Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Tdss killer auswertung

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 22.09.2013, 20:53   #1
holzdan
 
Tdss killer auswertung - Standard

Tdss killer auswertung



Hallo
Habe gestern eien scan mit tdss killer durchgefuehrt
eine datei wurde angezeigt und ungeduldig wie ich bin habe ich sie unter Quarantäne gestellt.
Nun startete windows nicht mehr und ich musste mit einem Wiederherstellungspunkt reparieren.
Weiss jemand um was fuer eine Datei es sich hierbei handelt.

Hier mal der log

Code:
ATTFilter
 02:30:44.0529 0x0d54  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
02:30:44.0837 0x0d54  ============================================================
02:30:44.0837 0x0d54  Current date / time: 2013/09/22 02:30:44.0837
02:30:44.0837 0x0d54  SystemInfo:
02:30:44.0837 0x0d54  
02:30:44.0837 0x0d54  OS Version: 6.2.9200 ServicePack: 0.0
02:30:44.0837 0x0d54  Product type: Workstation
02:30:44.0837 0x0d54  ComputerName: XXX
02:30:44.0837 0x0d54  UserName: xxx
02:30:44.0837 0x0d54  Windows directory: C:\Windows
02:30:44.0837 0x0d54  System windows directory: C:\Windows
02:30:44.0837 0x0d54  Running under WOW64
02:30:44.0837 0x0d54  Processor architecture: Intel x64
02:30:44.0837 0x0d54  Number of processors: 4
02:30:44.0837 0x0d54  Page size: 0x1000
02:30:44.0837 0x0d54  Boot type: Normal boot
02:30:44.0837 0x0d54  ============================================================
02:31:35.0089 0x0d54  !crdlk
02:31:35.0095 0x0d54  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
02:31:35.0114 0x0d54  Drive \Device\Harddisk1\DR1 - Size: 0x1E880000 (0.48 Gb), SectorSize: 0x200, Cylinders: 0x3E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
02:31:35.0116 0x0d54  ============================================================
02:31:35.0116 0x0d54  \Device\Harddisk0\DR0:
02:31:35.0117 0x0d54  MBR partitions:
02:31:35.0117 0x0d54  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770800, BlocksNum 0x32000
02:31:35.0117 0x0d54  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A2800, BlocksNum 0x39E541BB
02:31:35.0168 0x0d54  \Device\Harddisk1\DR1:
02:31:35.0169 0x0d54  MBR partitions:
02:31:35.0169 0x0d54  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x6, StartLBA 0x29, BlocksNum 0xF43D7
02:31:35.0169 0x0d54  ============================================================
02:31:35.0212 0x0d54  C: <-> \Device\Harddisk0\DR0\Partition2
02:31:35.0233 0x0d54  E: <-> \Device\Harddisk0\DR0\Partition1
02:31:35.0233 0x0d54  ============================================================
02:31:35.0233 0x0d54  Initialize success
02:31:35.0233 0x0d54  ============================================================
02:31:39.0308 0x063c  ============================================================
02:31:39.0308 0x063c  Scan started
02:31:39.0308 0x063c  Mode: Manual; 
02:31:39.0308 0x063c  ============================================================
02:31:39.0536 0x063c  ================ Scan system memory ========================
02:31:39.0536 0x063c  System memory - ok
02:31:39.0536 0x063c  ================ Scan services =============================
02:31:39.0781 0x063c  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
02:31:39.0785 0x063c  1394ohci - ok
02:31:39.0839 0x063c  22242893 - ok
02:31:39.0874 0x063c  [ AD508A1A46EC21B740AB31C28EFDFDB1 ] 3ware           C:\Windows\system32\drivers\3ware.sys
02:31:39.0876 0x063c  3ware - ok
02:31:39.0938 0x063c  [ B8B6D51DCB4529E8B37E4AD674FCED41 ] 80117480        C:\Windows\system32\drivers\30439020.sys
02:31:39.0941 0x063c  Suspicious file (Forged): C:\Windows\system32\drivers\30439020.sys. Real md5: B8B6D51DCB4529E8B37E4AD674FCED41, Fake md5: 030C7DB76C829116D696C7B652E01C3A
02:31:39.0941 0x063c  80117480 ( ForgedFile.Multi.Generic ) - warning
02:31:39.0941 0x063c  80117480 - detected ForgedFile.Multi.Generic (1)
02:31:40.0033 0x063c  [ E19D921EBBD1A2CA4C48D7B5F1685B30 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
02:31:40.0045 0x063c  ACPI - ok
02:31:40.0088 0x063c  [ AC8279D229398BCF05C3154ADCA86813 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
02:31:40.0097 0x063c  acpiex - ok
02:31:40.0159 0x063c  [ A8970D9BF23CD309E0403978A1B58F3F ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
02:31:40.0160 0x063c  acpipagr - ok
02:31:40.0200 0x063c  [ 111A89C99C5B4F1A7BCE5F643DD86F65 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
02:31:40.0201 0x063c  AcpiPmi - ok
02:31:40.0235 0x063c  [ 5758387D68A20AE7D3245011B07E36E7 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
02:31:40.0236 0x063c  acpitime - ok
02:31:40.0326 0x063c  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:31:40.0327 0x063c  AdobeARMservice - ok
02:31:40.0491 0x063c  [ 3109B16A0939BA11696EEB04F345D099 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:31:40.0495 0x063c  AdobeFlashPlayerUpdateSvc - ok
02:31:40.0587 0x063c  [ 7C1FDF1B48298CBA7CE4BDD4978951AD ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
02:31:40.0598 0x063c  ADP80XX - ok
02:31:40.0677 0x063c  [ B19CA8E441D35AA2B1EE51C10B27DA1B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
02:31:40.0681 0x063c  AeLookupSvc - ok
02:31:40.0747 0x063c  [ 239268BAB58EAE9A3FF4E08334C00451 ] AFD             C:\Windows\system32\drivers\afd.sys
02:31:40.0756 0x063c  AFD - ok
02:31:40.0845 0x063c  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
02:31:40.0860 0x063c  AgereSoftModem - ok
02:31:40.0917 0x063c  [ 7DFAEBA9AD62D20102B576D5CAC45EC8 ] agp440          C:\Windows\system32\drivers\agp440.sys
02:31:40.0918 0x063c  agp440 - ok
02:31:40.0960 0x063c  [ 8E8E34B7BA059050EED827410D0697A2 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
02:31:40.0962 0x063c  ahcache - ok
02:31:41.0012 0x063c  [ A91D8E1E433EFB32551BCE69037E1CE7 ] ALG             C:\Windows\System32\alg.exe
02:31:41.0014 0x063c  ALG - ok
02:31:41.0085 0x063c  [ 062F771F0D30757CE36192D8717F9C84 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
02:31:41.0089 0x063c  AMD External Events Utility - ok
02:31:41.0138 0x063c  [ 7589DE749DB6F71A68489DCE04158729 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
02:31:41.0140 0x063c  AmdK8 - ok
02:31:41.0465 0x063c  [ C0CBA3F3ED8AA0945C39FBF43F9F7E55 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
02:31:41.0731 0x063c  amdkmdag - ok
02:31:41.0800 0x063c  [ D8363654E731019A4F737AD660F33C78 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
02:31:41.0809 0x063c  amdkmdap - ok
02:31:41.0868 0x063c  [ B46D2D89AFF8A9490FA8C98C7A5616E3 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
02:31:41.0869 0x063c  AmdPPM - ok
02:31:41.0913 0x063c  [ D2BF2F94A47D332814910FD47C6BBCD2 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
02:31:41.0915 0x063c  amdsata - ok
02:31:41.0952 0x063c  [ A8E04943C7BBA7219AA50400272C3C6E ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
02:31:41.0955 0x063c  amdsbs - ok
02:31:42.0003 0x063c  [ CEA5F4F27CFC08E3A44D576811B35F50 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
02:31:42.0004 0x063c  amdxata - ok
02:31:42.0043 0x063c  [ BE3BFEFD0EDA6AA4C3A81B0490B1F7F5 ] AppID           C:\Windows\system32\drivers\appid.sys
02:31:42.0044 0x063c  AppID - ok
02:31:42.0129 0x063c  [ C0DC3F58214A227980AEB091CFD2F973 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
02:31:42.0130 0x063c  AppIDSvc - ok
02:31:42.0452 0x063c  [ 7E790DE2487CEDB349D1750B9E47F090 ] Appinfo         C:\Windows\System32\appinfo.dll
02:31:42.0453 0x063c  Appinfo - ok
02:31:42.0652 0x063c  [ 8176FBA685178FB0F52D46693474FA50 ] AppMgmt         C:\Windows\System32\appmgmts.dll
02:31:42.0656 0x063c  AppMgmt - ok
02:31:42.0757 0x063c  [ 550076AD22A72FF2C28FE2B19FB64C12 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
02:31:42.0766 0x063c  AppReadiness - ok
02:31:42.0843 0x063c  [ 66D592883A272B75DA22873C94D1C99D ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
02:31:42.0887 0x063c  AppXSvc - ok
02:31:42.0985 0x063c  [ 65045784366F7EC5FB4E71BCF923187B ] arcsas          C:\Windows\system32\drivers\arcsas.sys
02:31:42.0987 0x063c  arcsas - ok
02:31:43.0038 0x063c  [ 3DB7721F06BC2FEDB25029EA23AB27DA ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
02:31:43.0039 0x063c  AsyncMac - ok
02:31:43.0077 0x063c  [ 74B14192CF79A72F7536B27CB8814FBD ] atapi           C:\Windows\system32\drivers\atapi.sys
02:31:43.0078 0x063c  atapi - ok
02:31:43.0210 0x063c  [ B04BF12AEBFB5E71971B4EDA4EDFC196 ] athr            C:\Windows\system32\DRIVERS\athwnx.sys
02:31:43.0292 0x063c  athr - ok
02:31:43.0432 0x063c  [ 4903CBC14742B5AB4DCF7A92F7DEC483 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
02:31:43.0436 0x063c  AudioEndpointBuilder - ok
02:31:43.0517 0x063c  [ 86DD7884124D363A63CCE7A11FDEBBED ] Audiosrv        C:\Windows\System32\Audiosrv.dll
02:31:43.0529 0x063c  Audiosrv - ok
02:31:43.0599 0x063c  [ 74FD4F3D4CCF7E0AD040BE0F70D916A5 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
02:31:43.0602 0x063c  AxInstSV - ok
02:31:43.0679 0x063c  [ A4A73F631FE2AA2826FBE4A399B04DEF ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
02:31:43.0687 0x063c  b06bdrv - ok
02:31:43.0802 0x063c  [ 8CC7F7E4AFCBA605921B137ED7992C68 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
02:31:43.0803 0x063c  BasicDisplay - ok
02:31:43.0872 0x063c  [ 2748E116F8621A4DB0D39FCDD7318C01 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
02:31:43.0873 0x063c  BasicRender - ok
02:31:43.0961 0x063c  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
02:31:43.0962 0x063c  bcmfn2 - ok
02:31:44.0051 0x063c  [ BBE61A40665B83488901E41082A6097D ] BDESVC          C:\Windows\System32\bdesvc.dll
02:31:44.0056 0x063c  BDESVC - ok
02:31:44.0150 0x063c  [ EC19013E4CF87609534165DF897274D6 ] Beep            C:\Windows\system32\drivers\Beep.sys
02:31:44.0150 0x063c  Beep - ok
02:31:44.0250 0x063c  [ ACC04CBB75086D86031E0C63D0930B98 ] BFE             C:\Windows\System32\bfe.dll
02:31:44.0262 0x063c  BFE - ok
02:31:44.0410 0x063c  [ 15225081966C785A9192782401643FD4 ] BITS            C:\Windows\System32\qmgr.dll
02:31:44.0435 0x063c  BITS - ok
02:31:44.0534 0x063c  [ 6B4FFFDDC618FCF64473CAA86E305697 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
