| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Bei Ebay soll ich in Rubel zahlenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
29.07.2018, 18:12
| #16 |
 |  Bei Ebay soll ich in Rubel zahlen FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2018
durchgeführt von jk (Administrator) auf JK-PC (29-07-2018 19:07:12)
Gestartet von C:\Users\jk\Downloads
Geladene Profile: jk (Verfügbare Profile: jk & DefaultAppPool)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Abbott Diabetes Care) C:\Program Files (x86)\Abbott Diabetes Care\FreeStyle Auto-Assist\adcmald.exe
(Apache Software Foundation) C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apache Software Foundation) C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\PAC7302\Monitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7368480 2018-07-29] (Lavasoft)
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: K - K:\Windows\StartFreeStyle.exe
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: {113b2a9c-0558-11e7-a08b-e03f49aba71a} - K:\LG_PC_Programs.exe
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: {3712db60-d65b-11e7-8473-e03f49aba71a} - K:\Windows\StartFreeStyle.exe
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: {c15d39b1-0c70-11e7-a6c5-e03f49aba71a} - N:\LG_PC_Programs.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{210BC2F4-F819-4CEF-A956-D56C0EBC2FBE}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7962FDAD-7C2C-49BF-9B26-694BFCC02B7C}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8F60B775-F9D9-4C46-8ABE-6EE9D55F46FE}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-1412345945-17949511-910986349-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COSP&ptag=D022617-AF69C3D636C&form=CONMHP&conlogo=CT3335177
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022617-AF69C3D636C&form=CONBDF&conlogo=CT3335177&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022617-AF69C3D636C&form=CONBDF&conlogo=CT3335177&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022617-AF69C3D636C&form=CONBDF&conlogo=CT3335177&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> {D1A3AC1C-296D-4453-9473-55CFCF22879C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-06-13] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-06-13] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> Kein Name - {093F479D-712E-46CD-9E06-62E734A05F68} - Keine Datei
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-10-11] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 9m5whdor.default-1510929689929
FF ProfilePath: C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 [2018-07-29]
FF Homepage: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> about:home
FF NewTab: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> hxxp://www.bing.com/?pc=COSP&ptag=D022617-AF69C3D636C&form=CONMHP&conlogo=CT3335177
FF HomepageOverride: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> Disabled: _iwMembers_@free.allinonedocs.com
FF NewTabOverride: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> Disabled: _iwMembers_@free.allinonedocs.com
FF Extension: (Avira Browser Safety) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\abs@avira.com [2018-07-28]
FF Extension: (HTTPS Everywhere) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\https-everywhere@eff.org.xpi [2018-07-29]
FF Extension: (Kein Name) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\passwordmanager@avira.com [2018-07-28]
FF Extension: (Avira SafeSearch Plus) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\safesearchplus2@avira.com [2018-07-28]
FF Extension: (uBlock Origin) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\uBlock0@raymondhill.net.xpi [2018-07-29]
FF Extension: (AllInOneDocs) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\_iwMembers_@free.allinonedocs.com.xpi [2018-07-01]
FF Extension: (Web Messenger for WhatsApp) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\{e1ab1333-aff6-42fe-84a5-55be2409491b}.xpi [2018-02-07]
FF SearchPlugin: C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\searchplugins\bing-lavasoft-ff59.xml [2018-04-23]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-29] [Legacy] [ist nicht signiert]
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-13] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin HKU\S-1-5-21-1412345945-17949511-910986349-1000: www.wansview.com/HYPlayer -> C:\Program Files (x86)\HYPlayer\npHYPlayer.dll [2016-09-22] (IPC)
Chrome:
=======
CHR DefaultProfile: Default
CHR NewTab: Default -> Active:"chrome-extension://hjfmdccpchjbocfcmenkfmkcbmoldfee/newtabproduct.html", Active:"chrome-extension://fabhkdeopjkcpkmofliimbjckmocfiom/newtab.html", Active:"chrome-extension://egbpmjkpccpjhfnhfhgeklgibepkimpd/newtabproduct.html"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default [2018-07-29]
CHR Extension: (Dealbeaver) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhldmkghjkldhclddpjebfjpaijaajmm [2017-06-17]
CHR Extension: (YouTube) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-22]
CHR Extension: (Avira Password Manager) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2018-07-28]
CHR Extension: (FromDocToPDF) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\egbpmjkpccpjhfnhfhgeklgibepkimpd [2018-07-28]
CHR Extension: (Kein Name) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-07-28]
CHR Extension: (Yahoo Partner) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabhkdeopjkcpkmofliimbjckmocfiom [2018-07-28]
CHR Extension: (Avira Browserschutz) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-07-28]
CHR Extension: (Kein Name) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-07-28]
CHR Extension: (FindYourMaps) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjfmdccpchjbocfcmenkfmkcbmoldfee [2018-07-28]
CHR Extension: (Yahoo Partner) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2018-07-28]
CHR Extension: (Search Manager) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce [2018-07-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-28]
CHR Extension: (Google Mail) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-22]
CHR Extension: (Chrome Media Router) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-28]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1412345945-17949511-910986349-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bbiilhoacmmppcmcogfmaailncbelbgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bhldmkghjkldhclddpjebfjpaijaajmm] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 adcmald; C:\Program Files (x86)\Abbott Diabetes Care\FreeStyle Auto-Assist\adcmald.exe [535896 2013-08-05] (Abbott Diabetes Care)
R2 Apache2.2; C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe [20549 2012-01-28] (Apache Software Foundation) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [350720 2012-06-01] (Microsoft Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [45568 2009-07-14] (Microsoft Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 Samsung Network Fax Server; C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [706240 2015-11-27] (Samsung Electronics Co., Ltd.)
S4 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [499000 2016-08-17] ()
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2017-02-01] ()
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-21] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-21] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11294448 2018-03-09] (TeamViewer GmbH)
S4 TlntSvr; C:\Windows\System32\tlntsvr.exe [81920 2009-07-14] (Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-07-29] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [X]
S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [30208 2016-08-31] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (LG Electronics Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-25] ()
S2 EIO; C:\Windows\SysWOW64\drivers\EIO.sys [8037 2004-05-19] (ASUSTeK Computer Inc.) [Datei ist nicht signiert]
R1 FNETURPX; C:\Windows\SysWOW64\drivers\FNETURPX.SYS [16648 2017-01-19] (FNet Co., Ltd.)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [117912 2012-11-19] (Qualcomm Atheros Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-19] ()
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [527872 2007-11-08] (PixArt Imaging Inc.)
S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-10-25] (The OpenVPN Project)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (QUALCOMM Incorporated)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [196040 2017-10-16] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [206976 2017-10-16] (Oracle Corporation)
U3 aswbdisk; kein ImagePath
R4 avkmgr; system32\DRIVERS\avkmgr.sys [X]
R4 avusbflt; System32\Drivers\avusbflt.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2018-07-29 16:46 - 2018-07-29 16:46 - 007197480 _____ (VS Revo Group ) C:\Users\jk\Downloads\revosetup205.exe
2018-07-29 16:46 - 2018-07-29 16:46 - 000001006 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2018-07-29 16:46 - 2018-07-29 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-07-29 16:46 - 2018-07-29 16:46 - 000000000 ____D C:\Program Files\VS Revo Group
2018-07-29 15:47 - 2018-07-29 19:07 - 000021198 _____ C:\Users\jk\Downloads\FRST.txt
2018-07-29 15:47 - 2018-07-29 17:12 - 000058175 _____ C:\Users\jk\Downloads\Addition.txt
2018-07-29 15:46 - 2018-07-29 19:07 - 000000000 ____D C:\FRST
2018-07-29 15:46 - 2018-07-29 15:46 - 002412544 _____ (Farbar) C:\Users\jk\Downloads\FRST64.exe
2018-07-29 14:59 - 2018-07-29 14:59 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2018-07-29 14:59 - 2018-07-29 14:59 - 000000000 ____D C:\Program Files\Microsoft Security Client
2018-07-29 14:59 - 2018-07-29 14:59 - 000000000 ____D C:\Program Files (x86)\Microsoft Security Client
2018-07-29 14:58 - 2018-07-29 14:59 - 000001912 _____ C:\Windows\epplauncher.mif
2018-07-29 14:44 - 2018-07-29 14:44 - 000003330 _____ C:\Windows\System32\Tasks\AviraSystemSpeedupRemoval
2018-07-29 12:34 - 2018-07-29 12:34 - 001540104 _____ (CHIP Digital GmbH) C:\Users\jk\Downloads\TrojanCheck - CHIP-Installer.exe
2018-07-29 11:24 - 2018-07-29 11:24 - 000000000 ____D C:\Users\jk\Documents\TotalAV
2018-07-29 11:23 - 2018-07-29 11:23 - 000000000 ____D C:\ProgramData\SecuritySuite
2018-07-29 11:21 - 2018-07-29 11:21 - 011093688 _____ C:\Users\jk\Downloads\TotalAV_Setup.exe
2018-07-29 11:17 - 2018-07-29 11:17 - 004970656 _____ (SimpleStar ) C:\Users\jk\Downloads\SimpleMalwareProtectorSetup_bng.exe
2018-07-29 09:40 - 2018-07-29 09:40 - 000001217 _____ C:\Users\jk\AppData\Roaming\uni.txt
2018-07-29 09:38 - 2018-07-29 09:38 - 000000002 _____ C:\Users\jk\AppData\Roaming\acc.txt
2018-07-29 09:35 - 2018-07-29 09:35 - 004896504 _____ ( ) C:\Users\jk\Downloads\wprsetup.exe
2018-07-29 07:44 - 2018-07-29 07:44 - 005414064 _____ (Avira Operations GmbH & Co. KG) C:\Users\jk\Downloads\avira_de_aps10_3010798048_nbif17hoelfr3ujz88u6_wd.exe
2018-07-29 07:42 - 2018-07-29 07:42 - 005414064 _____ (Avira Operations GmbH & Co. KG) C:\Users\jk\Downloads\avira_de_aps10_3010798048_3k2la661hxu96nv3dm4f_wd.exe
2018-07-29 07:38 - 2018-07-29 07:38 - 005414064 _____ (Avira Operations GmbH & Co. KG) C:\Users\jk\Downloads\avira_de_aps10_3010798048_rk9ksmczftblepvijzrs_wd.exe
2018-07-29 07:32 - 2018-07-29 07:32 - 000000000 ____D C:\Users\jk\AppData\Local\AviraSpeedup
2018-07-28 23:07 - 2018-06-13 18:23 - 000140992 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-07-28 23:07 - 2018-06-13 18:18 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 002860032 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-07-28 23:07 - 2018-06-08 15:05 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000612352 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000443392 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-07-28 20:58 - 2018-07-28 20:58 - 000000000 ____D C:\Users\jk\AppData\Local\Avira Operations Gmbh & Co. KG
2018-07-28 20:58 - 2018-07-28 20:58 - 000000000 ____D C:\ProgramData\Avira Operations Gmbh & Co. KG
2018-07-27 16:22 - 2018-07-29 06:54 - 000000000 ____D C:\Users\jk\AppData\Local\AVAST Software
2018-07-27 16:00 - 2018-07-27 16:00 - 000000276 _____ C:\Users\jk\Desktop\avira_de_av_5b5ade2bb772d__ws.exehttpspackage.avira.compackageoeavirawinintavira_de_fass0_5b5ade2bb772d__ws.exeavira_de_fass.URL
2018-07-27 13:20 - 2018-07-27 13:27 - 000000000 ____D C:\Users\jk\AppData\Local\Avg
2018-07-27 13:15 - 2018-07-27 13:27 - 000000000 ____D C:\ProgramData\AVG
2018-07-13 09:19 - 2018-07-13 09:19 - 000250921 _____ C:\Users\jk\Downloads\druckanzeige_anl.pdf
2018-07-11 17:37 - 2018-07-11 17:37 - 000000000 ____D C:\Program Files\Google
2018-07-09 15:56 - 2018-07-09 15:56 - 000615770 _____ C:\Users\jk\Downloads\Anleitung_Klima_Desinfektion_Golf_7.pdf
2018-07-09 15:48 - 2018-07-09 15:48 - 001450957 _____ C:\Users\jk\Downloads\VW_GolfVII Luftfilter.pdf
2018-07-06 08:52 - 2018-07-06 08:52 - 000413051 _____ C:\Users\jk\Desktop\barclay027.pdf
2018-07-01 10:13 - 2018-07-01 10:13 - 026844090 _____ C:\Users\jk\Desktop\endoskopkamera025.tif
2018-07-01 09:50 - 2018-07-01 09:50 - 026900180 _____ C:\Users\jk\Desktop\endoskopkamera024.tif
2018-07-01 09:32 - 2018-07-01 09:32 - 000484760 _____ C:\Users\jk\Desktop\endoskopkamera022.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2018-07-29 18:11 - 2017-04-23 20:11 - 000000258 _____ C:\Windows\Tasks\{4F4B4B02-A683-08F1-50C3-67B6A7D87FD2}.job
2018-07-29 17:00 - 2018-03-09 11:27 - 000000000 ____D C:\Program Files\Java
2018-07-29 16:58 - 2017-07-19 11:37 - 000000000 ____D C:\Program Files (x86)\Java
2018-07-29 16:58 - 2016-12-09 12:37 - 000000000 ____D C:\Users\jk\AppData\Roaming\Sun
2018-07-29 16:54 - 2016-12-06 14:23 - 000000000 ____D C:\ProgramData\Package Cache
2018-07-29 16:54 - 2016-11-22 16:42 - 000000000 ____D C:\ProgramData\Avira
2018-07-29 16:54 - 2016-11-22 16:42 - 000000000 ____D C:\Program Files (x86)\Avira
2018-07-29 16:50 - 2016-11-24 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2018-07-29 16:50 - 2016-11-24 22:59 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2018-07-29 16:44 - 2016-11-22 13:06 - 000013405 _____ C:\Windows\BRRBCOM.INI
2018-07-29 15:44 - 2016-11-22 10:17 - 000000000 ____D C:\Users\jk\AppData\LocalLow\Mozilla
2018-07-29 15:07 - 2017-04-20 12:50 - 000000000 ____D C:\Program Files\Opera
2018-07-29 14:37 - 2016-11-25 17:16 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-07-29 14:37 - 2016-11-25 17:16 - 000000000 ____D C:\Windows\system32\Macromed
2018-07-29 14:32 - 2009-07-14 06:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-29 14:32 - 2009-07-14 06:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-29 14:27 - 2016-12-04 14:22 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-29 14:24 - 2016-11-22 11:07 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-07-29 14:23 - 2017-08-30 20:53 - 000000352 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2018-07-29 14:23 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-29 13:30 - 2016-11-21 23:06 - 000000000 ____D C:\Program Files (x86)\Google
2018-07-29 13:08 - 2017-01-05 15:38 - 000000000 ____D C:\Users\jk\AppData\Local\CrashDumps
2018-07-29 11:39 - 2017-06-13 11:50 - 000000000 ____D C:\ProgramData\AVAST Software
2018-07-29 11:39 - 2016-11-22 10:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-07-29 09:44 - 2017-02-26 12:10 - 000000167 _____ C:\Windows\Reimage.ini
2018-07-29 07:35 - 2017-08-29 17:41 - 000000000 ____D C:\Wswin
2018-07-29 07:35 - 2017-06-14 19:37 - 000000000 ____D C:\Users\jk\Documents\jAnrufmonitor
2018-07-29 07:35 - 2017-05-23 20:10 - 000000000 ____D C:\Users\jk\AppData\Local\WhatsApp
2018-07-29 07:35 - 2017-05-07 11:13 - 000000000 ____D C:\ProgramData\explauncher
2018-07-29 07:35 - 2016-12-16 16:44 - 000000000 ____D C:\Users\jk\AppData\Roaming\BOM
2018-07-29 07:35 - 2016-11-25 16:24 - 000000000 ____D C:\Windows\pss
2018-07-29 07:19 - 2016-11-22 10:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-07-29 07:16 - 2017-06-21 09:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-07-29 06:51 - 2017-02-28 09:13 - 000000000 ____D C:\Windows\system32\appraiser
2018-07-28 23:20 - 2017-02-28 08:49 - 000000000 ____D C:\Windows\system32\MRT
2018-07-28 23:15 - 2017-01-25 10:38 - 134675576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-07-28 23:05 - 2018-05-16 14:10 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-07-28 23:00 - 2017-04-24 10:26 - 000000000 ____D C:\ProgramData\IObit
2018-07-28 23:00 - 2017-04-24 10:24 - 000000000 ____D C:\Users\jk\AppData\Roaming\IObit
2018-07-28 22:45 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-07-28 22:30 - 2016-11-21 23:04 - 000000000 ____D C:\Users\jk
2018-07-28 22:27 - 2018-04-08 18:40 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-07-28 22:27 - 2018-01-28 19:24 - 000000000 ____D C:\Users\jk\Desktop\Aufnahmen _ Flickr-Dateien
2018-07-28 22:27 - 2017-11-07 19:36 - 000000000 ____D C:\Users\jk\Desktop\- Striegistal-Dateien
2018-07-28 22:27 - 2017-11-02 19:22 - 000000000 ____D C:\Users\jk\Desktop\Gemeinde Striegistal Mobendorf-Dateien
2018-07-28 22:27 - 2017-06-10 13:01 - 000000000 ____D C:\Users\jk\AppData\Roaming\PhotoFiltre 7
2018-07-28 22:27 - 2017-04-24 10:26 - 000000000 ____D C:\ProgramData\ProductData
2018-07-28 22:27 - 2017-01-05 15:38 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2018-07-28 22:27 - 2016-12-19 12:23 - 000000000 ____D C:\Users\DefaultAppPool
2018-07-28 22:27 - 2016-12-04 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-07-28 22:27 - 2016-11-25 16:45 - 000000000 ____D C:\Users\jk\Downloads\Office
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\ras
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\ras
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Msdtc
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\servicing
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\schemas
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2018-07-28 22:26 - 2018-06-26 10:31 - 000000000 ____D C:\Users\jk\Desktop\(33) Jochen Bastian-Dateien
2018-07-28 22:26 - 2018-05-30 17:24 - 000000000 ____D C:\Users\jk\Downloads\Neuer Ordner
2018-07-28 22:26 - 2018-04-08 18:39 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-07-28 22:26 - 2017-11-16 11:04 - 000000000 ____D C:\Users\jk\AppData\Local\Avira_Operations_Gmbh_&_C
2018-07-28 22:26 - 2017-06-21 22:01 - 000000000 ____D C:\Users\jk\Desktop\Alte Firefox-Daten
2018-07-28 22:26 - 2017-02-28 08:53 - 000000000 ____D C:\Users\jk\AppData\Roaming\Skype
2018-07-28 22:26 - 2017-02-22 16:06 - 000000000 ____D C:\Kaspersky Rescue Disk 10.0
2018-07-28 22:26 - 2017-01-05 15:37 - 000000000 ____D C:\Program Files (x86)\Samsung
2018-07-28 22:26 - 2016-12-04 14:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-07-28 22:26 - 2016-12-04 14:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-07-28 22:26 - 2016-11-24 15:17 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2018-07-28 22:26 - 2016-11-23 12:01 - 000000000 ____D C:\Program Files (x86)\FRITZ!BoxPrint
2018-07-28 22:26 - 2016-11-22 17:43 - 000000000 ____D C:\Users\jk\AppData\Local\Avira
2018-07-28 22:26 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-07-28 22:25 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2018-07-28 22:15 - 2017-05-23 20:10 - 000000000 ____D C:\Users\jk\AppData\Roaming\WhatsApp
2018-07-28 22:15 - 2016-12-04 14:23 - 000000000 ____D C:\Users\jk\AppData\Local\NVIDIA Corporation
2018-07-28 22:13 - 2016-12-04 14:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-07-28 22:09 - 2016-11-29 14:56 - 000000000 __RHD C:\MSOCache
2018-07-27 11:35 - 2016-11-21 23:20 - 000000000 ____D C:\Users\jk\AppData\Local\ElevatedDiagnostics
2018-07-17 00:02 - 2010-11-21 05:27 - 000563832 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-07-03 09:11 - 2017-06-08 10:03 - 001900544 _____ C:\Users\jk\Documents\Datenbank3.accdb
2018-07-03 09:11 - 2016-12-04 18:58 - 001851392 _____ C:\Users\jk\Documents\Datenbank1.accdb
2018-07-01 10:13 - 2018-03-27 08:05 - 000402944 ___SH C:\Users\jk\Desktop\Thumbs.db
2018-07-01 09:58 - 2016-11-29 18:00 - 000000000 ____D C:\Users\jk\Documents\Benutzerdefinierte Office-Vorlagen
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2018-07-29 09:38 - 2018-07-29 09:38 - 000000002 _____ () C:\Users\jk\AppData\Roaming\acc.txt
2018-07-29 09:40 - 2018-07-29 09:40 - 000001217 _____ () C:\Users\jk\AppData\Roaming\uni.txt
2017-06-13 12:00 - 2017-06-13 12:00 - 000000037 ___SH () C:\Users\jk\AppData\Local\70149b02515b3bb20dd492.47983420
2016-12-11 15:36 - 2018-06-04 22:01 - 000007658 _____ () C:\Users\jk\AppData\Local\Resmon.ResmonCfg
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Windows\Tasks\{4F4B4B02-A683-08F1-50C3-67B6A7D87FD2}.job
Einige Dateien in TEMP:
====================
2018-05-24 12:09 - 2018-05-24 12:09 - 001884616 _____ (Oracle Corporation) C:\Users\jk\AppData\Local\Temp\jre-8u171-windows-au.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2018-07-27 12:31
==================== Ende von FRST.txt ============================
[/CODE] ich bitte um Verzeihung. |
|
29.07.2018, 18:12
| #17 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Bei Ebay soll ich in Rubel zahlen Schädlinge suchen mit Kaspersky TDSS-Killer
__________________Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
29.07.2018, 18:35
| #18 |
| | Bei Ebay soll ich in Rubel zahlen FRST Logfile:
__________________Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 21.07.2018
durchgeführt von jk (Administrator) auf JK-PC (29-07-2018 19:07:12)
Gestartet von C:\Users\jk\Downloads
Geladene Profile: jk (Verfügbare Profile: jk & DefaultAppPool)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Abbott Diabetes Care) C:\Program Files (x86)\Abbott Diabetes Care\FreeStyle Auto-Assist\adcmald.exe
(Apache Software Foundation) C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apache Software Foundation) C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Samsung Electronics Co., Ltd.) C:\Windows\System32\spool\drivers\x64\3\NetFaxServer64.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\PAC7302\Monitor.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7368480 2018-07-29] (Lavasoft)
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: K - K:\Windows\StartFreeStyle.exe
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: {113b2a9c-0558-11e7-a08b-e03f49aba71a} - K:\LG_PC_Programs.exe
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: {3712db60-d65b-11e7-8473-e03f49aba71a} - K:\Windows\StartFreeStyle.exe
HKU\S-1-5-21-1412345945-17949511-910986349-1000\...\MountPoints2: {c15d39b1-0c70-11e7-a6c5-e03f49aba71a} - N:\LG_PC_Programs.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{210BC2F4-F819-4CEF-A956-D56C0EBC2FBE}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7962FDAD-7C2C-49BF-9B26-694BFCC02B7C}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{8F60B775-F9D9-4C46-8ABE-6EE9D55F46FE}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-1412345945-17949511-910986349-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COSP&ptag=D022617-AF69C3D636C&form=CONMHP&conlogo=CT3335177
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022617-AF69C3D636C&form=CONBDF&conlogo=CT3335177&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022617-AF69C3D636C&form=CONBDF&conlogo=CT3335177&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = hxxp://www.bing.com/search?pc=COSP&ptag=D022617-AF69C3D636C&form=CONBDF&conlogo=CT3335177&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> {D1A3AC1C-296D-4453-9473-55CFCF22879C} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-06-13] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-06-13] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-1412345945-17949511-910986349-1000 -> Kein Name - {093F479D-712E-46CD-9E06-62E734A05F68} - Keine Datei
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-10-11] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 9m5whdor.default-1510929689929
FF ProfilePath: C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 [2018-07-29]
FF Homepage: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> about:home
FF NewTab: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> hxxp://www.bing.com/?pc=COSP&ptag=D022617-AF69C3D636C&form=CONMHP&conlogo=CT3335177
FF HomepageOverride: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> Disabled: _iwMembers_@free.allinonedocs.com
FF NewTabOverride: Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929 -> Disabled: _iwMembers_@free.allinonedocs.com
FF Extension: (Avira Browser Safety) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\abs@avira.com [2018-07-28]
FF Extension: (HTTPS Everywhere) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\https-everywhere@eff.org.xpi [2018-07-29]
FF Extension: (Kein Name) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\passwordmanager@avira.com [2018-07-28]
FF Extension: (Avira SafeSearch Plus) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\safesearchplus2@avira.com [2018-07-28]
FF Extension: (uBlock Origin) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\uBlock0@raymondhill.net.xpi [2018-07-29]
FF Extension: (AllInOneDocs) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\_iwMembers_@free.allinonedocs.com.xpi [2018-07-01]
FF Extension: (Web Messenger for WhatsApp) - C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\Extensions\{e1ab1333-aff6-42fe-84a5-55be2409491b}.xpi [2018-02-07]
FF SearchPlugin: C:\Users\jk\AppData\Roaming\Mozilla\Firefox\Profiles\9m5whdor.default-1510929689929\searchplugins\bing-lavasoft-ff59.xml [2018-04-23]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-29] [Legacy] [ist nicht signiert]
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-13] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin HKU\S-1-5-21-1412345945-17949511-910986349-1000: www.wansview.com/HYPlayer -> C:\Program Files (x86)\HYPlayer\npHYPlayer.dll [2016-09-22] (IPC)
Chrome:
=======
CHR DefaultProfile: Default
CHR NewTab: Default -> Active:"chrome-extension://hjfmdccpchjbocfcmenkfmkcbmoldfee/newtabproduct.html", Active:"chrome-extension://fabhkdeopjkcpkmofliimbjckmocfiom/newtab.html", Active:"chrome-extension://egbpmjkpccpjhfnhfhgeklgibepkimpd/newtabproduct.html"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default [2018-07-29]
CHR Extension: (Dealbeaver) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhldmkghjkldhclddpjebfjpaijaajmm [2017-06-17]
CHR Extension: (YouTube) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-22]
CHR Extension: (Avira Password Manager) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2018-07-28]
CHR Extension: (FromDocToPDF) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\egbpmjkpccpjhfnhfhgeklgibepkimpd [2018-07-28]
CHR Extension: (Kein Name) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-07-28]
CHR Extension: (Yahoo Partner) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\fabhkdeopjkcpkmofliimbjckmocfiom [2018-07-28]
CHR Extension: (Avira Browserschutz) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-07-28]
CHR Extension: (Kein Name) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-07-28]
CHR Extension: (FindYourMaps) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\hjfmdccpchjbocfcmenkfmkcbmoldfee [2018-07-28]
CHR Extension: (Yahoo Partner) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibbfklbaljofpaanmpaeadejijfdddco [2018-07-28]
CHR Extension: (Search Manager) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nahhmpbckpgdidfnmfkfgiflpjijilce [2018-07-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-28]
CHR Extension: (Google Mail) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-22]
CHR Extension: (Chrome Media Router) - C:\Users\jk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-28]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1412345945-17949511-910986349-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bbiilhoacmmppcmcogfmaailncbelbgn] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bhldmkghjkldhclddpjebfjpaijaajmm] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 adcmald; C:\Program Files (x86)\Abbott Diabetes Care\FreeStyle Auto-Assist\adcmald.exe [535896 2013-08-05] (Abbott Diabetes Care)
R2 Apache2.2; C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe [20549 2012-01-28] (Apache Software Foundation) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [350720 2012-06-01] (Microsoft Corporation)
R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [45568 2009-07-14] (Microsoft Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [518080 2017-10-11] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-13] (NVIDIA Corporation)
R2 Samsung Network Fax Server; C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe [706240 2015-11-27] (Samsung Electronics Co., Ltd.)
