| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Malwarebyte hat 3500 Funde, trotz Loeschung laeuft der PC miesWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
25.03.2017, 06:11
| #1 |
 |  Malwarebyte hat 3500 Funde, trotz Loeschung laeuft der PC mies Hallo. Ich bin gerade bei Freunden .. Deren PC laueft mies.. lange Ladezeiten . Vista Update geht nicht. Bei der Ueberpruefung mit malwarbyte zeigten sich 3500 Funde. Diese schickte ich mit Malwarebyte in Quarantaene. ADWcleaner geht nicht . Das Programm haengt sich immer auf..Vielleicht hat ja noch jemand einen Rat was man sonst machen kann um den Kram loszuwerden . Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.03.25.01
rootkit: v2017.03.11.01
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Henrique :: HENRIQUE-NOTE [administrator]
24/03/2017 23:17:42
mbar-log-2017-03-24 (23-17-42).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 305925
Time elapsed: 52 minute(s), 26 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 00:33:31.0780 0x0948 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
00:33:37.0365 0x0948 ============================================================
00:33:37.0365 0x0948 Current date / time: 2017/03/25 00:33:37.0365
00:33:37.0365 0x0948 SystemInfo:
00:33:37.0365 0x0948
00:33:37.0365 0x0948 OS Version: 6.0.6002 ServicePack: 2.0
00:33:37.0365 0x0948 Product type: Workstation
00:33:37.0365 0x0948 ComputerName: HENRIQUE-NOTE
00:33:37.0365 0x0948 UserName: Henrique
00:33:37.0365 0x0948 Windows directory: C:\Windows
00:33:37.0365 0x0948 System windows directory: C:\Windows
00:33:37.0365 0x0948 Processor architecture: Intel x86
00:33:37.0365 0x0948 Number of processors: 2
00:33:37.0365 0x0948 Page size: 0x1000
00:33:37.0365 0x0948 Boot type: Normal boot
00:33:37.0365 0x0948 CodeIntegrityOptions = 0x00000000
00:33:37.0365 0x0948 ============================================================
00:33:38.0239 0x0948 KLMD registered as C:\Windows\system32\drivers\90415854.sys
00:33:38.0239 0x0948 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 6002.19503, osProperties = 0x0
00:33:38.0520 0x0948 System UUID: {43C6C42C-195D-A677-F8CC-EC7D4B345809}
00:33:39.0471 0x0948 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
00:33:39.0487 0x0948 ============================================================
00:33:39.0487 0x0948 \Device\Harddisk0\DR0:
00:33:39.0487 0x0948 MBR partitions:
00:33:39.0487 0x0948 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x27800, BlocksNum 0x1400000
00:33:39.0487 0x0948 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1427800, BlocksNum 0x1B89D7F8
00:33:39.0502 0x0948 ============================================================
00:33:39.0596 0x0948 C: <-> \Device\Harddisk0\DR0\Partition2
00:33:39.0752 0x0948 D: <-> \Device\Harddisk0\DR0\Partition1
00:33:39.0830 0x0948 ============================================================
00:33:39.0830 0x0948 Initialize success
00:33:39.0830 0x0948 ============================================================
00:42:03.0975 0x1188 ============================================================
00:42:03.0975 0x1188 Scan started
00:42:03.0975 0x1188 Mode: Manual; SigCheck; TDLFS;
00:42:03.0975 0x1188 ============================================================
00:42:03.0975 0x1188 KSN ping started
00:42:15.0316 0x1188 KSN ping finished: true
00:42:15.0972 0x1188 ================ Scan system memory ========================
00:42:15.0972 0x1188 System memory - ok
00:42:15.0972 0x1188 ================ Scan services =============================
00:42:16.0190 0x1188 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
00:42:16.0408 0x1188 ACPI - ok
00:42:16.0549 0x1188 [ 7EB7A3B01751889C6459C51A74CC87FA, 088EF5CA10D439905822A3DFFEFD2D3416198F10EAAF8C235771CDB3DF86E82C ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
00:42:16.0580 0x1188 AdobeFlashPlayerUpdateSvc - ok
00:42:16.0627 0x1188 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
00:42:16.0705 0x1188 adp94xx - ok
00:42:16.0752 0x1188 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
00:42:16.0798 0x1188 adpahci - ok
00:42:16.0845 0x1188 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
00:42:16.0876 0x1188 adpu160m - ok
00:42:16.0908 0x1188 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
00:42:16.0939 0x1188 adpu320 - ok
00:42:16.0986 0x1188 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
00:42:17.0188 0x1188 AeLookupSvc - ok
00:42:17.0251 0x1188 [ EF1142512BEC12F1C2C87735DA1755BE, 236EFD8FBA717123E0CF5A136ACEBB80A2BE1FA4B1A9A2C74728BC4EB4E787D8 ] AESTFilters C:\Windows\system32\aestsrv.exe
00:42:17.0329 0x1188 AESTFilters - ok
00:42:17.0407 0x1188 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
00:42:17.0500 0x1188 AFD - ok
00:42:17.0578 0x1188 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
00:42:17.0610 0x1188 agp440 - ok
00:42:17.0672 0x1188 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
00:42:17.0688 0x1188 aic78xx - ok
00:42:17.0750 0x1188 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
00:42:17.0922 0x1188 ALG - ok
00:42:17.0968 0x1188 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
00:42:17.0984 0x1188 aliide - ok
00:42:18.0000 0x1188 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
00:42:18.0015 0x1188 amdagp - ok
00:42:18.0031 0x1188 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
00:42:18.0062 0x1188 amdide - ok
00:42:18.0062 0x1188 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
00:42:18.0124 0x1188 AmdK7 - ok
00:42:18.0140 0x1188 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
00:42:18.0202 0x1188 AmdK8 - ok
00:42:18.0265 0x1188 [ 448DA519F3B6FFA158C513156053181E, AA37D1F9CAE0D92A381F2F95E980C5ABD688DB115DD79F9B3DBBCCF9715BEF7A ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
00:42:18.0312 0x1188 ApfiltrService - ok
00:42:18.0358 0x1188 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
00:42:18.0421 0x1188 Appinfo - ok
00:42:18.0499 0x1188 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
00:42:18.0530 0x1188 arc - ok
00:42:18.0561 0x1188 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
00:42:18.0592 0x1188 arcsas - ok
00:42:18.0717 0x1188 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
00:42:18.0733 0x1188 aspnet_state - ok
00:42:18.0764 0x1188 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
00:42:18.0826 0x1188 AsyncMac - ok
00:42:18.0858 0x1188 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
00:42:18.0889 0x1188 atapi - ok
00:42:18.0998 0x1188 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:42:19.0092 0x1188 AudioEndpointBuilder - ok
00:42:19.0107 0x1188 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
00:42:19.0154 0x1188 Audiosrv - ok
00:42:19.0232 0x1188 [ 423C7B87E886AC93D22936EA82665F83, 98B807D855A746E68525AEEBB6D45AF418861C2111D7F8493A8A6FB59F6C6F8E ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
00:42:19.0248 0x1188 BCM42RLY - ok
00:42:19.0357 0x1188 [ B56999BE8F22BA3071E4CEAFA9E82E26, 9130E93495738A16DA83DDBC077C153D1E24FACD203DABF299DBEE45DD326A64 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
00:42:19.0482 0x1188 BCM43XX - ok
00:42:19.0622 0x1188 BdApiUtil - ok
00:42:19.0653 0x1188 BdCameraProtect - ok
00:42:19.0700 0x1188 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
00:42:19.0794 0x1188 Beep - ok
00:42:19.0856 0x1188 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
00:42:19.0981 0x1188 BFE - ok
00:42:19.0981 0x1188 Bfilter - ok
00:42:19.0996 0x1188 Bfmon - ok
00:42:19.0996 0x1188 Bhbase - ok
00:42:20.0074 0x1188 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\system32\qmgr.dll
00:42:20.0215 0x1188 BITS - ok
00:42:20.0262 0x1188 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
00:42:20.0340 0x1188 blbdrive - ok
00:42:20.0386 0x1188 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
00:42:20.0464 0x1188 bowser - ok
00:42:20.0480 0x1188 Bprotect - ok
00:42:20.0496 0x1188 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
00:42:20.0558 0x1188 BrFiltLo - ok
00:42:20.0589 0x1188 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
00:42:20.0652 0x1188 BrFiltUp - ok
00:42:20.0698 0x1188 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
00:42:20.0776 0x1188 Browser - ok
00:42:20.0823 0x1188 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
00:42:21.0026 0x1188 Brserid - ok
00:42:21.0057 0x1188 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
00:42:21.0135 0x1188 BrSerWdm - ok
00:42:21.0151 0x1188 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
00:42:21.0244 0x1188 BrUsbMdm - ok
00:42:21.0260 0x1188 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
00:42:21.0354 0x1188 BrUsbSer - ok
00:42:21.0400 0x1188 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
00:42:21.0478 0x1188 BTHMODEM - ok
00:42:21.0634 0x1188 catchme - ok