02:31:44.0536 0x063c  bowser - ok
02:31:44.0622 0x063c  [ 85948475C7FFCA1B7A825BB7BE9A5E72 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
02:31:44.0627 0x063c  BrokerInfrastructure - ok
02:31:44.0706 0x063c  [ D528D6A92D187777691993DD757AF19A ] Browser         C:\Windows\System32\browser.dll
02:31:44.0709 0x063c  Browser - ok
02:31:44.0819 0x063c  [ A8F23D453A424FF4DE04989C4727ECC7 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
02:31:44.0820 0x063c  BthAvrcpTg - ok
02:31:44.0882 0x063c  [ 746B9F94214915AECDE4B7FEA5FF9664 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
02:31:44.0883 0x063c  BthHFEnum - ok
02:31:44.0970 0x063c  [ 71FE2A48E4C93DDB9798C024880B6C07 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
02:31:44.0971 0x063c  bthhfhid - ok
02:31:45.0038 0x063c  [ 07E33226AD218A2A162662A05CAFB52F ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
02:31:45.0039 0x063c  BTHMODEM - ok
02:31:45.0233 0x063c  [ E5E48FEED73D463175EAB1542495191C ] bthserv         C:\Windows\system32\bthserv.dll
02:31:45.0235 0x063c  bthserv - ok
02:31:45.0346 0x063c  [ 2FA6510E33F7DEFEC03658B74101A9B9 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
02:31:45.0348 0x063c  cdfs - ok
02:31:45.0431 0x063c  [ C6796EA22B513E3457514D92DCDB1A3D ] cdrom           C:\Windows\System32\drivers\cdrom.sys
02:31:45.0434 0x063c  cdrom - ok
02:31:45.0541 0x063c  [ AB285CE3431FF3D2ACE669245874C1C7 ] CertPropSvc     C:\Windows\System32\certprop.dll
02:31:45.0544 0x063c  CertPropSvc - ok
02:31:45.0673 0x063c  [ BE9936EDD3267FAAFF94A7835867F00B ] circlass        C:\Windows\System32\drivers\circlass.sys
02:31:45.0674 0x063c  circlass - ok
02:31:45.0841 0x063c  [ 55FE970B500F6D2A550B5E80AB8C4EAC ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
02:31:45.0843 0x063c  ClassicShellService - ok
02:31:45.0924 0x063c  cleanhlp - ok
02:31:46.0019 0x063c  [ 7F006813C2AFE622C13D7AF94F56CD07 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
02:31:46.0024 0x063c  CLFS - ok
02:31:46.0314 0x063c  [ EF6EF85DADC3184A10D8F2F7159973CB ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
02:31:46.0315 0x063c  CmBatt - ok
02:31:46.0414 0x063c  [ 825BE21E6395E00698D8A23955A87972 ] CNG             C:\Windows\system32\Drivers\cng.sys
02:31:46.0422 0x063c  CNG - ok
02:31:46.0583 0x063c  [ 03AAED827C36F35D70900558B8274905 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
02:31:46.0583 0x063c  CompositeBus - ok
02:31:46.0670 0x063c  COMSysApp - ok
02:31:46.0739 0x063c  [ A1FF7DFBFBE164CF92603C651D304DD2 ] condrv          C:\Windows\system32\drivers\condrv.sys
02:31:46.0739 0x063c  condrv - ok
02:31:46.0880 0x063c  [ 0EFE4B5884A8032617826A4D76F80969 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
02:31:46.0883 0x063c  CryptSvc - ok
02:31:46.0971 0x063c  [ EE2F3C0D6ADBC975D6B621EC15ACF4E2 ] CSC             C:\Windows\system32\drivers\csc.sys
02:31:46.0980 0x063c  CSC - ok
02:31:47.0099 0x063c  [ 936D9E2871CEEFF6A33695D98374367B ] CscService      C:\Windows\System32\cscsvc.dll
02:31:47.0111 0x063c  CscService - ok
02:31:47.0207 0x063c  [ 315BA4BC19316D72B2E037534E048B93 ] dam             C:\Windows\system32\drivers\dam.sys
02:31:47.0208 0x063c  dam - ok
02:31:47.0369 0x063c  [ 3FD5AE42EC87C6F532A931F96BE731DD ] DcomLaunch      C:\Windows\system32\rpcss.dll
02:31:47.0382 0x063c  DcomLaunch - ok
02:31:47.0515 0x063c  [ F4CCAADC2C78F57E4F16B24C9201CE22 ] defragsvc       C:\Windows\System32\defragsvc.dll
02:31:47.0522 0x063c  defragsvc - ok
02:31:47.0645 0x063c  [ 0BC71D4D3B5883903C37BF4E13B0F0C5 ] DeviceAssociationService C:\Windows\system32\das.dll
02:31:47.0653 0x063c  DeviceAssociationService - ok
02:31:47.0778 0x063c  [ 752A457320A946E03C3AA86C3ACD735E ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
02:31:47.0783 0x063c  DeviceInstall - ok
02:31:47.0902 0x063c  [ 5DB26D7E0216D0BF364A81D3829AD7B9 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
02:31:47.0904 0x063c  Dfsc - ok
02:31:48.0005 0x063c  [ A40B5232D325AC0200E73329F7F19F54 ] Dhcp            C:\Windows\system32\dhcpcore.dll
02:31:48.0012 0x063c  Dhcp - ok
02:31:48.0116 0x063c  [ 4D40C9B33F738797CF50E77CB7C53E85 ] disk            C:\Windows\system32\drivers\disk.sys
02:31:48.0118 0x063c  disk - ok
02:31:48.0218 0x063c  [ EB70A894708D1BC176AFD690FF06085F ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
02:31:48.0219 0x063c  dmvsc - ok
02:31:48.0317 0x063c  [ FBD2D7F491F3EBC5C54C5C4DB2564953 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
02:31:48.0322 0x063c  Dnscache - ok
02:31:48.0438 0x063c  [ 50288EA079BB520C2B8C8A154202D518 ] dot3svc         C:\Windows\System32\dot3svc.dll
02:31:48.0443 0x063c  dot3svc - ok
02:31:48.0569 0x063c  [ 281BEE07BA97E3E98D12A822D923D0D8 ] DPS             C:\Windows\system32\dps.dll
02:31:48.0573 0x063c  DPS - ok
02:31:48.0733 0x063c  [ 308195495181C8F3D51E6ED5B58D54AC ] DragonUpdater   C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
02:31:48.0780 0x063c  DragonUpdater - ok
02:31:48.0918 0x063c  [ DDC11A202207C0400CBE07315B8FDE5E ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
02:31:48.0919 0x063c  drmkaud - ok
02:31:49.0019 0x063c  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
02:31:49.0023 0x063c  DsmSvc - ok
02:31:49.0165 0x063c  [ 5A5C2A5D961CADF49DDE26582B8ED1FA ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
02:31:49.0220 0x063c  DXGKrnl - ok
02:31:49.0334 0x063c  [ 398904F1FBF13CEF0FCB822E9CA5F2D5 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
02:31:49.0337 0x063c  eamonm - ok
02:31:49.0462 0x063c  [ 6073537F250B45E1CB2A02E97F0FE1B2 ] Eaphost         C:\Windows\System32\eapsvc.dll
02:31:49.0465 0x063c  Eaphost - ok
02:31:49.0634 0x063c  [ 114BCFDF367FF37C3F1B0A96AF542E4D ] ebdrv           C:\Windows\system32\drivers\evbda.sys
02:31:49.0714 0x063c  ebdrv - ok
02:31:49.0841 0x063c  [ F6F209DDB94959BA104FC8FC87C53759 ] EFS             C:\Windows\System32\lsass.exe
02:31:49.0844 0x063c  EFS - ok
02:31:49.0934 0x063c  [ 9E39134330C18CBAC0F24C1283701D7E ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
02:31:49.0936 0x063c  ehdrv - ok
02:31:50.0036 0x063c  [ 43531A5993380CC5113242C29D265FD9 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
02:31:50.0037 0x063c  EhStorClass - ok
02:31:50.0148 0x063c  [ 6F8E738A9505A388B1157FDDE7B3101B ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
02:31:50.0150 0x063c  EhStorTcgDrv - ok
02:31:50.0327 0x063c  [ 7FE34FD5652C54BDA8D2DF8AC92E833A ] ekrn            C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
02:31:50.0340 0x063c  ekrn - ok
02:31:50.0481 0x063c  [ 392EC4EA0C265F5BC50D057BEAA593CD ] epfw            C:\Windows\system32\DRIVERS\epfw.sys
02:31:50.0483 0x063c  epfw - ok
02:31:50.0580 0x063c  [ 0C9EC63C5BAE9506161F14B8A5C10280 ] EpfwLWF         C:\Windows\system32\DRIVERS\EpfwLWF.sys
02:31:50.0582 0x063c  EpfwLWF - ok
02:31:50.0670 0x063c  [ AD03E0C95E750F3FBE84EDA87B2C4E08 ] epfwwfp         C:\Windows\system32\DRIVERS\epfwwfp.sys
02:31:50.0671 0x063c  epfwwfp - ok
02:31:50.0776 0x063c  [ DFFFAE1442BA4076E18EED5E406FA0D3 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
02:31:50.0776 0x063c  ErrDev - ok
02:31:51.0083 0x063c  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3 ] EventSystem     C:\Windows\system32\es.dll
02:31:51.0091 0x063c  EventSystem - ok
02:31:51.0236 0x063c  [ 7729D294A555C7AEB281ED8E4D0E01E4 ] exfat           C:\Windows\system32\drivers\exfat.sys
02:31:51.0239 0x063c  exfat - ok
02:31:51.0384 0x063c  [ 7C4E0D5900B2A1D11EDD626D6DDB937B ] fastfat         C:\Windows\system32\drivers\fastfat.sys
02:31:51.0388 0x063c  fastfat - ok
02:31:51.0565 0x063c  [ 2BC8532ABF2B3756B78FA1DA54147DDE ] Fax             C:\Windows\system32\fxssvc.exe
02:31:51.0577 0x063c  Fax - ok
02:31:51.0710 0x063c  [ 5D8402613E778B3BD45E687A8372710B ] fdc             C:\Windows\System32\drivers\fdc.sys
02:31:51.0711 0x063c  fdc - ok
02:31:51.0811 0x063c  [ DC1A78BCCCB7EE53D6FD3BD615A8E222 ] fdPHost         C:\Windows\system32\fdPHost.dll
02:31:51.0813 0x063c  fdPHost - ok
02:31:51.0928 0x063c  [ E5AD448F2DC84B1CF387FA7F2A3D1936 ] FDResPub        C:\Windows\system32\fdrespub.dll
02:31:51.0931 0x063c  FDResPub - ok
02:31:52.0029 0x063c  [ 0046E0BD031213D37123876B0D0FA61C ] fhsvc           C:\Windows\system32\fhsvc.dll
02:31:52.0033 0x063c  fhsvc - ok
02:31:52.0173 0x063c  [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
02:31:52.0175 0x063c  FileInfo - ok
02:31:52.0323 0x063c  [ A1A66C4FDAFD6B0289523232AFB7D8AF ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
02:31:52.0324 0x063c  Filetrace - ok
02:31:52.0422 0x063c  [ BE743083CF7063C486A4398E3AEFE59A ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
02:31:52.0423 0x063c  flpydisk - ok
02:31:52.0561 0x063c  [ 60D5067FCE6D9433D35E04C01D8538B3 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
02:31:52.0566 0x063c  FltMgr - ok
02:31:52.0764 0x063c  [ 183CA7699474FDE235853967D1DA4D9B ] FontCache       C:\Windows\system32\FntCache.dll
02:31:52.0809 0x063c  FontCache - ok
02:31:53.0020 0x063c  [ 1C52387BF5A127F5F3BFB31288F30D93 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:31:53.0101 0x063c  FontCache3.0.0.0 - ok
02:31:53.0268 0x063c  [ 35005534E600E993A90B036E4E599F2B ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
02:31:53.0269 0x063c  FsDepends - ok
02:31:53.0367 0x063c  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
02:31:53.0367 0x063c  Fs_Rec - ok
02:31:53.0506 0x063c  [ 818CF11786B2FA424E33A49E2CB79CC9 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
02:31:53.0514 0x063c  fvevol - ok
02:31:53.0668 0x063c  [ 9591D0B9351ED489EAFD9D1CE52A8015 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
02:31:53.0669 0x063c  FxPPM - ok
02:31:53.0826 0x063c  [ FC3EF65EE20D39F8749C2218DBA681CA ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
02:31:53.0827 0x063c  gagp30kx - ok
02:31:53.0986 0x063c  [ 0BF5CAD281E25F1418E5B8875DC5ADD1 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
02:31:53.0987 0x063c  gencounter - ok
02:31:54.0149 0x063c  [ FDA72810CA2F8409D9B31E833C448E34 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
02:31:54.0152 0x063c  GPIOClx0101 - ok