S4 Samsung Printer Dianostics Service; C:\Windows\SysWOW64\\spdsvc.exe [499000 2016-08-17] ()
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2017-02-01] ()
R2 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-21] (Microsoft Corporation)
R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-21] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11294448 2018-03-09] (TeamViewer GmbH)
S4 TlntSvr; C:\Windows\System32\tlntsvr.exe [81920 2009-07-14] (Microsoft Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [25888 2018-07-29] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.231\WsAppService.exe [X]
S3 WsDrvInst; "C:\Program Files (x86)\Wondershare\MobileTrans\DriverInstall.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [30208 2016-08-31] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (LG Electronics Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-25] ()
S2 EIO; C:\Windows\SysWOW64\drivers\EIO.sys [8037 2004-05-19] (ASUSTeK Computer Inc.) [Datei ist nicht signiert]
R1 FNETURPX; C:\Windows\SysWOW64\drivers\FNETURPX.SYS [16648 2017-01-19] (FNet Co., Ltd.)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [117912 2012-11-19] (Qualcomm Atheros Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-19] ()
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-10-11] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [50624 2017-10-11] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-10-11] (NVIDIA Corporation)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [527872 2007-11-08] (PixArt Imaging Inc.)
S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-10-25] (The OpenVPN Project)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (QUALCOMM Incorporated)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [196040 2017-10-16] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [206976 2017-10-16] (Oracle Corporation)
U3 aswbdisk; kein ImagePath
R4 avkmgr; system32\DRIVERS\avkmgr.sys [X]
R4 avusbflt; System32\Drivers\avusbflt.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2018-07-29 16:46 - 2018-07-29 16:46 - 007197480 _____ (VS Revo Group ) C:\Users\jk\Downloads\revosetup205.exe
2018-07-29 16:46 - 2018-07-29 16:46 - 000001006 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2018-07-29 16:46 - 2018-07-29 16:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-07-29 16:46 - 2018-07-29 16:46 - 000000000 ____D C:\Program Files\VS Revo Group
2018-07-29 15:47 - 2018-07-29 19:07 - 000021198 _____ C:\Users\jk\Downloads\FRST.txt
2018-07-29 15:47 - 2018-07-29 17:12 - 000058175 _____ C:\Users\jk\Downloads\Addition.txt
2018-07-29 15:46 - 2018-07-29 19:07 - 000000000 ____D C:\FRST
2018-07-29 15:46 - 2018-07-29 15:46 - 002412544 _____ (Farbar) C:\Users\jk\Downloads\FRST64.exe
2018-07-29 14:59 - 2018-07-29 14:59 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2018-07-29 14:59 - 2018-07-29 14:59 - 000000000 ____D C:\Program Files\Microsoft Security Client
2018-07-29 14:59 - 2018-07-29 14:59 - 000000000 ____D C:\Program Files (x86)\Microsoft Security Client
2018-07-29 14:58 - 2018-07-29 14:59 - 000001912 _____ C:\Windows\epplauncher.mif
2018-07-29 14:44 - 2018-07-29 14:44 - 000003330 _____ C:\Windows\System32\Tasks\AviraSystemSpeedupRemoval
2018-07-29 12:34 - 2018-07-29 12:34 - 001540104 _____ (CHIP Digital GmbH) C:\Users\jk\Downloads\TrojanCheck - CHIP-Installer.exe
2018-07-29 11:24 - 2018-07-29 11:24 - 000000000 ____D C:\Users\jk\Documents\TotalAV
2018-07-29 11:23 - 2018-07-29 11:23 - 000000000 ____D C:\ProgramData\SecuritySuite
2018-07-29 11:21 - 2018-07-29 11:21 - 011093688 _____ C:\Users\jk\Downloads\TotalAV_Setup.exe
2018-07-29 11:17 - 2018-07-29 11:17 - 004970656 _____ (SimpleStar ) C:\Users\jk\Downloads\SimpleMalwareProtectorSetup_bng.exe
2018-07-29 09:40 - 2018-07-29 09:40 - 000001217 _____ C:\Users\jk\AppData\Roaming\uni.txt
2018-07-29 09:38 - 2018-07-29 09:38 - 000000002 _____ C:\Users\jk\AppData\Roaming\acc.txt
2018-07-29 09:35 - 2018-07-29 09:35 - 004896504 _____ ( ) C:\Users\jk\Downloads\wprsetup.exe
2018-07-29 07:44 - 2018-07-29 07:44 - 005414064 _____ (Avira Operations GmbH & Co. KG) C:\Users\jk\Downloads\avira_de_aps10_3010798048_nbif17hoelfr3ujz88u6_wd.exe
2018-07-29 07:42 - 2018-07-29 07:42 - 005414064 _____ (Avira Operations GmbH & Co. KG) C:\Users\jk\Downloads\avira_de_aps10_3010798048_3k2la661hxu96nv3dm4f_wd.exe
2018-07-29 07:38 - 2018-07-29 07:38 - 005414064 _____ (Avira Operations GmbH & Co. KG) C:\Users\jk\Downloads\avira_de_aps10_3010798048_rk9ksmczftblepvijzrs_wd.exe
2018-07-29 07:32 - 2018-07-29 07:32 - 000000000 ____D C:\Users\jk\AppData\Local\AviraSpeedup
2018-07-28 23:07 - 2018-06-13 18:23 - 000140992 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-07-28 23:07 - 2018-06-13 18:18 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 002860032 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2018-07-28 23:07 - 2018-06-08 15:05 - 001602048 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000783872 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000612352 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000443392 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000301056 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2018-07-28 23:07 - 2018-06-08 15:05 - 000246272 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2018-07-28 20:58 - 2018-07-28 20:58 - 000000000 ____D C:\Users\jk\AppData\Local\Avira Operations Gmbh & Co. KG
2018-07-28 20:58 - 2018-07-28 20:58 - 000000000 ____D C:\ProgramData\Avira Operations Gmbh & Co. KG
2018-07-27 16:22 - 2018-07-29 06:54 - 000000000 ____D C:\Users\jk\AppData\Local\AVAST Software
2018-07-27 16:00 - 2018-07-27 16:00 - 000000276 _____ C:\Users\jk\Desktop\avira_de_av_5b5ade2bb772d__ws.exehttpspackage.avira.compackageoeavirawinintavira_de_fass0_5b5ade2bb772d__ws.exeavira_de_fass.URL
2018-07-27 13:20 - 2018-07-27 13:27 - 000000000 ____D C:\Users\jk\AppData\Local\Avg
2018-07-27 13:15 - 2018-07-27 13:27 - 000000000 ____D C:\ProgramData\AVG
2018-07-13 09:19 - 2018-07-13 09:19 - 000250921 _____ C:\Users\jk\Downloads\druckanzeige_anl.pdf
2018-07-11 17:37 - 2018-07-11 17:37 - 000000000 ____D C:\Program Files\Google
2018-07-09 15:56 - 2018-07-09 15:56 - 000615770 _____ C:\Users\jk\Downloads\Anleitung_Klima_Desinfektion_Golf_7.pdf
2018-07-09 15:48 - 2018-07-09 15:48 - 001450957 _____ C:\Users\jk\Downloads\VW_GolfVII Luftfilter.pdf
2018-07-06 08:52 - 2018-07-06 08:52 - 000413051 _____ C:\Users\jk\Desktop\barclay027.pdf
2018-07-01 10:13 - 2018-07-01 10:13 - 026844090 _____ C:\Users\jk\Desktop\endoskopkamera025.tif
2018-07-01 09:50 - 2018-07-01 09:50 - 026900180 _____ C:\Users\jk\Desktop\endoskopkamera024.tif
2018-07-01 09:32 - 2018-07-01 09:32 - 000484760 _____ C:\Users\jk\Desktop\endoskopkamera022.pdf
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2018-07-29 18:11 - 2017-04-23 20:11 - 000000258 _____ C:\Windows\Tasks\{4F4B4B02-A683-08F1-50C3-67B6A7D87FD2}.job
2018-07-29 17:00 - 2018-03-09 11:27 - 000000000 ____D C:\Program Files\Java
2018-07-29 16:58 - 2017-07-19 11:37 - 000000000 ____D C:\Program Files (x86)\Java
2018-07-29 16:58 - 2016-12-09 12:37 - 000000000 ____D C:\Users\jk\AppData\Roaming\Sun
2018-07-29 16:54 - 2016-12-06 14:23 - 000000000 ____D C:\ProgramData\Package Cache
2018-07-29 16:54 - 2016-11-22 16:42 - 000000000 ____D C:\ProgramData\Avira
2018-07-29 16:54 - 2016-11-22 16:42 - 000000000 ____D C:\Program Files (x86)\Avira
2018-07-29 16:50 - 2016-11-24 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2018-07-29 16:50 - 2016-11-24 22:59 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2018-07-29 16:44 - 2016-11-22 13:06 - 000013405 _____ C:\Windows\BRRBCOM.INI
2018-07-29 15:44 - 2016-11-22 10:17 - 000000000 ____D C:\Users\jk\AppData\LocalLow\Mozilla
2018-07-29 15:07 - 2017-04-20 12:50 - 000000000 ____D C:\Program Files\Opera
2018-07-29 14:37 - 2016-11-25 17:16 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-07-29 14:37 - 2016-11-25 17:16 - 000000000 ____D C:\Windows\system32\Macromed
2018-07-29 14:32 - 2009-07-14 06:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-29 14:32 - 2009-07-14 06:45 - 000021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-29 14:27 - 2016-12-04 14:22 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-29 14:24 - 2016-11-22 11:07 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-07-29 14:23 - 2017-08-30 20:53 - 000000352 _____ C:\Windows\Tasks\DriverToolkit Autorun.job
2018-07-29 14:23 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-29 13:30 - 2016-11-21 23:06 - 000000000 ____D C:\Program Files (x86)\Google
2018-07-29 13:08 - 2017-01-05 15:38 - 000000000 ____D C:\Users\jk\AppData\Local\CrashDumps
2018-07-29 11:39 - 2017-06-13 11:50 - 000000000 ____D C:\ProgramData\AVAST Software
2018-07-29 11:39 - 2016-11-22 10:17 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-07-29 09:44 - 2017-02-26 12:10 - 000000167 _____ C:\Windows\Reimage.ini
2018-07-29 07:35 - 2017-08-29 17:41 - 000000000 ____D C:\Wswin
2018-07-29 07:35 - 2017-06-14 19:37 - 000000000 ____D C:\Users\jk\Documents\jAnrufmonitor
2018-07-29 07:35 - 2017-05-23 20:10 - 000000000 ____D C:\Users\jk\AppData\Local\WhatsApp
2018-07-29 07:35 - 2017-05-07 11:13 - 000000000 ____D C:\ProgramData\explauncher
2018-07-29 07:35 - 2016-12-16 16:44 - 000000000 ____D C:\Users\jk\AppData\Roaming\BOM
2018-07-29 07:35 - 2016-11-25 16:24 - 000000000 ____D C:\Windows\pss
2018-07-29 07:19 - 2016-11-22 10:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-07-29 07:16 - 2017-06-21 09:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-07-29 06:51 - 2017-02-28 09:13 - 000000000 ____D C:\Windows\system32\appraiser
2018-07-28 23:20 - 2017-02-28 08:49 - 000000000 ____D C:\Windows\system32\MRT
2018-07-28 23:15 - 2017-01-25 10:38 - 134675576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-07-28 23:05 - 2018-05-16 14:10 - 000000000 _____ C:\Windows\SysWOW64\last.dump
2018-07-28 23:00 - 2017-04-24 10:26 - 000000000 ____D C:\ProgramData\IObit
2018-07-28 23:00 - 2017-04-24 10:24 - 000000000 ____D C:\Users\jk\AppData\Roaming\IObit
2018-07-28 22:45 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-07-28 22:30 - 2016-11-21 23:04 - 000000000 ____D C:\Users\jk
2018-07-28 22:27 - 2018-04-08 18:40 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2018-07-28 22:27 - 2018-01-28 19:24 - 000000000 ____D C:\Users\jk\Desktop\Aufnahmen _ Flickr-Dateien
2018-07-28 22:27 - 2017-11-07 19:36 - 000000000 ____D C:\Users\jk\Desktop\- Striegistal-Dateien
2018-07-28 22:27 - 2017-11-02 19:22 - 000000000 ____D C:\Users\jk\Desktop\Gemeinde Striegistal Mobendorf-Dateien
2018-07-28 22:27 - 2017-06-10 13:01 - 000000000 ____D C:\Users\jk\AppData\Roaming\PhotoFiltre 7
2018-07-28 22:27 - 2017-04-24 10:26 - 000000000 ____D C:\ProgramData\ProductData
2018-07-28 22:27 - 2017-01-05 15:38 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2018-07-28 22:27 - 2016-12-19 12:23 - 000000000 ____D C:\Users\DefaultAppPool
2018-07-28 22:27 - 2016-12-04 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-07-28 22:27 - 2016-11-25 16:45 - 000000000 ____D C:\Users\jk\Downloads\Office
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\ras
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\ras
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Msdtc
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\Dism
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\servicing
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\schemas
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2018-07-28 22:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2018-07-28 22:26 - 2018-06-26 10:31 - 000000000 ____D C:\Users\jk\Desktop\(33) Jochen Bastian-Dateien
2018-07-28 22:26 - 2018-05-30 17:24 - 000000000 ____D C:\Users\jk\Downloads\Neuer Ordner
2018-07-28 22:26 - 2018-04-08 18:39 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-07-28 22:26 - 2017-11-16 11:04 - 000000000 ____D C:\Users\jk\AppData\Local\Avira_Operations_Gmbh_&_C
2018-07-28 22:26 - 2017-06-21 22:01 - 000000000 ____D C:\Users\jk\Desktop\Alte Firefox-Daten
2018-07-28 22:26 - 2017-02-28 08:53 - 000000000 ____D C:\Users\jk\AppData\Roaming\Skype
2018-07-28 22:26 - 2017-02-22 16:06 - 000000000 ____D C:\Kaspersky Rescue Disk 10.0
2018-07-28 22:26 - 2017-01-05 15:37 - 000000000 ____D C:\Program Files (x86)\Samsung
2018-07-28 22:26 - 2016-12-04 14:22 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-07-28 22:26 - 2016-12-04 14:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-07-28 22:26 - 2016-11-24 15:17 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2018-07-28 22:26 - 2016-11-23 12:01 - 000000000 ____D C:\Program Files (x86)\FRITZ!BoxPrint
2018-07-28 22:26 - 2016-11-22 17:43 - 000000000 ____D C:\Users\jk\AppData\Local\Avira
2018-07-28 22:26 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2018-07-28 22:25 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2018-07-28 22:15 - 2017-05-23 20:10 - 000000000 ____D C:\Users\jk\AppData\Roaming\WhatsApp
2018-07-28 22:15 - 2016-12-04 14:23 - 000000000 ____D C:\Users\jk\AppData\Local\NVIDIA Corporation
2018-07-28 22:13 - 2016-12-04 14:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-07-28 22:09 - 2016-11-29 14:56 - 000000000 __RHD C:\MSOCache
2018-07-27 11:35 - 2016-11-21 23:20 - 000000000 ____D C:\Users\jk\AppData\Local\ElevatedDiagnostics
2018-07-17 00:02 - 2010-11-21 05:27 - 000563832 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-07-03 09:11 - 2017-06-08 10:03 - 001900544 _____ C:\Users\jk\Documents\Datenbank3.accdb
2018-07-03 09:11 - 2016-12-04 18:58 - 001851392 _____ C:\Users\jk\Documents\Datenbank1.accdb
2018-07-01 10:13 - 2018-03-27 08:05 - 000402944 ___SH C:\Users\jk\Desktop\Thumbs.db
2018-07-01 09:58 - 2016-11-29 18:00 - 000000000 ____D C:\Users\jk\Documents\Benutzerdefinierte Office-Vorlagen
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2018-07-29 09:38 - 2018-07-29 09:38 - 000000002 _____ () C:\Users\jk\AppData\Roaming\acc.txt
2018-07-29 09:40 - 2018-07-29 09:40 - 000001217 _____ () C:\Users\jk\AppData\Roaming\uni.txt
2017-06-13 12:00 - 2017-06-13 12:00 - 000000037 ___SH () C:\Users\jk\AppData\Local\70149b02515b3bb20dd492.47983420
2016-12-11 15:36 - 2018-06-04 22:01 - 000007658 _____ () C:\Users\jk\AppData\Local\Resmon.ResmonCfg
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Windows\Tasks\{4F4B4B02-A683-08F1-50C3-67B6A7D87FD2}.job
Einige Dateien in TEMP:
====================
2018-05-24 12:09 - 2018-05-24 12:09 - 001884616 _____ (Oracle Corporation) C:\Users\jk\AppData\Local\Temp\jre-8u171-windows-au.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2018-07-27 12:31
==================== Ende von FRST.txt ============================
er hat nichts gefunden 477 Objekts no threats found |
|
29.07.2018, 18:35
| #19 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Ebay soll ich in Rubel zahlen Postings bitte mal richtig lesen. Du hast schon wieder ein FRST Log gepostet.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.07.2018, 18:44
| #20 |
| | Bei Ebay soll ich in Rubel zahlen ich wollte dieses Bild einfügen aber ? es bleibt bei 477 und no habe alles nochmal durch gelesen hm was oder wie kann ich noch |
|
29.07.2018, 18:45
| #21 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Ebay soll ich in Rubel zahlen du sollst kein Bild einfügen. Lies die Anleitung richtig!
