM - ok
08:23:06.0853 0x1bec [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:23:06.0853 0x1bec uliagpkx - ok
08:23:06.0869 0x1bec [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:23:06.0885 0x1bec umbus - ok
08:23:06.0906 0x1bec [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
08:23:06.0906 0x1bec UmPass - ok
08:23:06.0953 0x1bec [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
08:23:07.0000 0x1bec UmRdpService - ok
08:23:07.0015 0x1bec UnlockerDriver5 - ok
08:23:07.0078 0x1bec [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
08:23:07.0171 0x1bec upnphost - ok
08:23:07.0265 0x1bec [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:23:07.0343 0x1bec usbccgp - ok
08:23:07.0374 0x1bec [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:23:07.0390 0x1bec usbcir - ok
08:23:07.0405 0x1bec [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
08:23:07.0421 0x1bec usbehci - ok
08:23:07.0437 0x1bec [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:23:07.0452 0x1bec usbhub - ok
08:23:07.0483 0x1bec [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
08:23:07.0499 0x1bec usbohci - ok
08:23:07.0530 0x1bec [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
08:23:07.0530 0x1bec usbprint - ok
08:23:07.0577 0x1bec [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:23:07.0593 0x1bec USBSTOR - ok
08:23:07.0608 0x1bec [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:23:07.0608 0x1bec usbuhci - ok
08:23:07.0639 0x1bec [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
08:23:07.0671 0x1bec UxSms - ok
08:23:07.0702 0x1bec [ E646F34228D63EF5BA94A8E209430D2B, 082DB7A2C377AFF085D777DC1F070965C33E8C4F78F72E0B478551A218F039A8 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
08:23:07.0702 0x1bec UxTuneUp - ok
08:23:07.0717 0x1bec [ 0EE3B249D8079D72D4C84B108E99A16F, 453A792CDF2133949EA2E1FFC2373C3CC16895FCAED82A0A403E432ED161DAB9 ] VaultSvc C:\Windows\system32\lsass.exe
08:23:07.0733 0x1bec VaultSvc - ok
08:23:07.0749 0x1bec [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:23:07.0749 0x1bec vdrvroot - ok
08:23:07.0795 0x1bec [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
08:23:07.0827 0x1bec vds - ok
08:23:07.0842 0x1bec [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:23:07.0858 0x1bec vga - ok
08:23:07.0873 0x1bec [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
08:23:07.0889 0x1bec VgaSave - ok
08:23:07.0906 0x1bec VGPU - ok
08:23:07.0921 0x1bec [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
08:23:07.0937 0x1bec vhdmp - ok
08:23:07.0952 0x1bec [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
08:23:07.0968 0x1bec viaide - ok
08:23:07.0968 0x1bec [ 35E8A18D1C558D5C2FF2FFED2FD396F6, 5516AC03964DD33CF239AB3FB1D41BAB7454DB35FB38C45907614C3DB8F23391 ] vididr C:\Windows\system32\DRIVERS\vididr.sys
08:23:07.0984 0x1bec vididr - ok
08:23:07.0999 0x1bec [ 0DCD5C8F2E0B3650C4A29F6569C074FD, 8FB24D79ADE1541C5DD6241A3395EF2E6575A8376111294CD5C87ECA798EDCFD ] vidsflt C:\Windows\system32\DRIVERS\vidsflt.sys
08:23:07.0999 0x1bec vidsflt - ok
08:23:08.0015 0x1bec [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
08:23:08.0030 0x1bec vmbus - ok
08:23:08.0046 0x1bec [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
08:23:08.0062 0x1bec VMBusHID - ok
08:23:08.0062 0x1bec vmci - ok
08:23:08.0078 0x1bec [ A3412EC3FF7A5AC2CA3A3951476BFA9C, 8A3D241168205B6B5348F44DF89875067CDD5B29BE8CF14ADA8403225AE2A379 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys
08:23:08.0094 0x1bec VMnetAdapter - ok
08:23:08.0094 0x1bec [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:23:08.0109 0x1bec volmgr - ok
08:23:08.0141 0x1bec [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:23:08.0156 0x1bec volmgrx - ok