02:31:54.0359 0x063c  [ 0BDE0FCF597E9B65600121EF54FF8340 ] gpsvc           C:\Windows\System32\gpsvc.dll
02:31:54.0404 0x063c  gpsvc - ok
02:31:54.0577 0x063c  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:54.0579 0x063c  gupdate - ok
02:31:54.0688 0x063c  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:31:54.0690 0x063c  gupdatem - ok
02:31:54.0811 0x063c  [ 56F69F7C25FB67C970997D7066DBC593 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:31:54.0819 0x063c  HdAudAddService - ok
02:31:54.0975 0x063c  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
02:31:54.0976 0x063c  HDAudBus - ok
02:31:55.0139 0x063c  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\System32\drivers\HECIx64.sys
02:31:55.0140 0x063c  HECIx64 - ok
02:31:55.0293 0x063c  [ 10A70BC1871CD955D85CD88372724906 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
02:31:55.0294 0x063c  HidBatt - ok
02:31:55.0412 0x063c  [ 1EA1B4FABB8CC348E73CA90DBA22E104 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
02:31:55.0413 0x063c  HidBth - ok
02:31:55.0561 0x063c  [ C241A8BAFBBFC90176EA0F5240EACC17 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
02:31:55.0562 0x063c  hidi2c - ok
02:31:55.0716 0x063c  [ 9BDDEE26255421017E161CCB9D5EDA95 ] HidIr           C:\Windows\System32\drivers\hidir.sys
02:31:55.0717 0x063c  HidIr - ok
02:31:55.0902 0x063c  [ 449A20A674AA3FAA7F0DD4E33EE2DC20 ] hidserv         C:\Windows\system32\hidserv.dll
02:31:55.0905 0x063c  hidserv - ok
02:31:56.0103 0x063c  [ F31397220D9687E11EB448649AA6E038 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
02:31:56.0104 0x063c  HidUsb - ok
02:31:56.0276 0x063c  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5 ] hkmsvc          C:\Windows\system32\kmsvc.dll
02:31:56.0279 0x063c  hkmsvc - ok
02:31:56.0408 0x063c  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:31:56.0414 0x063c  HomeGroupListener - ok
02:31:56.0549 0x063c  [ BE5F89BAFBD4272D5A0C0A37B97865ED ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:31:56.0558 0x063c  HomeGroupProvider - ok
02:31:56.0707 0x063c  [ A6AACEA4C785789BDA5912AD1FEDA80D ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
02:31:56.0708 0x063c  HpSAMD - ok
02:31:56.0873 0x063c  [ 3502776E366C913D49C0DA928AE3E6CB ] HTTP            C:\Windows\system32\drivers\HTTP.sys
02:31:56.0888 0x063c  HTTP - ok
02:31:57.0033 0x063c  [ 90656C0B3864804B090434EFC582404F ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
02:31:57.0034 0x063c  hwpolicy - ok
02:31:57.0139 0x063c  [ 6D6F9E3BF0484967E52F7E846BFF1CA1 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
02:31:57.0140 0x063c  hyperkbd - ok
02:31:57.0239 0x063c  [ 907C870F8C31F8DDD6F090857B46AB25 ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
02:31:57.0240 0x063c  HyperVideo - ok
02:31:57.0366 0x063c  [ 84CFC5EFA97D0C965EDE1D56F116A541 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
02:31:57.0368 0x063c  i8042prt - ok
02:31:57.0528 0x063c  [ 5D90E32E36CE5D4C535D17CE08AEAF05 ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
02:31:57.0529 0x063c  iaLPSSi_GPIO - ok
02:31:57.0642 0x063c  [ DD05E7E80F52ADE9AEB292819920F32C ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
02:31:57.0643 0x063c  iaLPSSi_I2C - ok
02:31:57.0781 0x063c  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
02:31:57.0799 0x063c  iaStorAV - ok
02:31:57.0920 0x063c  [ A2200C3033FA4EF249FC096A7A7D02A2 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
02:31:57.0926 0x063c  iaStorV - ok
02:31:58.0056 0x063c  IEEtwCollectorService - ok
02:31:58.0216 0x063c  [ F568467CD984714E1B849CA170358EC0 ] IKEEXT          C:\Windows\System32\ikeext.dll
02:31:58.0228 0x063c  IKEEXT - ok
02:31:58.0452 0x063c  [ 4E448FCFFD00E8D657CD9E48D3E47157 ] intelide        C:\Windows\system32\drivers\intelide.sys
02:31:58.0453 0x063c  intelide - ok
02:31:58.0591 0x063c  [ 647CF2AB16D2A23F1C441A313BC39820 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
02:31:58.0592 0x063c  intelpep - ok
02:31:58.0738 0x063c  [ 47E74A8E53C7C24DCE38311E1451C1D9 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
02:31:58.0739 0x063c  intelppm - ok
02:31:58.0898 0x063c  [ 9DB76D7F9E4E53EFE5DD8C53DE837514 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:31:58.0899 0x063c  IpFilterDriver - ok
02:31:59.0054 0x063c  [ 201EDF3C5E674BF1FE44D28CC6A76EA2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
02:31:59.0068 0x063c  iphlpsvc - ok
02:31:59.0210 0x063c  [ 9949A3C7590B8C536C05312205079A82 ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
02:31:59.0211 0x063c  IPMIDRV - ok
02:31:59.0340 0x063c  [ 0063040EFD7C5B81D67CF985BA35388A ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
02:31:59.0342 0x063c  IPNAT - ok
02:31:59.0463 0x063c  [ AE44C526AB5F8A487D941CEB57B10C97 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
02:31:59.0464 0x063c  IRENUM - ok
02:31:59.0587 0x063c  [ 8AFEEA3955AA43616A60F133B1D25F21 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
02:31:59.0588 0x063c  isapnp - ok
02:31:59.0716 0x063c  [ 034D4BD9DC67C64F3A4C8A049B5173BF ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
02:31:59.0721 0x063c  iScsiPrt - ok
02:31:59.0866 0x063c  [ 45369E037410609D769852A1CE46A184 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
02:31:59.0873 0x063c  k57nd60a - ok
02:32:00.0006 0x063c  [ 8BE92376799B6B44D543E8D07CDCF885 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
02:32:00.0007 0x063c  kbdclass - ok
02:32:00.0124 0x063c  [ FB6E47E569D4872ABEB506BE03A45FBA ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
02:32:00.0125 0x063c  kbdhid - ok
02:32:00.0245 0x063c  [ DB7A09BC90DF20F44F16F8B0F9ED3491 ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
02:32:00.0246 0x063c  kbldfltr - ok
02:32:00.0391 0x063c  [ 813871C7D402A05F2E3A7075F9584A05 ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
02:32:00.0392 0x063c  kdnic - ok
02:32:00.0530 0x063c  [ F6F209DDB94959BA104FC8FC87C53759 ] KeyIso          C:\Windows\system32\lsass.exe
02:32:00.0532 0x063c  KeyIso - ok
02:32:00.0680 0x063c  [ 0AD1DF5AF3E1AEE66583F9718E892B50 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
02:32:00.0682 0x063c  KSecDD - ok
02:32:00.0838 0x063c  [ 7296EA420134EAC390798B3232D066A4 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
02:32:00.0841 0x063c  KSecPkg - ok
02:32:00.0969 0x063c  [ 11AFB527AA370B1DAFD5C36F35F6D45F ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
02:32:00.0970 0x063c  ksthunk - ok
02:32:01.0124 0x063c  [ 32B1A8351160F307A8C66BCB0F94A9C2 ] KtmRm           C:\Windows\system32\msdtckrm.dll
02:32:01.0132 0x063c  KtmRm - ok
02:32:01.0305 0x063c  [ 27B58E16CF895AC1F1A97C04814C2239 ] LanmanServer    C:\Windows\system32\srvsvc.dll
02:32:01.0313 0x063c  LanmanServer - ok
02:32:01.0478 0x063c  [ D0D9C2ECA4D03A8F06DCD91236B90C98 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:32:01.0509 0x063c  LanmanWorkstation - ok
02:32:01.0870 0x063c  [ 48C163706383C7319DC1F8E9D135D68E ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
02:32:01.0879 0x063c  lfsvc - ok
02:32:02.0053 0x063c  [ C09010B3680860131631F53E8FE7BAD8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
02:32:02.0055 0x063c  lltdio - ok
02:32:02.0242 0x063c  [ 00E070FC0C673311AFD4B068D1242780 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
02:32:02.0248 0x063c  lltdsvc - ok
02:32:02.0433 0x063c  [ D113FAD71A5E67AA94B32A0F8828D265 ] lmhosts         C:\Windows\System32\lmhsvc.dll
02:32:02.0436 0x063c  lmhosts - ok
02:32:02.0730 0x063c  [ C755AE4635457AA2A11F79C0DF857ABC ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
02:32:02.0731 0x063c  LSI_SAS - ok
02:32:02.0909 0x063c  [ ADAC09CBE7A2040B7F68B5E5C9A75141 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
02:32:02.0910 0x063c  LSI_SAS2 - ok
02:32:03.0085 0x063c  [ 04D1274BB9BBCCF12BD12374002AA191 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
02:32:03.0087 0x063c  LSI_SAS3 - ok
02:32:03.0255 0x063c  [ 327469EEF3833D0C584B7E88A76AEC0C ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
02:32:03.0256 0x063c  LSI_SSS - ok
02:32:03.0479 0x063c  [ B6B69FF200F68888A7FAFDF204D00C91 ] LSM             C:\Windows\System32\lsm.dll
02:32:03.0491 0x063c  LSM - ok
02:32:03.0694 0x063c  [ 5EF604B0698F4FA962778285E8C5F1F2 ] luafv           C:\Windows\system32\drivers\luafv.sys
02:32:03.0696 0x063c  luafv - ok
02:32:03.0883 0x063c  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
02:32:03.0883 0x063c  MBAMProtector - ok
02:32:04.0084 0x063c  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
02:32:04.0088 0x063c  MBAMScheduler - ok
02:32:04.0307 0x063c  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
02:32:04.0317 0x063c  MBAMService - ok
02:32:04.0500 0x063c  [ EB5C03A070F30D64A6DF80E53B22F53F ] megasas         C:\Windows\system32\drivers\megasas.sys
02:32:04.0501 0x063c  megasas - ok
02:32:04.0696 0x063c  [ F6F13533196DE7A582D422B0241E4363 ] megasr          C:\Windows\system32\drivers\megasr.sys
02:32:04.0704 0x063c  megasr - ok
02:32:04.0897 0x063c  [ FD788C2D96EA91469A3C1D13E80D7473 ] MMCSS           C:\Windows\system32\mmcss.dll
02:32:04.0900 0x063c  MMCSS - ok
02:32:05.0081 0x063c  [ 8B38C44F69259987C95135C9627E2378 ] Modem           C:\Windows\system32\drivers\modem.sys
02:32:05.0082 0x063c  Modem - ok
02:32:05.0235 0x063c  [ 601589000CC90F0DF8DA2CC254A3CCC9 ] monitor         C:\Windows\System32\drivers\monitor.sys
02:32:05.0236 0x063c  monitor - ok
02:32:05.0417 0x063c  [ CEAC6D40FE887CE8406C2393CF97DE06 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
02:32:05.0419 0x063c  mouclass - ok
02:32:05.0640 0x063c  [ 02D98BF804084E9A0D69D1C69B02CCA9 ] mouhid          C:\Windows\System32\drivers\mouhid.sys
02:32:05.0641 0x063c  mouhid - ok
02:32:05.0840 0x063c  [ 515549560D481138E6E21AF7C6998E56 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
02:32:05.0843 0x063c  mountmgr - ok
02:32:06.0008 0x063c  [ F170510BE94CF45E3C6274578F6204B2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
02:32:06.0010 0x063c  mpsdrv - ok
02:32:06.0222 0x063c  [ D186C5844393252147BE934F3871DB7A ] MpsSvc          C:\Windows\system32\mpssvc.dll
02:32:06.0236 0x063c  MpsSvc - ok
02:32:06.0421 0x063c  [ 59DCEC7499095DE5AED741358037AE2D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