__________________ --> Bei Ebay soll ich in Rubel zahlen |
|
29.07.2018, 19:12
| #22 |
| | Bei Ebay soll ich in Rubel zahlenCode:
ATTFilter ich bin oben auf Report und siehe da und habe markeirt und es will nicht hier rein kommen mit str+c
Hallo Cosinus, ich habe ein Problem diese lange Liste vom Report zu teilen oder hier richtig ein zu stellen. Ich bitte Dich mir zu helfen. |
|
29.07.2018, 19:14
| #23 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Ebay soll ich in Rubel zahlen Also ich lass mich hier nicht verarschen. Ich werd jetzt keine Anleitung schreiben, wie man Text hier reinkopiert bzw ein Log bis etwa zur Hälfte und im nächsten Beitrag die andere Hälfte.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.07.2018, 19:39
| #24 |
| | Bei Ebay soll ich in Rubel zahlenCode:
ATTFilter 19:39:15.0838 0x0834 TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
19:39:29.0191 0x0834 ============================================================
19:39:29.0191 0x0834 Current date / time: 2018/07/29 19:39:29.0191
19:39:29.0191 0x0834 SystemInfo:
19:39:29.0191 0x0834
19:39:29.0191 0x0834 OS Version: 6.1.7601 ServicePack: 1.0
19:39:29.0191 0x0834 Product type: Workstation
19:39:29.0191 0x0834 ComputerName: JK-PC
19:39:29.0191 0x0834 UserName: jk
19:39:29.0191 0x0834 Windows directory: C:\Windows
19:39:29.0191 0x0834 System windows directory: C:\Windows
19:39:29.0191 0x0834 Running under WOW64
19:39:29.0191 0x0834 Processor architecture: Intel x64
19:39:29.0191 0x0834 Number of processors: 2
19:39:29.0191 0x0834 Page size: 0x1000
19:39:29.0191 0x0834 Boot type: Normal boot
19:39:29.0191 0x0834 CodeIntegrityOptions = 0x00000001
19:39:29.0191 0x0834 ============================================================
19:39:31.0282 0x0834 KLMD registered as C:\Windows\system32\drivers\02655825.sys
19:39:31.0282 0x0834 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.24117, osProperties = 0x1
19:39:31.0672 0x0834 System UUID: {E8848492-2CC7-F935-7FE2-6546E58ED2BF}
19:39:32.0202 0x0834 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:39:32.0249 0x0834 ============================================================
19:39:32.0249 0x0834 \Device\Harddisk0\DR0:
19:39:32.0265 0x0834 MBR partitions:
19:39:32.0265 0x0834 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:39:32.0265 0x0834 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1E9C5000
19:39:32.0265 0x0834 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E9F7800, BlocksNum 0x249F0000
19:39:32.0280 0x0834 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x433E8000, BlocksNum 0x3131E000
19:39:32.0280 0x0834 ============================================================
19:39:32.0389 0x0834 C: <-> \Device\Harddisk0\DR0\Partition2
19:39:32.0499 0x0834 I: <-> \Device\Harddisk0\DR0\Partition3
19:39:32.0561 0x0834 J: <-> \Device\Harddisk0\DR0\Partition4
19:39:32.0561 0x0834 ============================================================
19:39:32.0561 0x0834 Initialize success
19:39:32.0561 0x0834 ============================================================
19:39:55.0524 0x0ed0 ============================================================
19:39:55.0540 0x0ed0 Scan started
19:39:55.0540 0x0ed0 Mode: Manual;
19:39:55.0540 0x0ed0 ============================================================
19:39:55.0540 0x0ed0 KSN ping started
19:39:55.0633 0x0ed0 KSN ping finished: true
19:39:57.0942 0x0ed0 ================ Scan system memory ========================
19:39:57.0942 0x0ed0 System memory - ok
19:39:57.0942 0x0ed0 ================ Scan services =============================
19:39:58.0067 0x0ed0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:39:58.0067 0x0ed0 1394ohci - ok
19:39:58.0114 0x0ed0 [ DCA5495CA17AEB2F4FD8AC60812C3999, 20A3FC0349294584C340C76D674EE5CA37BA69C886DDA6886CBCCFA437A51BD8 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:39:58.0114 0x0ed0 ACPI - ok
19:39:58.0129 0x0ed0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:39:58.0129 0x0ed0 AcpiPmi - ok
19:39:58.0223 0x0ed0 [ F737862426884F8A3954059673DC0121, 718CF614E188226E55D6803CAFCFBA1839BDDC35AB209FAAC71059BC1F311180 ] adcmald C:\Program Files (x86)\Abbott Diabetes Care\FreeStyle Auto-Assist\adcmald.exe
19:39:58.0239 0x0ed0 adcmald - ok
Code:
ATTFilter 19:39:58.0270 0x0ed0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:39:58.0270 0x0ed0 adp94xx - ok
19:39:58.0363 0x0ed0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:39:58.0395 0x0ed0 adpahci - ok
19:39:58.0410 0x0ed0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:39:58.0426 0x0ed0 adpu320 - ok
19:39:58.0441 0x0ed0 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:39:58.0441 0x0ed0 AeLookupSvc - ok
19:39:58.0473 0x0ed0 [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
19:39:58.0488 0x0ed0 AFD - ok
19:39:58.0504 0x0ed0 [ 466BF4170DC41BB939F1F9AB8F97F8F5, 603BF9DA00AABF2CC9FA89865EBCF0CDAADB77D147D0B9FC30480DA7D8215C61 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:39:58.0519 0x0ed0 agp440 - ok
19:39:58.0535 0x0ed0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
19:39:58.0535 0x0ed0 ALG - ok
19:39:58.0566 0x0ed0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
19:39:58.0566 0x0ed0 aliide - ok
19:39:58.0582 0x0ed0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
19:39:58.0582 0x0ed0 amdide - ok
19:39:58.0597 0x0ed0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:39:58.0597 0x0ed0 AmdK8 - ok
19:39:58.0629 0x0ed0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:39:58.0629 0x0ed0 AmdPPM - ok
19:39:58.0644 0x0ed0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:39:58.0660 0x0ed0 amdsata - ok
19:39:58.0675 0x0ed0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:39:58.0675 0x0ed0 amdsbs - ok
19:39:58.0691 0x0ed0 [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:39:58.0691 0x0ed0 amdxata - ok
19:39:58.0722 0x0ed0 [ 459BE03505AA3C587A43EF26180ADCF8, B059A4903165E317EA5755D084ED12A1209255FBB70A4523E04441A615ABFAE0 ] AndnetBus C:\Windows\system32\DRIVERS\lgandnetbus64.sys
19:39:58.0722 0x0ed0 AndnetBus - ok
19:39:58.0753 0x0ed0 [ 16B21FEEF6C0999AC6B80C3F37AEED0D, 52A438CA1C06E00D22F105FD229085DEC24A4EBF66C3D0AE8F3C6BFBA8C27B6B ] AndNetDiag C:\Windows\system32\DRIVERS\lgandnetdiag64.sys
19:39:58.0753 0x0ed0 AndNetDiag - ok
19:39:58.0769 0x0ed0 [ E9C96BD17C317016C1B00127E5FDDB57, 3CD8476C3E5EB815E04F8CD41E6EAED415865D0FA87C9B34E77BFF3BAEA93C9A ] ANDNetModem C:\Windows\system32\DRIVERS\lgandnetmodem64.sys
19:39:58.0769 0x0ed0 ANDNetModem - ok
Code:
ATTFilter 19:39:58.0831 0x0ed0 [ EB4E26AD3A0E681C2FAABBACB0691A34, F2ACDF171E603203F422BA64BFE2644A8E125657C96DD626CFD323E9F87C88D1 ] Apache2.2 C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
19:39:58.0831 0x0ed0 Apache2.2 - ok
19:39:58.0894 0x0ed0 [ 59D01FA91962C9C1E9B4022B2D3B46DB, 3A111588538B77F010B5C900FB8425DDE55A08DBAC308CA7FB7BD9FCCCDEC69F ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
19:39:58.0894 0x0ed0 AppHostSvc - ok
19:39:58.0909 0x0ed0 [ CD5A6DD015FC1F5894F5BB30453C86F9, 79BB2A2EF97CCB20AABA6E760A89A538C62B51D387121B98F60AFFCCACDE52C1 ] AppID C:\Windows\system32\drivers\appid.sys
19:39:58.0909 0x0ed0 AppID - ok
19:39:58.0941 0x0ed0 [ F7A1E20DF6C97D9E79833B64C5E90001, 2754C1B33722CF7653963645453047239F8F2DBF8D3D3FE6A4859CBA482AEF84 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:39:58.0941 0x0ed0 AppIDSvc - ok
19:39:58.0941 0x0ed0 [ D92C0D871FBA258CBF2126EABFE31447, 62E2C3CF0E3BB6A4C6AC101333728E447960B182C11F7B1900CA5C6E4B46D02C ] Appinfo C:\Windows\System32\appinfo.dll
19:39:58.0941 0x0ed0 Appinfo - ok
19:39:59.0034 0x0ed0 [ 49D234989341C2D16419C1043A63CE68, B65D20145757B0585FDD3116D44931D915E47BFF29E3977222877CB2C47F3B99 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:39:59.0034 0x0ed0 Apple Mobile Device Service - ok
19:39:59.0065 0x0ed0 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
19:39:59.0065 0x0ed0 AppMgmt - ok
19:39:59.0081 0x0ed0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
19:39:59.0081 0x0ed0 arc - ok
19:39:59.0097 0x0ed0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:39:59.0097 0x0ed0 arcsas - ok
19:39:59.0175 0x0ed0 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
19:39:59.0175 0x0ed0 AsIO - ok
19:39:59.0253 0x0ed0 [ B29B39713E36AEDC517AEF58321B52D9, 016FFC93CB5BA15E6FA48B3334F69E8D80D0FC9B51B0477B4D4CEE0186303ABC ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:39:59.0253 0x0ed0 aspnet_state - ok
19:39:59.0268 0x0ed0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:39:59.0268 0x0ed0 AsyncMac - ok
19:39:59.0299 0x0ed0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
19:39:59.0299 0x0ed0 atapi - ok
19:39:59.0315 0x0ed0 [ C07A040D6B5A42DD41EE386CF90974C8, 8D47815F99C79B795504C3172B5FBBDBA6AFACC004B17AA3954A06BE713FACAE ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
19:39:59.0315 0x0ed0 AtiPcie - ok
19:39:59.0346 0x0ed0 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:39:59.0362 0x0ed0 AudioEndpointBuilder - ok
19:39:59.0377 0x0ed0 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:39:59.0393 0x0ed0 AudioSrv - ok
19:39:59.0409 0x0ed0 avkmgr - ok
19:39:59.0409 0x0ed0 avusbflt - ok
Code:
ATTFilter 19:39:59.0440 0x0ed0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:39:59.0440 0x0ed0 AxInstSV - ok
19:39:59.0565 0x0ed0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:39:59.0565 0x0ed0 b06bdrv - ok
19:39:59.0596 0x0ed0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:39:59.0596 0x0ed0 b57nd60a - ok
19:39:59.0611 0x0ed0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
19:39:59.0611 0x0ed0 BDESVC - ok
19:39:59.0627 0x0ed0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
19:39:59.0627 0x0ed0 Beep - ok
19:39:59.0658 0x0ed0 [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] BFE C:\Windows\System32\bfe.dll
19:39:59.0674 0x0ed0 BFE - ok
19:39:59.0705 0x0ed0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
19:39:59.0721 0x0ed0 BITS - ok
19:39:59.0736 0x0ed0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:39:59.0736 0x0ed0 blbdrive - ok
19:39:59.0767 0x0ed0 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:39:59.0783 0x0ed0 Bonjour Service - ok
19:39:59.0799 0x0ed0 [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:39:59.0799 0x0ed0 bowser - ok
19:39:59.0799 0x0ed0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:39:59.0799 0x0ed0 BrFiltLo - ok
19:39:59.0814 0x0ed0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:39:59.0814 0x0ed0 BrFiltUp - ok
19:39:59.0845 0x0ed0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
19:39:59.0845 0x0ed0 Browser - ok
19:39:59.0861 0x0ed0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:39:59.0861 0x0ed0 Brserid - ok
19:39:59.0877 0x0ed0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:39:59.0877 0x0ed0 BrSerWdm - ok
19:39:59.0892 0x0ed0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:39:59.0892 0x0ed0 BrUsbMdm - ok
19:39:59.0908 0x0ed0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:39:59.0908 0x0ed0 BrUsbSer - ok
Code:
ATTFilter 19:39:59.0923 0x0ed0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:39:59.0923 0x0ed0 BTHMODEM - ok
19:39:59.0939 0x0ed0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
19:39:59.0939 0x0ed0 bthserv - ok
19:39:59.0955 0x0ed0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:39:59.0955 0x0ed0 cdfs - ok
19:39:59.0970 0x0ed0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:39:59.0970 0x0ed0 cdrom - ok
19:39:59.0986 0x0ed0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
19:39:59.0986 0x0ed0 CertPropSvc - ok
19:40:00.0001 0x0ed0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
19:40:00.0001 0x0ed0 circlass - ok
19:40:00.0033 0x0ed0 [ B323C40A5FADB48B17B0326A78D7D510, 82F252A0CBF83EEB0A21A14622FF8BA01554698526C1DF368407181772709CBF ] CISVC C:\Windows\system32\CISVC.EXE
19:40:00.0033 0x0ed0 CISVC - ok
19:40:00.0048 0x0ed0 [ B5D7A0638CA817BA7D8A4DFD3499BA2A, B20EDC88A37C87456102EFFCA5EDD6DC9EFDA4B2E03DD9611C06693D1E4BC526 ] CLFS C:\Windows\system32\CLFS.sys
19:40:00.0064 0x0ed0 CLFS - ok
19:40:00.0111 0x0ed0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:40:00.0111 0x0ed0 clr_optimization_v2.0.50727_32 - ok
19:40:00.0142 0x0ed0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:40:00.0142 0x0ed0 clr_optimization_v2.0.50727_64 - ok
19:40:00.0204 0x0ed0 [ 7761FBD826C16A007D6386FBFB846241, 7E9DD121488C8652F33059EBCA648D2319B9D3328EEA3F2AEBA1BFB90C0805EB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:40:00.0204 0x0ed0 clr_optimization_v4.0.30319_32 - ok
19:40:00.0235 0x0ed0 [ 35F81FD0318AFABFB1956431CFA3EAE5, E4CDF2E9558A237B28194BCB1ADA5E798C484E7B0262DAF1AB94A69F326CC91E ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:40:00.0251 0x0ed0 clr_optimization_v4.0.30319_64 - ok
19:40:00.0251 0x0ed0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:40:00.0267 0x0ed0 CmBatt - ok
19:40:00.0282 0x0ed0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:40:00.0282 0x0ed0 cmdide - ok
19:40:00.0329 0x0ed0 [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
19:40:00.0329 0x0ed0 CNG - ok
19:40:00.0345 0x0ed0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:40:00.0345 0x0ed0 Compbatt - ok
Code:
ATTFilter 19:40:00.0360 0x0ed0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:40:00.0360 0x0ed0 CompositeBus - ok
19:40:00.0376 0x0ed0 COMSysApp - ok
19:40:00.0391 0x0ed0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:40:00.0391 0x0ed0 crcdisk - ok
19:40:00.0407 0x0ed0 [ EC0550300E899BD69BDB5937E684D348, 982E5FB213F6DE07F061D4FE201CA69D99572398ED41C953E0B3358C3FD9EBF6 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:40:00.0423 0x0ed0 CryptSvc - ok
19:40:00.0454 0x0ed0 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
19:40:00.0454 0x0ed0 CSC - ok
19:40:00.0501 0x0ed0 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
19:40:00.0516 0x0ed0 CscService - ok
19:40:00.0547 0x0ed0 [ 4CE2D42E24914EE91BFFCD8D8485A1BB, 64A005A2B56CDEB00F43B56040DEB7E5995909E9E11AFB4535895A2C3F0A4648 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:40:00.0547 0x0ed0 DcomLaunch - ok
19:40:00.0579 0x0ed0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
19:40:00.0594 0x0ed0 defragsvc - ok
19:40:00.0610 0x0ed0 [ 7D2D2284833760A82308CF09F7618E8B, A78F9369D4614D305D2F8E3CD2C697107781DD83A695022A192B2D8E1E21A05D ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:40:00.0610 0x0ed0 DfsC - ok
19:40:00.0625 0x0ed0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:40:00.0641 0x0ed0 Dhcp - ok
19:40:00.0797 0x0ed0 [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
19:40:00.0813 0x0ed0 DiagTrack - ok
19:40:00.0828 0x0ed0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
19:40:00.0828 0x0ed0 discache - ok
19:40:00.0844 0x0ed0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
19:40:00.0844 0x0ed0 Disk - ok
19:40:00.0875 0x0ed0 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
19:40:00.0875 0x0ed0 dmvsc - ok
19:40:00.0922 0x0ed0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:40:00.0922 0x0ed0 Dnscache - ok
19:40:00.0937 0x0ed0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
19:40:00.0953 0x0ed0 dot3svc - ok
19:40:00.0969 0x0ed0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
19:40:00.0969 0x0ed0 DPS - ok
19:40:01.0000 0x0ed0 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:40:01.0000 0x0ed0 drmkaud - ok
Code:
ATTFilter 19:40:01.0047 0x0ed0 [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:40:01.0062 0x0ed0 DXGKrnl - ok
19:40:01.0078 0x0ed0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
19:40:01.0078 0x0ed0 EapHost - ok
19:40:01.0171 0x0ed0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:40:01.0218 0x0ed0 ebdrv - ok
19:40:01.0249 0x0ed0 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] EFS C:\Windows\System32\lsass.exe
19:40:01.0249 0x0ed0 EFS - ok
19:40:01.0296 0x0ed0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:40:01.0312 0x0ed0 ehRecvr - ok
19:40:01.0327 0x0ed0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
19:40:01.0343 0x0ed0 ehSched - ok
19:40:01.0343 0x0ed0 EIO - ok
19:40:01.0374 0x0ed0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:40:01.0390 0x0ed0 elxstor - ok
19:40:01.0405 0x0ed0 [ 9002EED07FD7FCFF6B8C5C06B454AC19, 0FCEF7D930316FF267841009DF83F29A7D9CD6ED710128F493EC15EC99D9ACD6 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:40:01.0421 0x0ed0 ErrDev - ok
19:40:01.0468 0x0ed0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
19:40:01.0468 0x0ed0 EventSystem - ok
19:40:01.0499 0x0ed0 [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat C:\Windows\system32\drivers\exfat.sys
19:40:01.0515 0x0ed0 exfat - ok
19:40:01.0530 0x0ed0 [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:40:01.0530 0x0ed0 fastfat - ok
19:40:01.0561 0x0ed0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
19:40:01.0577 0x0ed0 Fax - ok
19:40:01.0639 0x0ed0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:40:01.0655 0x0ed0 fdc - ok
19:40:01.0671 0x0ed0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
19:40:01.0671 0x0ed0 fdPHost - ok
19:40:01.0686 0x0ed0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
19:40:01.0686 0x0ed0 FDResPub - ok
19:40:01.0702 0x0ed0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:40:01.0702 0x0ed0 FileInfo - ok
19:40:01.0717 0x0ed0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:40:01.0717 0x0ed0 Filetrace - ok
Code:
ATTFilter 19:40:01.0733 0x0ed0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:40:01.0733 0x0ed0 flpydisk - ok
19:40:01.0749 0x0ed0 [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:40:01.0764 0x0ed0 FltMgr - ok
19:40:01.0842 0x0ed0 [ E341178C116DAC6A3A764587E68DFA7B, 91B4C79057908A622666FF069CF1C7ECA42952A6587432F5E99E33E8B19D29AF ] FNETURPX C:\Windows\SysWOW64\drivers\FNETURPX.SYS
19:40:01.0842 0x0ed0 FNETURPX - ok
19:40:01.0889 0x0ed0 [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache C:\Windows\system32\FntCache.dll
19:40:01.0920 0x0ed0 FontCache - ok
19:40:01.0951 0x0ed0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:40:01.0967 0x0ed0 FontCache3.0.0.0 - ok
19:40:01.0983 0x0ed0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:40:01.0983 0x0ed0 FsDepends - ok
19:40:02.0014 0x0ed0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:40:02.0014 0x0ed0 Fs_Rec - ok
19:40:02.0061 0x0ed0 [ D225864F6FD96575A303A20BD42383ED, 291ECE0E6D9756EBC7D9D80DC4B1458957DB284D3927034B1C36FA4425C50FD0 ] ftpsvc C:\Windows\system32\inetsrv\ftpsvc.dll
19:40:02.0061 0x0ed0 ftpsvc - ok
19:40:02.0092 0x0ed0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:40:02.0107 0x0ed0 fvevol - ok
19:40:02.0107 0x0ed0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:40:02.0107 0x0ed0 gagp30kx - ok
19:40:02.0154 0x0ed0 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
19:40:02.0185 0x0ed0 gpsvc - ok
19:40:02.0201 0x0ed0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:40:02.0201 0x0ed0 hcw85cir - ok
19:40:02.0232 0x0ed0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:40:02.0248 0x0ed0 HdAudAddService - ok
19:40:02.0263 0x0ed0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:40:02.0263 0x0ed0 HDAudBus - ok
19:40:02.0279 0x0ed0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:40:02.0279 0x0ed0 HidBatt - ok
19:40:02.0295 0x0ed0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:40:02.0295 0x0ed0 HidBth - ok
19:40:02.0310 0x0ed0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
19:40:02.0310 0x0ed0 HidIr - ok
Code:
ATTFilter 19:40:02.0326 0x0ed0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
19:40:02.0326 0x0ed0 hidserv - ok
19:40:02.0357 0x0ed0 [ 6F5E5CC271EB0C17688D892A3D4B83F6, 4CFF9821099DCD377AC4E2EC45BAB7007C144DCF72F260AC841D0211E212792F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:40:02.0357 0x0ed0 HidUsb - ok
19:40:02.0373 0x0ed0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:40:02.0373 0x0ed0 hkmsvc - ok
19:40:02.0404 0x0ed0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:40:02.0404 0x0ed0 HomeGroupListener - ok
19:40:02.0435 0x0ed0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:40:02.0435 0x0ed0 HomeGroupProvider - ok
19:40:02.0451 0x0ed0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:40:02.0451 0x0ed0 HpSAMD - ok
19:40:02.0482 0x0ed0 [ 93C367EA831FB39DEE3BA96539A187FB, 8B912152CA8B89B4429278F93163481BAA07E2D940EE61CE1B7AD178AB13E105 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:40:02.0497 0x0ed0 HTTP - ok
19:40:02.0513 0x0ed0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:40:02.0513 0x0ed0 hwpolicy - ok
19:40:02.0529 0x0ed0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:40:02.0529 0x0ed0 i8042prt - ok
19:40:02.0575 0x0ed0 [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:40:02.0591 0x0ed0 iaStorV - ok
19:40:02.0653 0x0ed0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:40:02.0685 0x0ed0 idsvc - ok
19:40:02.0700 0x0ed0 IEEtwCollectorService - ok
19:40:02.0716 0x0ed0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:40:02.0716 0x0ed0 iirsp - ok
19:40:02.0763 0x0ed0 [ 25AF7D5C819F19D7C97F4A9607F2609A, 70142B97F1087E20758AFECF5A7AB2EC1FDBBF68019A3BEC6C49F168650FEFC8 ] IKEEXT C:\Windows\System32\ikeext.dll
19:40:02.0778 0x0ed0 IKEEXT - ok
19:40:02.0950 0x0ed0 [ 1FE5F19EE6F51CD40581F2C68165E51A, 238575199BEC152648B2E6E312728AA5B365FCC86B5CB520EA1E8C72B399849F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:40:03.0059 0x0ed0 IntcAzAudAddService - ok
19:40:03.0106 0x0ed0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
19:40:03.0106 0x0ed0 intelide - ok
19:40:03.0137 0x0ed0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
19:40:03.0137 0x0ed0 intelppm - ok
19:40:03.0168 0x0ed0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
Code:
ATTFilter 19:40:03.0184 0x0ed0 IPBusEnum - ok
19:40:03.0199 0x0ed0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:40:03.0199 0x0ed0 IpFilterDriver - ok
19:40:03.0215 0x0ed0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:40:03.0231 0x0ed0 iphlpsvc - ok
19:40:03.0246 0x0ed0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:40:03.0246 0x0ed0 IPMIDRV - ok
19:40:03.0277 0x0ed0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:40:03.0277 0x0ed0 IPNAT - ok
19:40:03.0355 0x0ed0 [ 0D284906206F065D069939EB04184E29, 18607315138028D4F629CCD358CA50159BD573A6965574C3B5232FC4077C9293 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:40:03.0371 0x0ed0 iPod Service - ok
19:40:03.0387 0x0ed0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:40:03.0387 0x0ed0 IRENUM - ok
19:40:03.0418 0x0ed0 [ 905E9D664F38B93B53FA05422165F5B5, 5B0D8869C73836378C234FAA407DE047F5F638D3E872B246A1AC74BE44BBD7DD ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:40:03.0418 0x0ed0 isapnp - ok