08:23:08.0203 0x1bec [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:23:08.0219 0x1bec volsnap - ok
08:23:08.0250 0x1bec [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:23:08.0250 0x1bec vsmraid - ok
08:23:08.0343 0x1bec [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
08:23:08.0437 0x1bec VSS - ok
08:23:08.0453 0x1bec [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
08:23:08.0468 0x1bec vwifibus - ok
08:23:08.0484 0x1bec [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:23:08.0484 0x1bec vwififlt - ok
08:23:08.0515 0x1bec [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
08:23:08.0562 0x1bec W32Time - ok
08:23:08.0577 0x1bec [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:23:08.0577 0x1bec WacomPen - ok
08:23:08.0593 0x1bec [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:23:08.0624 0x1bec WANARP - ok
08:23:08.0624 0x1bec [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:23:08.0655 0x1bec Wanarpv6 - ok
08:23:08.0718 0x1bec [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
08:23:08.0796 0x1bec wbengine - ok
08:23:08.0811 0x1bec [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:23:08.0827 0x1bec WbioSrvc - ok
08:23:08.0858 0x1bec [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:23:08.0889 0x1bec wcncsvc - ok
08:23:08.0889 0x1bec [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:23:08.0923 0x1bec WcsPlugInService - ok
08:23:08.0938 0x1bec [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
08:23:08.0938 0x1bec Wd - ok
08:23:09.0001 0x1bec [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:23:09.0032 0x1bec Wdf01000 - ok
08:23:09.0047 0x1bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:23:09.0063 0x1bec WdiServiceHost - ok
08:23:09.0063 0x1bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:23:09.0079 0x1bec WdiSystemHost - ok
08:23:09.0110 0x1bec [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
08:23:09.0141 0x1bec WebClient - ok
08:23:09.0172 0x1bec [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:23:09.0203 0x1bec Wecsvc - ok
08:23:09.0219 0x1bec [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:23:09.0266 0x1bec wercplsupport - ok
08:23:09.0281 0x1bec [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
08:23:09.0313 0x1bec WerSvc - ok
08:23:09.0344 0x1bec [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:23:09.0375 0x1bec WfpLwf - ok
08:23:09.0391 0x1bec [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:23:09.0391 0x1bec WIMMount - ok
08:23:09.0437 0x1bec WinDefend - ok
08:23:09.0437 0x1bec WinHttpAutoProxySvc - ok
08:23:09.0515 0x1bec [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:23:09.0547 0x1bec Winmgmt - ok
08:23:09.0656 0x1bec [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
08:23:09.0734 0x1bec WinRM - ok
08:23:09.0796 0x1bec [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
08:23:09.0859 0x1bec Wlansvc - ok
08:23:09.0874 0x1bec [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
08:23:09.0890 0x1bec WmiAcpi - ok
08:23:09.0921 0x1bec [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:23:09.0950 0x1bec wmiApSrv - ok
08:23:09.0979 0x1bec WMPNetworkSvc - ok
08:23:09.0997 0x1bec [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:23:10.0007 0x1bec WPCSvc - ok
08:23:10.0031 0x1bec [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:23:10.0047 0x1bec WPDBusEnum - ok
08:23:10.0047 0x1bec [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:23:10.0078 0x1bec ws2ifsl - ok
08:23:10.0093 0x1bec [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
08:23:10.0109 0x1bec wscsvc - ok
08:23:10.0125 0x1bec WSearch - ok
08:23:10.0249 0x1bec [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
08:23:10.0374 0x1bec wuauserv - ok