00:42:21.0666 0x1188 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
00:42:21.0728 0x1188 cdfs - ok
00:42:21.0775 0x1188 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
00:42:21.0837 0x1188 cdrom - ok
00:42:21.0868 0x1188 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
00:42:21.0931 0x1188 CertPropSvc - ok
00:42:22.0024 0x1188 [ 59B4AB79011957DD3B83F0C2E63741BD, 5DE68785D701DBA0F98452B7D5CC407BEECD51685F39516157733CED2EF2FA19 ] chip1click C:\Program Files\Chip Digital GmbH\chip1click\chip 1-click installer.exe
00:42:22.0056 0x1188 chip1click - detected UnsignedFile.Multi.Generic ( 1 )
00:42:24.0489 0x1188 Detect skipped due to KSN trusted
00:42:24.0489 0x1188 chip1click - ok
00:42:24.0552 0x1188 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
00:42:24.0630 0x1188 circlass - ok
00:42:24.0676 0x1188 [ 5D9311526801643000D7032A83B18B12, C5A98868A41446617B3A27C6C4AAFA4E7C093E253E8C1DD5DBFE6FAE21991209 ] CLFS C:\Windows\system32\CLFS.sys
00:42:24.0723 0x1188 CLFS - ok
00:42:24.0801 0x1188 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:42:24.0832 0x1188 clr_optimization_v2.0.50727_32 - ok
00:42:24.0895 0x1188 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:42:24.0926 0x1188 clr_optimization_v4.0.30319_32 - ok
00:42:25.0020 0x1188 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
00:42:25.0098 0x1188 CmBatt - ok
00:42:25.0129 0x1188 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
00:42:25.0160 0x1188 cmdide - ok
00:42:25.0222 0x1188 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
00:42:25.0254 0x1188 Compbatt - ok
00:42:25.0254 0x1188 COMSysApp - ok
00:42:25.0285 0x1188 cpuz134 - ok
00:42:25.0285 0x1188 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
00:42:25.0316 0x1188 crcdisk - ok
00:42:25.0332 0x1188 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
00:42:25.0410 0x1188 Crusoe - ok
00:42:25.0456 0x1188 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
00:42:25.0534 0x1188 CryptSvc - ok
00:42:25.0612 0x1188 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
00:42:25.0690 0x1188 DcomLaunch - ok
00:42:25.0753 0x1188 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
00:42:25.0846 0x1188 DfsC - ok
00:42:26.0018 0x1188 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
00:42:26.0299 0x1188 DFSR - ok
00:42:26.0377 0x1188 [ CFD472DDF02D675D74144A8BD63B4B10, 58D7142129F49F38D832419BDAC70F21851807918343222F6B58FDFA2408F8EF ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
00:42:26.0408 0x1188 dg_ssudbus - ok
00:42:26.0470 0x1188 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
00:42:26.0533 0x1188 Dhcp - ok
00:42:26.0580 0x1188 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
00:42:26.0611 0x1188 disk - ok
00:42:26.0658 0x1188 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
00:42:26.0751 0x1188 Dnscache - ok
00:42:26.0782 0x1188 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
00:42:26.0860 0x1188 dot3svc - ok
00:42:26.0907 0x1188 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
00:42:26.0985 0x1188 DPS - ok
00:42:27.0032 0x1188 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
00:42:27.0079 0x1188 drmkaud - ok
00:42:27.0141 0x1188 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
00:42:27.0204 0x1188 DXGKrnl - ok
00:42:27.0266 0x1188 [ 908ED85B7806E8AF3AF5E9B74F7809D4, 9A763D247035578A946094D2C1CE8204E6EDFFD7237C7BF2058B5F4ECC0306E0 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
00:42:27.0360 0x1188 e1express - ok
00:42:27.0406 0x1188 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
00:42:27.0484 0x1188 E1G60 - ok
00:42:27.0531 0x1188 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
00:42:27.0594 0x1188 EapHost - ok
00:42:27.0640 0x1188 [ 9BAB89DBB27891DEEF6E1F1B589A6ED4, 61BE4A6394ED5C99CB84B720F6AA6B97C7FE71A7A04D822F6EE99AB084C55606 ] Ecache C:\Windows\system32\drivers\ecache.sys
00:42:27.0672 0x1188 Ecache - ok
00:42:27.0718 0x1188 [ 6E42F2E5B5BDE3FE4066C9B2D6091E17, B80969AFA80F094DC195D5E994A950A294CECB0C2A9B08A91AA2B475848A4029 ] EfiMon C:\Windows\system32\Drivers\Efimon.sys
00:42:27.0734 0x1188 EfiMon - ok
00:42:27.0781 0x1188 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
00:42:27.0828 0x1188 elxstor - ok
00:42:27.0906 0x1188 [ E798C0BDFA4913CCF8A646D29BB34796, 7CDB2BCCDD8A8A70C6248C327A357EA3488C7ADED32D4F89B933ED72AE12B73B ] EMDMgmt C:\Windows\system32\emdmgmt.dll
00:42:28.0015 0x1188 EMDMgmt - ok
00:42:28.0030 0x1188 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
00:42:28.0077 0x1188 ErrDev - ok
00:42:28.0124 0x1188 [ 3516D7688804F300757098898F03A6E1, E158740D0249D99613BA78BE02DF792CF6BAE2DF49C577A75150051035E867FF ] ESProtectionDriver C:\Windows\system32\drivers\mbae.sys
00:42:28.0140 0x1188 ESProtectionDriver - ok
00:42:28.0202 0x1188 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
00:42:28.0280 0x1188 EventSystem - ok
00:42:28.0342 0x1188 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
00:42:28.0405 0x1188 exfat - ok
00:42:28.0467 0x1188 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
00:42:28.0530 0x1188 fastfat - ok
00:42:28.0561 0x1188 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
00:42:28.0623 0x1188 fdc - ok
00:42:28.0670 0x1188 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
00:42:28.0732 0x1188 fdPHost - ok
00:42:28.0764 0x1188 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
00:42:28.0857 0x1188 FDResPub - ok
00:42:28.0904 0x1188 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
00:42:28.0920 0x1188 FileInfo - ok
00:42:28.0951 0x1188 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
00:42:28.0982 0x1188 Filetrace - ok
00:42:29.0013 0x1188 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
00:42:29.0076 0x1188 flpydisk - ok
00:42:29.0138 0x1188 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
00:42:29.0169 0x1188 FltMgr - ok
00:42:29.0278 0x1188 [ 456E786A157692A7463B3739C9ADBBF5, 9AB00B5A7CF8CCCF4332E1901286D8832508471809D8BCE45FD75CCFF9CEAD8E ] FontCache C:\Windows\system32\FntCache.dll
00:42:29.0388 0x1188 FontCache - ok
00:42:29.0434 0x1188 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:42:29.0466 0x1188 FontCache3.0.0.0 - ok
00:42:29.0497 0x1188 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
00:42:29.0575 0x1188 Fs_Rec - ok
00:42:29.0606 0x1188 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
00:42:29.0637 0x1188 gagp30kx - ok
00:42:29.0856 0x1188 [ 805DAC448BEBDA900BF5520AB27D9616, C0A2935C75EC4B3D860E68ABAE6756D6D4B31BA9AFD742FF9C0B6ED11BEFD163 ] Garmin Device Interaction Service C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
00:42:29.0934 0x1188 Garmin Device Interaction Service - ok
00:42:29.0980 0x1188 [ FCA2E4D46CBF3A22FDE8EB19C9523E9A, 7602F537C8B13914A2B0901BC141A8DA00FAA6641A49F6F526646CFB4BF491BE ] gbpddreg C:\Windows\system32\drivers\gbpddreg32.sys
00:42:29.0996 0x1188 gbpddreg - ok
00:42:30.0074 0x1188 [ 4EC1CC0AB9AC26F0C25AB23829F404C1, 01471CF56D0D3017A135F64A0142D4AC62029A8BF673110EA619F8CECE721526 ] GbpKm C:\Windows\system32\drivers\GbpKm.sys
00:42:30.0090 0x1188 GbpKm - ok
00:42:30.0183 0x1188 [ 6166ABD27EF18E5D9DEF814F5FFEEDEC, F3326EBE2106E5F9672ACEEDA05167111FA48052808405B81913ACDC0A2710A0 ] GbpSv C:\PROGRA~1\GbPlugin\GbpSv.exe
00:42:30.0230 0x1188 GbpSv - ok
00:42:30.0324 0x1188 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
00:42:30.0402 0x1188 gpsvc - ok
00:42:30.0464 0x1188 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate1caf06e586afb2b C:\Program Files\Google\Update\GoogleUpdate.exe
00:42:30.0495 0x1188 gupdate1caf06e586afb2b - ok
00:42:30.0526 0x1188 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
00:42:30.0542 0x1188 gupdatem - ok
00:42:30.0651 0x1188 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
00:42:30.0745 0x1188 HDAudBus - ok
00:42:30.0807 0x1188 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
00:42:30.0916 0x1188 HidBth - ok
00:42:30.0948 0x1188 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
00:42:31.0026 0x1188 HidIr - ok
00:42:31.0057 0x1188 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\System32\hidserv.dll
00:42:31.0104 0x1188 hidserv - ok
00:42:31.0135 0x1188 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
00:42:31.0197 0x1188 HidUsb - ok
00:42:31.0244 0x1188 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
00:42:31.0306 0x1188 hkmsvc - ok
00:42:31.0353 0x1188 [ 049844AD9F01ACCDE9998B46B0C8948D, 463A017141A11AC4E68A52D0771796F0FA0AF3296BF7944BD87B87FCB68735A5 ] HookPort C:\Windows\system32\Drivers\Hookport.sys
00:42:31.0369 0x1188 HookPort - ok
00:42:31.0384 0x1188 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
00:42:31.0416 0x1188 HpCISSs - ok
00:42:31.0509 0x1188 [ 99F85640054BA65190B860D878A7C9AE, CE87323FFA4A74EA721A5E7CA6F233C54F21C2C1C6BF7DE84049CE7CEB0741AE ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