19:40:03.0449 0x0ed0 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:40:03.0465 0x0ed0 iScsiPrt - ok
19:40:03.0480 0x0ed0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:40:03.0480 0x0ed0 kbdclass - ok
19:40:03.0496 0x0ed0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:40:03.0496 0x0ed0 kbdhid - ok
19:40:03.0511 0x0ed0 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] KeyIso C:\Windows\system32\lsass.exe
19:40:03.0511 0x0ed0 KeyIso - ok
19:40:03.0527 0x0ed0 [ 1B8C7DC57AB406A724E20C496F3B6619, BA56652EFC09C17778A6A58E25CEC0E8B77D4159C61B5F20273E2C3006ACE4BB ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:40:03.0543 0x0ed0 KSecDD - ok
19:40:03.0558 0x0ed0 [ 451FAC52F2BD97AD3F33D7F2922C5DC4, 28D11783C51C888FCCB5947DCD31898EB82FADB4EC122F2F88C5646EBA295C23 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:40:03.0558 0x0ed0 KSecPkg - ok
19:40:03.0574 0x0ed0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:40:03.0574 0x0ed0 ksthunk - ok
19:40:03.0605 0x0ed0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
19:40:03.0605 0x0ed0 KtmRm - ok
19:40:03.0636 0x0ed0 [ C42044F63A8EACEE53DAED7E48D471D0, 4E3E39D5A91999EAD0C2FE15EFA6FA9D07776FC725827046B2B5B34D690C8511 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
19:40:03.0636 0x0ed0 L1C - ok
19:40:03.0667 0x0ed0 [ E65118228501478C4630BC96F2E1C876, FF2346ED4B097D9D58D558F4A8A854597E457F37C12984160D22E0F5B2F31720 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:40:03.0683 0x0ed0 LanmanServer - ok
Code:
ATTFilter 19:40:03.0699 0x0ed0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:40:03.0699 0x0ed0 LanmanWorkstation - ok
19:40:03.0730 0x0ed0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:40:03.0730 0x0ed0 lltdio - ok
19:40:03.0745 0x0ed0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:40:03.0761 0x0ed0 lltdsvc - ok
19:40:03.0777 0x0ed0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:40:03.0777 0x0ed0 lmhosts - ok
19:40:03.0808 0x0ed0 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55, 265BDBC10CC256CB35F2BF5A9A25246D1859400087370A2B629783B9D3F7D0D4 ] LPDSVC C:\Windows\system32\lpdsvc.dll
19:40:03.0808 0x0ed0 LPDSVC - ok
19:40:03.0839 0x0ed0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:40:03.0839 0x0ed0 LSI_FC - ok
19:40:03.0855 0x0ed0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:40:03.0855 0x0ed0 LSI_SAS - ok
19:40:03.0886 0x0ed0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:40:03.0886 0x0ed0 LSI_SAS2 - ok
19:40:03.0886 0x0ed0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:40:03.0901 0x0ed0 LSI_SCSI - ok
19:40:03.0917 0x0ed0 [ 5416CEB2916BBE635288C4D1075B045E, BEFF99052206C0D774CFFF14AC3305C397726B289B17666C2AD2706C261F2FF0 ] luafv C:\Windows\system32\drivers\luafv.sys
19:40:03.0917 0x0ed0 luafv - ok
19:40:03.0933 0x0ed0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:40:03.0948 0x0ed0 Mcx2Svc - ok
19:40:03.0948 0x0ed0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
19:40:03.0948 0x0ed0 megasas - ok
19:40:03.0979 0x0ed0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:40:03.0979 0x0ed0 MegaSR - ok
19:40:03.0995 0x0ed0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
19:40:03.0995 0x0ed0 MMCSS - ok
19:40:04.0026 0x0ed0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
19:40:04.0026 0x0ed0 Modem - ok
19:40:04.0042 0x0ed0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:40:04.0042 0x0ed0 monitor - ok
19:40:04.0057 0x0ed0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:40:04.0057 0x0ed0 mouclass - ok
19:40:04.0073 0x0ed0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:40:04.0073 0x0ed0 mouhid - ok
19:40:04.0104 0x0ed0 [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:40:04.0104 0x0ed0 mountmgr - ok
19:40:04.0167 0x0ed0 [ 2EDD920BD669C571E3EEFCAAE4FD4C37, D029269D17BC2D2D4B98F331D9F69A973813FBBEF433E260858309D43C09AC09 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:40:04.0167 0x0ed0 MozillaMaintenance - ok
19:40:04.0213 0x0ed0 [ 3665AB2F67F4024F5F3F80335ED5322A, BE3DC246F176E00D7611A7E16FBC22615199F49EBCB4C90B0C107294E592BF8D ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:40:04.0213 0x0ed0 MpFilter - ok
19:40:04.0245 0x0ed0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
19:40:04.0245 0x0ed0 mpio - ok
19:40:04.0276 0x0ed0 [ 6D9BB8B53394B62540A3971FCE2BE8DB, C1942B2F3C6A4282FE39FCE5DCF46FA446D4F086F2F9ABDED9A4163A83A253B8 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:40:04.0276 0x0ed0 mpsdrv - ok
19:40:04.0307 0x0ed0 [ 92B4079384B8BE97AEE3CA8B43E0AAEB, 0AB87851F91274DDB19E21052E1D66FF76BA031D39A716EB4242BC5C0AC4ADB7 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:40:04.0354 0x0ed0 MpsSvc - ok
19:40:04.0385 0x0ed0 [ F877DF7E665630B40AC6C8F8ABF927C6, CBA6B27D9FCD5FAF437CAAC8CA2642E5CD9AB01F144BE40E305939014099A125 ] MQAC C:\Windows\system32\drivers\mqac.sys
19:40:04.0385 0x0ed0 MQAC - ok
19:40:04.0416 0x0ed0 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:40:04.0416 0x0ed0 MRxDAV - ok
19:40:04.0447 0x0ed0 [ E9165E57CC6DD261A626514D2B3961CA, 111F24A497E2CCFCE0DA7B7FA600FF0909B77CD4A86BA584FC1F1B6AAD33596F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:40:04.0447 0x0ed0 mrxsmb - ok
19:40:04.0479 0x0ed0 [ 5AABBF9C994B4E778EFED74D7946A986, A94A2A80CF3B4B3C22D24F7335A0232A6004DC4D7A094759C862FD342EE932E8 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:40:04.0479 0x0ed0 mrxsmb10 - ok
19:40:04.0494 0x0ed0 [ C1489F52F7AD0E9506DEB7EBAA874963, B1B70E6F8FA375B930333B7558D74985777082E52C223051438118227F03860C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:40:04.0510 0x0ed0 mrxsmb20 - ok
19:40:04.0541 0x0ed0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
19:40:04.0541 0x0ed0 msahci - ok
19:40:04.0557 0x0ed0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:40:04.0557 0x0ed0 msdsm - ok
19:40:04.0588 0x0ed0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
19:40:04.0588 0x0ed0 MSDTC - ok
19:40:04.0619 0x0ed0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:40:04.0619 0x0ed0 Msfs - ok
19:40:04.0635 0x0ed0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:40:04.0635 0x0ed0 mshidkmdf - ok
Code:
ATTFilter 19:40:04.0650 0x0ed0 [ 6FE3DBEEA730A857CA3DF603B7DEADA2, CFB2F88799BD8D4D6B435C88B0B12D6E3EE83428B8EBE4C9DAACE25F03E7EABB ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:40:04.0666 0x0ed0 msisadrv - ok
19:40:04.0681 0x0ed0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:40:04.0681 0x0ed0 MSiSCSI - ok
19:40:04.0697 0x0ed0 msiserver - ok
19:40:04.0728 0x0ed0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:40:04.0744 0x0ed0 MSKSSRV - ok
19:40:04.0791 0x0ed0 [ 5ADED2C1239D7BD798E2C4EF9EAA1FA3, 6A462DAC110015F3E59610202714120C557674019A0196680B72031C50D7C474 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:40:04.0791 0x0ed0 MsMpSvc - ok
19:40:04.0806 0x0ed0 [ FAAEAEF99E53561BEEE58F946CA56F0D, 78AC692C4B80616E4C44ED20954B8D2FCE2215056C2ED3522123E5B50A7CE67A ] MSMQ C:\Windows\system32\mqsvc.exe
19:40:04.0806 0x0ed0 MSMQ - ok
19:40:04.0837 0x0ed0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:40:04.0837 0x0ed0 MSPCLOCK - ok
19:40:04.0853 0x0ed0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:40:04.0853 0x0ed0 MSPQM - ok
19:40:04.0869 0x0ed0 [ 94275393BB85D1E2B74BFEFEC386B4A0, D1E8B2AFB5B0E0B4670887F15A4EDFF88B1C91AF052B2C687590AF05AC560C18 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:40:04.0884 0x0ed0 MsRPC - ok
19:40:04.0915 0x0ed0 [ 1FC0BF25FFCB9F751BCBC6C6AC577078, D48313C4A3E711F3E2AFEC87E3C78B9230A96438CEC92857F8B454E2D1602E84 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:40:04.0915 0x0ed0 mssmbios - ok
19:40:04.0947 0x0ed0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:40:04.0947 0x0ed0 MSTEE - ok
19:40:04.0962 0x0ed0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:40:04.0962 0x0ed0 MTConfig - ok
19:40:04.0993 0x0ed0 [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
19:40:04.0993 0x0ed0 MTsensor - ok
19:40:04.0993 0x0ed0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
19:40:05.0009 0x0ed0 Mup - ok
19:40:05.0056 0x0ed0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
19:40:05.0056 0x0ed0 napagent - ok
19:40:05.0118 0x0ed0 [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:40:05.0118 0x0ed0 NativeWifiP - ok
19:40:05.0165 0x0ed0 [ 261F27367EB6EA6478B940811F0A6F03, C5924B8B00E93DA9B8B1DBAA05A4D53BB1720C2FFA9B3EDA63CB20A64F59808B ] NDIS C:\Windows\system32\drivers\ndis.sys
19:40:05.0181 0x0ed0 NDIS - ok
19:40:05.0212 0x0ed0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:40:05.0212 0x0ed0 NdisCap - ok
19:40:05.0227 0x0ed0 [ 3F217F77899654833B650ED6A1372BE4, BB351A685D8F05E8066716F7346D28F950FB263D6C4F6957D908EA602FFF0681 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:40:05.0227 0x0ed0 NdisTapi - ok
19:40:05.0243 0x0ed0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:40:05.0259 0x0ed0 Ndisuio - ok
19:40:05.0274 0x0ed0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:40:05.0274 0x0ed0 NdisWan - ok
19:40:05.0290 0x0ed0 [ E46AF308E96F7730F59B0F250A884CD6, F5D00B950AAE1F38E295385C934FDC6C24608E65A8357317AE889947A2FE2BDC ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:40:05.0290 0x0ed0 NDProxy - ok
19:40:05.0305 0x0ed0 [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:40:05.0305 0x0ed0 NetBIOS - ok
19:40:05.0321 0x0ed0 [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:40:05.0337 0x0ed0 NetBT - ok
19:40:05.0368 0x0ed0 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] Netlogon C:\Windows\system32\lsass.exe
19:40:05.0368 0x0ed0 Netlogon - ok
19:40:05.0430 0x0ed0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
19:40:05.0430 0x0ed0 Netman - ok
19:40:05.0508 0x0ed0 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:40:05.0508 0x0ed0 NetMsmqActivator - ok
19:40:05.0524 0x0ed0 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:40:05.0524 0x0ed0 NetPipeActivator - ok
19:40:05.0555 0x0ed0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
19:40:05.0571 0x0ed0 netprofm - ok
19:40:05.0571 0x0ed0 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:40:05.0586 0x0ed0 NetTcpActivator - ok
19:40:05.0586 0x0ed0 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:40:05.0586 0x0ed0 NetTcpPortSharing - ok
19:40:05.0602 0x0ed0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:40:05.0602 0x0ed0 nfrd960 - ok
19:40:05.0649 0x0ed0 [ CE5F6E635FE4506AE6F2D6EB87425128, 3DB5ECF7CD2F2C3C010AA40CE57F1B3856E284BBA359FBC41A1B340E3180FD5F ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:40:05.0649 0x0ed0 NisDrv - ok
19:40:05.0680 0x0ed0 [ D630B510E1E3FF6BA12B705F47F115D9, 05D76065D5D9A82E53EA18CD2D0184338681A7BBD3CD5D6C44D1FA5CB1C63640 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
19:40:05.0695 0x0ed0 NisSrv - ok
19:40:05.0727 0x0ed0 [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:40:05.0727 0x0ed0 NlaSvc - ok
Code:
ATTFilter 19:40:05.0742 0x0ed0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:40:05.0758 0x0ed0 Npfs - ok
19:40:05.0773 0x0ed0 [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\Windows\system32\nsisvc.dll
19:40:05.0773 0x0ed0 nsi - ok
19:40:05.0789 0x0ed0 [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:40:05.0789 0x0ed0 nsiproxy - ok
19:40:05.0851 0x0ed0 [ A97B92D11270695B15C3663BCCB737D3, 3C5AF4C85A3121359C9E8BB66CC10ECDA48766C765E1D83D107D5DF21BE24756 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:40:05.0883 0x0ed0 Ntfs - ok
19:40:05.0898 0x0ed0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
19:40:05.0898 0x0ed0 Null - ok
19:40:05.0929 0x0ed0 [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:40:05.0945 0x0ed0 NVHDA - ok
19:40:06.0023 0x0ed0 [ 67B1600134B1DA011D6009166792757B, 4A24E66681D5425A0AF9AE9BB4BD3CB9697EE6E397817A149BC1A601042CDE94 ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
19:40:06.0054 0x0ed0 NVIDIA Wireless Controller Service - ok
19:40:06.0366 0x0ed0 [ 5D89C0070BC2643117CF33D0367AFABA, C245E0C0DB6665B6226B4D188F620272C175F0FEA63617ECA45B4FA86273E20C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:40:06.0585 0x0ed0 nvlddmkm - ok
19:40:06.0647 0x0ed0 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:40:06.0647 0x0ed0 nvraid - ok
19:40:06.0663 0x0ed0 [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:40:06.0663 0x0ed0 nvstor - ok
19:40:06.0709 0x0ed0 [ 23423E859CA253382D80D0321522A171, 79C914C0A421E0BE566B5FCD5868B1248D4F397C24F8C5E70A8EA6E260617845 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
19:40:06.0709 0x0ed0 NvStreamKms - ok
19:40:06.0772 0x0ed0 [ C5647FB500C2A1F946B77C953528042D, E0A53D158B2141EBBE6762165154B4DE9524E6BD3AD7247B6D25AC96E0A34AA0 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:40:06.0787 0x0ed0 nvsvc - ok
19:40:06.0865 0x0ed0 [ 9DF8BBA81D0A44AA9D14B7ADE47D2200, 3F50BE14892D168032DA9AF22259A986F024E6AD43DAEEC3C1E777BFA9E5A157 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
19:40:06.0865 0x0ed0 NvTelemetryContainer - ok
19:40:06.0897 0x0ed0 [ E502016A185B5BB9DC341873F82CD49C, A1F7D3E4FA5B4C81966F0E1DE8039CDD0374A9FF86AB252483FC9D98360089A1 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
19:40:06.0897 0x0ed0 nvvad_WaveExtensible - ok
19:40:06.0912 0x0ed0 [ E3BCAF332BC25574784D4B91EA8E0C57, 0C0FFEE1519D0E5BB0B04900860590777513B4B1315218406DFB8DEB15B2AF52 ] nvvhci C:\Windows\system32\DRIVERS\nvvhci.sys
19:40:06.0912 0x0ed0 nvvhci - ok
19:40:07.0053 0x0ed0 [ 7425A6B64F5D37D0565F2581B886E5E3, 877095624C4EAE13A5814117EEEF515842FFF77C9823DA83BC01FA6B8D9E8A6B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:40:07.0084 0x0ed0 nv_agp - ok
19:40:07.0131 0x0ed0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:40:07.0162 0x0ed0 ohci1394 - ok
19:40:07.0224 0x0ed0 [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:40:07.0240 0x0ed0 ose64 - ok
19:40:07.0380 0x0ed0 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:40:07.0489 0x0ed0 osppsvc - ok
19:40:07.0552 0x0ed0 [ 64FB16C5849444F0CFD403C83D9579A1, CDF3730453C9D469140F88BAC41181DD8AA2C7B2432961826E2379F2535F5293 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:40:07.0552 0x0ed0 p2pimsvc - ok
19:40:07.0583 0x0ed0 [ 79DB2B358BF0B152F15D1C5A525233BD, 374D9E8D7FBBC3EB14BDC651378120FCB075A36404F1E76A3F291F89CD5C3362 ] p2psvc C:\Windows\system32\p2psvc.dll
19:40:07.0583 0x0ed0 p2psvc - ok
19:40:07.0630 0x0ed0 [ D61B764B27BF05CCCADCC5E1E7B73A21, 14636C5D470E4E87B8C6ED4E34906072D8D631E566DECADF5E2FFC0535DF8989 ] PAC7302 C:\Windows\system32\DRIVERS\PAC7302.SYS
19:40:07.0661 0x0ed0 PAC7302 - ok
19:40:07.0677 0x0ed0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:40:07.0677 0x0ed0 Parport - ok
19:40:07.0692 0x0ed0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:40:07.0692 0x0ed0 partmgr - ok
19:40:07.0739 0x0ed0 [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
19:40:07.0739 0x0ed0 PcaSvc - ok
19:40:07.0770 0x0ed0 [ 481DADB90C1D4E9F19328079C7A9E63D, DA8946D89F0D59F2A17512B9029EB17B2909CF99B70CF4BA7258012E95008ABD ] pci C:\Windows\system32\drivers\pci.sys
19:40:07.0786 0x0ed0 pci - ok
19:40:07.0817 0x0ed0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
19:40:07.0817 0x0ed0 pciide - ok
19:40:07.0833 0x0ed0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:40:07.0833 0x0ed0 pcmcia - ok
19:40:07.0848 0x0ed0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
19:40:07.0848 0x0ed0 pcw - ok
19:40:07.0879 0x0ed0 [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:40:07.0895 0x0ed0 PEAUTH - ok
19:40:07.0942 0x0ed0 [ C59E17D5E30972ECA28A72004795AEA7, 24CE4698F578BB6BE51101BA083C5E4A6A1AA449439C125BA3E5793E54260525 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:40:07.0957 0x0ed0 PeerDistSvc - ok
19:40:08.0035 0x0ed0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:40:08.0035 0x0ed0 PerfHost - ok
19:40:08.0098 0x0ed0 [ 007FD8D68E4D691DD4AEDD6F39B41B2C, 649D8A3EAF4A0FCC77974B829966815F6E4A50395AF10835A91CB5D698DAA8E1 ] phantomtap C:\Windows\system32\DRIVERS\phantomtap.sys
19:40:08.0098 0x0ed0 phantomtap - ok
19:40:08.0285 0x0ed0 [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
19:40:08.0316 0x0ed0 pla - ok
19:40:08.0363 0x0ed0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:40:08.0379 0x0ed0 PlugPlay - ok
19:40:08.0394 0x0ed0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:40:08.0394 0x0ed0 PNRPAutoReg - ok
19:40:08.0425 0x0ed0 [ 64FB16C5849444F0CFD403C83D9579A1, CDF3730453C9D469140F88BAC41181DD8AA2C7B2432961826E2379F2535F5293 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:40:08.0425 0x0ed0 PNRPsvc - ok
19:40:08.0457 0x0ed0 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:40:08.0472 0x0ed0 PolicyAgent - ok
19:40:08.0488 0x0ed0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
19:40:08.0503 0x0ed0 Power - ok
19:40:08.0535 0x0ed0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:40:08.0535 0x0ed0 PptpMiniport - ok
19:40:08.0644 0x0ed0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
19:40:08.0659 0x0ed0 Processor - ok
19:40:08.0722 0x0ed0 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
19:40:08.0753 0x0ed0 ProfSvc - ok
19:40:08.0831 0x0ed0 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] ProtectedStorage C:\Windows\system32\lsass.exe
19:40:08.0831 0x0ed0 ProtectedStorage - ok
19:40:08.0893 0x0ed0 [ 4CE827A5433451551E99C2C1D20E4A43, B2E0806BB5C32A9126584941EE92526BFD45BB9EE18D7E598A2FFE7AAB495930 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:40:08.0909 0x0ed0 Psched - ok
19:40:09.0003 0x0ed0 [ F5E76151C86C818A6ECA628B731E1DDA, 4D5880A9479C186D01895D49CDCAE79749F381266E259F406B7C37861F7BDB92 ] qcusbser C:\Windows\system32\DRIVERS\qcusbser.sys
19:40:09.0034 0x0ed0 qcusbser - ok
19:40:09.0268 0x0ed0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:40:09.0299 0x0ed0 ql2300 - ok
19:40:09.0346 0x0ed0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:40:09.0361 0x0ed0 ql40xx - ok
19:40:09.0455 0x0ed0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
19:40:09.0471 0x0ed0 QWAVE - ok
19:40:09.0517 0x0ed0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:40:09.0517 0x0ed0 QWAVEdrv - ok
19:40:09.0580 0x0ed0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:40:09.0580 0x0ed0 RasAcd - ok
19:40:09.0642 0x0ed0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:40:09.0642 0x0ed0 RasAgileVpn - ok
Code:
ATTFilter 19:40:09.0751 0x0ed0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
19:40:09.0767 0x0ed0 RasAuto - ok
19:40:09.0845 0x0ed0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:40:09.0861 0x0ed0 Rasl2tp - ok
19:40:09.0939 0x0ed0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
19:40:09.0954 0x0ed0 RasMan - ok
19:40:10.0001 0x0ed0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:40:10.0001 0x0ed0 RasPppoe - ok
19:40:10.0063 0x0ed0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:40:10.0063 0x0ed0 RasSstp - ok
19:40:10.0173 0x0ed0 [ FB45727105E27756B3252572A138FA19, B11A375C7377C2DD02175921F5A3BBD23191207DE76DB220ACF72BD5CF74E09A ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:40:10.0188 0x0ed0 rdbss - ok
19:40:10.0235 0x0ed0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:40:10.0235 0x0ed0 rdpbus - ok
19:40:10.0251 0x0ed0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:40:10.0251 0x0ed0 RDPCDD - ok
19:40:10.0344 0x0ed0 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:40:10.0360 0x0ed0 RDPDR - ok
19:40:10.0422 0x0ed0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:40:10.0438 0x0ed0 RDPENCDD - ok
19:40:10.0500 0x0ed0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:40:10.0516 0x0ed0 RDPREFMP - ok
19:40:11.0046 0x0ed0 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:40:11.0046 0x0ed0 RdpVideoMiniport - ok
19:40:11.0140 0x0ed0 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:40:11.0155 0x0ed0 RDPWD - ok
19:40:11.0233 0x0ed0 [ F4287A980C0AA41DE3073F053E5EA73C, 04A386884DE32C6813486FD2D8FD9B9B275758CE5354459D8862A60E7F134833 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:40:11.0249 0x0ed0 rdyboost - ok
19:40:11.0811 0x0ed0 [ 0301EEE83B03229F555C6F8025FB5540, 3ABBA482E59FF9FC831A0FEA75A8C937BAE5077108A0EB3F89205C72FEDC2CD9 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:40:11.0826 0x0ed0 RemoteAccess - ok
19:40:11.0857 0x0ed0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:40:11.0857 0x0ed0 RemoteRegistry - ok
19:40:11.0873 0x0ed0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:40:11.0873 0x0ed0 RpcEptMapper - ok
19:40:11.0904 0x0ed0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
19:40:11.0904 0x0ed0 RpcLocator - ok
19:40:11.0998 0x0ed0 [ 4CE2D42E24914EE91BFFCD8D8485A1BB, 64A005A2B56CDEB00F43B56040DEB7E5995909E9E11AFB4535895A2C3F0A4648 ] RpcSs C:\Windows\system32\rpcss.dll
19:40:12.0013 0x0ed0 RpcSs - ok
19:40:12.0091 0x0ed0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:40:12.0091 0x0ed0 rspndr - ok
19:40:12.0123 0x0ed0 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:40:12.0123 0x0ed0 s3cap - ok
19:40:12.0138 0x0ed0 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] SamSs C:\Windows\system32\lsass.exe
19:40:12.0154 0x0ed0 SamSs - ok
19:40:12.0466 0x0ed0 [ 2CBEC07EF504AE860DD94EDF3B9562D6, EE5722476BF8D252E3D72E8F3ED3B345512FCC33C83ACAA862444EE85A99A3F1 ] Samsung Network Fax Server C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe
19:40:12.0513 0x0ed0 Samsung Network Fax Server - ok
19:40:12.0513 0x0ed0 Samsung Printer Dianostics Service - ok
19:40:12.0591 0x0ed0 [ CCFCF96CB350DA48AFDCB221CA999ADA, 7E5490652E367D1EA0400ED95788AFB4E067373E5F8BF73165B7F7FDE20D1B27 ] SamsungUPDUtilSvc C:\Windows\SysWOW64\SecUPDUtilSvc.exe
19:40:12.0591 0x0ed0 SamsungUPDUtilSvc - ok
19:40:12.0606 0x0ed0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:40:12.0606 0x0ed0 sbp2port - ok
19:40:12.0637 0x0ed0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:40:12.0653 0x0ed0 SCardSvr - ok
19:40:12.0669 0x0ed0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:40:12.0669 0x0ed0 scfilter - ok
19:40:12.0793 0x0ed0 [ E5A1E7B40B5086E643705B2D85A139C4, 0B298C16689C8AA475396C9BEAF1032A156A0D7986931337D47FE3AF72228026 ] Schedule C:\Windows\system32\schedsvc.dll
19:40:12.0809 0x0ed0 Schedule - ok
19:40:13.0402 0x0ed0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
19:40:13.0402 0x0ed0 SCPolicySvc - ok
19:40:13.0433 0x0ed0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:40:13.0449 0x0ed0 SDRSVC - ok
19:40:13.0464 0x0ed0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:40:13.0464 0x0ed0 secdrv - ok
19:40:13.0480 0x0ed0 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
19:40:13.0480 0x0ed0 seclogon - ok