08:23:10.0405 0x1bec [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:23:10.0437 0x1bec WudfPf - ok
08:23:10.0468 0x1bec [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:23:10.0499 0x1bec WUDFRd - ok
08:23:10.0515 0x1bec [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:23:10.0561 0x1bec wudfsvc - ok
08:23:10.0593 0x1bec [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
08:23:10.0624 0x1bec WwanSvc - ok
08:23:10.0639 0x1bec ================ Scan global ===============================
08:23:10.0686 0x1bec [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
08:23:10.0717 0x1bec [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
08:23:10.0733 0x1bec [ 20EBCFD94E5F9C801354062991E7257B, 9CD497241559A5D6A8C2C77F1109B6D512BFFA8CC154480A3CDC36B7BB68BFAB ] C:\Windows\system32\winsrv.dll
08:23:10.0764 0x1bec [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
08:23:10.0795 0x1bec [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
08:23:10.0795 0x1bec [ Global ] - ok
08:23:10.0795 0x1bec ================ Scan MBR ==================================
08:23:10.0811 0x1bec [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:23:11.0319 0x1bec \Device\Harddisk0\DR0 - ok
08:23:11.0319 0x1bec ================ Scan VBR ==================================
08:23:11.0319 0x1bec [ 73DCE3978B8812BE140FC2076735114A ] \Device\Harddisk0\DR0\Partition1
08:23:11.0319 0x1bec \Device\Harddisk0\DR0\Partition1 - ok
08:23:11.0334 0x1bec [ 245B380433B34BDBF2F75BA5E8E88514 ] \Device\Harddisk0\DR0\Partition2
08:23:11.0334 0x1bec \Device\Harddisk0\DR0\Partition2 - ok
08:23:11.0350 0x1bec [ 28019291A48AF96C9B38AFC3A0EE1F19 ] \Device\Harddisk0\DR0\Partition3
08:23:11.0350 0x1bec \Device\Harddisk0\DR0\Partition3 - ok
08:23:11.0350 0x1bec ================ Scan generic autorun ======================
08:23:11.0662 0x1bec [ 1539331FFDB2D977BFF14F5737F5063E, 29C6CDEDA01D406BEE2B6E06CC42491A9EA89E45751D92DB4A2E9C017527B44A ] C:\Program Files\Logitech Gaming Software\LCore.exe
08:23:11.0833 0x1bec Launch LCore - ok
08:23:11.0897 0x1bec [ A56AC97C6C72141B334763CD3C77C76F, 57BB0DAC3463A0CEAB74052EC04EA1B6F3F757DFBCA00143C34360EC6BC69A06 ] D:\### Installiert ###\Greenshot\Greenshot.exe
08:23:11.0914 0x1bec Greenshot - detected UnsignedFile.Multi.Generic ( 1 )
08:23:11.0977 0x1bec Detect skipped due to KSN trusted
08:23:11.0977 0x1bec Greenshot - ok
08:23:12.0947 0x1bec [ 52F5B6497C3FDC6499B33B9424E93E93, E97AD707E474A947267932148A848481419E456E07E7C0750759837A6948E0E1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
08:23:13.0602 0x1bec RTHDVCPL - ok
08:23:13.0680 0x1bec [ 01B1E0F46CA45319742F87D566FD7EEB, 0C03B26478DEEC8800BE159AF8C0023F4A79C2DFEBB515B50B4955820E8F4A00 ] C:\Windows\TEMP\g75EC.tmp.exe
08:23:13.0680 0x1bec wd - detected UnsignedFile.Multi.Generic ( 1 )
08:23:13.0821 0x1bec wd ( UnsignedFile.Multi.Generic ) - warning
08:23:13.0821 0x1bec Force sending object to P2P due to detect: C:\Windows\TEMP\g75EC.tmp.exe
08:23:14.0009 0x1bec Object send P2P result: true
08:23:14.0197 0x1bec [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
08:23:14.0275 0x1bec Sidebar - ok
08:23:14.0291 0x1bec [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
08:23:14.0322 0x1bec mctadmin - ok
08:23:14.0369 0x1bec [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
08:23:14.0400 0x1bec Sidebar - ok
08:23:14.0400 0x1bec [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
08:23:14.0415 0x1bec mctadmin - ok
08:23:14.0493 0x1bec [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] C:\Users\Mike\AppData\Local\Dropbox\Update\DropboxUpdate.exe
08:23:14.0525 0x1bec Dropbox Update - ok
08:23:14.0842 0x1bec [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] D:\### Installiert ###\CCleaner\CCleaner64.exe
