Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Win Vista: Avira meldet 'BOO/TDss.O' gefunden

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 02.12.2013, 09:44   #1
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Hallo!

Seit geraumer Zeit, meldet Avira immer wieder "Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder unerwüschtes Programm 'BOO/TDss.O' gefunden.

Leider lässt sich der Virus scheinbar nicht entfernen, da die Meldung kurz nachdem ich auf entfernen geklickt habe wieder auftaucht.

Mit FRST und TDSSKiller habe ich schon gescannt.

Alt 02.12.2013, 09:51   #2
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Hier die Log-Dateien von FRST
__________________


Alt 02.12.2013, 09:54   #3
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Die TDSSKiller-Log-Datei ist leider zu groß um sie anzuhängen, deshalb hab ich hier den Inhalt kopiert:

09:46:26.0131 0x1684 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
09:46:28.0720 0x1684 ============================================================
09:46:28.0721 0x1684 Current date / time: 2013/12/02 09:46:28.0720
09:46:28.0721 0x1684 SystemInfo:
09:46:28.0721 0x1684
09:46:28.0721 0x1684 OS Version: 6.0.6002 ServicePack: 2.0
09:46:28.0721 0x1684 Product type: Workstation
09:46:28.0721 0x1684 ComputerName: RICHARD-PC
09:46:28.0721 0x1684 UserName: Richard
09:46:28.0721 0x1684 Windows directory: C:\Windows
09:46:28.0721 0x1684 System windows directory: C:\Windows
09:46:28.0721 0x1684 Processor architecture: Intel x86
09:46:28.0721 0x1684 Number of processors: 2
09:46:28.0721 0x1684 Page size: 0x1000
09:46:28.0721 0x1684 Boot type: Normal boot
09:46:28.0721 0x1684 ============================================================
09:46:31.0780 0x1684 KLMD registered as C:\Windows\system32\drivers\88659057.sys
09:46:32.0030 0x1684 System UUID: {1DD9EEBB-7F7A-37D7-BD67-B0028FB386EB}
09:46:32.0869 0x1684 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:46:32.0949 0x1684 ============================================================
09:46:32.0949 0x1684 \Device\Harddisk0\DR0:
09:46:32.0950 0x1684 MBR partitions:
09:46:32.0950 0x1684 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1194800, BlocksNum 0xBC51800
09:46:32.0950 0x1684 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCDE6000, BlocksNum 0x186482B0
09:46:32.0950 0x1684 ============================================================
09:46:32.0988 0x1684 C: <-> \Device\Harddisk0\DR0\Partition1
09:46:33.0025 0x1684 D: <-> \Device\Harddisk0\DR0\Partition2
09:46:33.0026 0x1684 ============================================================
09:46:33.0026 0x1684 Initialize success
09:46:33.0026 0x1684 ============================================================
09:46:42.0998 0x0f5c ============================================================
09:46:42.0998 0x0f5c Scan started
09:46:42.0998 0x0f5c Mode: Manual; SigCheck; TDLFS;
09:46:42.0998 0x0f5c ============================================================
09:46:42.0998 0x0f5c KSN ping started
09:46:54.0278 0x0f5c KSN ping finished: true
09:46:55.0603 0x0f5c ================ Scan system memory ========================
09:46:55.0603 0x0f5c System memory - ok
09:46:55.0604 0x0f5c ================ Scan services =============================
09:46:55.0778 0x0f5c [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
09:46:55.0896 0x0f5c ACPI - ok
09:46:56.0034 0x0f5c [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
09:46:56.0051 0x0f5c AdobeARMservice - ok
09:46:56.0149 0x0f5c [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:46:56.0167 0x0f5c AdobeFlashPlayerUpdateSvc - ok
09:46:56.0222 0x0f5c [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
09:46:56.0280 0x0f5c adp94xx - ok
09:46:56.0331 0x0f5c [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
09:46:56.0356 0x0f5c adpahci - ok
09:46:56.0397 0x0f5c [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
09:46:56.0414 0x0f5c adpu160m - ok
09:46:56.0447 0x0f5c [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
09:46:56.0465 0x0f5c adpu320 - ok
09:46:56.0500 0x0f5c [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:46:56.0593 0x0f5c AeLookupSvc - ok
09:46:56.0636 0x0f5c [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
09:46:56.0714 0x0f5c AFD - ok
09:46:56.0758 0x0f5c [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
09:46:56.0773 0x0f5c agp440 - ok
09:46:56.0809 0x0f5c [ 0DEE2B628D4C6E23285BB91EFFDABFDE, 58F14336AA1642D97D4EA540166FDCFA7B9125062E4350F0DD51D235E395ED00 ] ahcix86s C:\Windows\system32\drivers\ahcix86s.sys
09:46:56.0842 0x0f5c ahcix86s - ok
09:46:56.0897 0x0f5c [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
09:46:56.0912 0x0f5c aic78xx - ok
09:46:56.0937 0x0f5c [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
09:46:57.0078 0x0f5c ALG - ok
09:46:57.0098 0x0f5c [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
09:46:57.0112 0x0f5c aliide - ok
09:46:57.0146 0x0f5c [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
09:46:57.0162 0x0f5c amdagp - ok
09:46:57.0180 0x0f5c [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
09:46:57.0194 0x0f5c amdide - ok
09:46:57.0215 0x0f5c [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
09:46:57.0244 0x0f5c AmdK7 - ok