19:40:13.0511 0x0ed0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
19:40:13.0511 0x0ed0 SENS - ok
19:40:13.0527 0x0ed0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:40:13.0527 0x0ed0 SensrSvc - ok
19:40:13.0542 0x0ed0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:40:13.0542 0x0ed0 Serenum - ok
19:40:13.0558 0x0ed0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:40:13.0558 0x0ed0 Serial - ok
19:40:13.0589 0x0ed0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:40:13.0589 0x0ed0 sermouse - ok
19:40:13.0636 0x0ed0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
19:40:13.0636 0x0ed0 SessionEnv - ok
19:40:13.0651 0x0ed0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:40:13.0651 0x0ed0 sffdisk - ok
19:40:13.0651 0x0ed0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:40:13.0667 0x0ed0 sffp_mmc - ok
19:40:13.0729 0x0ed0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:40:13.0729 0x0ed0 sffp_sd - ok
19:40:13.0761 0x0ed0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:40:13.0761 0x0ed0 sfloppy - ok
19:40:13.0839 0x0ed0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:40:13.0854 0x0ed0 SharedAccess - ok
19:40:13.0901 0x0ed0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:40:13.0917 0x0ed0 ShellHWDetection - ok
19:40:13.0917 0x0ed0 [ E9E830D540EDEDED650F906628468548, 9800160C6807B28A2A1E57810151473C96F1484F2EF75D3E378E8C96440CD4CE ] simptcp C:\Windows\System32\tcpsvcs.exe
19:40:13.0917 0x0ed0 simptcp - ok
19:40:13.0932 0x0ed0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:40:13.0932 0x0ed0 SiSRaid2 - ok
19:40:13.0948 0x0ed0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:40:13.0963 0x0ed0 SiSRaid4 - ok
19:40:14.0041 0x0ed0 [ B72B80E6FF423C5011E745CB76DA9A08, 18A6B9D46E91AD4D463EB5CB832702392D2E162577F90C328B515FCE69FABD15 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:40:14.0057 0x0ed0 SkypeUpdate - ok
19:40:14.0104 0x0ed0 [ D2DDE8F0BD39F90E43146DB0B3B5DA57, FF90424B6C68C0FA95CF7A63ABB7FAE225F700296B9A293DF0790F88BAFFA0E0 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
19:40:14.0104 0x0ed0 SmartDefragDriver - ok
19:40:14.0151 0x0ed0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:40:14.0151 0x0ed0 Smb - ok
19:40:14.0229 0x0ed0 [ CA62AE004E98374BF7F082CD765EEA02, A53243F4B9D798802CD6673EA9D7DC245F26A2216172DAD53547B9BC4D5DBA77 ] SNMP C:\Windows\System32\snmp.exe
19:40:14.0229 0x0ed0 SNMP - ok
Code:
ATTFilter 19:40:14.0260 0x0ed0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:40:14.0275 0x0ed0 SNMPTRAP - ok
19:40:14.0291 0x0ed0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
19:40:14.0291 0x0ed0 spldr - ok
19:40:14.0338 0x0ed0 [ 8003D39B386EDCCFB08DC21AACC0683A, 99D6A4DBE810335A69AE3053DC4B6AAC267639AD7F9C568431FA0714F6E71F30 ] Spooler C:\Windows\System32\spoolsv.exe
19:40:14.0353 0x0ed0 Spooler - ok
19:40:14.0509 0x0ed0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
19:40:14.0572 0x0ed0 sppsvc - ok
19:40:14.0603 0x0ed0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:40:14.0603 0x0ed0 sppuinotify - ok
19:40:14.0681 0x0ed0 [ 1145EC013B72D4E6C60497707BB1A4B6, 1062AE3C61A5ACB25A1899E354DC9AA750658E23B22F2A97E9B181B65A50AA46 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:40:14.0697 0x0ed0 srv - ok
19:40:14.0743 0x0ed0 [ 2D8FFA3B636368130F909E0CD935B555, 0C0BC56D5F6B1931D9159D98D3C8F4F1C4F4C3674C48430DFAC79926AB355601 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:40:14.0743 0x0ed0 srv2 - ok
19:40:14.0790 0x0ed0 [ 4B1C343E11065819F687EAC68A5E13F3, 4A850E37ECA4293A12E9C12B96999C4AA84A44177D31DFEF316E52050B1EDDA3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:40:14.0790 0x0ed0 srvnet - ok
19:40:14.0806 0x0ed0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:40:14.0806 0x0ed0 SSDPSRV - ok
19:40:14.0837 0x0ed0 [ 0211AB46B73A2623B86C1CFCB30579AB, 7CC9BA2DF7B9EA6BB17EE342898EDD7F54703B93B6DED6A819E83A7EE9F938B4 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
19:40:14.0837 0x0ed0 SSPORT - ok
19:40:14.0853 0x0ed0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:40:14.0868 0x0ed0 SstpSvc - ok
19:40:14.0962 0x0ed0 [ 32B37DD6E7D423DF3CF3B196C8005F85, 5989DD72AB03009625D5A49CC05D7955D07E3A933AEB292882F22928C5D60565 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:40:14.0962 0x0ed0 Stereo Service - ok
19:40:15.0009 0x0ed0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:40:15.0009 0x0ed0 stexstor - ok
19:40:15.0024 0x0ed0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
19:40:15.0040 0x0ed0 stisvc - ok
19:40:15.0071 0x0ed0 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:40:15.0071 0x0ed0 storflt - ok
19:40:15.0102 0x0ed0 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
19:40:15.0102 0x0ed0 StorSvc - ok
19:40:15.0118 0x0ed0 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:40:15.0118 0x0ed0 storvsc - ok
19:40:15.0133 0x0ed0 [ 10DCD3BDFA785E1482EC02304A7E9B96, DBD348388F5B17F2620A9D40D1191A51BA6CDAF15E37503630D859FB144486A1 ] swenum C:\Windows\system32\drivers\swenum.sys
19:40:15.0133 0x0ed0 swenum - ok
19:40:15.0165 0x0ed0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
19:40:15.0165 0x0ed0 swprv - ok
19:40:15.0258 0x0ed0 [ 15CF7B24AA64FE958CAEA00274838B1C, 820F7CF1CCD036A1871D728C1CC80D9E9BB5E3BD5D9C7BC822B1711D8DB79707 ] SysMain C:\Windows\system32\sysmain.dll
19:40:15.0289 0x0ed0 SysMain - ok
19:40:15.0321 0x0ed0 [ AD359C53941A6AC57FB935E7E9F1D16E, 6D53065ECE8E928CC045E16B7618D866C121EBA6C6CBDADC97C2B0DC8D8CF9FC ] TabletInputService C:\Windows\System32\TabSvc.dll
19:40:15.0321 0x0ed0 TabletInputService - ok
19:40:15.0352 0x0ed0 [ BB3F041ACE6FF23FD8F51B4CDDAB111B, A74544001291AB5E03E4B728CE7A336B17AA351C5E57C48536F62EAA756DFF7B ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
19:40:15.0352 0x0ed0 tap0901 - ok
19:40:15.0383 0x0ed0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
19:40:15.0383 0x0ed0 TapiSrv - ok
19:40:15.0477 0x0ed0 [ 8A54B9C4206FBAB2CEE3525CFD365241, 009D2C45797D512F6B973BAE6FECA67C9BAE6B2C726A916D7168230ADDC769DC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:40:15.0508 0x0ed0 Tcpip - ok
19:40:15.0570 0x0ed0 [ 8A54B9C4206FBAB2CEE3525CFD365241, 009D2C45797D512F6B973BAE6FECA67C9BAE6B2C726A916D7168230ADDC769DC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:40:15.0601 0x0ed0 TCPIP6 - ok
19:40:15.0633 0x0ed0 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:40:15.0633 0x0ed0 tcpipreg - ok
19:40:15.0664 0x0ed0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:40:15.0664 0x0ed0 TDPIPE - ok
19:40:15.0679 0x0ed0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:40:15.0695 0x0ed0 TDTCP - ok
19:40:15.0726 0x0ed0 [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:40:15.0726 0x0ed0 tdx - ok
19:40:16.0350 0x0ed0 [ CF11606953160F12EFB95351E4A20AA3, 3DF93456048531AB7989BECC180280C2DD543DCA48753BBFAD3AF0FCBCA34742 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
19:40:16.0522 0x0ed0 TeamViewer - ok
19:40:16.0569 0x0ed0 [ AC24D7A7D9EEDE11E2926F9001BEAFB5, 04F8FEC125B70A292DF4748925064CBDDF6D8FFF596ACD1EB063425E22505472 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:40:16.0569 0x0ed0 TermDD - ok
19:40:16.0678 0x0ed0 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
19:40:16.0693 0x0ed0 TermService - ok
19:40:16.0725 0x0ed0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
19:40:16.0725 0x0ed0 Themes - ok
19:40:16.0756 0x0ed0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
19:40:16.0756 0x0ed0 THREADORDER - ok
19:40:16.0803 0x0ed0 [ 519CB7D7F697F4BA47DE05845C20F158, F4B40014CB5047463FC40C28D9CFF0DA5E8592A2A9ED8E938A0A9D43DBD0A516 ] TlntSvr C:\Windows\System32\tlntsvr.exe
19:40:16.0803 0x0ed0 TlntSvr - ok
19:40:16.0834 0x0ed0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
19:40:16.0834 0x0ed0 TrkWks - ok
19:40:16.0912 0x0ed0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:40:16.0912 0x0ed0 TrustedInstaller - ok
19:40:16.0990 0x0ed0 [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:40:16.0990 0x0ed0 tssecsrv - ok
19:40:17.0037 0x0ed0 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:40:17.0037 0x0ed0 TsUsbFlt - ok
19:40:17.0052 0x0ed0 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
19:40:17.0052 0x0ed0 TsUsbGD - ok
19:40:17.0099 0x0ed0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:40:17.0115 0x0ed0 tunnel - ok
19:40:17.0130 0x0ed0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:40:17.0130 0x0ed0 uagp35 - ok
19:40:17.0146 0x0ed0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:40:17.0161 0x0ed0 udfs - ok
19:40:17.0177 0x0ed0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:40:17.0193 0x0ed0 UI0Detect - ok
19:40:17.0208 0x0ed0 [ B70E26A57F35ECA5199E6D6B9592A67C, 8ECCEEA69A69FBDC4AFEB2EC306FCEE6B569370F599D76F4CFDEAF77A0CD018C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:40:17.0208 0x0ed0 uliagpkx - ok
19:40:17.0239 0x0ed0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:40:17.0255 0x0ed0 umbus - ok
19:40:17.0255 0x0ed0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
19:40:17.0255 0x0ed0 UmPass - ok
19:40:17.0317 0x0ed0 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
19:40:17.0333 0x0ed0 UmRdpService - ok
19:40:17.0458 0x0ed0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
19:40:17.0473 0x0ed0 upnphost - ok
19:40:17.0629 0x0ed0 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:40:17.0629 0x0ed0 USBAAPL64 - ok
19:40:17.0707 0x0ed0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:40:17.0707 0x0ed0 usbaudio - ok
Code:
ATTFilter 19:40:17.0754 0x0ed0 [ 9E68E917FB4B5C983438969643F53BEF, 7148BF1E7AFAFA025A51AA9A26B90ED85328B41C7F7791CB3460D9CF53245985 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:40:17.0754 0x0ed0 usbccgp - ok
19:40:17.0801 0x0ed0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:40:17.0817 0x0ed0 usbcir - ok
19:40:17.0848 0x0ed0 [ 3F9D3902CE931E2A28DD8452AE915B67, C8BF042DD84FB2E3AE7FCDBA65923611FCBDAFD6410E42A5E58F8995D99AE16C ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:40:17.0848 0x0ed0 usbehci - ok
19:40:17.0910 0x0ed0 [ 86B65EEBC03B936DE8B26E5A18D98FA2, 2981CF5A0FB6B6FE0A38363EA4804DB743C45E3E6E72DC3A2260F583377717C8 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:40:17.0910 0x0ed0 usbhub - ok
19:40:17.0941 0x0ed0 [ 099C2931C6F73EB1B9E13C560F61B50D, 83B64A52173243526E380C8FA0D913C7B07C2AF1806ECC4EC0D0B5523A7CBFAA ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:40:17.0941 0x0ed0 usbohci - ok
19:40:17.0973 0x0ed0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:40:17.0973 0x0ed0 usbprint - ok
19:40:18.0019 0x0ed0 [ 2C42E595E7E381596B9A14F88F5AE027, 948C2AD7FA0B01184312D1ABE43F2F3D85A934CF0658A8B2BDF9F0919568377B ] usbrndis6 C:\Windows\system32\DRIVERS\usb80236.sys
19:40:18.0019 0x0ed0 usbrndis6 - ok
19:40:18.0066 0x0ed0 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:40:18.0082 0x0ed0 usbscan - ok
19:40:18.0113 0x0ed0 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
19:40:18.0113 0x0ed0 USBSTOR - ok
19:40:18.0144 0x0ed0 [ 5D7651347C7D702F4A5DE53603DC024F, F55532D13AB2FF6D4B6058113AF2710AC5C87059C9000942CF517198BABCD6F5 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:40:18.0144 0x0ed0 usbuhci - ok
19:40:18.0207 0x0ed0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:40:18.0222 0x0ed0 usbvideo - ok
19:40:18.0253 0x0ed0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
19:40:18.0253 0x0ed0 UxSms - ok
19:40:18.0285 0x0ed0 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] VaultSvc C:\Windows\system32\lsass.exe
19:40:18.0285 0x0ed0 VaultSvc - ok
19:40:18.0425 0x0ed0 [ 38DEF53510986744F06B3B8AD6D9A14F, ED0484FC8D67E98B7296396CE9A19688B33C831002041FCF8DFC9CAA74D70727 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
19:40:18.0441 0x0ed0 VBoxDrv - ok
19:40:18.0519 0x0ed0 [ 9C6017BA0CF22FA1E4D4525B8573B595, 16202711B0D4E06520700C984663BAABF06727A85D5B033114EE407C22360A50 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys
19:40:18.0534 0x0ed0 VBoxNetAdp - ok
19:40:18.0581 0x0ed0 [ C160AE21CF505F9A12C41FDF3121AB53, D1CFD0C2C45C414D805B91C6F8F38CAFD10C407C2CABCE3CDF109F4B828814AE ] VBoxNetLwf C:\Windows\system32\DRIVERS\VBoxNetLwf.sys
19:40:18.0581 0x0ed0 VBoxNetLwf - ok
19:40:18.0612 0x0ed0 [ 4964602E1F404F2E930B197EF1DAB10D, F6CADD2CCFD31A40085BBDC74442D2B0B1ECF6AAD0715DAA6DCD8A8348B2EDE9 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
19:40:18.0628 0x0ed0 VBoxUSBMon - ok
19:40:18.0659 0x0ed0 [ 7BDCE021786C3DCCFD2C22EBF643EE36, 92842E529EBDE9A9A9408287182BF1ECD8737C1DA39AF20570528CBD37D43228 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:40:18.0659 0x0ed0 vdrvroot - ok
19:40:18.0706 0x0ed0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
19:40:18.0706 0x0ed0 vds - ok
19:40:18.0753 0x0ed0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:40:18.0753 0x0ed0 vga - ok
19:40:18.0768 0x0ed0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:40:18.0768 0x0ed0 VgaSave - ok
19:40:18.0815 0x0ed0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:40:18.0815 0x0ed0 vhdmp - ok
19:40:18.0846 0x0ed0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
19:40:18.0846 0x0ed0 viaide - ok
19:40:18.0909 0x0ed0 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:40:18.0924 0x0ed0 vmbus - ok
19:40:18.0955 0x0ed0 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:40:18.0955 0x0ed0 VMBusHID - ok
19:40:18.0971 0x0ed0 [ 8EDE91FBAC7BF7605323C517C717A253, 8441DBE652E8922B888649FF8F37D5593FD8938E3AFFB69323184DE8E4A5EBDB ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:40:18.0971 0x0ed0 volmgr - ok
19:40:19.0033 0x0ed0 [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:40:19.0049 0x0ed0 volmgrx - ok
19:40:19.0127 0x0ed0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:40:19.0143 0x0ed0 volsnap - ok
19:40:19.0174 0x0ed0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:40:19.0189 0x0ed0 vsmraid - ok
19:40:19.0252 0x0ed0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
19:40:19.0283 0x0ed0 VSS - ok
19:40:19.0299 0x0ed0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:40:19.0299 0x0ed0 vwifibus - ok
19:40:19.0345 0x0ed0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
19:40:19.0345 0x0ed0 W32Time - ok
19:40:19.0392 0x0ed0 [ B32009DB1972E7F2C227499289C4384A, D491CD90ACE895EC60A5A2F995EAE39F8ED662B71BC548C3FF5BBDBC60054788 ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
19:40:19.0392 0x0ed0 W3SVC - ok
19:40:19.0408 0x0ed0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:40:19.0408 0x0ed0 WacomPen - ok
19:40:19.0439 0x0ed0 [ DC4CB3626E7423B9D83CF1B4857FDF15, 36BC894AC01A2A493D408F9F6B65064E901882F038A8A74CA4F21735D283E46F ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:40:19.0439 0x0ed0 WANARP - ok
19:40:19.0455 0x0ed0 [ DC4CB3626E7423B9D83CF1B4857FDF15, 36BC894AC01A2A493D408F9F6B65064E901882F038A8A74CA4F21735D283E46F ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:40:19.0455 0x0ed0 Wanarpv6 - ok
19:40:19.0486 0x0ed0 [ B32009DB1972E7F2C227499289C4384A, D491CD90ACE895EC60A5A2F995EAE39F8ED662B71BC548C3FF5BBDBC60054788 ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
19:40:19.0486 0x0ed0 WAS - ok
19:40:19.0579 0x0ed0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:40:19.0595 0x0ed0 WatAdminSvc - ok
19:40:19.0642 0x0ed0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
19:40:19.0673 0x0ed0 wbengine - ok
19:40:19.0876 0x0ed0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:40:19.0891 0x0ed0 WbioSrvc - ok
19:40:19.0969 0x0ed0 [ CEB1F72CCEAE546FC8CA4F8DF304367F, 9814F9D7E0F3F76B8CDE3B2DCCC100A10053D09AE0CCA0EEBFAAA15A0ABE84EE ] WCAssistantService C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
19:40:19.0969 0x0ed0 WCAssistantService - ok
19:40:20.0001 0x0ed0 [ 79E3903FD75A22386326B542F17A2563, 3CCCE0BCDE12240BE7E108A8C0A959A33C8462A0DE8510F28FA0107C4A9A1F05 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:40:20.0016 0x0ed0 wcncsvc - ok
19:40:20.0016 0x0ed0 [ 35050F01D00E7E72A2449EB6F9ABF8B4, CF45943E14D2418E83CF4DC836D3AFE4ED61186B6B9DA25EF745DC6FBB07FAC5 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:40:20.0032 0x0ed0 WcsPlugInService - ok
19:40:20.0032 0x0ed0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
19:40:20.0032 0x0ed0 Wd - ok
19:40:20.0079 0x0ed0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:40:20.0079 0x0ed0 Wdf01000 - ok
19:40:20.0110 0x0ed0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:40:20.0110 0x0ed0 WdiServiceHost - ok
19:40:20.0110 0x0ed0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:40:20.0125 0x0ed0 WdiSystemHost - ok
19:40:20.0157 0x0ed0 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
19:40:20.0157 0x0ed0 WebClient - ok
19:40:20.0172 0x0ed0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:40:20.0188 0x0ed0 Wecsvc - ok
19:40:20.0188 0x0ed0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:40:20.0203 0x0ed0 wercplsupport - ok
19:40:20.0219 0x0ed0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
19:40:20.0219 0x0ed0 WerSvc - ok
Code:
ATTFilter 19:40:20.0266 0x0ed0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:40:20.0266 0x0ed0 WfpLwf - ok
19:40:20.0281 0x0ed0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:40:20.0281 0x0ed0 WIMMount - ok
19:40:20.0297 0x0ed0 WinDefend - ok
19:40:20.0313 0x0ed0 WinHttpAutoProxySvc - ok
19:40:20.0344 0x0ed0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:40:20.0359 0x0ed0 Winmgmt - ok
19:40:20.0437 0x0ed0 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
19:40:20.0469 0x0ed0 WinRM - ok
19:40:20.0531 0x0ed0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:40:20.0531 0x0ed0 WinUsb - ok
19:40:20.0578 0x0ed0 [ 4B7912EB80820EAC543EE54806EFCAF0, 4D9186F9FE80F03C85C4DC73342EE5870DF1021BD29974BE33557CEA0D524667 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:40:20.0593 0x0ed0 Wlansvc - ok
19:40:20.0640 0x0ed0 [ 43471A750D4F3918AC92F5131AE252D3, E843AA1555262F521B924BBB1505474757E1BB9540FCCF93BC0BE2059F497C87 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:40:20.0640 0x0ed0 WmiAcpi - ok
19:40:20.0671 0x0ed0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:40:20.0687 0x0ed0 wmiApSrv - ok
19:40:20.0703 0x0ed0 WMPNetworkSvc - ok
19:40:20.0734 0x0ed0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:40:20.0734 0x0ed0 WPCSvc - ok
19:40:20.0765 0x0ed0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:40:20.0765 0x0ed0 WPDBusEnum - ok
19:40:20.0796 0x0ed0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:40:20.0796 0x0ed0 ws2ifsl - ok
19:40:20.0812 0x0ed0 WsAppService - ok
19:40:20.0843 0x0ed0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
19:40:20.0843 0x0ed0 wscsvc - ok
19:40:20.0859 0x0ed0 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
19:40:20.0859 0x0ed0 WSDPrintDevice - ok
19:40:20.0874 0x0ed0 WsDrvInst - ok
19:40:20.0890 0x0ed0 [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan C:\Windows\system32\drivers\WSDScan.sys
19:40:20.0890 0x0ed0 WSDScan - ok
19:40:20.0890 0x0ed0 WSearch - ok
19:40:20.0983 0x0ed0 [ 0A2E5059B5775E7DBBE05B8156ECE0C6, 75584C0E9EACB26585795C24A0DE19709A6842D286B5DD99036880D66DD20CDD ] wuauserv C:\Windows\system32\wuaueng.dll
19:40:21.0015 0x0ed0 wuauserv - ok
19:40:21.0046 0x0ed0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:40:21.0046 0x0ed0 WudfPf - ok
19:40:21.0061 0x0ed0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:40:21.0061 0x0ed0 WUDFRd - ok
19:40:21.0093 0x0ed0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:40:21.0093 0x0ed0 wudfsvc - ok
19:40:21.0108 0x0ed0 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
19:40:21.0124 0x0ed0 WwanSvc - ok
19:40:21.0139 0x0ed0 ================ Scan global ===============================
19:40:21.0155 0x0ed0 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
19:40:21.0171 0x0ed0 [ 7D4FA6473423F14507C4FCF39CBE19AB, 1F4B8B973B21469978979BE236119FC1A7CC78AA1662002BC76722A2C2C715BA ] C:\Windows\system32\winsrv.dll
19:40:21.0202 0x0ed0 [ 7D4FA6473423F14507C4FCF39CBE19AB, 1F4B8B973B21469978979BE236119FC1A7CC78AA1662002BC76722A2C2C715BA ] C:\Windows\system32\winsrv.dll
19:40:21.0217 0x0ed0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:40:21.0249 0x0ed0 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
19:40:21.0264 0x0ed0 [ Global ] - ok
19:40:21.0264 0x0ed0 ================ Scan MBR ==================================
19:40:21.0295 0x0ed0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:40:21.0685 0x0ed0 \Device\Harddisk0\DR0 - ok
19:40:21.0685 0x0ed0 ================ Scan VBR ==================================
19:40:21.0685 0x0ed0 [ 62B94A6F3BCA685CCDCE451B0A6B5875 ] \Device\Harddisk0\DR0\Partition1
19:40:21.0685 0x0ed0 \Device\Harddisk0\DR0\Partition1 - ok
19:40:21.0685 0x0ed0 [ 10378CED1BEF6BE13F2D0A40728B27D4 ] \Device\Harddisk0\DR0\Partition2
19:40:21.0701 0x0ed0 \Device\Harddisk0\DR0\Partition2 - ok
19:40:21.0701 0x0ed0 [ C373E667CCB4CFD1E8AA9DF722977FFA ] \Device\Harddisk0\DR0\Partition3
19:40:21.0701 0x0ed0 \Device\Harddisk0\DR0\Partition3 - ok
19:40:21.0717 0x0ed0 [ 4966EAF37A7C58E6DFD6A1E92C40AB11 ] \Device\Harddisk0\DR0\Partition4
19:40:21.0717 0x0ed0 \Device\Harddisk0\DR0\Partition4 - ok
19:40:21.0717 0x0ed0 ================ Scan generic autorun ======================
19:40:21.0873 0x0ed0 [ 7A727248EBC065BD2BB94A9B2892D190, B1E12ED3D07963EF0FA09B3ECD8AC3FBD316733D968A99C958DF7026B1BDFD99 ] C:\Program Files\Microsoft Security Client\msseces.exe
19:40:21.0919 0x0ed0 MSC - ok
19:40:21.0997 0x0ed0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:40:22.0013 0x0ed0 Sidebar - ok
19:40:22.0044 0x0ed0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:40:22.0044 0x0ed0 mctadmin - ok
19:40:22.0091 0x0ed0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:40:22.0107 0x0ed0 Sidebar - ok
19:40:22.0107 0x0ed0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:40:22.0107 0x0ed0 mctadmin - ok
19:40:23.0963 0x0ed0 [ 5DBEFC2EEF9EACA995D773EEF9243370, 966734CC2E98C15C6961EC8F52FF79D1E88937BED77A258A338C7E354BD6BE4D ] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
19:40:24.0072 0x0ed0 Web Companion - ok
19:40:24.0291 0x0ed0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:40:24.0322 0x0ed0 Sidebar - ok
19:40:24.0369 0x0ed0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:40:24.0369 0x0ed0 mctadmin - ok
19:40:24.0369 0x0ed0 Waiting for KSN requests completion. In queue: 116
19:40:24.0509 0x162c Object required for P2P: [ 5DBEFC2EEF9EACA995D773EEF9243370 ] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
19:40:24.0743 0x162c Object send P2P result: true
19:40:25.0414 0x0ed0 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.10.209.0 ), 0x61000 ( enabled : updated )