00:42:31.0634 0x1188 HSF_DPV - ok
00:42:31.0681 0x1188 [ CFBC2B81972E298F0E19EE68FA9E73DA, F149EE69F7300494329A5609ACC2D2F4A6D2F681CD368E7DA43C4D768D5B6C64 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
00:42:31.0743 0x1188 HSXHWAZL - ok
00:42:31.0806 0x1188 [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys
00:42:31.0930 0x1188 HTTP - ok
00:42:31.0946 0x1188 hwdatacard - ok
00:42:31.0993 0x1188 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
00:42:32.0008 0x1188 i2omp - ok
00:42:32.0040 0x1188 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
00:42:32.0102 0x1188 i8042prt - ok
00:42:32.0196 0x1188 [ AE38A12F79A4980DDB88F36514F8A1DA, CA7EE57EC2ECA88ABFD087DAF8963021DC12821FDFAAD0336A16F8DC119C0FC4 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
00:42:32.0242 0x1188 IAANTMON - ok
00:42:32.0305 0x1188 [ 997E8F5939F2D12CD9F2E6B395724C16, C22F10BADE29DA6F7EB79D9F5D81D9FBEC17D4D4F8B25E0AF4E5CEAE28E8ABF6 ] iaStor C:\Windows\system32\drivers\iastor.sys
00:42:32.0336 0x1188 iaStor - ok
00:42:32.0352 0x1188 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
00:42:32.0398 0x1188 iaStorV - ok
00:42:32.0492 0x1188 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:42:32.0617 0x1188 idsvc - ok
00:42:32.0788 0x1188 [ C134E69CE901422D1F2D7EA8D69098FE, 38D7AB6C85C0BCE34B8F52DDBD6F0371DF551003DF6BAE20A2AB1D1349128890 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
00:42:33.0054 0x1188 igfx - ok
00:42:33.0085 0x1188 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
00:42:33.0100 0x1188 iirsp - ok
00:42:33.0163 0x1188 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
00:42:33.0256 0x1188 IKEEXT - ok
00:42:33.0303 0x1188 [ 98D303CCB3415E9202E82043B37D66DC, 53526635EBCA6E2C2E9AAEC68B333CAE6A5FF0008859FCDE3D84A2C9098B30B0 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
00:42:33.0366 0x1188 IntcHdmiAddService - ok
00:42:33.0397 0x1188 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\DRIVERS\intelide.sys
00:42:33.0412 0x1188 intelide - ok
00:42:33.0428 0x1188 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
00:42:33.0506 0x1188 intelppm - ok
00:42:33.0568 0x1188 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
00:42:33.0615 0x1188 IPBusEnum - ok
00:42:33.0678 0x1188 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:42:33.0724 0x1188 IpFilterDriver - ok
00:42:33.0756 0x1188 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
00:42:33.0849 0x1188 iphlpsvc - ok
00:42:33.0849 0x1188 IpInIp - ok
00:42:33.0880 0x1188 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
00:42:33.0958 0x1188 IPMIDRV - ok
00:42:33.0990 0x1188 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
00:42:34.0052 0x1188 IPNAT - ok
00:42:34.0083 0x1188 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
00:42:34.0130 0x1188 IRENUM - ok
00:42:34.0146 0x1188 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
00:42:34.0177 0x1188 isapnp - ok
00:42:34.0208 0x1188 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
00:42:34.0239 0x1188 iScsiPrt - ok
00:42:34.0270 0x1188 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
00:42:34.0286 0x1188 iteatapi - ok
00:42:34.0364 0x1188 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
00:42:34.0395 0x1188 iteraid - ok
00:42:34.0411 0x1188 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
00:42:34.0442 0x1188 kbdclass - ok
00:42:34.0473 0x1188 [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
00:42:34.0504 0x1188 kbdhid - ok
00:42:34.0536 0x1188 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
00:42:34.0582 0x1188 KeyIso - ok
00:42:34.0629 0x1188 [ E9648A2E6691B3BF0D17697640B8F7EB, 6832F086C3AD0BBB57A5D3B1B3DE8EAFB9F8E63906A70A77770B421670D61F8C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
00:42:34.0692 0x1188 KSecDD - ok
00:42:34.0754 0x1188 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
00:42:34.0879 0x1188 KtmRm - ok
00:42:34.0926 0x1188 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\System32\srvsvc.dll
00:42:35.0004 0x1188 LanmanServer - ok
00:42:35.0082 0x1188 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:42:35.0160 0x1188 LanmanWorkstation - ok
00:42:35.0206 0x1188 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
00:42:35.0253 0x1188 lltdio - ok
00:42:35.0300 0x1188 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
00:42:35.0362 0x1188 lltdsvc - ok
00:42:35.0378 0x1188 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
00:42:35.0456 0x1188 lmhosts - ok
00:42:35.0487 0x1188 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
00:42:35.0503 0x1188 LSI_FC - ok
00:42:35.0534 0x1188 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
00:42:35.0550 0x1188 LSI_SAS - ok
00:42:35.0581 0x1188 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
00:42:35.0612 0x1188 LSI_SCSI - ok
00:42:35.0612 0x1188 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
00:42:35.0690 0x1188 luafv - ok
00:42:35.0737 0x1188 [ D9351F554ED0784764DB0564186906AE, C7DC59A8D528A9A2FCF592D20C20B40D4315B1C09E82A4C1D0B5C6807E8E7338 ] MBAMProtection C:\Windows\system32\drivers\mbam.sys
00:42:35.0768 0x1188 MBAMProtection - ok
00:42:36.0033 0x1188 [ ADED0E73F165B8353690F8055A51154D, BEED269D09723FE13A27A494E5CA9A0555142AE7647C97EB3E2C7AA111633A20 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
00:42:36.0376 0x1188 MBAMService - ok
00:42:36.0454 0x1188 [ E98F032BA5324FA09ED8B0E87EF049B1, EF7123DEC99879063798187A5F9AC327BCB3CC5DAE9161ECF30E31D740A4D1F2 ] MBAMWebProtection C:\Windows\system32\drivers\mwac.sys
00:42:36.0486 0x1188 MBAMWebProtection - ok
00:42:36.0579 0x1188 [ B066B4B2910C670530B63D5E924E8A2B, D7A3DD40766A78586CFF5CB97124CDABE55BF6EB46933CF3AB49F9EAC0501203 ] mdf16 C:\Program Files\Clarus\Samsung Drive Manager\mdf16.sys
00:42:36.0595 0x1188 mdf16 - ok
00:42:36.0610 0x1188 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
00:42:36.0626 0x1188 mdmxsdk - ok
00:42:36.0673 0x1188 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
00:42:36.0704 0x1188 megasas - ok
00:42:36.0735 0x1188 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
00:42:36.0813 0x1188 MegaSR - ok
00:42:36.0922 0x1188 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
00:42:36.0938 0x1188 Microsoft Office Groove Audit Service - ok
00:42:36.0969 0x1188 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
00:42:37.0047 0x1188 MMCSS - ok
00:42:37.0063 0x1188 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
00:42:37.0125 0x1188 Modem - ok
00:42:37.0141 0x1188 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
00:42:37.0219 0x1188 monitor - ok
00:42:37.0234 0x1188 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
00:42:37.0266 0x1188 mouclass - ok
00:42:37.0281 0x1188 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
00:42:37.0344 0x1188 mouhid - ok
00:42:37.0390 0x1188 [ 3EAE06B0D9E32A3D45DC3E07F1FBFA97, 0C56D92C5131D60AF2FCCF071976F2932A2C544C5EC4C2A5476E99CDE17FF08C ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
00:42:37.0406 0x1188 MountMgr - ok
00:42:37.0484 0x1188 [ EB4B5C8AB9DA5585CCC975CD3D072115, BEED5B7478F92C9FB1BBB62FFCEB5321A5C12A7C1AA9B20151BF22064589CD46 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:42:37.0515 0x1188 MozillaMaintenance - ok
00:42:37.0546 0x1188 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
00:42:37.0578 0x1188 mpio - ok
00:42:37.0609 0x1188 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
00:42:37.0687 0x1188 mpsdrv - ok
00:42:37.0749 0x1188 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
00:42:37.0858 0x1188 MpsSvc - ok
00:42:37.0890 0x1188 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
00:42:37.0921 0x1188 Mraid35x - ok
00:42:37.0968 0x1188 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
00:42:38.0046 0x1188 MRxDAV - ok
00:42:38.0077 0x1188 [ 1B864548B2ACEC1C0BB29B615CC42978, E1DA3E6764A2C7072D99F2F093E5F40DB6DC809701B59C155C6B4EE327AB9E41 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
00:42:38.0155 0x1188 mrxsmb - ok
00:42:38.0186 0x1188 [ 3F39B02EEDC5B8A0ED896EA1CDF7245F, 41C1DCD82F964A398B7C3D44178DBF7C8AF1C2DBC5F2D944BE6B00E909FE083B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:42:38.0248 0x1188 mrxsmb10 - ok
00:42:38.0280 0x1188 [ D0670EC8E5AD3FA5BE372BF70AC0EABF, BD2D1BA151FD5409EAA41ECCBEB863FE52FF7C2D92349961FEE736D66970748E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:42:38.0326 0x1188 mrxsmb20 - ok
00:42:38.0342 0x1188 [ F70590424EEFBF5C27A40C67AFDB8383, 1F2AC1DA12F7E6F09D8F6622EF1366ABD4B86EBE51DD1915E803D56A568A3412 ] msahci C:\Windows\system32\drivers\msahci.sys
00:42:38.0373 0x1188 msahci - ok
00:42:38.0389 0x1188 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
00:42:38.0420 0x1188 msdsm - ok
00:42:38.0467 0x1188 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
00:42:38.0514 0x1188 MSDTC - ok