08:23:15.0008 0x1bec CCleaner Monitoring - ok
08:23:15.0096 0x1bec [ 26728EEA201DF1B5848D9E7011D3D468, 617A69AC31DB1E631F652E961A8E0D77CF5185AF1FCC4DBF93514044F863B6AA ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
08:23:15.0121 0x1bec BlueStacks Agent - ok
08:23:15.0185 0x1bec [ F25E2808F14C90D05B0363E59C016943, 94107D947061930DFD27A207FA33D365E376441777D740916A967C575BEDC4D9 ] C:\Users\Mike\AppData\Local\Mixesoft\AppNHost\appnhost.exe
08:23:15.0201 0x1bec appnhost - ok
08:23:15.0216 0x1bec Waiting for KSN requests completion. In queue: 116
08:23:16.0237 0x1bec AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security Technical Preview 14.0.0\wmiav.exe ( 14.0.0.4651 ), 0x41000 ( enabled : updated )
08:23:16.0244 0x1bec FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security Technical Preview 14.0.0\wmifw.exe ( 14.0.0.4651 ), 0x41010 ( enabled )
08:23:16.0338 0x1bec ============================================================
08:23:16.0338 0x1bec Scan finished
08:23:16.0338 0x1bec ============================================================
08:23:16.0344 0x07d0 Detected object count: 1
08:23:16.0344 0x07d0 Actual detected object count: 1
08:27:57.0760 0x07d0 wd ( UnsignedFile.Multi.Generic ) - skipped by user
08:27:57.0760 0x07d0 wd ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
20.01.2017, 10:36
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen MBAR so oft wiederholen bis es nix mehr findet. Siehe Anleitung.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.01.2017, 11:09
| #11 |
| | Cse.google.com Problem eingefangen soll ich auch wieder die logs rein stellen bis er nichts mehr gefunden hat ? |
|
20.01.2017, 11:21
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen genau
__________________ Logfiles bitte immer in CODE-Tags posten |
|
21.01.2017, 10:58
| #13 |
| | Cse.google.com Problem eingefangen MBAR Log 1 Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.01.21.01
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18499
Mike :: MIKE-PC [administrator]
21.01.2017 10:17:34
mbar-log-2017-01-21 (10-17-34).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 350864
Time elapsed: 13 minute(s), 45 second(s)
Memory Processes Detected: 1
C:\Windows\temp\g7CFD.tmp.exe (Adware.Elex) -> 1184 -> Delete on reboot. [8afb314d58503006641b7c62ba46dd23]
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 1
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|wd (Adware.Elex) -> Data: C:\Windows\TEMP\g7CFD.tmp.exe -> Delete on reboot. [8afb314d58503006641b7c62ba46dd23]
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Windows\temp\g7CFD.tmp.exe (Adware.Elex) -> Delete on reboot. [8afb314d58503006641b7c62ba46dd23]
C:\Windows\temp\g7CBE.tmp.exe (Adware.Elex) -> Delete on reboot. [88fd7509e6c253e3ce7f257d8d7312ee]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.01.21.01
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18499
Mike :: MIKE-PC [administrator]
21.01.2017 10:41:18
mbar-log-2017-01-21 (10-41-18).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 351377
Time elapsed: 12 minute(s), 48 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Geändert von xyz99 (21.01.2017 um 11:05 Uhr) |
|
21.01.2017, 16:06
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
21.01.2017, 16:06
| #15 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Cse.google.com Problem eingefangen Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Cse.google.com Problem eingefangen |
| anti-malware, browser, chip, einfach, eingefangen, eset, fehler, gelöscht, gen, google, großes, komische, leitet, link, natürlich, nervt, online, problem, programme, rechner, sache, sachen, scan, scanner, seite, warum |
Linear-Darstellung