19:40:25.0429 0x0ed0 Win FW state via NFP2: enabled ( trusted )
19:40:25.0554 0x0ed0 ============================================================
19:40:25.0554 0x0ed0 Scan finished
19:40:25.0554 0x0ed0 ============================================================
19:40:25.0585 0x0c18 Detected object count: 0
19:40:25.0585 0x0c18 Actual detected object count: 0
19:41:26.0240 0x1a44 ============================================================
19:41:26.0240 0x1a44 Scan started
19:41:26.0240 0x1a44 Mode: Manual; SigCheck; TDLFS;
19:41:26.0240 0x1a44 ============================================================
19:41:26.0240 0x1a44 KSN ping started
19:41:26.0334 0x1a44 KSN ping finished: true
19:41:40.0202 0x1a44 ================ Scan system memory ========================
19:41:40.0202 0x1a44 System memory - ok
19:41:40.0202 0x1a44 ================ Scan services =============================
19:41:40.0436 0x1a44 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:41:40.0499 0x1a44 1394ohci - ok
19:41:40.0577 0x1a44 [ DCA5495CA17AEB2F4FD8AC60812C3999, 20A3FC0349294584C340C76D674EE5CA37BA69C886DDA6886CBCCFA437A51BD8 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:41:40.0624 0x1a44 ACPI - ok
19:41:40.0639 0x1a44 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:41:40.0764 0x1a44 AcpiPmi - ok
19:41:40.0904 0x1a44 [ F737862426884F8A3954059673DC0121, 718CF614E188226E55D6803CAFCFBA1839BDDC35AB209FAAC71059BC1F311180 ] adcmald C:\Program Files (x86)\Abbott Diabetes Care\FreeStyle Auto-Assist\adcmald.exe
19:41:40.0936 0x1a44 adcmald - ok
19:41:40.0982 0x1a44 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:41:40.0998 0x1a44 adp94xx - ok
19:41:41.0029 0x1a44 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:41:41.0045 0x1a44 adpahci - ok
19:41:41.0076 0x1a44 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:41:41.0092 0x1a44 adpu320 - ok
19:41:41.0138 0x1a44 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:41:41.0154 0x1a44 AeLookupSvc - ok
19:41:41.0170 0x1a44 [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
19:41:41.0216 0x1a44 AFD - ok
19:41:41.0232 0x1a44 [ 466BF4170DC41BB939F1F9AB8F97F8F5, 603BF9DA00AABF2CC9FA89865EBCF0CDAADB77D147D0B9FC30480DA7D8215C61 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:41:41.0248 0x1a44 agp440 - ok
19:41:41.0263 0x1a44 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
19:41:41.0279 0x1a44 ALG - ok
19:41:41.0310 0x1a44 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
19:41:41.0310 0x1a44 aliide - ok
19:41:41.0341 0x1a44 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
19:41:41.0341 0x1a44 amdide - ok
19:41:41.0357 0x1a44 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:41:41.0372 0x1a44 AmdK8 - ok
19:41:41.0591 0x1a44 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:41:41.0606 0x1a44 AmdPPM - ok
19:41:41.0731 0x1a44 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:41:41.0762 0x1a44 amdsata - ok
19:41:41.0794 0x1a44 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:41:41.0809 0x1a44 amdsbs - ok
19:41:41.0825 0x1a44 [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:41:41.0840 0x1a44 amdxata - ok
19:41:41.0872 0x1a44 [ 459BE03505AA3C587A43EF26180ADCF8, B059A4903165E317EA5755D084ED12A1209255FBB70A4523E04441A615ABFAE0 ] AndnetBus C:\Windows\system32\DRIVERS\lgandnetbus64.sys
19:41:41.0887 0x1a44 AndnetBus - ok
19:41:41.0903 0x1a44 [ 16B21FEEF6C0999AC6B80C3F37AEED0D, 52A438CA1C06E00D22F105FD229085DEC24A4EBF66C3D0AE8F3C6BFBA8C27B6B ] AndNetDiag C:\Windows\system32\DRIVERS\lgandnetdiag64.sys
19:41:41.0918 0x1a44 AndNetDiag - ok
19:41:41.0934 0x1a44 [ E9C96BD17C317016C1B00127E5FDDB57, 3CD8476C3E5EB815E04F8CD41E6EAED415865D0FA87C9B34E77BFF3BAEA93C9A ] ANDNetModem C:\Windows\system32\DRIVERS\lgandnetmodem64.sys
19:41:41.0950 0x1a44 ANDNetModem - ok
19:41:41.0996 0x1a44 [ EB4E26AD3A0E681C2FAABBACB0691A34, F2ACDF171E603203F422BA64BFE2644A8E125657C96DD626CFD323E9F87C88D1 ] Apache2.2 C:\Program Files (x86)\Apache Software Foundation\Apache2.2\bin\httpd.exe
19:41:41.0996 0x1a44 Apache2.2 - detected UnsignedFile.Multi.Generic ( 1 )
19:41:41.0996 0x1a44 Detect skipped due to KSN trusted
19:41:41.0996 0x1a44 Apache2.2 - ok
19:41:42.0028 0x1a44 [ 59D01FA91962C9C1E9B4022B2D3B46DB, 3A111588538B77F010B5C900FB8425DDE55A08DBAC308CA7FB7BD9FCCCDEC69F ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
19:41:42.0043 0x1a44 AppHostSvc - ok
19:41:42.0059 0x1a44 [ CD5A6DD015FC1F5894F5BB30453C86F9, 79BB2A2EF97CCB20AABA6E760A89A538C62B51D387121B98F60AFFCCACDE52C1 ] AppID C:\Windows\system32\drivers\appid.sys
19:41:42.0059 0x1a44 AppID - ok
19:41:42.0090 0x1a44 [ F7A1E20DF6C97D9E79833B64C5E90001, 2754C1B33722CF7653963645453047239F8F2DBF8D3D3FE6A4859CBA482AEF84 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:41:42.0106 0x1a44 AppIDSvc - ok
|
|
29.07.2018, 19:41
| #25 |
| | Bei Ebay soll ich in Rubel zahlenCode:
ATTFilter 19:41:42.0152 0x1a44 [ D92C0D871FBA258CBF2126EABFE31447, 62E2C3CF0E3BB6A4C6AC101333728E447960B182C11F7B1900CA5C6E4B46D02C ] Appinfo C:\Windows\System32\appinfo.dll
19:41:42.0152 0x1a44 Appinfo - ok
19:41:42.0480 0x1a44 [ 49D234989341C2D16419C1043A63CE68, B65D20145757B0585FDD3116D44931D915E47BFF29E3977222877CB2C47F3B99 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:41:42.0527 0x1a44 Apple Mobile Device Service - ok
19:41:42.0605 0x1a44 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
19:41:42.0636 0x1a44 AppMgmt - ok
19:41:42.0714 0x1a44 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
19:41:42.0745 0x1a44 arc - ok
19:41:42.0776 0x1a44 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:41:42.0792 0x1a44 arcsas - ok
19:41:43.0322 0x1a44 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
19:41:43.0369 0x1a44 AsIO - ok
19:41:43.0697 0x1a44 [ B29B39713E36AEDC517AEF58321B52D9, 016FFC93CB5BA15E6FA48B3334F69E8D80D0FC9B51B0477B4D4CEE0186303ABC ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:41:43.0728 0x1a44 aspnet_state - ok
19:41:43.0775 0x1a44 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:41:43.0822 0x1a44 AsyncMac - ok
19:41:43.0868 0x1a44 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
19:41:43.0868 0x1a44 atapi - ok
19:41:43.0946 0x1a44 [ C07A040D6B5A42DD41EE386CF90974C8, 8D47815F99C79B795504C3172B5FBBDBA6AFACC004B17AA3954A06BE713FACAE ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
19:41:43.0962 0x1a44 AtiPcie - ok
19:41:44.0071 0x1a44 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:41:44.0102 0x1a44 AudioEndpointBuilder - ok
19:41:44.0383 0x1a44 [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:41:44.0414 0x1a44 AudioSrv - ok
19:41:44.0430 0x1a44 avkmgr - ok
19:41:44.0430 0x1a44 avusbflt - ok
19:41:44.0602 0x1a44 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:41:44.0633 0x1a44 AxInstSV - ok
19:41:45.0038 0x1a44 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:41:45.0116 0x1a44 b06bdrv - ok
19:41:45.0288 0x1a44 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:41:45.0319 0x1a44 b57nd60a - ok
19:41:45.0444 0x1a44 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
19:41:45.0475 0x1a44 BDESVC - ok
19:41:45.0522 0x1a44 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
19:41:45.0553 0x1a44 Beep - ok
19:41:45.0647 0x1a44 [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] BFE C:\Windows\System32\bfe.dll
19:41:46.0146 0x1a44 BFE - ok
19:41:46.0224 0x1a44 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
19:41:46.0380 0x1a44 BITS - ok
19:41:46.0427 0x1a44 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:41:46.0427 0x1a44 blbdrive - ok
19:41:46.0520 0x1a44 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:41:46.0567 0x1a44 Bonjour Service - ok
19:41:46.0614 0x1a44 [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:41:46.0661 0x1a44 bowser - ok
19:41:46.0676 0x1a44 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:41:46.0692 0x1a44 BrFiltLo - ok
19:41:46.0708 0x1a44 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:41:46.0723 0x1a44 BrFiltUp - ok
19:41:46.0786 0x1a44 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
19:41:46.0832 0x1a44 Browser - ok
19:41:46.0879 0x1a44 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:41:46.0895 0x1a44 Brserid - ok
19:41:47.0534 0x1a44 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:41:47.0566 0x1a44 BrSerWdm - ok
19:41:47.0581 0x1a44 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:41:47.0597 0x1a44 BrUsbMdm - ok
19:41:47.0612 0x1a44 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:41:47.0628 0x1a44 BrUsbSer - ok
19:41:47.0628 0x1a44 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:41:47.0644 0x1a44 BTHMODEM - ok
19:41:47.0675 0x1a44 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
19:41:47.0706 0x1a44 bthserv - ok
19:41:47.0722 0x1a44 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:41:47.0753 0x1a44 cdfs - ok
19:41:47.0753 0x1a44 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:41:47.0768 0x1a44 cdrom - ok
19:41:47.0784 0x1a44 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
19:41:47.0815 0x1a44 CertPropSvc - ok
19:41:47.0878 0x1a44 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
19:41:47.0909 0x1a44 circlass - ok
19:41:47.0940 0x1a44 [ B323C40A5FADB48B17B0326A78D7D510, 82F252A0CBF83EEB0A21A14622FF8BA01554698526C1DF368407181772709CBF ] CISVC C:\Windows\system32\CISVC.EXE
19:41:47.0971 0x1a44 CISVC - ok
19:41:48.0002 0x1a44 [ B5D7A0638CA817BA7D8A4DFD3499BA2A, B20EDC88A37C87456102EFFCA5EDD6DC9EFDA4B2E03DD9611C06693D1E4BC526 ] CLFS C:\Windows\system32\CLFS.sys
19:41:48.0018 0x1a44 CLFS - ok
19:41:48.0112 0x1a44 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:41:48.0143 0x1a44 clr_optimization_v2.0.50727_32 - ok
19:41:48.0174 0x1a44 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:41:48.0190 0x1a44 clr_optimization_v2.0.50727_64 - ok
19:41:48.0283 0x1a44 [ 7761FBD826C16A007D6386FBFB846241, 7E9DD121488C8652F33059EBCA648D2319B9D3328EEA3F2AEBA1BFB90C0805EB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:41:48.0299 0x1a44 clr_optimization_v4.0.30319_32 - ok
19:41:48.0346 0x1a44 [ 35F81FD0318AFABFB1956431CFA3EAE5, E4CDF2E9558A237B28194BCB1ADA5E798C484E7B0262DAF1AB94A69F326CC91E ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:41:48.0377 0x1a44 clr_optimization_v4.0.30319_64 - ok
19:41:48.0424 0x1a44 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:41:48.0439 0x1a44 CmBatt - ok
19:41:48.0455 0x1a44 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:41:48.0470 0x1a44 cmdide - ok
19:41:48.0517 0x1a44 [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
19:41:48.0533 0x1a44 CNG - ok
19:41:48.0564 0x1a44 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:41:48.0611 0x1a44 Compbatt - ok
19:41:48.0611 0x1a44 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:41:48.0626 0x1a44 CompositeBus - ok
19:41:48.0626 0x1a44 COMSysApp - ok
19:41:48.0658 0x1a44 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:41:48.0658 0x1a44 crcdisk - ok
19:41:48.0720 0x1a44 [ EC0550300E899BD69BDB5937E684D348, 982E5FB213F6DE07F061D4FE201CA69D99572398ED41C953E0B3358C3FD9EBF6 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:41:48.0751 0x1a44 CryptSvc - ok
19:41:48.0798 0x1a44 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
19:41:48.0829 0x1a44 CSC - ok
Code:
ATTFilter 19:41:48.0923 0x1a44 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
19:41:48.0954 0x1a44 CscService - ok
19:41:49.0048 0x1a44 [ 4CE2D42E24914EE91BFFCD8D8485A1BB, 64A005A2B56CDEB00F43B56040DEB7E5995909E9E11AFB4535895A2C3F0A4648 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:41:49.0079 0x1a44 DcomLaunch - ok
19:41:49.0141 0x1a44 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
19:41:49.0188 0x1a44 defragsvc - ok
19:41:49.0235 0x1a44 [ 7D2D2284833760A82308CF09F7618E8B, A78F9369D4614D305D2F8E3CD2C697107781DD83A695022A192B2D8E1E21A05D ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:41:49.0282 0x1a44 DfsC - ok
19:41:49.0328 0x1a44 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:41:49.0375 0x1a44 Dhcp - ok
19:41:49.0531 0x1a44 [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
19:41:49.0594 0x1a44 DiagTrack - ok
19:41:49.0640 0x1a44 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
19:41:49.0672 0x1a44 discache - ok
19:41:49.0703 0x1a44 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
19:41:49.0703 0x1a44 Disk - ok
19:41:49.0734 0x1a44 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
19:41:49.0734 0x1a44 dmvsc - ok
19:41:49.0796 0x1a44 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:41:49.0828 0x1a44 Dnscache - ok
19:41:49.0859 0x1a44 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
19:41:49.0890 0x1a44 dot3svc - ok
19:41:49.0906 0x1a44 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
19:41:49.0921 0x1a44 DPS - ok
19:41:49.0968 0x1a44 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:41:50.0030 0x1a44 drmkaud - ok
19:41:50.0093 0x1a44 [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:41:50.0124 0x1a44 DXGKrnl - ok
19:41:50.0155 0x1a44 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
19:41:50.0171 0x1a44 EapHost - ok
19:41:50.0436 0x1a44 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:41:50.0561 0x1a44 ebdrv - ok
19:41:50.0670 0x1a44 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] EFS C:\Windows\System32\lsass.exe
19:41:50.0748 0x1a44 EFS - ok
19:41:50.0935 0x1a44 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:41:50.0966 0x1a44 ehRecvr - ok
19:41:50.0982 0x1a44 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
19:41:50.0998 0x1a44 ehSched - ok
19:41:50.0998 0x1a44 EIO - ok
19:41:51.0029 0x1a44 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:41:51.0044 0x1a44 elxstor - ok
19:41:51.0060 0x1a44 [ 9002EED07FD7FCFF6B8C5C06B454AC19, 0FCEF7D930316FF267841009DF83F29A7D9CD6ED710128F493EC15EC99D9ACD6 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:41:51.0091 0x1a44 ErrDev - ok
19:41:51.0154 0x1a44 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
19:41:51.0185 0x1a44 EventSystem - ok
19:41:51.0216 0x1a44 [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat C:\Windows\system32\drivers\exfat.sys
19:41:51.0232 0x1a44 exfat - ok
19:41:51.0263 0x1a44 [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:41:51.0278 0x1a44 fastfat - ok
19:41:51.0294 0x1a44 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
19:41:51.0325 0x1a44 Fax - ok
19:41:51.0341 0x1a44 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:41:51.0356 0x1a44 fdc - ok
19:41:51.0372 0x1a44 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
19:41:51.0388 0x1a44 fdPHost - ok
19:41:51.0419 0x1a44 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
19:41:51.0450 0x1a44 FDResPub - ok
19:41:51.0466 0x1a44 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:41:51.0481 0x1a44 FileInfo - ok
19:41:51.0497 0x1a44 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:41:51.0512 0x1a44 Filetrace - ok
19:41:51.0544 0x1a44 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:41:51.0544 0x1a44 flpydisk - ok
19:41:51.0575 0x1a44 [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:41:51.0590 0x1a44 FltMgr - ok
19:41:51.0700 0x1a44 [ E341178C116DAC6A3A764587E68DFA7B, 91B4C79057908A622666FF069CF1C7ECA42952A6587432F5E99E33E8B19D29AF ] FNETURPX C:\Windows\SysWOW64\drivers\FNETURPX.SYS
19:41:51.0715 0x1a44 FNETURPX - ok
19:41:51.0778 0x1a44 [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache C:\Windows\system32\FntCache.dll
19:41:51.0824 0x1a44 FontCache - ok
19:41:51.0871 0x1a44 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:41:51.0871 0x1a44 FontCache3.0.0.0 - ok
19:41:51.0887 0x1a44 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:41:51.0902 0x1a44 FsDepends - ok
19:41:51.0934 0x1a44 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:41:51.0934 0x1a44 Fs_Rec - ok
19:41:51.0980 0x1a44 [ D225864F6FD96575A303A20BD42383ED, 291ECE0E6D9756EBC7D9D80DC4B1458957DB284D3927034B1C36FA4425C50FD0 ] ftpsvc C:\Windows\system32\inetsrv\ftpsvc.dll
19:41:52.0027 0x1a44 ftpsvc - ok
19:41:52.0058 0x1a44 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:41:52.0074 0x1a44 fvevol - ok
19:41:52.0074 0x1a44 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:41:52.0090 0x1a44 gagp30kx - ok
19:41:52.0136 0x1a44 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
19:41:52.0168 0x1a44 gpsvc - ok
19:41:52.0183 0x1a44 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:41:52.0199 0x1a44 hcw85cir - ok
19:41:52.0230 0x1a44 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:41:52.0246 0x1a44 HdAudAddService - ok
19:41:52.0261 0x1a44 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:41:52.0277 0x1a44 HDAudBus - ok
19:41:52.0308 0x1a44 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:41:52.0308 0x1a44 HidBatt - ok
19:41:52.0324 0x1a44 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:41:52.0339 0x1a44 HidBth - ok
19:41:52.0339 0x1a44 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
19:41:52.0355 0x1a44 HidIr - ok
19:41:52.0386 0x1a44 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
19:41:52.0417 0x1a44 hidserv - ok
19:41:52.0433 0x1a44 [ 6F5E5CC271EB0C17688D892A3D4B83F6, 4CFF9821099DCD377AC4E2EC45BAB7007C144DCF72F260AC841D0211E212792F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:41:52.0448 0x1a44 HidUsb - ok
19:41:52.0465 0x1a44 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:41:52.0481 0x1a44 hkmsvc - ok
19:41:52.0527 0x1a44 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:41:52.0559 0x1a44 HomeGroupListener - ok
19:41:52.0605 0x1a44 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:41:52.0621 0x1a44 HomeGroupProvider - ok
19:41:52.0995 0x1a44 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:41:53.0027 0x1a44 HpSAMD - ok
19:41:53.0183 0x1a44 [ 93C367EA831FB39DEE3BA96539A187FB, 8B912152CA8B89B4429278F93163481BAA07E2D940EE61CE1B7AD178AB13E105 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:41:53.0214 0x1a44 HTTP - ok
19:41:53.0245 0x1a44 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:41:53.0261 0x1a44 hwpolicy - ok
19:41:53.0276 0x1a44 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:41:53.0276 0x1a44 i8042prt - ok
19:41:53.0323 0x1a44 [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:41:53.0339 0x1a44 iaStorV - ok
19:41:53.0401 0x1a44 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:41:53.0432 0x1a44 idsvc - ok
19:41:53.0432 0x1a44 IEEtwCollectorService - ok
19:41:53.0463 0x1a44 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:41:53.0463 0x1a44 iirsp - ok
19:41:53.0495 0x1a44 [ 25AF7D5C819F19D7C97F4A9607F2609A, 70142B97F1087E20758AFECF5A7AB2EC1FDBBF68019A3BEC6C49F168650FEFC8 ] IKEEXT C:\Windows\System32\ikeext.dll
19:41:53.0526 0x1a44 IKEEXT - ok
19:41:53.0744 0x1a44 [ 1FE5F19EE6F51CD40581F2C68165E51A, 238575199BEC152648B2E6E312728AA5B365FCC86B5CB520EA1E8C72B399849F ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:41:53.0853 0x1a44 IntcAzAudAddService - ok
19:41:53.0916 0x1a44 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
19:41:53.0916 0x1a44 intelide - ok
19:41:53.0947 0x1a44 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys
19:41:53.0947 0x1a44 intelppm - ok
19:41:53.0994 0x1a44 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:41:54.0056 0x1a44 IPBusEnum - ok
19:41:54.0072 0x1a44 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:41:54.0119 0x1a44 IpFilterDriver - ok
19:41:54.0197 0x1a44 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:41:54.0228 0x1a44 iphlpsvc - ok
19:41:54.0243 0x1a44 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:41:54.0259 0x1a44 IPMIDRV - ok
19:41:54.0259 0x1a44 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
|
|
29.07.2018, 19:41
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Ebay soll ich in Rubel zahlenCode:
ATTFilter 19:39:55.0540 0x0ed0 Scan started
19:39:55.0540 0x0ed0 Mode: Manual;
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.07.2018, 19:41
| #27 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Ebay soll ich in Rubel zahlenCode:
ATTFilter 19:39:55.0540 0x0ed0 Scan started
19:39:55.0540 0x0ed0 Mode: Manual;
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.07.2018, 19:47
| #28 |
| | Bei Ebay soll ich in Rubel zahlenCode:
ATTFilter 19:41:54.0290 0x1a44 IPNAT - ok
19:41:54.0384 0x1a44 [ 0D284906206F065D069939EB04184E29, 18607315138028D4F629CCD358CA50159BD573A6965574C3B5232FC4077C9293 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:41:54.0415 0x1a44 iPod Service - ok
19:41:54.0431 0x1a44 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:41:54.0446 0x1a44 IRENUM - ok
19:41:54.0462 0x1a44 [ 905E9D664F38B93B53FA05422165F5B5, 5B0D8869C73836378C234FAA407DE047F5F638D3E872B246A1AC74BE44BBD7DD ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:41:54.0477 0x1a44 isapnp - ok
19:41:54.0524 0x1a44 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:41:54.0524 0x1a44 iScsiPrt - ok
19:41:54.0540 0x1a44 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:41:54.0555 0x1a44 kbdclass - ok
19:41:54.0571 0x1a44 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:41:54.0571 0x1a44 kbdhid - ok
19:41:54.0618 0x1a44 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] KeyIso C:\Windows\system32\lsass.exe
19:41:54.0618 0x1a44 KeyIso - ok
19:41:54.0649 0x1a44 [ 1B8C7DC57AB406A724E20C496F3B6619, BA56652EFC09C17778A6A58E25CEC0E8B77D4159C61B5F20273E2C3006ACE4BB ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:41:54.0665 0x1a44 KSecDD - ok
19:41:54.0696 0x1a44 [ 451FAC52F2BD97AD3F33D7F2922C5DC4, 28D11783C51C888FCCB5947DCD31898EB82FADB4EC122F2F88C5646EBA295C23 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:41:54.0711 0x1a44 KSecPkg - ok
19:41:54.0727 0x1a44 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:41:54.0758 0x1a44 ksthunk - ok
19:41:54.0789 0x1a44 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
19:41:54.0836 0x1a44 KtmRm - ok
19:41:54.0867 0x1a44 [ C42044F63A8EACEE53DAED7E48D471D0, 4E3E39D5A91999EAD0C2FE15EFA6FA9D07776FC725827046B2B5B34D690C8511 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
19:41:54.0867 0x1a44 L1C - ok
19:41:54.0899 0x1a44 [ E65118228501478C4630BC96F2E1C876, FF2346ED4B097D9D58D558F4A8A854597E457F37C12984160D22E0F5B2F31720 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:41:54.0914 0x1a44 LanmanServer - ok
19:41:54.0930 0x1a44 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:41:54.0961 0x1a44 LanmanWorkstation - ok
19:41:54.0977 0x1a44 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:41:55.0008 0x1a44 lltdio - ok
19:41:55.0039 0x1a44 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:41:55.0070 0x1a44 lltdsvc - ok