00:42:38.0560 0x1188 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
00:42:38.0654 0x1188 Msfs - ok
00:42:38.0701 0x1188 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
00:42:38.0716 0x1188 msisadrv - ok
00:42:38.0748 0x1188 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
00:42:38.0826 0x1188 MSiSCSI - ok
00:42:38.0841 0x1188 msiserver - ok
00:42:38.0872 0x1188 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
00:42:38.0919 0x1188 MSKSSRV - ok
00:42:38.0966 0x1188 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
00:42:39.0013 0x1188 MSPCLOCK - ok
00:42:39.0013 0x1188 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
00:42:39.0075 0x1188 MSPQM - ok
00:42:39.0106 0x1188 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
00:42:39.0138 0x1188 MsRPC - ok
00:42:39.0169 0x1188 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
00:42:39.0200 0x1188 mssmbios - ok
00:42:39.0200 0x1188 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
00:42:39.0278 0x1188 MSTEE - ok
00:42:39.0309 0x1188 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
00:42:39.0340 0x1188 Mup - ok
00:42:39.0418 0x1188 [ 624197EC77BFBDF65CB21DD775E982DA, A98813428D220247DB7AD350E6F2E2723B161C0AD49372FEE19CD3FF22A0F8A8 ] mvd23 C:\Program Files\Clarus\Samsung Drive Manager\mvd23.sys
00:42:39.0434 0x1188 mvd23 - ok
00:42:39.0496 0x1188 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
00:42:39.0621 0x1188 napagent - ok
00:42:39.0668 0x1188 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
00:42:39.0730 0x1188 NativeWifiP - ok
00:42:39.0840 0x1188 [ E59AFB64C2F6E0C99350E1C944C75088, 10A9044192D0A83857A57286EABB05037922860483DA2B05AFCC485A8311E4EF ] NAUpdate C:\Program Files\Nero\Update\NASvc.exe
00:42:39.0918 0x1188 NAUpdate - ok
00:42:39.0980 0x1188 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
00:42:40.0074 0x1188 NDIS - ok
00:42:40.0120 0x1188 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
00:42:40.0183 0x1188 NdisTapi - ok
00:42:40.0214 0x1188 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
00:42:40.0292 0x1188 Ndisuio - ok
00:42:40.0323 0x1188 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
00:42:40.0370 0x1188 NdisWan - ok
00:42:40.0386 0x1188 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
00:42:40.0417 0x1188 NDProxy - ok
00:42:40.0464 0x1188 [ EC5E4025D3BE33055DA6AB09238D51BD, DD4FE8EFEF9C9F2D8D4B98426DB8CBDF5BEDA31700CFE262556F53FCD91F3FA8 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
00:42:40.0557 0x1188 Net Driver HPZ12 - ok
00:42:40.0588 0x1188 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
00:42:40.0635 0x1188 NetBIOS - ok
00:42:40.0698 0x1188 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
00:42:40.0760 0x1188 netbt - ok
00:42:40.0791 0x1188 [ 5F7751F1FF424D6A1FF376873421FAD2, D34EF980703BE76D8939BF7E877E18F0AEBA942E5970681266E92A004053BD8D ] NetExpress Updater C:\Program Files\AppBrad\NetExpressUpdater.exe
00:42:40.0822 0x1188 NetExpress Updater - ok
00:42:40.0822 0x1188 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
00:42:40.0854 0x1188 Netlogon - ok
00:42:40.0932 0x1188 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
00:42:41.0056 0x1188 Netman - ok
00:42:41.0134 0x1188 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:42:41.0166 0x1188 NetMsmqActivator - ok
00:42:41.0228 0x1188 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:42:41.0259 0x1188 NetPipeActivator - ok
00:42:41.0337 0x1188 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
00:42:41.0400 0x1188 netprofm - ok
00:42:41.0415 0x1188 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:42:41.0446 0x1188 NetTcpActivator - ok
00:42:41.0462 0x1188 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:42:41.0493 0x1188 NetTcpPortSharing - ok
00:42:41.0540 0x1188 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
00:42:41.0556 0x1188 nfrd960 - ok
00:42:41.0618 0x1188 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
00:42:41.0696 0x1188 NlaSvc - ok
00:42:41.0758 0x1188 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
00:42:41.0805 0x1188 Npfs - ok
00:42:41.0852 0x1188 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
00:42:41.0899 0x1188 nsi - ok
00:42:41.0946 0x1188 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
00:42:42.0039 0x1188 nsiproxy - ok
00:42:42.0148 0x1188 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
00:42:42.0289 0x1188 Ntfs - ok
00:42:42.0320 0x1188 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
00:42:42.0445 0x1188 ntrigdigi - ok
00:42:42.0460 0x1188 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
00:42:42.0507 0x1188 Null - ok
00:42:42.0570 0x1188 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
00:42:42.0585 0x1188 nvraid - ok
00:42:42.0632 0x1188 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
00:42:42.0663 0x1188 nvstor - ok
00:42:42.0694 0x1188 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
00:42:42.0726 0x1188 nv_agp - ok
00:42:42.0741 0x1188 NwlnkFlt - ok
00:42:42.0741 0x1188 NwlnkFwd - ok
Code:
ATTFilter 00:42:42.0850 0x1188 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:42:42.0897 0x1188 odserv - ok
00:42:42.0944 0x1188 [ 9D20FA5D8875F6063AA5E1C44446F698, 37AB9D83E4125D6D31836D5E3F6CA0A5A6155BB7A6D7498DE5C830E78B20902F ] OEM02Dev C:\Windows\system32\DRIVERS\OEM02Dev.sys
00:42:43.0022 0x1188 OEM02Dev - ok
00:42:43.0038 0x1188 [ 86326062A90494BDD79CE383511D7D69, 43D5682CA8ECB4BA7CC1A5C4C2BF966EE4802E8C3AA84CDEB634CA3C410DAB89 ] OEM02Vfx C:\Windows\system32\DRIVERS\OEM02Vfx.sys
00:42:43.0069 0x1188 OEM02Vfx - ok
00:42:43.0116 0x1188 [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
00:42:43.0147 0x1188 ohci1394 - ok
00:42:43.0209 0x1188 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:42:43.0240 0x1188 ose - ok
00:42:43.0318 0x1188 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
00:42:43.0443 0x1188 p2pimsvc - ok
00:42:43.0474 0x1188 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
00:42:43.0552 0x1188 p2psvc - ok
00:42:43.0630 0x1188 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
00:42:43.0771 0x1188 Parport - ok
00:42:43.0802 0x1188 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
00:42:43.0833 0x1188 partmgr - ok
00:42:43.0849 0x1188 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
00:42:43.0911 0x1188 Parvdm - ok
00:42:43.0974 0x1188 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
00:42:44.0052 0x1188 PcaSvc - ok
00:42:44.0098 0x1188 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
00:42:44.0130 0x1188 pci - ok
00:42:44.0161 0x1188 [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide C:\Windows\system32\drivers\pciide.sys
00:42:44.0176 0x1188 pciide - ok
00:42:44.0208 0x1188 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
00:42:44.0239 0x1188 pcmcia - ok
00:42:44.0301 0x1188 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
00:42:44.0504 0x1188 PEAUTH - ok
00:42:44.0629 0x1188 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
00:42:44.0894 0x1188 pla - ok
00:42:44.0956 0x1188 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
00:42:45.0003 0x1188 PlugPlay - ok
00:42:45.0066 0x1188 [ 2B81B089D9364083F5046AD1307A65BE, 83FBFB897356142CA4CD0D3C3333F9C08B920873E2F2822D1344C469BC48C094 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
00:42:45.0128 0x1188 Pml Driver HPZ12 - ok
00:42:45.0222 0x1188 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
00:42:45.0331 0x1188 PNRPAutoReg - ok
00:42:45.0378 0x1188 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
00:42:45.0456 0x1188 PNRPsvc - ok
00:42:45.0518 0x1188 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
00:42:45.0612 0x1188 PolicyAgent - ok
00:42:45.0643 0x1188 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
00:42:45.0705 0x1188 PptpMiniport - ok
00:42:45.0721 0x1188 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
00:42:45.0768 0x1188 Processor - ok
00:42:45.0799 0x1188 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
00:42:45.0861 0x1188 ProfSvc - ok
00:42:45.0877 0x1188 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
00:42:45.0924 0x1188 ProtectedStorage - ok
00:42:45.0955 0x1188 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
00:42:46.0017 0x1188 PSched - ok
00:42:46.0111 0x1188 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
00:42:46.0251 0x1188 ql2300 - ok
00:42:46.0298 0x1188 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
00:42:46.0314 0x1188 ql40xx - ok
00:42:46.0360 0x1188 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
00:42:46.0438 0x1188 QWAVE - ok
00:42:46.0470 0x1188 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
00:42:46.0516 0x1188 QWAVEdrv - ok
00:42:46.0688 0x1188 [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
00:42:47.0016 0x1188 R300 - ok
00:42:47.0047 0x1188 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