02:32:06.0422 0x063c  MRxDAV - ok
02:32:06.0581 0x063c  [ 405A2E5754DF76663CF0522B87D7929F ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
02:32:06.0587 0x063c  mrxsmb - ok
02:32:06.0743 0x063c  [ 295771B092D4F7FCF2B62F80CCD14320 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:32:06.0748 0x063c  mrxsmb10 - ok
02:32:06.0907 0x063c  [ FFC548EABBB8271E979B0EEE0EA4D55B ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:32:06.0911 0x063c  mrxsmb20 - ok
02:32:07.0048 0x063c  [ 4E888019078AC363076A5433E89AA4F8 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
02:32:07.0050 0x063c  MsBridge - ok
02:32:07.0207 0x063c  [ A082C17D14D0790E27D064EA4B138AE1 ] MSDTC           C:\Windows\System32\msdtc.exe
02:32:07.0212 0x063c  MSDTC - ok
02:32:07.0599 0x063c  [ D13329FBF8345B28AB30F44CC247DC08 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
02:32:07.0600 0x063c  Msfs - ok
02:32:07.0743 0x063c  [ C6B474E46F9E543B875981ED3FFE6ADD ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
02:32:07.0744 0x063c  msgpiowin32 - ok
02:32:07.0891 0x063c  [ 65C92EB9D08DB5C69F28C7FFD4E84E31 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
02:32:07.0892 0x063c  mshidkmdf - ok
02:32:08.0054 0x063c  [ 52299F086AC2DAFD100DD5DC4A8614BA ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
02:32:08.0055 0x063c  mshidumdf - ok
02:32:08.0210 0x063c  [ 36D92AF3343C3A3E57FEF11C449AEA4C ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
02:32:08.0211 0x063c  msisadrv - ok
02:32:08.0390 0x063c  [ 810F8A0A0680662BB0CE44D0E2CEF90C ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
02:32:08.0395 0x063c  MSiSCSI - ok
02:32:08.0542 0x063c  msiserver - ok
02:32:08.0697 0x063c  [ D22AE5313F6B7EFDDD8C117B5501F4A3 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
02:32:08.0701 0x063c  MsKeyboardFilter - ok
02:32:08.0841 0x063c  [ A9BBBD2BAE6142253B9195E949AC2E8D ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
02:32:08.0841 0x063c  MSKSSRV - ok
02:32:08.0987 0x063c  [ 375E44168F2DFB91A68B8A3F619C5A7C ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
02:32:08.0989 0x063c  MsLldp - ok
02:32:09.0133 0x063c  [ 7B2128EB875DCBC006E6A913211006D6 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
02:32:09.0134 0x063c  MSPCLOCK - ok
02:32:09.0280 0x063c  [ 1E88171579B218115C7A772F8DE04BD8 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
02:32:09.0280 0x063c  MSPQM - ok
02:32:09.0527 0x063c  [ BBE2A455053E63BECBF42C2F9B21FAE0 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
02:32:09.0533 0x063c  MsRPC - ok
02:32:09.0835 0x063c  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
02:32:09.0837 0x063c  mssmbios - ok
02:32:09.0988 0x063c  [ 115019AE01E0EB9C048530D2928AB4A2 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
02:32:09.0989 0x063c  MSTEE - ok
02:32:10.0139 0x063c  [ 96D604A35070360F0DD4A7A8AF410B5E ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
02:32:10.0140 0x063c  MTConfig - ok
02:32:10.0312 0x063c  [ 619CA29326B82372621DB2C0964D8365 ] Mup             C:\Windows\system32\Drivers\mup.sys
02:32:10.0314 0x063c  Mup - ok
02:32:10.0494 0x063c  [ B8C35C94DCB2DFEAF03BB42131F2F77F ] mvumis          C:\Windows\system32\drivers\mvumis.sys
02:32:10.0495 0x063c  mvumis - ok
02:32:10.0675 0x063c  [ 41A45D2A75494EABF2806EA051E00376 ] napagent        C:\Windows\system32\qagentRT.dll
02:32:10.0684 0x063c  napagent - ok
02:32:10.0879 0x063c  [ 869055F61568AA08E7DEE95EC82ED653 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
02:32:10.0886 0x063c  NativeWifiP - ok
02:32:11.0098 0x063c  [ 71E3C0100AA19D11373CCEB2F51A6008 ] NcaSvc          C:\Windows\System32\ncasvc.dll
02:32:11.0103 0x063c  NcaSvc - ok
02:32:11.0323 0x063c  [ 51DF09CAB2CAC64FEE3E371D9028ED01 ] NcbService      C:\Windows\System32\ncbservice.dll
02:32:11.0327 0x063c  NcbService - ok
02:32:11.0507 0x063c  [ 2586C4C167499210DCBF3ECFD8CCE210 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
02:32:11.0511 0x063c  NcdAutoSetup - ok
02:32:11.0711 0x063c  [ 424B0796F85BB0DADD4438EAFFADA133 ] NDIS            C:\Windows\system32\drivers\ndis.sys
02:32:11.0736 0x063c  NDIS - ok
02:32:11.0941 0x063c  [ C6BB12BC35D1637CA17AE16D3A4725EB ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
02:32:11.0942 0x063c  NdisCap - ok
02:32:12.0154 0x063c  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
02:32:12.0156 0x063c  NdisImPlatform - ok
02:32:12.0354 0x063c  [ 9423421E735BD5394351E0C47C76BB92 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
02:32:12.0355 0x063c  NdisTapi - ok
02:32:12.0528 0x063c  [ B832B35055BA2B7B4181861FF94D8E59 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
02:32:12.0530 0x063c  Ndisuio - ok
02:32:12.0694 0x063c  [ 1F58E48EF75F34C35D8E93A0DC535CFE ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
02:32:12.0695 0x063c  NdisVirtualBus - ok
02:32:12.0903 0x063c  [ DEC29080202D4F9F17F55E18BCFCC41A ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
02:32:12.0906 0x063c  NdisWan - ok
02:32:13.0104 0x063c  [ DEC29080202D4F9F17F55E18BCFCC41A ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
02:32:13.0107 0x063c  NdisWanLegacy - ok
02:32:13.0344 0x063c  [ A5BD69A8812FA79D1A487691DD3FB244 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
02:32:13.0346 0x063c  NDProxy - ok
02:32:13.0537 0x063c  [ 5A072F0B90C29C5233D78BE33EF5ED78 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
02:32:13.0539 0x063c  Ndu - ok
02:32:13.0721 0x063c  [ A83D67D347A684F10B7D3019C8A6380C ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
02:32:13.0723 0x063c  NetBIOS - ok
02:32:13.0904 0x063c  [ 0217532E19A748F0E5D569307363D5FD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
02:32:13.0909 0x063c  NetBT - ok
02:32:14.0074 0x063c  [ F6F209DDB94959BA104FC8FC87C53759 ] Netlogon        C:\Windows\system32\lsass.exe
02:32:14.0077 0x063c  Netlogon - ok
02:32:14.0258 0x063c  [ B7AD851A21FEBA3BA214972627614207 ] Netman          C:\Windows\System32\netman.dll
02:32:14.0264 0x063c  Netman - ok
02:32:14.0486 0x063c  [ F0F0A372C2EF6358399C4936F91B6131 ] netprofm        C:\Windows\System32\netprofmsvc.dll
02:32:14.0493 0x063c  netprofm - ok
02:32:14.0730 0x063c  [ 1092B3190E69E0C5ECBCE90F171DE047 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:32:14.0744 0x063c  NetTcpPortSharing - ok
02:32:14.0967 0x063c  [ 70414DB660BFBB7BD58FCE8EA4364E1B ] netvsc          C:\Windows\system32\DRIVERS\netvsc63.sys
02:32:14.0968 0x063c  netvsc - ok
02:32:15.0201 0x063c  [ 3A280F3B3C7A46E29C404ACD46ECBF5E ] NlaSvc          C:\Windows\System32\nlasvc.dll
02:32:15.0209 0x063c  NlaSvc - ok
02:32:15.0411 0x063c  [ 8F44A2F57C9F1A19AC9C6288C10FB351 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
02:32:15.0413 0x063c  Npfs - ok
02:32:15.0637 0x063c  [ CBDB4F0871C88DF930FC0E8588CA67FC ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
02:32:15.0638 0x063c  npsvctrig - ok
02:32:15.0811 0x063c  [ 6E2271ED0C3E95B8E29F3752B91B9E84 ] nsi             C:\Windows\system32\nsisvc.dll
02:32:15.0814 0x063c  nsi - ok
02:32:16.0029 0x063c  [ E490B459978CB87779E84C761D22B827 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
02:32:16.0031 0x063c  nsiproxy - ok
02:32:16.0402 0x063c  [ 4412D565C0278C401575E11072C7DCE3 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
02:32:16.0460 0x063c  Ntfs - ok
02:32:16.0664 0x063c  [ EF1B290FC9F0E47CC0B537292BEE5904 ] Null            C:\Windows\system32\drivers\Null.sys
02:32:16.0665 0x063c  Null - ok
02:32:16.0849 0x063c  [ BC6B5942AFF25EBAF62DE43C3807EDF8 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
02:32:16.0851 0x063c  nvraid - ok
02:32:17.0028 0x063c  [ 1F43ABFFAC3D6CA356851D517392966E ] nvstor          C:\Windows\system32\drivers\nvstor.sys
02:32:17.0031 0x063c  nvstor - ok
02:32:17.0262 0x063c  [ 6934A936A7369DFE37B7DBA93F5E5E49 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
02:32:17.0264 0x063c  nv_agp - ok
02:32:17.0509 0x063c  [ 3B510F20806B94E389784ED09DBD2111 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
02:32:17.0518 0x063c  p2pimsvc - ok
02:32:17.0788 0x063c  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B ] p2psvc          C:\Windows\system32\p2psvc.dll
02:32:17.0796 0x063c  p2psvc - ok
02:32:18.0044 0x063c  [ 764B1121867B2D9B31C491668AC72B2B ] Parport         C:\Windows\System32\drivers\parport.sys
02:32:18.0046 0x063c  Parport - ok
02:32:18.0278 0x063c  [ EF0C1749C9A8CEE9A457473D433CC00F ] partmgr         C:\Windows\system32\drivers\partmgr.sys
02:32:18.0279 0x063c  partmgr - ok
02:32:18.0501 0x063c  [ 38A31075D9630062AD7E26C97033CCC7 ] PcaSvc          C:\Windows\System32\pcasvc.dll
02:32:18.0511 0x063c  PcaSvc - ok
02:32:18.0774 0x063c  [ C0D3F3BC1C84B4BA746D9847314C1164 ] pci             C:\Windows\system32\drivers\pci.sys
02:32:18.0782 0x063c  pci - ok
02:32:19.0097 0x063c  [ 346E38FCC6859A727DD28AFAD1F0AFF4 ] pciide          C:\Windows\system32\drivers\pciide.sys
02:32:19.0098 0x063c  pciide - ok
02:32:19.0330 0x063c  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
02:32:19.0332 0x063c  pcmcia - ok
02:32:19.0549 0x063c  [ BF28771D1436C88BE1D297D3098B0F7D ] pcw             C:\Windows\system32\drivers\pcw.sys
02:32:19.0550 0x063c  pcw - ok
02:32:19.0784 0x063c  [ 28AAACD3B871305F07188A0DB366B439 ] pdc             C:\Windows\system32\drivers\pdc.sys
02:32:19.0786 0x063c  pdc - ok
02:32:20.0043 0x063c  [ BA50CC0BD19004AAB88BE37338B6FA0D ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
02:32:20.0052 0x063c  PEAUTH - ok
02:32:20.0327 0x063c  [ 084DE525DFE82AE7453DD527390FA110 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
02:32:20.0384 0x063c  PeerDistSvc - ok
02:32:20.0886 0x063c  [ 8E3C640FFF5A963F570233AE99C0FFF3 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
02:32:20.0889 0x063c  PerfHost - ok
02:32:21.0662 0x063c  [ 928061178CD9856CA6B67FFFCE6BA766 ] pla             C:\Windows\system32\pla.dll
02:32:21.0708 0x063c  pla - ok
02:32:21.0955 0x063c  [ 752A457320A946E03C3AA86C3ACD735E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
02:32:21.0960 0x063c  PlugPlay - ok
02:32:22.0206 0x063c  [ 045EB4F260606A03BE340D09DEAF3BA4 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