19:41:55.0086 0x1a44 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:41:55.0117 0x1a44 lmhosts - ok
19:41:55.0148 0x1a44 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55, 265BDBC10CC256CB35F2BF5A9A25246D1859400087370A2B629783B9D3F7D0D4 ] LPDSVC C:\Windows\system32\lpdsvc.dll
19:41:55.0148 0x1a44 LPDSVC - ok
19:41:55.0179 0x1a44 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:41:55.0195 0x1a44 LSI_FC - ok
19:41:55.0211 0x1a44 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:41:55.0211 0x1a44 LSI_SAS - ok
19:41:55.0242 0x1a44 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:41:55.0257 0x1a44 LSI_SAS2 - ok
19:41:55.0273 0x1a44 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:41:55.0289 0x1a44 LSI_SCSI - ok
19:41:55.0335 0x1a44 [ 5416CEB2916BBE635288C4D1075B045E, BEFF99052206C0D774CFFF14AC3305C397726B289B17666C2AD2706C261F2FF0 ] luafv C:\Windows\system32\drivers\luafv.sys
19:41:55.0367 0x1a44 luafv - ok
19:41:55.0413 0x1a44 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:41:55.0429 0x1a44 Mcx2Svc - ok
19:41:55.0445 0x1a44 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
19:41:55.0445 0x1a44 megasas - ok
19:41:55.0476 0x1a44 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:41:55.0491 0x1a44 MegaSR - ok
19:41:55.0507 0x1a44 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
19:41:55.0538 0x1a44 MMCSS - ok
19:41:55.0554 0x1a44 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
19:41:55.0585 0x1a44 Modem - ok
19:41:55.0601 0x1a44 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:41:55.0601 0x1a44 monitor - ok
19:41:55.0616 0x1a44 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:41:55.0632 0x1a44 mouclass - ok
19:41:55.0647 0x1a44 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:41:55.0663 0x1a44 mouhid - ok
19:41:55.0679 0x1a44 [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:41:55.0694 0x1a44 mountmgr - ok
19:41:55.0803 0x1a44 [ 2EDD920BD669C571E3EEFCAAE4FD4C37, D029269D17BC2D2D4B98F331D9F69A973813FBBEF433E260858309D43C09AC09 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:41:55.0850 0x1a44 MozillaMaintenance - ok
19:41:55.0897 0x1a44 [ 3665AB2F67F4024F5F3F80335ED5322A, BE3DC246F176E00D7611A7E16FBC22615199F49EBCB4C90B0C107294E592BF8D ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:41:55.0944 0x1a44 MpFilter - ok
19:41:55.0959 0x1a44 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
19:41:55.0975 0x1a44 mpio - ok
19:41:55.0991 0x1a44 [ 6D9BB8B53394B62540A3971FCE2BE8DB, C1942B2F3C6A4282FE39FCE5DCF46FA446D4F086F2F9ABDED9A4163A83A253B8 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:41:56.0006 0x1a44 mpsdrv - ok
19:41:56.0053 0x1a44 [ 92B4079384B8BE97AEE3CA8B43E0AAEB, 0AB87851F91274DDB19E21052E1D66FF76BA031D39A716EB4242BC5C0AC4ADB7 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:41:56.0084 0x1a44 MpsSvc - ok
19:41:56.0100 0x1a44 [ F877DF7E665630B40AC6C8F8ABF927C6, CBA6B27D9FCD5FAF437CAAC8CA2642E5CD9AB01F144BE40E305939014099A125 ] MQAC C:\Windows\system32\drivers\mqac.sys
19:41:56.0131 0x1a44 MQAC - ok
19:41:56.0162 0x1a44 [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:41:56.0178 0x1a44 MRxDAV - ok
19:41:56.0209 0x1a44 [ E9165E57CC6DD261A626514D2B3961CA, 111F24A497E2CCFCE0DA7B7FA600FF0909B77CD4A86BA584FC1F1B6AAD33596F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:41:56.0225 0x1a44 mrxsmb - ok
19:41:56.0240 0x1a44 [ 5AABBF9C994B4E778EFED74D7946A986, A94A2A80CF3B4B3C22D24F7335A0232A6004DC4D7A094759C862FD342EE932E8 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:41:56.0256 0x1a44 mrxsmb10 - ok
19:41:56.0271 0x1a44 [ C1489F52F7AD0E9506DEB7EBAA874963, B1B70E6F8FA375B930333B7558D74985777082E52C223051438118227F03860C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:41:56.0287 0x1a44 mrxsmb20 - ok
19:41:56.0318 0x1a44 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
19:41:56.0334 0x1a44 msahci - ok
19:41:56.0349 0x1a44 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:41:56.0365 0x1a44 msdsm - ok
19:41:56.0381 0x1a44 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
19:41:56.0396 0x1a44 MSDTC - ok
19:41:56.0412 0x1a44 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:41:56.0443 0x1a44 Msfs - ok
19:41:56.0459 0x1a44 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:41:56.0474 0x1a44 mshidkmdf - ok
19:41:56.0505 0x1a44 [ 6FE3DBEEA730A857CA3DF603B7DEADA2, CFB2F88799BD8D4D6B435C88B0B12D6E3EE83428B8EBE4C9DAACE25F03E7EABB ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:41:56.0505 0x1a44 msisadrv - ok
19:41:56.0537 0x1a44 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:41:56.0568 0x1a44 MSiSCSI - ok
19:41:56.0568 0x1a44 msiserver - ok
19:41:56.0599 0x1a44 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:41:56.0615 0x1a44 MSKSSRV - ok
19:41:56.0724 0x1a44 [ 5ADED2C1239D7BD798E2C4EF9EAA1FA3, 6A462DAC110015F3E59610202714120C557674019A0196680B72031C50D7C474 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:41:56.0755 0x1a44 MsMpSvc - ok
Code:
ATTFilter 19:41:56.0786 0x1a44 [ FAAEAEF99E53561BEEE58F946CA56F0D, 78AC692C4B80616E4C44ED20954B8D2FCE2215056C2ED3522123E5B50A7CE67A ] MSMQ C:\Windows\system32\mqsvc.exe
19:41:56.0817 0x1a44 MSMQ - ok
19:41:56.0833 0x1a44 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:41:56.0864 0x1a44 MSPCLOCK - ok
19:41:56.0880 0x1a44 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:41:56.0895 0x1a44 MSPQM - ok
19:41:56.0927 0x1a44 [ 94275393BB85D1E2B74BFEFEC386B4A0, D1E8B2AFB5B0E0B4670887F15A4EDFF88B1C91AF052B2C687590AF05AC560C18 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:41:56.0942 0x1a44 MsRPC - ok
19:41:56.0958 0x1a44 [ 1FC0BF25FFCB9F751BCBC6C6AC577078, D48313C4A3E711F3E2AFEC87E3C78B9230A96438CEC92857F8B454E2D1602E84 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:41:56.0973 0x1a44 mssmbios - ok
19:41:56.0989 0x1a44 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:41:57.0020 0x1a44 MSTEE - ok
19:41:57.0036 0x1a44 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:41:57.0051 0x1a44 MTConfig - ok
19:41:57.0067 0x1a44 [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
19:41:57.0067 0x1a44 MTsensor - ok
19:41:57.0083 0x1a44 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
19:41:57.0098 0x1a44 Mup - ok
19:41:57.0129 0x1a44 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
19:41:57.0161 0x1a44 napagent - ok
19:41:57.0207 0x1a44 [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:41:57.0223 0x1a44 NativeWifiP - ok
19:41:57.0270 0x1a44 [ 261F27367EB6EA6478B940811F0A6F03, C5924B8B00E93DA9B8B1DBAA05A4D53BB1720C2FFA9B3EDA63CB20A64F59808B ] NDIS C:\Windows\system32\drivers\ndis.sys
19:41:57.0301 0x1a44 NDIS - ok
19:41:57.0332 0x1a44 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:41:57.0363 0x1a44 NdisCap - ok
19:41:57.0395 0x1a44 [ 3F217F77899654833B650ED6A1372BE4, BB351A685D8F05E8066716F7346D28F950FB263D6C4F6957D908EA602FFF0681 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:41:57.0395 0x1a44 NdisTapi - ok
19:41:57.0410 0x1a44 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:41:57.0441 0x1a44 Ndisuio - ok
19:41:57.0457 0x1a44 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:41:57.0488 0x1a44 NdisWan - ok
19:41:57.0504 0x1a44 [ E46AF308E96F7730F59B0F250A884CD6, F5D00B950AAE1F38E295385C934FDC6C24608E65A8357317AE889947A2FE2BDC ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:41:57.0519 0x1a44 NDProxy - ok
19:41:57.0535 0x1a44 [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:41:57.0535 0x1a44 NetBIOS - ok
19:41:57.0582 0x1a44 [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:41:57.0629 0x1a44 NetBT - ok
19:41:57.0660 0x1a44 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] Netlogon C:\Windows\system32\lsass.exe
19:41:57.0660 0x1a44 Netlogon - ok
19:41:57.0707 0x1a44 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
19:41:57.0738 0x1a44 Netman - ok
19:41:57.0831 0x1a44 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:41:57.0863 0x1a44 NetMsmqActivator - ok
19:41:57.0894 0x1a44 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:41:57.0909 0x1a44 NetPipeActivator - ok
19:41:57.0925 0x1a44 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
19:41:57.0972 0x1a44 netprofm - ok
19:41:57.0972 0x1a44 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:41:57.0987 0x1a44 NetTcpActivator - ok
19:41:57.0987 0x1a44 [ 51CD641EFF20C9FFBA2C0F72C269795E, ADA16CBCF4C915EDE7BB57C5B6562077918380C55D9E967B87421A24BD43DDE7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:41:58.0003 0x1a44 NetTcpPortSharing - ok
19:41:58.0034 0x1a44 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:41:58.0050 0x1a44 nfrd960 - ok
19:41:58.0081 0x1a44 [ CE5F6E635FE4506AE6F2D6EB87425128, 3DB5ECF7CD2F2C3C010AA40CE57F1B3856E284BBA359FBC41A1B340E3180FD5F ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:41:58.0097 0x1a44 NisDrv - ok
19:41:58.0128 0x1a44 [ D630B510E1E3FF6BA12B705F47F115D9, 05D76065D5D9A82E53EA18CD2D0184338681A7BBD3CD5D6C44D1FA5CB1C63640 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
19:41:58.0159 0x1a44 NisSrv - ok
19:41:58.0190 0x1a44 [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:41:58.0206 0x1a44 NlaSvc - ok
19:41:58.0721 0x1a44 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:41:58.0767 0x1a44 Npfs - ok
19:41:58.0814 0x1a44 [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\Windows\system32\nsisvc.dll
19:41:58.0845 0x1a44 nsi - ok
19:41:58.0877 0x1a44 [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:41:58.0877 0x1a44 nsiproxy - ok
19:41:58.0970 0x1a44 [ A97B92D11270695B15C3663BCCB737D3, 3C5AF4C85A3121359C9E8BB66CC10ECDA48766C765E1D83D107D5DF21BE24756 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:41:59.0001 0x1a44 Ntfs - ok
19:41:59.0033 0x1a44 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
19:41:59.0048 0x1a44 Null - ok
19:41:59.0079 0x1a44 [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:41:59.0095 0x1a44 NVHDA - ok
19:41:59.0251 0x1a44 [ 67B1600134B1DA011D6009166792757B, 4A24E66681D5425A0AF9AE9BB4BD3CB9697EE6E397817A149BC1A601042CDE94 ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
19:41:59.0282 0x1a44 NVIDIA Wireless Controller Service - ok
19:41:59.0672 0x1a44 [ 5D89C0070BC2643117CF33D0367AFABA, C245E0C0DB6665B6226B4D188F620272C175F0FEA63617ECA45B4FA86273E20C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:41:59.0922 0x1a44 nvlddmkm - ok
19:41:59.0984 0x1a44 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:42:00.0000 0x1a44 nvraid - ok
19:42:00.0031 0x1a44 [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:42:00.0031 0x1a44 nvstor - ok
19:42:00.0093 0x1a44 [ 23423E859CA253382D80D0321522A171, 79C914C0A421E0BE566B5FCD5868B1248D4F397C24F8C5E70A8EA6E260617845 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
19:42:00.0109 0x1a44 NvStreamKms - ok
19:42:00.0203 0x1a44 [ C5647FB500C2A1F946B77C953528042D, E0A53D158B2141EBBE6762165154B4DE9524E6BD3AD7247B6D25AC96E0A34AA0 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:42:00.0234 0x1a44 nvsvc - ok
19:42:00.0343 0x1a44 [ 9DF8BBA81D0A44AA9D14B7ADE47D2200, 3F50BE14892D168032DA9AF22259A986F024E6AD43DAEEC3C1E777BFA9E5A157 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
19:42:00.0374 0x1a44 NvTelemetryContainer - ok
19:42:00.0390 0x1a44 [ E502016A185B5BB9DC341873F82CD49C, A1F7D3E4FA5B4C81966F0E1DE8039CDD0374A9FF86AB252483FC9D98360089A1 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
19:42:00.0405 0x1a44 nvvad_WaveExtensible - ok
19:42:00.0421 0x1a44 [ E3BCAF332BC25574784D4B91EA8E0C57, 0C0FFEE1519D0E5BB0B04900860590777513B4B1315218406DFB8DEB15B2AF52 ] nvvhci C:\Windows\system32\DRIVERS\nvvhci.sys
19:42:00.0421 0x1a44 nvvhci - ok
19:42:00.0437 0x1a44 [ 7425A6B64F5D37D0565F2581B886E5E3, 877095624C4EAE13A5814117EEEF515842FFF77C9823DA83BC01FA6B8D9E8A6B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:42:00.0452 0x1a44 nv_agp - ok
19:42:00.0468 0x1a44 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:42:00.0483 0x1a44 ohci1394 - ok
19:42:00.0561 0x1a44 [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:42:00.0593 0x1a44 ose64 - ok
19:42:00.0951 0x1a44 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:42:01.0061 0x1a44 osppsvc - ok
19:42:01.0123 0x1a44 [ 64FB16C5849444F0CFD403C83D9579A1, CDF3730453C9D469140F88BAC41181DD8AA2C7B2432961826E2379F2535F5293 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:42:01.0139 0x1a44 p2pimsvc - ok
Code:
ATTFilter 19:42:01.0170 0x1a44 [ 79DB2B358BF0B152F15D1C5A525233BD, 374D9E8D7FBBC3EB14BDC651378120FCB075A36404F1E76A3F291F89CD5C3362 ] p2psvc C:\Windows\system32\p2psvc.dll
19:42:01.0185 0x1a44 p2psvc - ok
19:42:01.0279 0x1a44 [ D61B764B27BF05CCCADCC5E1E7B73A21, 14636C5D470E4E87B8C6ED4E34906072D8D631E566DECADF5E2FFC0535DF8989 ] PAC7302 C:\Windows\system32\DRIVERS\PAC7302.SYS
19:42:01.0310 0x1a44 PAC7302 - ok
19:42:01.0341 0x1a44 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:42:01.0357 0x1a44 Parport - ok
19:42:01.0388 0x1a44 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:42:01.0404 0x1a44 partmgr - ok
19:42:01.0435 0x1a44 [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
19:42:01.0482 0x1a44 PcaSvc - ok
19:42:01.0513 0x1a44 [ 481DADB90C1D4E9F19328079C7A9E63D, DA8946D89F0D59F2A17512B9029EB17B2909CF99B70CF4BA7258012E95008ABD ] pci C:\Windows\system32\drivers\pci.sys
19:42:01.0529 0x1a44 pci - ok
19:42:01.0560 0x1a44 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
19:42:01.0560 0x1a44 pciide - ok
19:42:01.0591 0x1a44 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:42:01.0607 0x1a44 pcmcia - ok
19:42:01.0622 0x1a44 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
19:42:01.0638 0x1a44 pcw - ok
19:42:01.0685 0x1a44 [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:42:01.0716 0x1a44 PEAUTH - ok
19:42:01.0841 0x1a44 [ C59E17D5E30972ECA28A72004795AEA7, 24CE4698F578BB6BE51101BA083C5E4A6A1AA449439C125BA3E5793E54260525 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:42:01.0903 0x1a44 PeerDistSvc - ok
19:42:02.0137 0x1a44 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:42:02.0168 0x1a44 PerfHost - ok
19:42:02.0215 0x1a44 [ 007FD8D68E4D691DD4AEDD6F39B41B2C, 649D8A3EAF4A0FCC77974B829966815F6E4A50395AF10835A91CB5D698DAA8E1 ] phantomtap C:\Windows\system32\DRIVERS\phantomtap.sys
19:42:02.0215 0x1a44 phantomtap - ok
19:42:02.0324 0x1a44 [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
19:42:02.0355 0x1a44 pla - ok
19:42:02.0449 0x1a44 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:42:02.0511 0x1a44 PlugPlay - ok
19:42:02.0527 0x1a44 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:42:02.0558 0x1a44 PNRPAutoReg - ok
19:42:02.0574 0x1a44 [ 64FB16C5849444F0CFD403C83D9579A1, CDF3730453C9D469140F88BAC41181DD8AA2C7B2432961826E2379F2535F5293 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:42:02.0589 0x1a44 PNRPsvc - ok
19:42:02.0636 0x1a44 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:42:02.0683 0x1a44 PolicyAgent - ok
19:42:02.0964 0x1a44 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
19:42:03.0011 0x1a44 Power - ok
19:42:03.0026 0x1a44 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:42:03.0057 0x1a44 PptpMiniport - ok
19:42:03.0073 0x1a44 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
19:42:03.0089 0x1a44 Processor - ok
19:42:03.0151 0x1a44 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
19:42:03.0213 0x1a44 ProfSvc - ok
19:42:03.0260 0x1a44 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] ProtectedStorage C:\Windows\system32\lsass.exe
19:42:03.0276 0x1a44 ProtectedStorage - ok
19:42:03.0291 0x1a44 [ 4CE827A5433451551E99C2C1D20E4A43, B2E0806BB5C32A9126584941EE92526BFD45BB9EE18D7E598A2FFE7AAB495930 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:42:03.0307 0x1a44 Psched - ok
19:42:03.0369 0x1a44 [ F5E76151C86C818A6ECA628B731E1DDA, 4D5880A9479C186D01895D49CDCAE79749F381266E259F406B7C37861F7BDB92 ] qcusbser C:\Windows\system32\DRIVERS\qcusbser.sys
19:42:03.0401 0x1a44 qcusbser - ok
19:42:03.0525 0x1a44 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:42:03.0557 0x1a44 ql2300 - ok
19:42:03.0588 0x1a44 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:42:03.0588 0x1a44 ql40xx - ok
19:42:03.0620 0x1a44 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
19:42:03.0636 0x1a44 QWAVE - ok
19:42:03.0651 0x1a44 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:42:03.0667 0x1a44 QWAVEdrv - ok
19:42:03.0682 0x1a44 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:42:03.0714 0x1a44 RasAcd - ok
19:42:03.0979 0x1a44 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:42:04.0041 0x1a44 RasAgileVpn - ok
19:42:04.0072 0x1a44 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
19:42:04.0104 0x1a44 RasAuto - ok
19:42:04.0166 0x1a44 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:42:04.0228 0x1a44 Rasl2tp - ok
19:42:04.0244 0x1a44 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
19:42:04.0275 0x1a44 RasMan - ok
19:42:04.0291 0x1a44 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:42:04.0322 0x1a44 RasPppoe - ok
19:42:04.0338 0x1a44 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:42:04.0369 0x1a44 RasSstp - ok
19:42:04.0416 0x1a44 [ FB45727105E27756B3252572A138FA19, B11A375C7377C2DD02175921F5A3BBD23191207DE76DB220ACF72BD5CF74E09A ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:42:04.0447 0x1a44 rdbss - ok
19:42:04.0462 0x1a44 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:42:04.0478 0x1a44 rdpbus - ok
19:42:04.0509 0x1a44 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:42:04.0525 0x1a44 RDPCDD - ok
19:42:04.0572 0x1a44 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:42:04.0587 0x1a44 RDPDR - ok
19:42:04.0603 0x1a44 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:42:04.0634 0x1a44 RDPENCDD - ok
19:42:04.0650 0x1a44 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:42:04.0681 0x1a44 RDPREFMP - ok
19:42:04.0728 0x1a44 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:42:04.0774 0x1a44 RdpVideoMiniport - ok
19:42:04.0806 0x1a44 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:42:04.0837 0x1a44 RDPWD - ok
19:42:04.0852 0x1a44 [ F4287A980C0AA41DE3073F053E5EA73C, 04A386884DE32C6813486FD2D8FD9B9B275758CE5354459D8862A60E7F134833 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:42:04.0868 0x1a44 rdyboost - ok
19:42:04.0899 0x1a44 [ 0301EEE83B03229F555C6F8025FB5540, 3ABBA482E59FF9FC831A0FEA75A8C937BAE5077108A0EB3F89205C72FEDC2CD9 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:42:04.0915 0x1a44 RemoteAccess - ok
19:42:04.0962 0x1a44 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:42:04.0977 0x1a44 RemoteRegistry - ok
19:42:05.0008 0x1a44 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:42:05.0024 0x1a44 RpcEptMapper - ok
19:42:05.0071 0x1a44 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
19:42:05.0071 0x1a44 RpcLocator - ok
19:42:05.0133 0x1a44 [ 4CE2D42E24914EE91BFFCD8D8485A1BB, 64A005A2B56CDEB00F43B56040DEB7E5995909E9E11AFB4535895A2C3F0A4648 ] RpcSs C:\Windows\system32\rpcss.dll
19:42:05.0149 0x1a44 RpcSs - ok
19:42:05.0196 0x1a44 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:42:05.0211 0x1a44 rspndr - ok
Code:
ATTFilter 19:42:05.0242 0x1a44 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:42:05.0258 0x1a44 s3cap - ok
19:42:05.0274 0x1a44 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] SamSs C:\Windows\system32\lsass.exe
19:42:05.0274 0x1a44 SamSs - ok
19:42:05.0398 0x1a44 [ 2CBEC07EF504AE860DD94EDF3B9562D6, EE5722476BF8D252E3D72E8F3ED3B345512FCC33C83ACAA862444EE85A99A3F1 ] Samsung Network Fax Server C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe
19:42:05.0414 0x1a44 Samsung Network Fax Server - ok
19:42:05.0430 0x1a44 Samsung Printer Dianostics Service - ok
19:42:05.0461 0x1a44 [ CCFCF96CB350DA48AFDCB221CA999ADA, 7E5490652E367D1EA0400ED95788AFB4E067373E5F8BF73165B7F7FDE20D1B27 ] SamsungUPDUtilSvc C:\Windows\SysWOW64\SecUPDUtilSvc.exe
19:42:05.0461 0x1a44 SamsungUPDUtilSvc - ok
19:42:05.0476 0x1a44 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:42:05.0492 0x1a44 sbp2port - ok
19:42:05.0523 0x1a44 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:42:05.0554 0x1a44 SCardSvr - ok
19:42:05.0554 0x1a44 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:42:05.0586 0x1a44 scfilter - ok
19:42:05.0648 0x1a44 [ E5A1E7B40B5086E643705B2D85A139C4, 0B298C16689C8AA475396C9BEAF1032A156A0D7986931337D47FE3AF72228026 ] Schedule C:\Windows\system32\schedsvc.dll
19:42:05.0679 0x1a44 Schedule - ok
19:42:05.0695 0x1a44 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
19:42:05.0726 0x1a44 SCPolicySvc - ok
19:42:05.0742 0x1a44 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:42:05.0773 0x1a44 SDRSVC - ok
19:42:05.0788 0x1a44 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:42:05.0820 0x1a44 secdrv - ok
19:42:05.0851 0x1a44 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
19:42:05.0866 0x1a44 seclogon - ok
19:42:05.0882 0x1a44 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
19:42:05.0913 0x1a44 SENS - ok
19:42:05.0929 0x1a44 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:42:05.0960 0x1a44 SensrSvc - ok
19:42:05.0976 0x1a44 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:42:05.0976 0x1a44 Serenum - ok
19:42:05.0991 0x1a44 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:42:06.0007 0x1a44 Serial - ok
19:42:06.0038 0x1a44 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:42:06.0038 0x1a44 sermouse - ok
19:42:06.0085 0x1a44 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
19:42:06.0100 0x1a44 SessionEnv - ok
19:42:06.0116 0x1a44 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:42:06.0132 0x1a44 sffdisk - ok
19:42:06.0147 0x1a44 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:42:06.0163 0x1a44 sffp_mmc - ok
19:42:06.0178 0x1a44 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:42:06.0194 0x1a44 sffp_sd - ok
19:42:06.0210 0x1a44 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:42:06.0225 0x1a44 sfloppy - ok
19:42:06.0303 0x1a44 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:42:06.0350 0x1a44 SharedAccess - ok
19:42:06.0381 0x1a44 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:42:06.0412 0x1a44 ShellHWDetection - ok
19:42:06.0444 0x1a44 [ E9E830D540EDEDED650F906628468548, 9800160C6807B28A2A1E57810151473C96F1484F2EF75D3E378E8C96440CD4CE ] simptcp C:\Windows\System32\tcpsvcs.exe
19:42:06.0459 0x1a44 simptcp - ok
19:42:06.0475 0x1a44 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:42:06.0490 0x1a44 SiSRaid2 - ok
19:42:06.0506 0x1a44 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:42:06.0522 0x1a44 SiSRaid4 - ok