00:42:47.0094 0x1188 RasAcd - ok
00:42:47.0125 0x1188 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
00:42:47.0203 0x1188 RasAuto - ok
00:42:47.0265 0x1188 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
00:42:47.0343 0x1188 Rasl2tp - ok
00:42:47.0421 0x1188 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
00:42:47.0499 0x1188 RasMan - ok
00:42:47.0546 0x1188 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
00:42:47.0577 0x1188 RasPppoe - ok
00:42:47.0608 0x1188 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
00:42:47.0640 0x1188 RasSstp - ok
00:42:47.0686 0x1188 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
00:42:47.0749 0x1188 rdbss - ok
00:42:47.0780 0x1188 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
00:42:47.0842 0x1188 RDPCDD - ok
00:42:47.0889 0x1188 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
00:42:47.0952 0x1188 rdpdr - ok
00:42:47.0967 0x1188 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
00:42:48.0030 0x1188 RDPENCDD - ok
00:42:48.0061 0x1188 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
00:42:48.0139 0x1188 RDPWD - ok
00:42:48.0217 0x1188 [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
00:42:48.0232 0x1188 RealNetworks Downloader Resolver Service - ok
00:42:48.0279 0x1188 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
00:42:48.0326 0x1188 RemoteAccess - ok
00:42:48.0357 0x1188 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
00:42:48.0435 0x1188 RemoteRegistry - ok
00:42:48.0466 0x1188 [ 355AAC141B214BEF1DBC1483AFD9BD50, EB9AF96E81C1644C0190D269119BE71C63B60D50153C6EA2659B488C4456DBDF ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
00:42:48.0529 0x1188 rimmptsk - ok
00:42:48.0560 0x1188 [ A4216C71DD4F60B26418CCFD99CD0815, C189953DD7B3AB31167D8746E8F829D222FEF3F8866317814414EF3E0D92B9E1 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
00:42:48.0591 0x1188 rimsptsk - ok
00:42:48.0622 0x1188 [ D231B577024AA324AF13A42F3A807D10, F63885D67FA40F3640044C79AE8FAA536D307959D2AE9543C4A8F3CE5447CF91 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
00:42:48.0685 0x1188 rismxdp - ok
00:42:48.0716 0x1188 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
00:42:48.0810 0x1188 RpcLocator - ok
00:42:48.0872 0x1188 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
00:42:48.0966 0x1188 RpcSs - ok
00:42:49.0012 0x1188 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
00:42:49.0090 0x1188 rspndr - ok
00:42:49.0122 0x1188 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
00:42:49.0153 0x1188 SamSs - ok
00:42:49.0168 0x1188 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
00:42:49.0200 0x1188 sbp2port - ok
00:42:49.0246 0x1188 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
00:42:49.0309 0x1188 SCardSvr - ok
00:42:49.0371 0x1188 [ F79CC0F814748E15538BF4D808030739, 396E94A309AFB163791095A25950CB7D85EEC43B416E1E7F056F430E1B719F4D ] Schedule C:\Windows\system32\schedsvc.dll
00:42:49.0512 0x1188 Schedule - ok
00:42:49.0558 0x1188 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
00:42:49.0605 0x1188 SCPolicySvc - ok
00:42:49.0730 0x1188 [ A058BB0BFE7F530A1CCF28F5DBDB6795, E6E86D4B16065831081F4288B90DAE255F1176969E235A2C8A966BE8D6E622F3 ] scpVista C:\Program Files\Scpad\scpVista.exe
00:42:49.0855 0x1188 scpVista - detected UnsignedFile.Multi.Generic ( 1 )
00:42:54.0472 0x1188 Detect skipped due to KSN trusted
00:42:54.0472 0x1188 scpVista - ok
00:42:54.0535 0x1188 [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
00:42:54.0597 0x1188 sdbus - ok
00:42:54.0644 0x1188 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
00:42:54.0706 0x1188 SDRSVC - ok
00:42:54.0940 0x1188 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
00:42:55.0081 0x1188 SDScannerService - ok
00:42:55.0377 0x1188 [ 94653C9CFDC15B30EEECD94BA7219654, 59F54AC9BC79C1BFBEA84992181C58AF434A3DDDF473C9BE942D3462875A8375 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
00:42:55.0705 0x1188 SDUpdateService - ok
00:42:55.0783 0x1188 [ A7C46DA2D7C25DAA810E1DE4B14D1478, 4A995EFBBB7B192CC25B24286D4864160692F4D16EA13E7138D17272B495ED6B ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
00:42:55.0814 0x1188 SDWSCService - ok
00:42:55.0845 0x1188 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
00:42:55.0908 0x1188 secdrv - ok
00:42:55.0939 0x1188 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
00:42:56.0001 0x1188 seclogon - ok
00:42:56.0017 0x1188 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\system32\sens.dll
00:42:56.0079 0x1188 SENS - ok
00:42:56.0110 0x1188 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
00:42:56.0188 0x1188 Serenum - ok
00:42:56.0235 0x1188 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
00:42:56.0313 0x1188 Serial - ok
00:42:56.0344 0x1188 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
00:42:56.0391 0x1188 sermouse - ok
00:42:56.0422 0x1188 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
00:42:56.0485 0x1188 SessionEnv - ok
00:42:56.0500 0x1188 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
00:42:56.0532 0x1188 sffdisk - ok
00:42:56.0547 0x1188 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
00:42:56.0594 0x1188 sffp_mmc - ok
00:42:56.0641 0x1188 [ 9F66A46C55D6F1CCABC79BB7AFCCC545, 029115C69315D2298F7FC944A53EF7F120FF74919208EB5ABC190022176D9B16 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
00:42:56.0688 0x1188 sffp_sd - ok
00:42:56.0703 0x1188 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
00:42:56.0781 0x1188 sfloppy - ok
00:42:56.0890 0x1188 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
00:42:57.0031 0x1188 SharedAccess - ok
00:42:57.0109 0x1188 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:42:57.0202 0x1188 ShellHWDetection - ok
00:42:57.0249 0x1188 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
00:42:57.0265 0x1188 sisagp - ok
00:42:57.0296 0x1188 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
00:42:57.0312 0x1188 SiSRaid2 - ok
00:42:57.0327 0x1188 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
00:42:57.0358 0x1188 SiSRaid4 - ok
00:42:57.0405 0x1188 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
00:42:57.0483 0x1188 SkypeUpdate - ok
00:42:57.0702 0x1188 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
00:42:57.0982 0x1188 slsvc - ok
00:42:58.0029 0x1188 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
00:42:58.0107 0x1188 SLUINotify - ok
00:42:58.0154 0x1188 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
00:42:58.0216 0x1188 Smb - ok
00:42:58.0263 0x1188 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
00:42:58.0294 0x1188 SNMPTRAP - ok
00:42:58.0326 0x1188 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
00:42:58.0357 0x1188 spldr - ok
00:42:58.0404 0x1188 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
00:42:58.0482 0x1188 Spooler - ok
00:42:58.0544 0x1188 [ DC7E6FCD8C51AEF8FF3F2E23C786014A, 02852FC293359BA89155367FA7D3A69922EC2574E5B85C842517272768BE8808 ] srv C:\Windows\system32\DRIVERS\srv.sys
00:42:58.0700 0x1188 srv - ok
00:42:58.0778 0x1188 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
00:42:58.0856 0x1188 srv2 - ok
00:42:58.0903 0x1188 [ 8AE0783E3EDCED90D4B2961887056A2B, D24168259988576B13EB2A4B2C11622A736174DDF11F6718D9A0DC9837F50EA5 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
00:42:58.0950 0x1188 srvnet - ok
00:42:59.0012 0x1188 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
00:42:59.0121 0x1188 SSDPSRV - ok
00:42:59.0199 0x1188 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
00:42:59.0277 0x1188 SstpSvc - ok
00:42:59.0386 0x1188 [ ECAD7536931CDEC9988E64DDD9AC08DE, A0B582774123F09141A0C083CB15424B81A070737228DBF015FF59F99B44667B ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
00:42:59.0418 0x1188 ssudmdm - ok
00:42:59.0698 0x1188 [ 7DB9E612A2742ACEAB080B882E83141C, FFD1FA36E732F55223F3F4B5F845331DBB3073B023C2C5BF51A0E7680DEE7FA7 ] ss_conn_service C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
00:42:59.0792 0x1188 ss_conn_service - ok
00:42:59.0948 0x1188 [ 7E6DD4B34ACD36AF6C711D2BDE91B040, 737C76749FE53A968E558289613A6ED5A0263F9585A47028343284F64808AC67 ] STacSV C:\Windows\system32\STacSV.exe
00:43:00.0010 0x1188 STacSV - ok
00:43:00.0182 0x1188 [ 6A2A5E809C2C0178326D92B19EE4AAD3, B2D78857BDB72A2CB63950558CA3D5105F1857056F52BB8E9D888394CC2D06E9 ] STHDA C:\Windows\system32\drivers\stwrt.sys
00:43:00.0307 0x1188 STHDA - ok
00:43:00.0400 0x1188 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
00:43:00.0541 0x1188 stisvc - ok
00:43:00.0588 0x1188 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
00:43:00.0619 0x1188 swenum - ok
00:43:00.0697 0x1188 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
00:43:00.0822 0x1188 swprv - ok
00:43:00.0837 0x1188 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