02:32:22.0210 0x063c  PNRPAutoReg - ok
02:32:22.0486 0x063c  [ 3B510F20806B94E389784ED09DBD2111 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
02:32:22.0493 0x063c  PNRPsvc - ok
02:32:22.0687 0x063c  [ C16097D77A232A288D65F299E2E01105 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
02:32:22.0693 0x063c  PolicyAgent - ok
02:32:23.0082 0x063c  [ 00E08B30E7F7C13ECE2CDF4F46A77311 ] Power           C:\Windows\system32\umpo.dll
02:32:23.0087 0x063c  Power - ok
02:32:23.0293 0x063c  [ E075CC071022BD4E9BE7C024717C0E0A ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
02:32:23.0295 0x063c  PptpMiniport - ok
02:32:23.0597 0x063c  [ B7DB57A000D46D4DE75BC0C563E58072 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
02:32:23.0657 0x063c  PrintNotify - ok
02:32:23.0908 0x063c  [ ECD373F9571C745894367CC2635EA44F ] Processor       C:\Windows\System32\drivers\processr.sys
02:32:23.0909 0x063c  Processor - ok
02:32:24.0142 0x063c  [ 9E5A3A3B702ECB9E88AA07731F0E65EB ] ProfSvc         C:\Windows\system32\profsvc.dll
02:32:24.0149 0x063c  ProfSvc - ok
02:32:24.0367 0x063c  [ 8528BB05E4D4E25945F78B00B2555FB7 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
02:32:24.0371 0x063c  Psched - ok
02:32:24.0637 0x063c  [ AF90BB44C99D6820BE52C9BBAA523283 ] QWAVE           C:\Windows\system32\qwave.dll
02:32:24.0644 0x063c  QWAVE - ok
02:32:24.0853 0x063c  [ 3FB466684609A4329858CF2EBD62E0FD ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
02:32:24.0855 0x063c  QWAVEdrv - ok
02:32:25.0044 0x063c  [ 2C56F0EE27E4EF70CA4B4983D3638905 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
02:32:25.0044 0x063c  RasAcd - ok
02:32:25.0235 0x063c  [ B91EB769A3EB9F44BA7439451B7E1A7F ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
02:32:25.0236 0x063c  RasAgileVpn - ok
02:32:25.0481 0x063c  [ 5F061AC45266841A2860C1858ED863B8 ] RasAuto         C:\Windows\System32\rasauto.dll
02:32:25.0485 0x063c  RasAuto - ok
02:32:25.0747 0x063c  [ BBB6272B7F46C4640A8CDB8A70C3450F ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
02:32:25.0749 0x063c  Rasl2tp - ok
02:32:25.0960 0x063c  [ BF3B17016764F20F9D28CF1A8DC210C0 ] RasMan          C:\Windows\System32\rasmans.dll
02:32:25.0970 0x063c  RasMan - ok
02:32:26.0203 0x063c  [ 5247F308C4103CDC4FE12AE1D235800A ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
02:32:26.0204 0x063c  RasPppoe - ok
02:32:26.0383 0x063c  [ 2B0F1677CDD08967005F34488559BC6F ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
02:32:26.0384 0x063c  RasSstp - ok
02:32:26.0595 0x063c  [ B939A2A0F9D6C6C186721E268EB6FA93 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
02:32:26.0602 0x063c  rdbss - ok
02:32:26.0955 0x063c  [ 6B21EBF892CD8CACB71669B35AB5DE32 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
02:32:26.0956 0x063c  rdpbus - ok
02:32:27.0156 0x063c  [ 680C1DAE268B6FB67FA21B389A8B79EF ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
02:32:27.0159 0x063c  RDPDR - ok
02:32:27.0694 0x063c  [ 858776908AF838E3790F3261B799CDA6 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
02:32:27.0695 0x063c  RdpVideoMiniport - ok
02:32:27.0909 0x063c  [ 2C915EFFF23EA65D1E760FA397BCA6AB ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
02:32:27.0914 0x063c  rdyboost - ok
02:32:28.0178 0x063c  [ 036746D54347FD2D0385668E2A4064E4 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
02:32:28.0191 0x063c  ReFS - ok
02:32:28.0624 0x063c  [ BFFB40FBE6D2C3469F8D06EE5E4934AB ] RemoteAccess    C:\Windows\System32\mprdim.dll
02:32:28.0629 0x063c  RemoteAccess - ok
02:32:28.0861 0x063c  [ 4DCCABE03D06955ED61BABBD8EF9F30F ] RemoteRegistry  C:\Windows\system32\regsvc.dll
02:32:28.0866 0x063c  RemoteRegistry - ok
02:32:29.0117 0x063c  [ D894CBD7DA753C881EE8D5E33B583225 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
02:32:29.0121 0x063c  RpcEptMapper - ok
02:32:29.0332 0x063c  [ 5CAE8F47B31D5CFC322B5B898C19E0FE ] RpcLocator      C:\Windows\system32\locator.exe
02:32:29.0335 0x063c  RpcLocator - ok
02:32:29.0591 0x063c  [ 3FD5AE42EC87C6F532A931F96BE731DD ] RpcSs           C:\Windows\system32\rpcss.dll
02:32:29.0602 0x063c  RpcSs - ok
02:32:29.0837 0x063c  [ 2D05A5508F4685412F2B89E8C2189ABC ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
02:32:29.0838 0x063c  rspndr - ok
02:32:30.0051 0x063c  [ 1A063730F221B2746FF00457AE17E4F0 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
02:32:30.0052 0x063c  s3cap - ok
02:32:30.0318 0x063c  [ F6F209DDB94959BA104FC8FC87C53759 ] SamSs           C:\Windows\system32\lsass.exe
02:32:30.0320 0x063c  SamSs - ok
02:32:30.0588 0x063c  SANDRA - ok
02:32:30.0868 0x063c  [ C624A1B32211C3166EDB3F4AB02A30B7 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
02:32:30.0870 0x063c  sbp2port - ok
02:32:31.0210 0x063c  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
02:32:31.0222 0x063c  SBSDWSCService - ok
02:32:31.0495 0x063c  [ 47C497FA4DDEA908633CAA60CEBE6805 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
02:32:31.0501 0x063c  SCardSvr - ok
02:32:31.0797 0x063c  [ E76C4E98302AE39CC6FA5D20FC8B5438 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
02:32:31.0802 0x063c  ScDeviceEnum - ok
02:32:32.0056 0x063c  [ ABD0237B15DBD2B4695F4B7D734A58F7 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
02:32:32.0058 0x063c  scfilter - ok
02:32:32.0308 0x063c  [ 888A30EAB651502352C18745367FD179 ] Schedule        C:\Windows\system32\schedsvc.dll
02:32:32.0354 0x063c  Schedule - ok
02:32:32.0639 0x063c  [ AB285CE3431FF3D2ACE669245874C1C7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
02:32:32.0641 0x063c  SCPolicySvc - ok
02:32:32.0918 0x063c  [ C6A6F8921B94BC1673AC9AB485DF9A18 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
02:32:32.0923 0x063c  sdbus - ok
02:32:33.0197 0x063c  [ 4EAF4DCF9DBD9A56952A58F56D61C005 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
02:32:33.0198 0x063c  sdstor - ok
02:32:33.0442 0x063c  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
02:32:33.0443 0x063c  secdrv - ok
02:32:33.0705 0x063c  [ C49009F897BA4F2F4F31043663AA1485 ] seclogon        C:\Windows\system32\seclogon.dll
02:32:33.0709 0x063c  seclogon - ok
02:32:33.0964 0x063c  [ A88882E64BDC1D8E8D6E727B71CCCC53 ] SENS            C:\Windows\System32\sens.dll
02:32:33.0968 0x063c  SENS - ok
02:32:34.0240 0x063c  [ E66A7C8CE7ED22DED6DF1CA479FB4790 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
02:32:34.0247 0x063c  SensrSvc - ok
02:32:34.0552 0x063c  [ DB2FF24CE0BDD15FE75870AFE312BA89 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
02:32:34.0554 0x063c  SerCx - ok
02:32:34.0817 0x063c  [ 53BDBF04ECAF943CBF6359E3BCB2445E ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
02:32:34.0819 0x063c  SerCx2 - ok
02:32:35.0018 0x063c  [ 3CD600C089C1251BEEB4CD4CD5164F9E ] Serenum         C:\Windows\System32\drivers\serenum.sys
02:32:35.0019 0x063c  Serenum - ok
02:32:35.0275 0x063c  [ D864381BC9C725FAB01D94C060660166 ] Serial          C:\Windows\System32\drivers\serial.sys
02:32:35.0277 0x063c  Serial - ok
02:32:35.0546 0x063c  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D ] sermouse        C:\Windows\System32\drivers\sermouse.sys
02:32:35.0547 0x063c  sermouse - ok
02:32:36.0501 0x063c  [ 438CFF94FC90A571389FE49CDC913E49 ] SessionEnv      C:\Windows\system32\sessenv.dll
02:32:36.0509 0x063c  SessionEnv - ok
02:32:36.0782 0x063c  [ 472B7A5AC181C050888DB454663DD764 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
02:32:36.0783 0x063c  sfloppy - ok
02:32:37.0007 0x063c  [ 08A08EC17F1874802A8BC6D083BF1C55 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
02:32:37.0015 0x063c  SharedAccess - ok
02:32:37.0319 0x063c  [ 0D190D8B4B20446BE6299AC734DFADF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:32:37.0330 0x063c  ShellHWDetection - ok
02:32:37.0601 0x063c  [ 2F518D13DD6F3053837FE606F1A2EA1F ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
02:32:37.0602 0x063c  SiSRaid2 - ok
02:32:37.0827 0x063c  [ 1AC9A200A9C49C4508F04AAFFCA34A3F ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
02:32:37.0828 0x063c  SiSRaid4 - ok
02:32:38.0101 0x063c  [ 587ACA15210D1B01FBF272E07A08F91A ] smphost         C:\Windows\System32\smphost.dll
02:32:38.0104 0x063c  smphost - ok
02:32:38.0719 0x063c  [ 49EEB92DE930B8566EF615D600781DB4 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
02:32:38.0723 0x063c  SNMPTRAP - ok
02:32:39.0018 0x063c  [ 349059B0C9EAED5A951D1693132A2EA8 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
02:32:39.0026 0x063c  spaceport - ok
02:32:39.0294 0x063c  [ F337BE11071818FC3F5DC2940B6BDE34 ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
02:32:39.0295 0x063c  SpbCx - ok
02:32:39.0543 0x063c  [ FE0CB40F36D3FCDD3A1B312EF72C38D5 ] Spooler         C:\Windows\System32\spoolsv.exe
02:32:39.0557 0x063c  Spooler - ok
02:32:39.0966 0x063c  [ 4F68F08D3AF5AAE315800338932AF042 ] sppsvc          C:\Windows\system32\sppsvc.exe
02:32:40.0104 0x063c  sppsvc - ok
02:32:40.0397 0x063c  [ CD7534BA5BA92086B1BC10ADF880FC49 ] srv             C:\Windows\system32\DRIVERS\srv.sys
02:32:40.0404 0x063c  srv - ok
02:32:40.0719 0x063c  [ 59F15EFD74FDE8A1D9278F2C04F5D0B9 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
02:32:40.0729 0x063c  srv2 - ok
02:32:41.0010 0x063c  [ 96A7F9E8B3E0DD0355067D894C71A8F7 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
02:32:41.0014 0x063c  srvnet - ok
02:32:41.0311 0x063c  [ BB9ED3EDD8E85008215A7250D325A72E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
02:32:41.0317 0x063c  SSDPSRV - ok
02:32:41.0626 0x063c  [ 3911418AFDE10EA6823B7799E4815524 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
02:32:41.0631 0x063c  SstpSvc - ok
02:32:41.0894 0x063c  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B ] stexstor        C:\Windows\system32\drivers\stexstor.sys
02:32:41.0895 0x063c  stexstor - ok
02:32:42.0172 0x063c  [ D638904FE86A5FE542A1BA13A9D68E5C ] stisvc          C:\Windows\System32\wiaservc.dll
02:32:42.0185 0x063c  stisvc - ok
02:32:42.0471 0x063c  [ 0ED2E318ABB68C1A35A8B8038BDB4C90 ] storahci        C:\Windows\system32\drivers\storahci.sys
02:32:42.0473 0x063c  storahci - ok
02:32:42.0722 0x063c  [ 7A08CEE1535F5A448215634C5EA74E50 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