19:42:06.0584 0x1a44 [ B72B80E6FF423C5011E745CB76DA9A08, 18A6B9D46E91AD4D463EB5CB832702392D2E162577F90C328B515FCE69FABD15 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:42:06.0615 0x1a44 SkypeUpdate - ok
19:42:06.0631 0x1a44 [ D2DDE8F0BD39F90E43146DB0B3B5DA57, FF90424B6C68C0FA95CF7A63ABB7FAE225F700296B9A293DF0790F88BAFFA0E0 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
19:42:06.0646 0x1a44 SmartDefragDriver - ok
19:42:06.0646 0x1a44 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:42:06.0678 0x1a44 Smb - ok
19:42:06.0724 0x1a44 [ CA62AE004E98374BF7F082CD765EEA02, A53243F4B9D798802CD6673EA9D7DC245F26A2216172DAD53547B9BC4D5DBA77 ] SNMP C:\Windows\System32\snmp.exe
19:42:06.0740 0x1a44 SNMP - ok
19:42:06.0756 0x1a44 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:42:06.0756 0x1a44 SNMPTRAP - ok
19:42:06.0787 0x1a44 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
19:42:06.0787 0x1a44 spldr - ok
19:42:06.0849 0x1a44 [ 8003D39B386EDCCFB08DC21AACC0683A, 99D6A4DBE810335A69AE3053DC4B6AAC267639AD7F9C568431FA0714F6E71F30 ] Spooler C:\Windows\System32\spoolsv.exe
19:42:06.0880 0x1a44 Spooler - ok
19:42:07.0052 0x1a44 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
19:42:07.0146 0x1a44 sppsvc - ok
19:42:07.0177 0x1a44 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:42:07.0208 0x1a44 sppuinotify - ok
19:42:07.0239 0x1a44 [ 1145EC013B72D4E6C60497707BB1A4B6, 1062AE3C61A5ACB25A1899E354DC9AA750658E23B22F2A97E9B181B65A50AA46 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:42:07.0270 0x1a44 srv - ok
19:42:07.0286 0x1a44 [ 2D8FFA3B636368130F909E0CD935B555, 0C0BC56D5F6B1931D9159D98D3C8F4F1C4F4C3674C48430DFAC79926AB355601 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:42:07.0302 0x1a44 srv2 - ok
19:42:07.0348 0x1a44 [ 4B1C343E11065819F687EAC68A5E13F3, 4A850E37ECA4293A12E9C12B96999C4AA84A44177D31DFEF316E52050B1EDDA3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:42:07.0364 0x1a44 srvnet - ok
19:42:07.0395 0x1a44 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:42:07.0426 0x1a44 SSDPSRV - ok
19:42:07.0442 0x1a44 [ 0211AB46B73A2623B86C1CFCB30579AB, 7CC9BA2DF7B9EA6BB17EE342898EDD7F54703B93B6DED6A819E83A7EE9F938B4 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
19:42:07.0458 0x1a44 SSPORT - ok
19:42:07.0473 0x1a44 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:42:07.0504 0x1a44 SstpSvc - ok
19:42:07.0614 0x1a44 [ 32B37DD6E7D423DF3CF3B196C8005F85, 5989DD72AB03009625D5A49CC05D7955D07E3A933AEB292882F22928C5D60565 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:42:07.0629 0x1a44 Stereo Service - ok
19:42:07.0660 0x1a44 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:42:07.0676 0x1a44 stexstor - ok
19:42:07.0707 0x1a44 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
19:42:07.0738 0x1a44 stisvc - ok
19:42:07.0754 0x1a44 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:42:07.0770 0x1a44 storflt - ok
19:42:07.0801 0x1a44 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
19:42:07.0832 0x1a44 StorSvc - ok
19:42:07.0848 0x1a44 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:42:07.0863 0x1a44 storvsc - ok
19:42:07.0879 0x1a44 [ 10DCD3BDFA785E1482EC02304A7E9B96, DBD348388F5B17F2620A9D40D1191A51BA6CDAF15E37503630D859FB144486A1 ] swenum C:\Windows\system32\drivers\swenum.sys
19:42:07.0879 0x1a44 swenum - ok
19:42:07.0972 0x1a44 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
19:42:08.0019 0x1a44 swprv - ok
19:42:08.0175 0x1a44 [ 15CF7B24AA64FE958CAEA00274838B1C, 820F7CF1CCD036A1871D728C1CC80D9E9BB5E3BD5D9C7BC822B1711D8DB79707 ] SysMain C:\Windows\system32\sysmain.dll
19:42:08.0206 0x1a44 SysMain - ok
Code:
ATTFilter 19:42:08.0238 0x1a44 [ AD359C53941A6AC57FB935E7E9F1D16E, 6D53065ECE8E928CC045E16B7618D866C121EBA6C6CBDADC97C2B0DC8D8CF9FC ] TabletInputService C:\Windows\System32\TabSvc.dll
19:42:08.0253 0x1a44 TabletInputService - ok
19:42:08.0269 0x1a44 [ BB3F041ACE6FF23FD8F51B4CDDAB111B, A74544001291AB5E03E4B728CE7A336B17AA351C5E57C48536F62EAA756DFF7B ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
19:42:08.0284 0x1a44 tap0901 - ok
19:42:08.0300 0x1a44 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
19:42:08.0331 0x1a44 TapiSrv - ok
19:42:08.0518 0x1a44 [ 8A54B9C4206FBAB2CEE3525CFD365241, 009D2C45797D512F6B973BAE6FECA67C9BAE6B2C726A916D7168230ADDC769DC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:42:08.0550 0x1a44 Tcpip - ok
19:42:08.0737 0x1a44 [ 8A54B9C4206FBAB2CEE3525CFD365241, 009D2C45797D512F6B973BAE6FECA67C9BAE6B2C726A916D7168230ADDC769DC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:42:08.0784 0x1a44 TCPIP6 - ok
19:42:08.0815 0x1a44 [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:42:08.0846 0x1a44 tcpipreg - ok
19:42:08.0877 0x1a44 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:42:08.0908 0x1a44 TDPIPE - ok
19:42:08.0924 0x1a44 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:42:08.0940 0x1a44 TDTCP - ok
19:42:08.0971 0x1a44 [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:42:09.0033 0x1a44 tdx - ok
19:42:10.0016 0x1a44 [ CF11606953160F12EFB95351E4A20AA3, 3DF93456048531AB7989BECC180280C2DD543DCA48753BBFAD3AF0FCBCA34742 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
19:42:10.0250 0x1a44 TeamViewer - ok
19:42:10.0281 0x1a44 [ AC24D7A7D9EEDE11E2926F9001BEAFB5, 04F8FEC125B70A292DF4748925064CBDDF6D8FFF596ACD1EB063425E22505472 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:42:10.0297 0x1a44 TermDD - ok
19:42:10.0375 0x1a44 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
19:42:10.0422 0x1a44 TermService - ok
19:42:10.0453 0x1a44 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
19:42:10.0468 0x1a44 Themes - ok
19:42:10.0500 0x1a44 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
19:42:10.0531 0x1a44 THREADORDER - ok
19:42:10.0562 0x1a44 [ 519CB7D7F697F4BA47DE05845C20F158, F4B40014CB5047463FC40C28D9CFF0DA5E8592A2A9ED8E938A0A9D43DBD0A516 ] TlntSvr C:\Windows\System32\tlntsvr.exe
19:42:10.0593 0x1a44 TlntSvr - ok
19:42:10.0656 0x1a44 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
19:42:10.0702 0x1a44 TrkWks - ok
19:42:10.0812 0x1a44 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:42:10.0874 0x1a44 TrustedInstaller - ok
19:42:10.0952 0x1a44 [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:42:11.0030 0x1a44 tssecsrv - ok
19:42:11.0061 0x1a44 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:42:11.0108 0x1a44 TsUsbFlt - ok
19:42:11.0124 0x1a44 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
19:42:11.0124 0x1a44 TsUsbGD - ok
19:42:11.0170 0x1a44 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:42:11.0186 0x1a44 tunnel - ok
19:42:11.0202 0x1a44 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:42:11.0217 0x1a44 uagp35 - ok
19:42:11.0280 0x1a44 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:42:11.0326 0x1a44 udfs - ok
19:42:11.0358 0x1a44 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:42:11.0373 0x1a44 UI0Detect - ok
19:42:11.0389 0x1a44 [ B70E26A57F35ECA5199E6D6B9592A67C, 8ECCEEA69A69FBDC4AFEB2EC306FCEE6B569370F599D76F4CFDEAF77A0CD018C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:42:11.0404 0x1a44 uliagpkx - ok
19:42:11.0420 0x1a44 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:42:11.0420 0x1a44 umbus - ok
19:42:11.0436 0x1a44 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
19:42:11.0451 0x1a44 UmPass - ok
19:42:11.0498 0x1a44 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
19:42:11.0514 0x1a44 UmRdpService - ok
19:42:11.0545 0x1a44 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
19:42:11.0592 0x1a44 upnphost - ok
19:42:11.0623 0x1a44 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:42:11.0685 0x1a44 USBAAPL64 - ok
19:42:11.0716 0x1a44 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:42:11.0732 0x1a44 usbaudio - ok
19:42:11.0763 0x1a44 [ 9E68E917FB4B5C983438969643F53BEF, 7148BF1E7AFAFA025A51AA9A26B90ED85328B41C7F7791CB3460D9CF53245985 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:42:11.0779 0x1a44 usbccgp - ok
19:42:11.0810 0x1a44 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:42:11.0826 0x1a44 usbcir - ok
19:42:11.0857 0x1a44 [ 3F9D3902CE931E2A28DD8452AE915B67, C8BF042DD84FB2E3AE7FCDBA65923611FCBDAFD6410E42A5E58F8995D99AE16C ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:42:11.0872 0x1a44 usbehci - ok
19:42:11.0919 0x1a44 [ 86B65EEBC03B936DE8B26E5A18D98FA2, 2981CF5A0FB6B6FE0A38363EA4804DB743C45E3E6E72DC3A2260F583377717C8 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:42:11.0950 0x1a44 usbhub - ok
19:42:11.0966 0x1a44 [ 099C2931C6F73EB1B9E13C560F61B50D, 83B64A52173243526E380C8FA0D913C7B07C2AF1806ECC4EC0D0B5523A7CBFAA ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:42:11.0982 0x1a44 usbohci - ok
19:42:12.0013 0x1a44 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:42:12.0028 0x1a44 usbprint - ok
19:42:12.0060 0x1a44 [ 2C42E595E7E381596B9A14F88F5AE027, 948C2AD7FA0B01184312D1ABE43F2F3D85A934CF0658A8B2BDF9F0919568377B ] usbrndis6 C:\Windows\system32\DRIVERS\usb80236.sys
19:42:12.0075 0x1a44 usbrndis6 - ok
19:42:12.0106 0x1a44 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:42:12.0106 0x1a44 usbscan - ok
19:42:12.0138 0x1a44 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
19:42:12.0169 0x1a44 USBSTOR - ok
19:42:12.0200 0x1a44 [ 5D7651347C7D702F4A5DE53603DC024F, F55532D13AB2FF6D4B6058113AF2710AC5C87059C9000942CF517198BABCD6F5 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:42:12.0216 0x1a44 usbuhci - ok
19:42:12.0262 0x1a44 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:42:12.0278 0x1a44 usbvideo - ok
19:42:12.0325 0x1a44 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
19:42:12.0387 0x1a44 UxSms - ok
19:42:12.0418 0x1a44 [ 114A2C87FABB46D3124232B62528D099, 15528B7936B25667B5E8C7956BF486D9050006D76AB39011A18F4640B4DA055C ] VaultSvc C:\Windows\system32\lsass.exe
19:42:12.0434 0x1a44 VaultSvc - ok
19:42:12.0481 0x1a44 [ 38DEF53510986744F06B3B8AD6D9A14F, ED0484FC8D67E98B7296396CE9A19688B33C831002041FCF8DFC9CAA74D70727 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
19:42:12.0512 0x1a44 VBoxDrv - ok
19:42:12.0543 0x1a44 [ 9C6017BA0CF22FA1E4D4525B8573B595, 16202711B0D4E06520700C984663BAABF06727A85D5B033114EE407C22360A50 ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys
19:42:12.0559 0x1a44 VBoxNetAdp - ok
19:42:12.0637 0x1a44 [ C160AE21CF505F9A12C41FDF3121AB53, D1CFD0C2C45C414D805B91C6F8F38CAFD10C407C2CABCE3CDF109F4B828814AE ] VBoxNetLwf C:\Windows\system32\DRIVERS\VBoxNetLwf.sys
19:42:12.0668 0x1a44 VBoxNetLwf - ok
19:42:12.0715 0x1a44 [ 4964602E1F404F2E930B197EF1DAB10D, F6CADD2CCFD31A40085BBDC74442D2B0B1ECF6AAD0715DAA6DCD8A8348B2EDE9 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
19:42:12.0746 0x1a44 VBoxUSBMon - ok
19:42:12.0777 0x1a44 [ 7BDCE021786C3DCCFD2C22EBF643EE36, 92842E529EBDE9A9A9408287182BF1ECD8737C1DA39AF20570528CBD37D43228 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:42:12.0793 0x1a44 vdrvroot - ok
19:42:12.0855 0x1a44 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
19:42:12.0902 0x1a44 vds - ok
19:42:12.0933 0x1a44 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:42:12.0980 0x1a44 vga - ok
Code:
ATTFilter 19:42:12.0996 0x1a44 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:42:13.0027 0x1a44 VgaSave - ok
19:42:13.0074 0x1a44 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:42:13.0105 0x1a44 vhdmp - ok
19:42:13.0136 0x1a44 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
19:42:13.0136 0x1a44 viaide - ok
19:42:13.0183 0x1a44 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:42:13.0198 0x1a44 vmbus - ok
19:42:13.0214 0x1a44 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:42:13.0230 0x1a44 VMBusHID - ok
19:42:13.0245 0x1a44 [ 8EDE91FBAC7BF7605323C517C717A253, 8441DBE652E8922B888649FF8F37D5593FD8938E3AFFB69323184DE8E4A5EBDB ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:42:13.0245 0x1a44 volmgr - ok
19:42:13.0292 0x1a44 [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:42:13.0308 0x1a44 volmgrx - ok
19:42:13.0386 0x1a44 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:42:13.0417 0x1a44 volsnap - ok
19:42:13.0448 0x1a44 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:42:13.0464 0x1a44 vsmraid - ok
19:42:13.0557 0x1a44 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
19:42:13.0620 0x1a44 VSS - ok
19:42:13.0635 0x1a44 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:42:13.0651 0x1a44 vwifibus - ok
19:42:13.0666 0x1a44 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
19:42:13.0713 0x1a44 W32Time - ok
19:42:13.0791 0x1a44 [ B32009DB1972E7F2C227499289C4384A, D491CD90ACE895EC60A5A2F995EAE39F8ED662B71BC548C3FF5BBDBC60054788 ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
19:42:13.0807 0x1a44 W3SVC - ok
19:42:13.0822 0x1a44 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:42:13.0822 0x1a44 WacomPen - ok
19:42:13.0838 0x1a44 [ DC4CB3626E7423B9D83CF1B4857FDF15, 36BC894AC01A2A493D408F9F6B65064E901882F038A8A74CA4F21735D283E46F ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:42:13.0854 0x1a44 WANARP - ok
19:42:13.0854 0x1a44 [ DC4CB3626E7423B9D83CF1B4857FDF15, 36BC894AC01A2A493D408F9F6B65064E901882F038A8A74CA4F21735D283E46F ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:42:13.0869 0x1a44 Wanarpv6 - ok
19:42:13.0900 0x1a44 [ B32009DB1972E7F2C227499289C4384A, D491CD90ACE895EC60A5A2F995EAE39F8ED662B71BC548C3FF5BBDBC60054788 ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
19:42:13.0916 0x1a44 WAS - ok
19:42:14.0010 0x1a44 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:42:14.0041 0x1a44 WatAdminSvc - ok
19:42:14.0197 0x1a44 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
19:42:14.0259 0x1a44 wbengine - ok
19:42:14.0275 0x1a44 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:42:14.0306 0x1a44 WbioSrvc - ok
19:42:14.0368 0x1a44 [ CEB1F72CCEAE546FC8CA4F8DF304367F, 9814F9D7E0F3F76B8CDE3B2DCCC100A10053D09AE0CCA0EEBFAAA15A0ABE84EE ] WCAssistantService C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
19:42:14.0384 0x1a44 WCAssistantService - ok
19:42:14.0431 0x1a44 [ 79E3903FD75A22386326B542F17A2563, 3CCCE0BCDE12240BE7E108A8C0A959A33C8462A0DE8510F28FA0107C4A9A1F05 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:42:14.0446 0x1a44 wcncsvc - ok
19:42:14.0446 0x1a44 [ 35050F01D00E7E72A2449EB6F9ABF8B4, CF45943E14D2418E83CF4DC836D3AFE4ED61186B6B9DA25EF745DC6FBB07FAC5 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:42:14.0478 0x1a44 WcsPlugInService - ok
19:42:14.0509 0x1a44 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
19:42:14.0509 0x1a44 Wd - ok
19:42:14.0556 0x1a44 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:42:14.0587 0x1a44 Wdf01000 - ok
19:42:14.0618 0x1a44 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:42:14.0649 0x1a44 WdiServiceHost - ok
19:42:14.0665 0x1a44 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:42:14.0680 0x1a44 WdiSystemHost - ok
19:42:15.0226 0x1a44 [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
19:42:15.0258 0x1a44 WebClient - ok
19:42:15.0320 0x1a44 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:42:15.0382 0x1a44 Wecsvc - ok
19:42:15.0445 0x1a44 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:42:15.0476 0x1a44 wercplsupport - ok
19:42:15.0476 0x1a44 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
19:42:15.0507 0x1a44 WerSvc - ok
19:42:15.0523 0x1a44 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:42:15.0554 0x1a44 WfpLwf - ok
19:42:15.0570 0x1a44 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:42:15.0570 0x1a44 WIMMount - ok
19:42:15.0601 0x1a44 WinDefend - ok
19:42:15.0616 0x1a44 WinHttpAutoProxySvc - ok
19:42:15.0663 0x1a44 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:42:15.0694 0x1a44 Winmgmt - ok
19:42:15.0866 0x1a44 [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
19:42:15.0913 0x1a44 WinRM - ok
19:42:15.0960 0x1a44 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:42:15.0960 0x1a44 WinUsb - ok
19:42:16.0100 0x1a44 [ 4B7912EB80820EAC543EE54806EFCAF0, 4D9186F9FE80F03C85C4DC73342EE5870DF1021BD29974BE33557CEA0D524667 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:42:16.0131 0x1a44 Wlansvc - ok
19:42:16.0162 0x1a44 [ 43471A750D4F3918AC92F5131AE252D3, E843AA1555262F521B924BBB1505474757E1BB9540FCCF93BC0BE2059F497C87 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:42:16.0162 0x1a44 WmiAcpi - ok
19:42:16.0225 0x1a44 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:42:16.0240 0x1a44 wmiApSrv - ok
19:42:16.0272 0x1a44 WMPNetworkSvc - ok
19:42:16.0318 0x1a44 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:42:16.0365 0x1a44 WPCSvc - ok
19:42:16.0381 0x1a44 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:42:16.0396 0x1a44 WPDBusEnum - ok
19:42:16.0428 0x1a44 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:42:16.0443 0x1a44 ws2ifsl - ok
19:42:16.0443 0x1a44 WsAppService - ok
19:42:16.0474 0x1a44 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
19:42:16.0490 0x1a44 wscsvc - ok
19:42:16.0521 0x1a44 [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
19:42:16.0537 0x1a44 WSDPrintDevice - ok
19:42:16.0537 0x1a44 WsDrvInst - ok
19:42:16.0552 0x1a44 [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan C:\Windows\system32\drivers\WSDScan.sys
19:42:16.0568 0x1a44 WSDScan - ok
19:42:16.0568 0x1a44 WSearch - ok
19:42:16.0740 0x1a44 [ 0A2E5059B5775E7DBBE05B8156ECE0C6, 75584C0E9EACB26585795C24A0DE19709A6842D286B5DD99036880D66DD20CDD ] wuauserv C:\Windows\system32\wuaueng.dll
19:42:16.0818 0x1a44 wuauserv - ok
19:42:16.0849 0x1a44 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:42:16.0880 0x1a44 WudfPf - ok
19:42:16.0896 0x1a44 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:42:16.0911 0x1a44 WUDFRd - ok
19:42:16.0942 0x1a44 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:42:16.0958 0x1a44 wudfsvc - ok
Code:
ATTFilter 19:42:16.0974 0x1a44 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
19:42:17.0020 0x1a44 WwanSvc - ok
19:42:17.0036 0x1a44 ================ Scan global ===============================
19:42:17.0067 0x1a44 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
19:42:17.0098 0x1a44 [ 7D4FA6473423F14507C4FCF39CBE19AB, 1F4B8B973B21469978979BE236119FC1A7CC78AA1662002BC76722A2C2C715BA ] C:\Windows\system32\winsrv.dll
19:42:17.0114 0x1a44 [ 7D4FA6473423F14507C4FCF39CBE19AB, 1F4B8B973B21469978979BE236119FC1A7CC78AA1662002BC76722A2C2C715BA ] C:\Windows\system32\winsrv.dll
19:42:17.0130 0x1a44 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:42:17.0208 0x1a44 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
19:42:17.0208 0x1a44 [ Global ] - ok
19:42:17.0208 0x1a44 ================ Scan MBR ==================================
19:42:17.0239 0x1a44 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:42:17.0832 0x1a44 \Device\Harddisk0\DR0 - ok
19:42:17.0832 0x1a44 ================ Scan VBR ==================================
19:42:17.0847 0x1a44 [ 62B94A6F3BCA685CCDCE451B0A6B5875 ] \Device\Harddisk0\DR0\Partition1
19:42:17.0847 0x1a44 \Device\Harddisk0\DR0\Partition1 - ok
19:42:17.0863 0x1a44 [ 10378CED1BEF6BE13F2D0A40728B27D4 ] \Device\Harddisk0\DR0\Partition2
19:42:17.0863 0x1a44 \Device\Harddisk0\DR0\Partition2 - ok
19:42:17.0878 0x1a44 [ C373E667CCB4CFD1E8AA9DF722977FFA ] \Device\Harddisk0\DR0\Partition3
19:42:17.0910 0x1a44 \Device\Harddisk0\DR0\Partition3 - ok
19:42:17.0925 0x1a44 [ 4966EAF37A7C58E6DFD6A1E92C40AB11 ] \Device\Harddisk0\DR0\Partition4
19:42:17.0956 0x1a44 \Device\Harddisk0\DR0\Partition4 - ok
19:42:17.0956 0x1a44 ================ Scan generic autorun ======================
19:42:18.0097 0x1a44 [ 7A727248EBC065BD2BB94A9B2892D190, B1E12ED3D07963EF0FA09B3ECD8AC3FBD316733D968A99C958DF7026B1BDFD99 ] C:\Program Files\Microsoft Security Client\msseces.exe
19:42:18.0128 0x1a44 MSC - ok
19:42:18.0190 0x1a44 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:42:18.0253 0x1a44 Sidebar - ok
19:42:18.0284 0x1a44 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:42:18.0300 0x1a44 mctadmin - ok
19:42:18.0346 0x1a44 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:42:18.0378 0x1a44 Sidebar - ok
19:42:18.0393 0x1a44 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:42:18.0409 0x1a44 mctadmin - ok
19:42:20.0156 0x1a44 [ 5DBEFC2EEF9EACA995D773EEF9243370, 966734CC2E98C15C6961EC8F52FF79D1E88937BED77A258A338C7E354BD6BE4D ] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
19:42:20.0312 0x1a44 Web Companion - ok
19:42:20.0312 0x1a44 Object required for P2P: [ 5DBEFC2EEF9EACA995D773EEF9243370 ] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
19:42:20.0530 0x1a44 Object send P2P result: true
19:42:20.0624 0x1a44 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:42:20.0655 0x1a44 Sidebar - ok
19:42:20.0671 0x1a44 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:42:20.0686 0x1a44 mctadmin - ok
19:42:20.0686 0x1a44 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.10.209.0 ), 0x61000 ( enabled : updated )
19:42:20.0686 0x1a44 Win FW state via NFP2: enabled ( trusted )
19:42:20.0796 0x1a44 ============================================================
19:42:20.0796 0x1a44 Scan finished
19:42:20.0796 0x1a44 ============================================================
19:42:20.0796 0x1a5c Detected object count: 0
19:42:20.0796 0x1a5c Actual detected object count: 0
|
|
29.07.2018, 20:12
| #29 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bei Ebay soll ich in Rubel zahlen Du willst micht echt nicht verarschen? Da fehlt jetzt was vom Log 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.07.2018, 20:30
| #30 | |
| | Bei Ebay soll ich in Rubel zahlenZitat:
Ich möchte Dir nur sagen ich bin in einem anderen Fach Forum 6 Jahre als Admin gewesen und jetzt in der gleichen Branche im anderen Forum 6 Jahre als Mod tätig. Wir haben manchem in einem freundlichem Ton geholfen "weil er nicht wußte welche Taste er am PC" drücken sollte. Bitte entschuldige das ich hier ein wenig Probleme habe. Das Bild 2 habe ich bei der Installation nicht gesehen. Ich habe es noch einige Male versucht es wird nicht anders. Ich habe nochmal in Ruhe die ganze Sache durchgelesen die Haken alle gesetzt und nochmal den Scan durchlaufen lassen er findet nichts. Gibt es eine andere Suchmaschine mit einer härteren Scan Software. Denn irgend etwas muß doch hier faul sein!? MfG Geändert von jokeranton (29.07.2018 um 20:58 Uhr) |
|
| Themen zu Bei Ebay soll ich in Rubel zahlen |
| beste, bezahlen, daten, deutsch, ebay, freitag, gekauft, heute, hinweis, kaufen, klicke, neu, paypal, preise, professional, programm, reparieren, schrift, spezielle, sämtliche, threads, versucht, windows, windows 7, zahlen |
Linear-Darstellung