00:43:00.0868 0x1188 Symc8xx - ok
00:43:00.0884 0x1188 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
00:43:00.0900 0x1188 Sym_hi - ok
00:43:00.0931 0x1188 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
00:43:00.0946 0x1188 Sym_u3 - ok
00:43:01.0165 0x1188 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
00:43:01.0321 0x1188 SysMain - ok
00:43:01.0383 0x1188 [ 53CD82185248B0549EE55321A7B03F3B, 69F32684CA94C8E1D50BAAE18D53926D6C746505F1F8B29EEA69A2DBF23FF86C ] SZDrvSvc C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe
00:43:01.0414 0x1188 SZDrvSvc - detected UnsignedFile.Multi.Generic ( 1 )
00:43:01.0836 0x1188 Detect skipped due to KSN trusted
00:43:01.0836 0x1188 SZDrvSvc - ok
00:43:01.0882 0x1188 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:43:01.0929 0x1188 TabletInputService - ok
00:43:01.0976 0x1188 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
00:43:02.0054 0x1188 TapiSrv - ok
00:43:02.0085 0x1188 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
00:43:02.0132 0x1188 TBS - ok
00:43:02.0226 0x1188 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
00:43:02.0444 0x1188 Tcpip - ok
00:43:02.0506 0x1188 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
00:43:02.0584 0x1188 Tcpip6 - ok
00:43:02.0647 0x1188 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
00:43:02.0756 0x1188 tcpipreg - ok
00:43:02.0787 0x1188 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
00:43:02.0850 0x1188 TDPIPE - ok
00:43:02.0896 0x1188 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
00:43:02.0959 0x1188 TDTCP - ok
00:43:03.0006 0x1188 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
00:43:03.0068 0x1188 tdx - ok
00:43:03.0099 0x1188 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
00:43:03.0130 0x1188 TermDD - ok
00:43:03.0193 0x1188 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
00:43:03.0286 0x1188 TermService - ok
00:43:03.0318 0x1188 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
00:43:03.0349 0x1188 Themes - ok
00:43:03.0380 0x1188 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
00:43:03.0427 0x1188 THREADORDER - ok
00:43:03.0458 0x1188 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
00:43:03.0520 0x1188 TrkWks - ok
00:43:03.0583 0x1188 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:43:03.0630 0x1188 TrustedInstaller - ok
00:43:03.0676 0x1188 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
00:43:03.0754 0x1188 tssecsrv - ok
00:43:03.0832 0x1188 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
00:43:03.0895 0x1188 tunmp - ok
00:43:03.0957 0x1188 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
00:43:03.0988 0x1188 tunnel - ok
00:43:04.0004 0x1188 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
00:43:04.0035 0x1188 uagp35 - ok
00:43:04.0082 0x1188 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
00:43:04.0144 0x1188 udfs - ok
00:43:04.0191 0x1188 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
00:43:04.0269 0x1188 UI0Detect - ok
00:43:04.0285 0x1188 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
00:43:04.0316 0x1188 uliagpkx - ok
00:43:04.0332 0x1188 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
00:43:04.0378 0x1188 uliahci - ok
00:43:04.0394 0x1188 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
00:43:04.0425 0x1188 UlSata - ok
00:43:04.0441 0x1188 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
00:43:04.0472 0x1188 ulsata2 - ok
00:43:04.0488 0x1188 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
00:43:04.0519 0x1188 umbus - ok
00:43:04.0550 0x1188 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
00:43:04.0628 0x1188 upnphost - ok
00:43:04.0675 0x1188 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
00:43:04.0737 0x1188 usbccgp - ok
00:43:04.0753 0x1188 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
00:43:04.0831 0x1188 usbcir - ok
00:43:04.0878 0x1188 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
00:43:04.0909 0x1188 usbehci - ok
00:43:04.0940 0x1188 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
00:43:05.0002 0x1188 usbhub - ok
00:43:05.0018 0x1188 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
00:43:05.0112 0x1188 usbohci - ok
00:43:05.0143 0x1188 [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint C:\Windows\system32\drivers\usbprint.sys
00:43:05.0221 0x1188 usbprint - ok
00:43:05.0268 0x1188 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:43:05.0330 0x1188 USBSTOR - ok
00:43:05.0361 0x1188 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
00:43:05.0408 0x1188 usbuhci - ok
00:43:05.0439 0x1188 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
00:43:05.0470 0x1188 UxSms - ok
00:43:05.0533 0x1188 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
00:43:05.0626 0x1188 vds - ok
00:43:05.0658 0x1188 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
00:43:05.0720 0x1188 vga - ok
00:43:05.0751 0x1188 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
00:43:05.0798 0x1188 VgaSave - ok
00:43:05.0829 0x1188 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
00:43:05.0860 0x1188 viaagp - ok
00:43:05.0876 0x1188 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
00:43:05.0923 0x1188 ViaC7 - ok
00:43:05.0923 0x1188 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
00:43:05.0954 0x1188 viaide - ok
00:43:05.0970 0x1188 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
00:43:05.0985 0x1188 volmgr - ok
00:43:06.0032 0x1188 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
00:43:06.0079 0x1188 volmgrx - ok
00:43:06.0110 0x1188 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
00:43:06.0141 0x1188 volsnap - ok
00:43:06.0172 0x1188 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
00:43:06.0204 0x1188 vsmraid - ok
00:43:06.0282 0x1188 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
00:43:06.0406 0x1188 VSS - ok
00:43:06.0469 0x1188 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
00:43:06.0516 0x1188 W32Time - ok
00:43:06.0547 0x1188 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
00:43:06.0625 0x1188 WacomPen - ok
00:43:06.0640 0x1188 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
00:43:06.0672 0x1188 Wanarp - ok
00:43:06.0687 0x1188 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
00:43:06.0718 0x1188 Wanarpv6 - ok
00:43:06.0718 0x1188 Suspicious service (NoAccess): Warsaw Technology
00:43:06.0828 0x1188 [ 5BF652C15D3EC284DDEF332356B8D2C3, D45EAB38A4511E281C642B960B38F90303952C008A1D350BCBCBB480D49069BD ] Warsaw Technology C:\Program Files\Diebold\Warsaw\core.exe
00:43:06.0859 0x1188 Warsaw Technology - detected LockedService.Multi.Generic ( 1 )
00:43:07.0280 0x1188 Detect skipped due to KSN trusted
00:43:07.0280 0x1188 Warsaw Technology - ok
00:43:07.0358 0x1188 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
00:43:07.0420 0x1188 wcncsvc - ok
00:43:07.0483 0x1188 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:43:07.0545 0x1188 WcsPlugInService - ok
00:43:07.0592 0x1188 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
00:43:07.0608 0x1188 Wd - ok
00:43:07.0670 0x1188 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
00:43:07.0764 0x1188 Wdf01000 - ok
00:43:07.0795 0x1188 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
00:43:07.0873 0x1188 WdiServiceHost - ok
00:43:07.0888 0x1188 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
00:43:07.0935 0x1188 WdiSystemHost - ok
00:43:07.0982 0x1188 [ BB77BAA3E7FD8F1A5D092A96D37B5A2D, 880C37347091224DFB7C442252FE4A29FD7002DA6A8BA994B8CEAABC5E535593 ] WebClient C:\Windows\System32\webclnt.dll
00:43:08.0044 0x1188 WebClient - ok
00:43:08.0091 0x1188 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
00:43:08.0154 0x1188 Wecsvc - ok
00:43:08.0185 0x1188 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
00:43:08.0232 0x1188 wercplsupport - ok
00:43:08.0263 0x1188 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
00:43:08.0325 0x1188 WerSvc - ok
00:43:08.0419 0x1188 [ 72CC6A8CA7891031D6380DB5025C773C, 33D5021C3A2FE8E9F6E2C22F4777E1D82A6B3998EB857B618A3C8838D3C8B03E ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
00:43:08.0528 0x1188 winachsf - ok
00:43:08.0637 0x1188 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
00:43:08.0684 0x1188 WinDefend - ok
00:43:08.0700 0x1188 WinHttpAutoProxySvc - ok
00:43:08.0778 0x1188 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
00:43:08.0824 0x1188 Winmgmt - ok
00:43:08.0934 0x1188 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
00:43:09.0168 0x1188 WinRM - ok
00:43:09.0324 0x1188 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
00:43:09.0480 0x1188 Wlansvc - ok
00:43:09.0636 0x1188 [ FB01D4AE207B9EFDBABFC55DC95C7E31, E0EFDBBE0BAC275230C8C1A053948C21BCF20B99B92E50939E95FFB9DC87F6BA ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:43:09.0792 0x1188 wlidsvc - ok