02:32:42.0723 0x063c  storflt - ok
02:32:42.0996 0x063c  [ D57AEE34C7C0DD1DC8B6B54B7A89649C ] stornvme        C:\Windows\system32\drivers\stornvme.sys
02:32:42.0997 0x063c  stornvme - ok
02:32:43.0231 0x063c  [ 3118058E3D07021A55324A943C6D722B ] StorSvc         C:\Windows\system32\storsvc.dll
02:32:43.0235 0x063c  StorSvc - ok
02:32:43.0516 0x063c  [ 548759755BC73DAD663250239D7E0B9F ] storvsc         C:\Windows\system32\drivers\storvsc.sys
02:32:43.0517 0x063c  storvsc - ok
02:32:43.0784 0x063c  [ 03618F935379614837F915D04C45FC0E ] storvsp         C:\Windows\System32\drivers\storvsp.sys
02:32:43.0785 0x063c  storvsp - ok
02:32:44.0068 0x063c  [ D8E1AE075AB3E8AD56F69C44AA978596 ] svsvc           C:\Windows\system32\svsvc.dll
02:32:44.0072 0x063c  svsvc - ok
02:32:44.0346 0x063c  [ 84E0F5D41C138C5CC975137A2A98F6D3 ] swenum          C:\Windows\System32\drivers\swenum.sys
02:32:44.0347 0x063c  swenum - ok
02:32:44.0643 0x063c  [ A5DC2E63F5E5D3C0B843307374998479 ] swprv           C:\Windows\System32\swprv.dll
02:32:44.0656 0x063c  swprv - ok
02:32:44.0958 0x063c  [ 3C2B9C8EA210F014563BF6391596D8F7 ] SysMain         C:\Windows\system32\sysmain.dll
02:32:44.0990 0x063c  SysMain - ok
02:32:45.0291 0x063c  [ 373382005ACB27CB16ED16722FBE946A ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
02:32:45.0298 0x063c  SystemEventsBroker - ok
02:32:45.0594 0x063c  [ BA6DD39266A5E15515C8C14DA2DA3E5C ] TabletInputService C:\Windows\System32\TabSvc.dll
02:32:45.0600 0x063c  TabletInputService - ok
02:32:45.0926 0x063c  [ F0B9D3ED88E56D3CD713DFF21E42AAF0 ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
02:32:45.0927 0x063c  tap0901 - ok
02:32:46.0222 0x063c  [ B517410F157693043DACA21B19B258A6 ] TapiSrv         C:\Windows\System32\tapisrv.dll
02:32:46.0230 0x063c  TapiSrv - ok
02:32:46.0589 0x063c  [ C9436791C9DD3B5206DDBB1F75EE3E54 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
02:32:46.0657 0x063c  Tcpip - ok
02:32:47.0010 0x063c  [ C9436791C9DD3B5206DDBB1F75EE3E54 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
02:32:47.0034 0x063c  TCPIP6 - ok
02:32:47.0465 0x063c  [ 33A7D83EEB15431773A6E186CFAABA21 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
02:32:47.0466 0x063c  tcpipreg - ok
02:32:47.0964 0x063c  [ FFF28F9F6823EB1756C60F1649560BBF ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
02:32:47.0966 0x063c  tdx - ok
02:32:48.0251 0x063c  [ 232D185D2337F141311D0CF1983E1431 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
02:32:48.0253 0x063c  terminpt - ok
02:32:48.0535 0x063c  [ 2C77831737491F4D684D315B95C62883 ] TermService     C:\Windows\System32\termsrv.dll
02:32:48.0576 0x063c  TermService - ok
02:32:48.0875 0x063c  [ 05FBE1F7C13E87AF7A414CDF288B1F62 ] Themes          C:\Windows\system32\themeservice.dll
02:32:48.0879 0x063c  Themes - ok
02:32:49.0173 0x063c  [ FD788C2D96EA91469A3C1D13E80D7473 ] THREADORDER     C:\Windows\system32\mmcss.dll
02:32:49.0176 0x063c  THREADORDER - ok
02:32:49.0486 0x063c  [ 347A3E49CE18402305B8119A6EC7CFEB ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
02:32:49.0491 0x063c  TimeBroker - ok
02:32:49.0794 0x063c  [ 82F909359600D3603FE852DB7F135626 ] TPM             C:\Windows\system32\drivers\tpm.sys
02:32:49.0797 0x063c  TPM - ok
02:32:50.0097 0x063c  [ C97E14BB6A196B0554D6EB67D8818175 ] TrkWks          C:\Windows\System32\trkwks.dll
02:32:50.0102 0x063c  TrkWks - ok
02:32:50.0429 0x063c  [ DA56FFA46030E6FEB215E3D5DAA65B11 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:32:50.0431 0x063c  TrustedInstaller - ok
02:32:50.0963 0x063c  [ BF8F54CA37E9C9D6582C31C5761F8C93 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
02:32:50.0965 0x063c  TsUsbFlt - ok
02:32:51.0251 0x063c  [ E0088068DCE2EE82897027DDB8E05254 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
02:32:51.0252 0x063c  TsUsbGD - ok
02:32:51.0589 0x063c  [ 17127AFE9FE87C7BC3B3BEFBA71FF121 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
02:32:51.0610 0x063c  TuneUp.UtilitiesSvc - ok
02:32:51.0912 0x063c  [ 45427C4B8CAC6B241478F149B935CD80 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys
02:32:51.0913 0x063c  TuneUpUtilitiesDrv - ok
02:32:52.0231 0x063c  [ C8E0E78B5D284C2FF59BDFFDAF997242 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
02:32:52.0234 0x063c  tunnel - ok
02:32:52.0531 0x063c  [ F6EEAD052943B5A3104C1405BB856C54 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
02:32:52.0532 0x063c  uagp35 - ok
02:32:52.0841 0x063c  [ FE6067B1FD4E63650C667B33D080565B ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
02:32:52.0842 0x063c  UASPStor - ok
02:32:53.0091 0x063c  [ 5D1B430EA11064C56E7C8F84B90DEB6A ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
02:32:53.0094 0x063c  UCX01000 - ok
02:32:53.0405 0x063c  [ 1EC649F112896FAE33250F0B97AC5D0B ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
02:32:53.0409 0x063c  udfs - ok
02:32:53.0698 0x063c  [ 9578691F297E1B1F519970FE6D47CB21 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
02:32:53.0699 0x063c  UEFI - ok
02:32:54.0440 0x063c  [ 320878AFECDBBD61BBE98624A6CAAC08 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
02:32:54.0444 0x063c  UI0Detect - ok
02:32:54.0735 0x063c  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
02:32:54.0736 0x063c  uliagpkx - ok
02:32:55.0029 0x063c  [ DA34C39A18E60E7C3FA0630566408034 ] umbus           C:\Windows\System32\drivers\umbus.sys
02:32:55.0030 0x063c  umbus - ok
02:32:55.0277 0x063c  [ AE8294875E5446E359B1E8035D40C05E ] UmPass          C:\Windows\System32\drivers\umpass.sys
02:32:55.0278 0x063c  UmPass - ok
02:32:55.0643 0x063c  [ E3DDF7D43E05784FAA5E042605EEE528 ] UmRdpService    C:\Windows\System32\umrdp.dll
02:32:55.0652 0x063c  UmRdpService - ok
02:32:56.0212 0x063c  [ 4A2FFDAC45F317E17DF642C7160EB633 ] upnphost        C:\Windows\System32\upnphost.dll
02:32:56.0221 0x063c  upnphost - ok
02:32:56.0584 0x063c  [ 3432E857B8EC1C1316AB098F2BCCDFB6 ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
02:32:56.0587 0x063c  usbccgp - ok
02:32:56.0875 0x063c  [ B3D6457D841A0CAEF4C52D88621715F2 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
02:32:56.0876 0x063c  usbcir - ok
02:32:57.0158 0x063c  [ 5477D6E27C7D266EF8C152B9A25ADE5E ] usbehci         C:\Windows\System32\drivers\usbehci.sys
02:32:57.0159 0x063c  usbehci - ok
02:32:57.0460 0x063c  [ DF56C2C04EFA328D7A66B69007130266 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
02:32:57.0469 0x063c  usbhub - ok
02:32:57.0782 0x063c  [ 4475096DAB15E613A95D6A53F800B377 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
02:32:57.0792 0x063c  USBHUB3 - ok
02:32:58.0085 0x063c  [ 3019097FB6C985EF24C058090FF3BDBD ] usbohci         C:\Windows\System32\drivers\usbohci.sys
02:32:58.0086 0x063c  usbohci - ok
02:32:58.0375 0x063c  [ 4D655E3B684BE9B0F7FFD8A2935C348C ] usbprint        C:\Windows\System32\drivers\usbprint.sys
02:32:58.0376 0x063c  usbprint - ok
02:32:58.0677 0x063c  [ B1230E9813B5C7E762DF27756AA23917 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
02:32:58.0680 0x063c  USBSTOR - ok
02:32:58.0964 0x063c  [ BA4FA655E0FC577DB7436FC963932CE4 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
02:32:58.0965 0x063c  usbuhci - ok
02:32:59.0277 0x063c  [ 18F744E8CCEB2670040EBAF7AD77B8C6 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
02:32:59.0281 0x063c  usbvideo - ok
02:32:59.0581 0x063c  [ BCD8FC0A47AA31889C94168A4E56BB26 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
02:32:59.0589 0x063c  USBXHCI - ok
02:32:59.0887 0x063c  [ 1916F1E9258188AF73865FDA87DDD19C ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
02:32:59.0891 0x063c  UxTuneUp - ok
02:33:00.0217 0x063c  [ F6F209DDB94959BA104FC8FC87C53759 ] VaultSvc        C:\Windows\system32\lsass.exe
02:33:00.0220 0x063c  VaultSvc - ok
02:33:00.0559 0x063c  [ FEB26E3B8345A7E8D62F945C4AE86562 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
02:33:00.0561 0x063c  vdrvroot - ok
02:33:00.0913 0x063c  [ CFBAD6B48EDFAA0828A52646B7C4C08D ] vds             C:\Windows\System32\vds.exe
02:33:00.0958 0x063c  vds - ok
02:33:01.0363 0x063c  [ 2582B87082A935ACB76F949F760AF236 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
02:33:01.0366 0x063c  VerifierExt - ok
02:33:01.0731 0x063c  [ 041D3EF364E624DBB2703A64A5AADF89 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
02:33:01.0743 0x063c  vhdmp - ok
02:33:02.0064 0x063c  [ 06D38968028E9AB19DE9B618C7B6D199 ] viaide          C:\Windows\system32\drivers\viaide.sys
02:33:02.0064 0x063c  viaide - ok
02:33:02.0360 0x063c  [ 3CE922E34DB12D9F3C0EA856BC09687C ] Vid             C:\Windows\System32\drivers\Vid.sys
02:33:02.0363 0x063c  Vid - ok
02:33:02.0657 0x063c  [ C6305BDFC4F7CE51F72BB072C03D4ACE ] vmbus           C:\Windows\system32\drivers\vmbus.sys
02:33:02.0659 0x063c  vmbus - ok
02:33:02.0965 0x063c  [ DA40BEA0A863CE768C940CA9723BF81F ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
02:33:02.0966 0x063c  VMBusHID - ok
02:33:03.0280 0x063c  [ 68F8C26DEA2D42E8DEC0778943433C80 ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
02:33:03.0283 0x063c  vmbusr - ok
02:33:03.0617 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicguestinterface C:\Windows\System32\ICSvc.dll
02:33:03.0627 0x063c  vmicguestinterface - ok
02:33:03.0974 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
02:33:03.0981 0x063c  vmicheartbeat - ok
02:33:04.0288 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmickvpexchange C:\Windows\System32\ICSvc.dll
02:33:04.0295 0x063c  vmickvpexchange - ok
02:33:04.0617 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicrdv         C:\Windows\System32\ICSvc.dll
02:33:04.0624 0x063c  vmicrdv - ok
02:33:04.0944 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicshutdown    C:\Windows\System32\ICSvc.dll
02:33:04.0950 0x063c  vmicshutdown - ok
02:33:05.0251 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmictimesync    C:\Windows\System32\ICSvc.dll
02:33:05.0258 0x063c  vmictimesync - ok
02:33:05.0573 0x063c  [ 9067880BBB1C18703DBFF27D731D7ECA ] vmicvss         C:\Windows\System32\ICSvc.dll
02:33:05.0580 0x063c  vmicvss - ok
02:33:05.0908 0x063c  [ 55D7D963DE85162F1C49721E502F9744 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
02:33:05.0910 0x063c  volmgr - ok
02:33:06.0199 0x063c  [ CCB9E901F7254BF96D28EB1B0E5329B7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
02:33:06.0205 0x063c  volmgrx - ok
02:33:06.0517 0x063c  [ 9F9CE33B50611A1C61A46B8911E0B30B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
02:33:06.0524 0x063c  volsnap - ok
02:33:06.0820 0x063c  [ 01355C98B5C3ED1EC446743CDA848FCE ] vpci            C:\Windows\System32\drivers\vpci.sys
02:33:06.0821 0x063c  vpci - ok
02:33:07.0144 0x063c  [ ADBE96C33D1A5BB1BBAF90B4BC84F523 ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
02:33:07.0146 0x063c  vpcivsp - ok
02:33:07.0457 0x063c  [ 4539F45F9F4C9757A86A56C949421E07 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
02:33:07.0460 0x063c  vsmraid - ok
02:33:07.0818 0x063c  [ D51D7EF1EA5ED2BB01E9D07E6E0533BC ] VSS             C:\Windows\system32\vssvc.exe
02:33:07.0862 0x063c  VSS - ok
02:33:08.0213 0x063c  [ 0849B7260F26FE05EA56DED0672E2F4B ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
02:33:08.0218 0x063c  VSTXRAID - ok
02:33:08.0533 0x063c  [ BE970C369E43B509C1EDA2B8FA7CECB0 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
02:33:08.0534 0x063c  vwifibus - ok
02:33:08.0834 0x063c  [ 6B26AD573CCDD5209DF4397438B76354 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
02:33:08.0836 0x063c  vwififlt - ok
02:33:09.0143 0x063c  [ 0B48E0DFB44EE475F4FD8A8EE599AF30 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
02:33:09.0145 0x063c  vwifimp - ok
02:33:09.0451 0x063c  [ 7599E582CA3A6AAA95A18FFE1172D339 ] W32Time         C:\Windows\system32\w32time.dll
02:33:09.0460 0x063c  W32Time - ok
02:33:09.0755 0x063c  [ 0910AB9ED404C1434E2D0376C2AD5D8B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
02:33:09.0756 0x063c  WacomPen - ok
02:33:10.0090 0x063c  [ AFCD4054D61BD708B82991348ED1C763 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
02:33:10.0091 0x063c  Wanarp - ok
02:33:10.0424 0x063c  [ AFCD4054D61BD708B82991348ED1C763 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
02:33:10.0425 0x063c  Wanarpv6 - ok
02:33:10.0735 0x063c  [ 92BF4B3EBD6F163B94B7A20C65E7B698 ] wbengine        C:\Windows\system32\wbengine.exe
02:33:10.0787 0x063c  wbengine - ok
02:33:11.0211 0x063c  [ CE9E5A541CB4203B4930CE89766D4E5C ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
02:33:11.0218 0x063c  WbioSrvc - ok
02:33:11.0565 0x063c  [ 5A619483E21DAAF186DF23270D226A7D ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
02:33:11.0574 0x063c  Wcmsvc - ok
02:33:11.0940 0x063c  [ 8AF411E94155BF44DD4E878B42AA455B ] wcncsvc         C:\Windows\System32\wcncsvc.dll
02:33:11.0950 0x063c  wcncsvc - ok
02:33:12.0282 0x063c  [ 846C02A8B48CBD921A3D6AB521AA0DC4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:33:12.0287 0x063c  WcsPlugInService - ok
02:33:12.0613 0x063c  [ 694B28DE12AD47031FFB4B052662131A ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
02:33:12.0614 0x063c  WdBoot - ok
02:33:12.0959 0x063c  [ CB6C63FF8342B467E2EF76E98D5B934D ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
02:33:12.0971 0x063c  Wdf01000 - ok
02:33:13.0307 0x063c  [ 0B99529A3BECC3528D865DDECB62503B ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
02:33:13.0311 0x063c  WdFilter - ok
02:33:13.0630 0x063c  [ 40C67D1A4891120874767F6E6604D6C5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
02:33:13.0636 0x063c  WdiServiceHost - ok
02:33:13.0953 0x063c  [ 40C67D1A4891120874767F6E6604D6C5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
02:33:13.0957 0x063c  WdiSystemHost - ok
02:33:14.0248 0x063c  [ 282E7D46310338FF4A6B7680440EB0DA ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
02:33:14.0250 0x063c  WdNisDrv - ok
02:33:14.0570 0x063c  WdNisSvc - ok
02:33:14.0898 0x063c  [ 6588A957873326361AB1CAC4E76F8394 ] WebClient       C:\Windows\System32\webclnt.dll
02:33:14.0905 0x063c  WebClient - ok
02:33:15.0233 0x063c  [ 3274312F263882B51B964329FAF49734 ] Wecsvc          C:\Windows\system32\wecsvc.dll
02:33:15.0240 0x063c  Wecsvc - ok
02:33:15.0563 0x063c  [ 7CDD84E0023A0C5C230B06A7965EC65E ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
02:33:15.0567 0x063c  WEPHOSTSVC - ok
02:33:15.0910 0x063c  [ AA1315B87D9B2E39584165318A59F15D ] wercplsupport   C:\Windows\System32\wercplsupport.dll
02:33:15.0927 0x063c  wercplsupport - ok
02:33:16.0276 0x063c  [ 22B4C24AB921BFF7827FFBCA1F4E1BB3 ] WerSvc          C:\Windows\System32\WerSvc.dll
02:33:16.0281 0x063c  WerSvc - ok
02:33:16.0578 0x063c  [ 011F431624366917180C904CE17FEA1A ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
02:33:16.0580 0x063c  WFPLWFS - ok
02:33:16.0910 0x063c  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2 ] WiaRpc          C:\Windows\System32\wiarpc.dll
02:33:16.0914 0x063c  WiaRpc - ok
02:33:17.0255 0x063c  [ 867BCC69ED9C31C501465EB0E8BA9DFA ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
02:33:17.0256 0x063c  WIMMount - ok
02:33:17.0578 0x063c  WinDefend - ok
02:33:18.0487 0x063c  [ DD079EC8F44DCA3A176B345C6ADEFB66 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
02:33:18.0502 0x063c  WinHttpAutoProxySvc - ok
02:33:18.0856 0x063c  [ 9DB490F3E823C5C3C070644B96CB9D59 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
02:33:18.0861 0x063c  Winmgmt - ok
02:33:19.0301 0x063c  [ 690C3FC5C9DBD6B9AEDF8341EC720E41 ] WinRM           C:\Windows\system32\WsmSvc.dll
02:33:19.0371 0x063c  WinRM - ok
02:33:20.0266 0x063c  [ 191294664E1397B5B0C95218A545250F ] WlanSvc         C:\Windows\System32\wlansvc.dll
02:33:20.0299 0x063c  WlanSvc - ok
02:33:20.0716 0x063c  [ 02A13DB2D44B17A1C37769246694C7CD ] wlidsvc         C:\Windows\system32\wlidsvc.dll
02:33:20.0773 0x063c  wlidsvc - ok
02:33:21.0067 0x063c  [ 2834D9D3B4F554A39C72F00EA3F0E128 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
02:33:21.0068 0x063c  WmiAcpi - ok
02:33:21.0739 0x063c  [ 7AFAC828F52D62F304A911EC32F42EEE ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
02:33:21.0743 0x063c  wmiApSrv - ok
02:33:22.0008 0x063c  WMPNetworkSvc - ok
02:33:22.0549 0x063c  [ A1314F0CD51E8F7CF613A17D8B0724F7 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
02:33:22.0573 0x063c  workfolderssvc - ok
02:33:22.0857 0x063c  [ E746BCDBA2E02CF6B8D6B26FB167FBE0 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
02:33:22.0858 0x063c  wpcfltr - ok
02:33:23.0154 0x063c  [ 4E6A0F60DA7EF050D3D26417CD4D24E9 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
02:33:23.0158 0x063c  WPCSvc - ok
02:33:23.0433 0x063c  [ D27491CFCE452C154CECFA155AD0EBC8 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
02:33:23.0438 0x063c  WPDBusEnum - ok
02:33:23.0739 0x063c  [ 9F2904B55F6CECCD1A8D986B5CE2609A ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
02:33:23.0740 0x063c  WpdUpFltr - ok
02:33:24.0017 0x063c  [ AE072B0339D0A18E455DC21666CAD572 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
02:33:24.0018 0x063c  ws2ifsl - ok
02:33:24.0302 0x063c  [ 5CFA46C4ACB2FD70572017052378DAE5 ] wscsvc          C:\Windows\System32\wscsvc.dll
02:33:24.0308 0x063c  wscsvc - ok
02:33:24.0576 0x063c  WSearch - ok
02:33:25.0133 0x063c  [ DD988D37D33574D02642E528C8CD8808 ] WSService       C:\Windows\System32\WSService.dll
02:33:25.0224 0x063c  WSService - ok
02:33:25.0615 0x063c  [ B957B92C79A4CD138D5CFF1D20A9CF7B ] wuauserv        C:\Windows\system32\wuaueng.dll
02:33:25.0728 0x063c  wuauserv - ok
02:33:26.0058 0x063c  [ 2FEAE33E9B2B56104596E1BA444405A9 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
02:33:26.0061 0x063c  WudfPf - ok
02:33:26.0351 0x063c  [ 19240C13F526125554B5370566F21A0A ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
02:33:26.0354 0x063c  WUDFRd - ok
02:33:26.0628 0x063c  [ 19240C13F526125554B5370566F21A0A ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
02:33:26.0631 0x063c  WUDFSensorLP - ok
02:33:26.0933 0x063c  [ BB73CBC65AABC4EA0A5C6A1474A0A743 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
02:33:26.0939 0x063c  wudfsvc - ok
02:33:27.0251 0x063c  [ 19240C13F526125554B5370566F21A0A ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
02:33:27.0254 0x063c  WUDFWpdFs - ok
02:33:27.0592 0x063c  [ 2FA9794CA36147756F3FDFD6CA29B46F ] WwanSvc         C:\Windows\System32\wwansvc.dll
02:33:27.0603 0x063c  WwanSvc - ok
02:33:29.0288 0x063c  ================ Scan global ===============================
02:33:29.0375 0x063c  [ C89780A6F58D113C28A96D85D1261DC5 ] C:\Windows\system32\basesrv.dll
02:33:29.0414 0x063c  [ 599F1244C60E3D6C28A8DA7FBA7A2C13 ] C:\Windows\system32\winsrv.dll
02:33:29.0440 0x063c  [ 9C1833ABD62876856836C5AE55C7CE86 ] C:\Windows\system32\sxssrv.dll
02:33:29.0470 0x063c  [ B4B610BBCB002EC478C6FD80CF915697 ] C:\Windows\system32\services.exe
02:33:29.0480 0x063c  [Global] - ok
02:33:29.0481 0x063c  ================ Scan MBR ==================================
02:33:29.0505 0x063c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:33:29.0852 0x063c  \Device\Harddisk0\DR0 - ok
02:33:29.0864 0x063c  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk1\DR1
02:33:34.0542 0x063c  \Device\Harddisk1\DR1 - ok
02:33:34.0543 0x063c  ================ Scan VBR ==================================
02:33:34.0556 0x063c  [ D53FA4AEB6EC11D7A739DA532D821896 ] \Device\Harddisk0\DR0\Partition1
02:33:34.0558 0x063c  \Device\Harddisk0\DR0\Partition1 - ok
02:33:34.0569 0x063c  [ AE1A1F49F8A706319ECC12C634B1C5D7 ] \Device\Harddisk0\DR0\Partition2
02:33:34.0572 0x063c  \Device\Harddisk0\DR0\Partition2 - ok
02:33:34.0577 0x063c  [ 7A898B6B68B44F3E815B811CDAACFCD2 ] \Device\Harddisk1\DR1\Partition1
02:33:34.0579 0x063c  \Device\Harddisk1\DR1\Partition1 - ok
02:33:34.0580 0x063c  ============================================================
02:33:34.0580 0x063c  Scan finished
02:33:34.0580 0x063c  ============================================================
02:33:34.0592 0x0e70  Detected object count: 1
02:33:34.0593 0x0e70  Actual detected object count: 1
02:36:02.0293 0x0e70  C:\Windows\system32\drivers\30439020.sys - copied to quarantine
02:36:02.0294 0x0e70  80117480 ( ForgedFile.Multi.Generic ) - User select action: Quarantine 
02:36:09.0419 0x0c7c  Deinitialize success
         