00:43:09.0807 0x1188 wltrysvc - ok
00:43:09.0870 0x1188 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
00:43:09.0979 0x1188 WmiAcpi - ok
00:43:10.0026 0x1188 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
00:43:10.0072 0x1188 wmiApSrv - ok
00:43:10.0213 0x1188 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
00:43:10.0384 0x1188 WMPNetworkSvc - ok
00:43:10.0416 0x1188 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
00:43:10.0478 0x1188 WPCSvc - ok
00:43:10.0509 0x1188 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
00:43:10.0587 0x1188 WPDBusEnum - ok
00:43:10.0618 0x1188 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
00:43:10.0634 0x1188 WpdUsb - ok
00:43:10.0728 0x1188 [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
00:43:10.0837 0x1188 WPFFontCache_v0400 - ok
00:43:10.0899 0x1188 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
00:43:10.0977 0x1188 ws2ifsl - ok
00:43:11.0040 0x1188 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\system32\wscsvc.dll
00:43:11.0102 0x1188 wscsvc - ok
00:43:11.0133 0x1188 [ 659DDC0353243B4CB9194F6A531A8150, 3BEA716064578492EF04C5262B54EFFB68576E8C0201CDFA0DC622B27BD21356 ] wsddfac C:\Windows\system32\drivers\wsddfac.sys
00:43:11.0149 0x1188 wsddfac - ok
00:43:11.0196 0x1188 [ 0FBA70E96174ED276E49F92FE5527E12, 6DD71283EC685875D30E35584696F008AC00A5548F44CB120588EA778A05EDA0 ] wsddntf C:\Windows\system32\DRIVERS\wsddntf.sys
00:43:11.0211 0x1188 wsddntf - ok
00:43:11.0242 0x1188 [ C97C830B2EFBA550C2851F7DEE3C8AE2, 87382632AFD82D029FBD42E1E47121307CC92D8F86C64F8C5A94BF5A625CC8E5 ] wsddpp C:\Windows\system32\drivers\wsddpp.sys
00:43:11.0258 0x1188 wsddpp - ok
00:43:11.0305 0x1188 [ 4422AC5ED8D4C2F0DB63E71D4C069DD7, B010DCC7B802C26A701A7DE1CA1B21D6B43D99FE88524D015C9228376B0BDA6E ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
00:43:11.0367 0x1188 WSDPrintDevice - ok
00:43:11.0383 0x1188 WSearch - ok
00:43:11.0570 0x1188 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
00:43:11.0773 0x1188 wuauserv - ok
00:43:11.0804 0x1188 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
00:43:11.0898 0x1188 WudfPf - ok
00:43:11.0929 0x1188 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
00:43:11.0960 0x1188 WUDFRd - ok
00:43:11.0991 0x1188 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
00:43:12.0054 0x1188 wudfsvc - ok
00:43:12.0147 0x1188 [ DDD0641340737D027155FAC53255CB4D, D1765C049EEBB69BB66E5C56F4E7DBCBC0BB060B7EEBD747918ECCB4EA7927FF ] X86BDA C:\Windows\system32\DRIVERS\OEMDrv.sys
00:43:12.0194 0x1188 X86BDA - ok
00:43:12.0288 0x1188 [ DAB33CFA9DD24251AAA389FF36B64D4B, 1C5D7C3D6C3552BDD52EB7E76031746D7DAAF64CA2432CC23329DA72BE7252D0 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
00:43:12.0303 0x1188 XAudio - ok
00:43:12.0334 0x1188 [ CD5F291A1161F15896D1A4D63DAFF5DF, 4F30DC454F255249431FCD14DE17858A79A088A4084F2CEDD0CF25382D427285 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
00:43:12.0381 0x1188 XAudioService - ok
00:43:12.0428 0x1188 [ A4822191C7CEA271903C2A4FB6D9809D, 8CC7A83CA38FFFB2019DB048754C886635E5E2C7F6FFDFE205E45CEB7DCE692E ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
00:43:12.0490 0x1188 yukonwlh - ok
00:43:12.0537 0x1188 ================ Scan global ===============================
00:43:12.0568 0x1188 [ 2F2DFC846D75D680B9018823A8B5EF07, DBC823CF0C659B6D7482CB080CD042EC6BBAEDB6297DB712CADA1BCEAA8A95C8 ] C:\Windows\system32\basesrv.dll
00:43:12.0615 0x1188 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
00:43:12.0678 0x1188 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
00:43:12.0724 0x1188 [ 4F0A7910FC7D8A66433FA9961EEF8BB5, 2086EDEE8CF9CC9BDBDC03018F7C28BB56172F941CB4D6F3D857BCF82B32FB6B ] C:\Windows\system32\services.exe
00:43:12.0756 0x1188 [ Global ] - ok
00:43:12.0756 0x1188 ================ Scan MBR ==================================
00:43:12.0771 0x1188 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
00:43:13.0224 0x1188 \Device\Harddisk0\DR0 - ok
00:43:13.0224 0x1188 ================ Scan VBR ==================================
00:43:13.0224 0x1188 [ 373975B076845CFC2E7EC4AC12DC8614 ] \Device\Harddisk0\DR0\Partition1
00:43:13.0239 0x1188 \Device\Harddisk0\DR0\Partition1 - ok
00:43:13.0239 0x1188 [ 02A465F7975227761805B4A5BAF0DB54 ] \Device\Harddisk0\DR0\Partition2
00:43:13.0239 0x1188 \Device\Harddisk0\DR0\Partition2 - ok
00:43:13.0239 0x1188 ================ Scan generic autorun ======================
00:43:13.0317 0x1188 [ 689C95B325C3118CE09E3F3FBCEB5D44, CEB954C2CBFD94066BB8CE550423A2544E8A5C466398A9B269E11DC653A7549D ] C:\Program Files\DellTPad\Apoint.exe
00:43:13.0364 0x1188 Apoint - ok
00:43:13.0458 0x1188 [ F6158734F1E24C6C510155CF0D363911, 320900BA90AF14E254CFAFA70FB15A0E77506217E47A406FA1ED821D0206FE29 ] c:\program files\real\realplayer\Update\realsched.exe
00:43:13.0504 0x1188 TkBellExe - ok
00:43:13.0582 0x1188 [ 37AE019B337D4533FBB6831B8954E2EF, E62CC993F233C7745B0E462B3FB5C4E84D341AA312E631104C25C572396781EA ] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
00:43:13.0692 0x1188 SigmatelSysTrayApp - ok
00:43:13.0801 0x1188 [ F4F7C86191A981C804326E2EF6F3604F, 1ECE05E643AFFB27A148A8B86615F6C167875EF29D6FF7E2FD15B8DCBE6B8A16 ] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
00:43:13.0816 0x1188 Adobe Reader Speed Launcher - ok
00:43:13.0894 0x1188 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:43:14.0004 0x1188 Adobe ARM - ok
00:43:14.0082 0x1188 [ 255E405D801CF01247390F38F92D8042, B0A4C2B6F40D7AD177DBD40C26B579D67CC9A95552970D9F6F0C7DE372CE2A2F ] C:\Program Files\Unlocker\UnlockerAssistant.exe
00:43:14.0113 0x1188 UnlockerAssistant - detected UnsignedFile.Multi.Generic ( 1 )
00:43:17.0638 0x1188 Detect skipped due to KSN trusted
00:43:17.0638 0x1188 UnlockerAssistant - ok
00:43:17.0685 0x1188 [ 5BF652C15D3EC284DDEF332356B8D2C3, D45EAB38A4511E281C642B960B38F90303952C008A1D350BCBCBB480D49069BD ] C:\Program Files\Diebold\Warsaw\core.exe
00:43:17.0748 0x1188 Diebold - Warsaw - ok
00:43:17.0810 0x1188 [ DD707F2B859929C7429070DF88971E40, 976DA1810640D91073DFD915C844E23C32C92A86C8DEEF20E66144DA65FEEFF8 ] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
00:43:17.0841 0x1188 KiesTrayAgent - ok
00:43:18.0138 0x1188 [ 7EE68A122ED08E4AAD8DA551E34D2515, B3C9AB270AF595D3DBAFBF4A312B96CBF00C16F0A03CCC86BE56825CD1EB7143 ] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
00:43:18.0434 0x1188 SDTray - ok
00:43:18.0684 0x1188 [ A6A21A7D544675E98C040DA18904CF50, AACB578C297C7AC9FEBDAB4AD20235E5CFF6E3F260E76E6AE18D43DC57D69672 ] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
00:43:19.0011 0x1188 Malwarebytes TrayApp - ok
00:43:19.0183 0x1188 [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\Henrique\AppData\Local\Microsoft\BingSvc\BingSvc.exe
00:43:19.0214 0x1188 BingSvc - ok
00:43:19.0323 0x1188 [ 65B8106CB122142FD0A4A26783D7963F, DB29815362D4A4BBB10BF2CFCB9E60602612349FD63BA995500C2C35D1AED987 ] C:\Program Files\Samsung\Kies\Kies.exe
00:43:19.0464 0x1188 KiesPreload - ok
00:43:19.0557 0x1188 [ 760ACD103FFB86AD65DC41CDEB08ABCF, 518DBEA24FB54D54BD17E0940ADD49134525D161A62C2E9D71FD876CE3E97D7B ] C:\Program Files\Samsung\Kies\KiesAirMessage.exe
00:43:19.0620 0x1188 KiesAirMessage - detected UnsignedFile.Multi.Generic ( 1 )
00:43:29.0775 0x1188 KiesAirMessage ( UnsignedFile.Multi.Generic ) - warning
00:43:32.0193 0x1188 Waiting for KSN requests completion. In queue: 141
00:43:33.0207 0x1188 Waiting for KSN requests completion. In queue: 141
00:43:34.0221 0x1188 Waiting for KSN requests completion. In queue: 141
00:43:35.0235 0x1188 Waiting for KSN requests completion. In queue: 141
00:43:36.0249 0x1188 Waiting for KSN requests completion. In queue: 5
00:43:37.0482 0x1188 AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.138 ), 0x61000 ( enabled : updated )
00:43:37.0513 0x1188 Win FW state via NFP2: enabled ( trusted )
00:43:38.0917 0x1188 ============================================================
00:43:38.0917 0x1188 Scan finished
00:43:38.0917 0x1188 ============================================================
00:43:38.0917 0x0fd8 Detected object count: 1
00:43:38.0917 0x0fd8 Actual detected object count: 1
00:43:53.0269 0x0fd8 KiesAirMessage ( UnsignedFile.Multi.Generic ) - skipped by user
00:43:53.0269 0x0fd8 KiesAirMessage ( UnsignedFile.Multi.Generic ) - User select action: Skip
Code:
ATTFilter # AdwCleaner v6.044 - Bericht erstellt am 25/03/2017 um 02:06:35
# Aktualisiert am 28/02/2017 von Malwarebytes
# Datenbank : 2017-03-23.2 [Lokal]
# Betriebssystem : Windows Vista (TM) Home Basic Service Pack 2 (X86)
# Benutzername : Henrique - HENRIQUE-NOTE
# Gestartet von : C:\Users\Henrique\Downloads\adwcleaner_6.044 (2).exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support
***** [ Dienste ] *****
Keine schädlichen Dienste gefunden.