Alt 23.09.2013, 07:20   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Tdss killer auswertung - Standard

Tdss killer auswertung



hi,

google spuckt nicht wirklich was aus, sieht generisch aus. Lässt sich nur mit diesem Log schlecht sagen.
__________________

__________________

Alt 23.09.2013, 11:36   #3
holzdan
 
Tdss killer auswertung - Standard

Tdss killer auswertung



hier die in quarantäne gestellte .sys datei .
interessanterweise hat sich nach einem erneuten scan der Name (nummer) der sys Datei im system32 ordner geändert.
__________________

Alt 23.09.2013, 17:47   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Tdss killer auswertung - Standard

Tdss killer auswertung



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 23.09.2013, 22:35   #5
holzdan
 
Tdss killer auswertung - Standard

Tdss killer auswertung



problem hat sich erledigt.
sys datei stammt vom VPN Programm Security Kiss


Alt 24.09.2013, 11:25   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Tdss killer auswertung - Standard

Tdss killer auswertung



ok.
__________________
--> Tdss killer auswertung

Antwort

Themen zu Tdss killer auswertung
amd, auswertung, boot, browser, cdrom, comodo, computer, datei, detected, down, dxgkrnl, fake, file, fontcache, google, harddisk, malwarebytes, modem, object, policyagent, rootkit, scan, security, spybot, system32, tdss, trustedinstaller, tunnel, windows, wlansvc, wmp, wsearch



Ähnliche Themen: Tdss killer auswertung


  1. TDSS Killer findet Bedrohung auf meinem 2. Laptop
    Plagegeister aller Art und deren Bekämpfung - 30.06.2015 (16)
  2. aswMBR Locked Files, TDSS Killer und MBR Master keine Funde
    Log-Analyse und Auswertung - 30.03.2014 (7)
  3. Auswertung TDSSL Killer Kaspersky exe Datei ?
    Log-Analyse und Auswertung - 29.08.2013 (5)
  4. Tdss Killer Log
    Log-Analyse und Auswertung - 14.07.2013 (3)
  5. TDSS killer
    Log-Analyse und Auswertung - 03.07.2013 (19)
  6. Habe Antimalwarebytes,TDSS Killer,gMER gelöcht und danach
    Plagegeister aller Art und deren Bekämpfung - 20.06.2013 (9)
  7. Combofix und tdss killer logfile (nicht sicher...)
    Log-Analyse und Auswertung - 25.04.2013 (11)
  8. TDSS Killer - Fund (suspicious objects)
    Plagegeister aller Art und deren Bekämpfung - 12.04.2013 (5)
  9. habe Malewarebytes,TDSS Killer,OTL und gmer vom Laptop Entfernt und danach ein avira fund ""EXP/JS.Expack.EB" gemacht
    Mülltonne - 05.02.2013 (1)
  10. Not sure if clean / Funde von TDSS-Killer
    Log-Analyse und Auswertung - 11.09.2012 (1)
  11. TDSS Killer Fund
    Antiviren-, Firewall- und andere Schutzprogramme - 21.05.2012 (9)
  12. Bekämpfung von Windows Vista Repair Trojaner und TDSS Killer startet nicht
    Plagegeister aller Art und deren Bekämpfung - 28.06.2011 (23)
  13. Windows Security Alert - Malwarebytes, OTL, TDSS-Killer, Norman Logs
    Plagegeister aller Art und deren Bekämpfung - 17.08.2010 (2)
  14. Trojan.TDss!K - Packed.Win32.Tdss!IK - und wer weiß was noch alles!
    Plagegeister aller Art und deren Bekämpfung - 09.12.2009 (1)
  15. Rootkit RKIT/TDss.G.22 Backdoorprogramm BDS/TDSS.adb und Trojaner TR/Proxy.GHY
    Log-Analyse und Auswertung - 21.12.2008 (28)
  16. hd-killer
    Archiv - 28.01.2003 (13)

Zum Thema Tdss killer auswertung - Hallo Habe gestern eien scan mit tdss killer durchgefuehrt eine datei wurde angezeigt und ungeduldig wie ich bin habe ich sie unter Quarantäne gestellt. Nun startete windows nicht mehr und - Tdss killer auswertung...
Archiv
Du betrachtest: Tdss killer auswertung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.