***** [ Ordner ] *****
Ordner Gefunden: C:\Users\Henrique\AppData\Local\Geckofx
Ordner Gefunden: C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
***** [ Dateien ] *****
Datei Gefunden: C:\Users\Henrique\daemonprocess.txt
Datei Gefunden: C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Datei Gefunden: C:\Program Files\Mozilla Firefox\avg-secure-search.xml
Datei Gefunden: C:\Program Files\Mozilla Firefox\avg-secure-search.xml
Datei Gefunden: C:\Program Files\Mozilla Firefox\avg-secure-search.xml
Datei Gefunden: C:\Program Files\Mozilla Firefox\avg-secure-search.xml
Datei Gefunden: C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mphpbdjcljebbcnfopfngmfdackbbdgf_0.localstorage
***** [ DLL ] *****
Keine infizierten DLLs gefunden.
***** [ WMI ] *****
Keine schädlichen Schlüssel gefunden.
***** [ Verknüpfungen ] *****
Keine infizierten Verknüpfungen gefunden.
***** [ Aufgabenplanung ] *****
Aufgabe Gefunden: {55215FA7-E116-4700-A49A-4D340E052F2F}
Aufgabe Gefunden: Chrome Cleanup Tool logs upload retry
Aufgabe Gefunden: Microsoft\Windows\RVLKL\RVLKL
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.001
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.7z
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.arj
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.bz2
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.bzip2
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.cab
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.cpio
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.deb
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.dmg
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.fat
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.gz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.gzip
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.hfs
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.iso
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.lha
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.lzh
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.lzma
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.ntfs
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.rar
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.rpm
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.squashfs
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.swm
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.tar
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.taz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.tbz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.tbz2
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.tgz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.tpz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.txz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.vhd
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.wim
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.xar
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.xz
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.z
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\WinZipper.zip
Schlüssel Gefunden: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc
Schlüssel Gefunden: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PicexaService
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gefunden: HKCU\Software\Classes\CLSID\{9C4EFBD5-1ADF-41E6-BE26-AF44326E30E4}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\CLSID\{B33BD6CF-BF4C-4CF0-AC84-B2974BC14ABD}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\Interface\{94952EC4-DB66-3F32-BE4C-F0BB875EA98E}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Code:
ATTFilter Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F1796B2-BEC6-427B-B734-F9C75ED94A80}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8C338DDB-19FC-4C1F-B74D-6931EE55F7A1}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F1796B2-BEC6-427B-B734-F9C75ED94A80}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A18D16ED-27B2-4B83-B70C-15E73F099546}
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BEE7E029-5037-4DAD-A2DB-82E397AB1A44}
Wert Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{58124A0B-DC32-4180-9BFF-E0E21AE34026}]
Wert Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{73C1CE1A-2075-4350-A7B4-EBA78BA45FA8}]
Wert Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}]
Wert Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}]
Wert Gefunden: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
Wert Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [{4F622628-7632-4B28-B184-D7BA0CA3273B}]
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Browser
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Mozilla\Extends
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\reimagerepair
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Softonic
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\V9
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\YahooPartnerToolbar
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\AppDataLow\FindRight
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ac225167-00fc-452d-94c5-bb93600e7d9a}
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Beamrise
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FindRight
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mysearchdial
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\omiga-plus uninstall
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Reimage Repair
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SaveSense
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\VOPackage
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WindowsMangerProtect
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\winzipper
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Yahoo! SearchSet
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WinZipper
Schlüssel Gefunden: HKCU\Software\Browser
Schlüssel Gefunden: HKCU\Software\Mozilla\Extends
Schlüssel Gefunden: HKCU\Software\reimagerepair
Schlüssel Gefunden: HKCU\Software\Softonic
Schlüssel Gefunden: HKCU\Software\V9
Schlüssel Gefunden: HKCU\Software\YahooPartnerToolbar
Schlüssel Gefunden: HKCU\Software\AppDataLow\FindRight
Schlüssel Gefunden: HKLM\SOFTWARE\hdcode
Schlüssel Gefunden: HKLM\SOFTWARE\SpeedBrowser
Schlüssel Gefunden: HKLM\SOFTWARE\TSv
Schlüssel Gefunden: HKLM\SOFTWARE\winzipersvc
Schlüssel Gefunden: HKLM\SOFTWARE\qksee
Schlüssel Gefunden: HKLM\SOFTWARE\MaxPower
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yahoo! SearchSet
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{ac225167-00fc-452d-94c5-bb93600e7d9a}
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Beamrise
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FindRight
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mysearchdial
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\omiga-plus uninstall
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Reimage Repair
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SaveSense
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\VOPackage
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WindowsMangerProtect
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\winzipper
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Yahoo! SearchSet
Schlüssel Gefunden: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WinZipper
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18C9E3869A16248439FE3FF9EB02207A
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D8011310B2622942868A458964FFDC5
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C63F7979DCC2154CB9591969A5CB89D
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DD31E6C1A73B334383DF186676F4D20
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB3204F747B20694B8D49EF92D8DC94B
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C81E33A400B6F814E90C7A3354E2A3A5
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDBF68C5F16790341B7C6FD7C7F8E4FC
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FFA531D0F3A71504DA7AC6A11CE33739
Schlüssel Gefunden: HKU\S-1-5-21-3254819541-666845872-1653493156-1000\Software\Microsoft\Internet Explorer\SearchScopes\B0004A7C1B854D539EB69060EAEFC64E
Schlüssel Gefunden: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\B0004A7C1B854D539EB69060EAEFC64E
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\ApnUpdater
Schlüssel Gefunden: HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
Schlüssel Gefunden: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gefunden: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Schlüssel Gefunden: HKLM\SOFTWARE\Google\Chrome\Extensions\npdicihegicnhaangkdmcgbjceoemeoo
***** [ Internetbrowser ] *****
Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Web data] - br.ask.com
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Web data] - delta-homes
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Web data] - omniboxes
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - hxxp://www.omniboxes.com/webfavicon.ico
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - fcfenmboojpjinhpgggodefccipikbpd
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - npdicihegicnhaangkdmcgbjceoemeoo
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - pelmeidfhdlhlbjimpabfcbnnojbboma
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Profile 1\Web data] - br.ask.com
Chrome pref Gefunden: [C:\Users\Henrique\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences ] - pelmeidfhdlhlbjimpabfcbnnojbboma
*************************
C:\AdwCleaner\AdwCleaner[S0].txt - [46100 Bytes] - [24/03/2017 01:18:33]
C:\AdwCleaner\AdwCleaner[S1].txt - [45795 Bytes] - [24/03/2017 01:34:27]
C:\AdwCleaner\AdwCleaner[S2].txt - [45577 Bytes] - [24/03/2017 01:56:40]
C:\AdwCleaner\AdwCleaner[S3].txt - [46039 Bytes] - [24/03/2017 02:07:08]
C:\AdwCleaner\AdwCleaner[S4].txt - [46113 Bytes] - [24/03/2017 09:24:42]
C:\AdwCleaner\AdwCleaner[S5].txt - [45454 Bytes] - [24/03/2017 10:17:34]
C:\AdwCleaner\AdwCleaner[S6].txt - [41489 Bytes] - [24/03/2017 11:10:36]
C:\AdwCleaner\AdwCleaner[S7].txt - [26284 Bytes] - [24/03/2017 21:17:21]
C:\AdwCleaner\AdwCleaner[S8].txt - [22679 Bytes] - [24/03/2017 22:10:19]
C:\AdwCleaner\AdwCleaner[S9].txt - [21018 Bytes] - [25/03/2017 02:06:35]
########## EOF - C:\AdwCleaner\AdwCleaner[S9].txt - [21092 Bytes] ##########
|
|
25.03.2017, 14:56
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Malwarebyte hat 3500 Funde, trotz Loeschung laeuft der PC miesZitat:
 Lesestoff:Sicherheitsrisiko durch Windows Vista Auf deinem Rechner läuft noch Windows Vista. Microsoft hat dieses Betriebssystem bereits 2006 veröffentlicht und stellt den Support endgültig ab April 2017 ein, d.h. ab Mai 2017 gibt es keine weiteren Updates mehr und danach gefundene Lücken werden nicht mehr durch Updates/Hotfixes geschlossen werden können. Voraussetzung für den Support deiner Vista-Installation sind das Service Pack 2 und der für Vista letzte unterstützte Internet Explorer (IE9). Neuere IE-Versionen (IE10/IE11) oder gar der IE-Nachfolger edge sind unter Vista nicht möglich. Es kann passieren, dass viele Virenscanneranbieter Windows Vista in Kürze nicht mehr berücksichtigen und du somit auch nicht mehr deinen favorisierten Virenscanner verwenden kannst, zB Emsisoft siehe https://helpdesk.emsisoft.com/Knowle...gefuhrt-werden Auch bei künftigen Browsern muss man damit rechnen, dass diese unter Vista nicht mehr funktionieren; bei Google Chrome ist das ab Version 50 also seit April 2016 der Fall vgl. https://heise.de/-3174788 Mozilla hat ebenfalls angekündigt, den Support für Vista (und auch XP) zu beenden siehe https://heise.de/-3581908 Mit Windows Vista nach April 2017 zu surfen wird damit ein großes Sicherheitsrisiko. Ich rate dazu, Vista umgehend durch ein aktuelleres OS zu ersetzen.
__________________ |
|
| Themen zu Malwarebyte hat 3500 Funde, trotz Loeschung laeuft der PC mies |
| adwcleaner, freunde, funde, ladezeiten, lange, lange ladezeiten, loszuwerden, malwarebyte, programm, quara, sigcheck, trotz, tunnel, update, vista |
Linear-Darstellung