09:46:57.0264 0x0f5c [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
09:46:57.0305 0x0f5c AmdK8 - ok
09:46:57.0431 0x0f5c [ 0D1E15010057B8426583A99CB179A6C4, 645C7D27E27AAC4124F7F907374B6A50D07D349B95AA869D7091372BD3AF653B ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
09:46:57.0483 0x0f5c AntiVirSchedulerService - ok
09:46:57.0596 0x0f5c [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
09:46:57.0631 0x0f5c AntiVirService - ok
09:46:57.0732 0x0f5c [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
09:46:57.0807 0x0f5c AntiVirWebService - ok
09:46:57.0878 0x0f5c [ BEF294FFE5F40BE768BDCBE1837DFABE, A5EBC3289758E2E152BA1571BB288FA33D7E2D23FE715CB51D39992369FDFC19 ] APNMCP C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
09:46:57.0897 0x0f5c APNMCP - ok
09:46:57.0954 0x0f5c [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
09:46:57.0985 0x0f5c Appinfo - ok
09:46:58.0068 0x0f5c [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:46:58.0083 0x0f5c Apple Mobile Device - ok
09:46:58.0111 0x0f5c [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
09:46:58.0127 0x0f5c arc - ok
09:46:58.0152 0x0f5c [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
09:46:58.0169 0x0f5c arcsas - ok
09:46:58.0199 0x0f5c [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:46:58.0247 0x0f5c AsyncMac - ok
09:46:58.0290 0x0f5c [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
09:46:58.0305 0x0f5c atapi - ok
09:46:58.0353 0x0f5c [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:46:58.0399 0x0f5c AudioEndpointBuilder - ok
09:46:58.0431 0x0f5c [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
09:46:58.0466 0x0f5c Audiosrv - ok
09:46:58.0518 0x0f5c [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx C:\Windows\system32\DRIVERS\avgdiskx.sys
09:46:58.0534 0x0f5c Avgdiskx - ok
09:46:58.0718 0x0f5c [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent C:\Program Files\AVG\AVG2014\avgidsagent.exe
09:46:58.0947 0x0f5c AVGIDSAgent - ok
09:46:59.0010 0x0f5c [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys
09:46:59.0030 0x0f5c AVGIDSDriver - ok
09:46:59.0105 0x0f5c [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys
09:46:59.0121 0x0f5c AVGIDSHX - ok
09:46:59.0136 0x0f5c [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys
09:46:59.0149 0x0f5c AVGIDSShim - ok
09:46:59.0183 0x0f5c [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys
09:46:59.0200 0x0f5c Avgldx86 - ok
09:46:59.0266 0x0f5c [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys
09:46:59.0285 0x0f5c Avglogx - ok
09:46:59.0321 0x0f5c [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys
09:46:59.0336 0x0f5c Avgmfx86 - ok
09:46:59.0420 0x0f5c [ FE5C0B6E90EA6E0ECA1259571A13239F, 16FE8D7E8F750045DAD0D243FB69ABE9E5640388C907FA651FB0F38B4E9759BC ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
09:46:59.0435 0x0f5c avgntflt - ok
09:46:59.0500 0x0f5c [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys
09:46:59.0513 0x0f5c Avgrkx86 - ok
09:46:59.0591 0x0f5c [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys
09:46:59.0609 0x0f5c Avgtdix - ok
09:46:59.0671 0x0f5c [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd C:\Program Files\AVG\AVG2014\avgwdsvc.exe
09:46:59.0710 0x0f5c avgwd - ok
09:46:59.0754 0x0f5c [ C0F13672DEA7BDB40A89414AB0411705, 5B0C2391340BEE31CB6D8D7433786EDD48BBCD5D5737A539D4A0A54F37636720 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
09:46:59.0772 0x0f5c avipbb - ok
09:46:59.0830 0x0f5c [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
09:46:59.0843 0x0f5c avkmgr - ok
09:46:59.0883 0x0f5c [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
09:46:59.0925 0x0f5c Beep - ok
09:47:00.0003 0x0f5c [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
09:47:00.0079 0x0f5c BFE - ok
09:47:00.0149 0x0f5c [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
09:47:00.0244 0x0f5c BITS - ok
09:47:00.0271 0x0f5c [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
09:47:00.0322 0x0f5c blbdrive - ok
09:47:00.0409 0x0f5c [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:47:00.0445 0x0f5c Bonjour Service - ok
09:47:00.0478 0x0f5c [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:47:00.0526 0x0f5c bowser - ok
09:47:00.0554 0x0f5c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
09:47:00.0611 0x0f5c BrFiltLo - ok
09:47:00.0637 0x0f5c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
09:47:00.0680 0x0f5c BrFiltUp - ok
09:47:00.0707 0x0f5c [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
09:47:00.0756 0x0f5c Browser - ok
09:47:00.0778 0x0f5c [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
09:47:00.0957 0x0f5c Brserid - ok
09:47:00.0996 0x0f5c [ 1A5FC78E41840EDF79D65EC16EFF2787, 05BC4C07C88ADDE6D7FF01B821DDB944EEEC8035AC1B6D780E39FDBD12FCA885 ] BrSerIf C:\Windows\system32\Drivers\BrSerIf.sys
09:47:01.0047 0x0f5c BrSerIf - ok
09:47:01.0067 0x0f5c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
09:47:01.0133 0x0f5c BrSerWdm - ok
09:47:01.0154 0x0f5c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
09:47:01.0219 0x0f5c BrUsbMdm - ok
09:47:01.0239 0x0f5c [ A24C7B39602218F8DBDB2B6704325FC7, B90A1BA412A33AD041A2CE47FBB73AE296AF07A2F3DF1F56D9FEE5B3B1E0BBD5 ] BrUsbSer C:\Windows\system32\Drivers\BrUsbSer.sys
09:47:01.0264 0x0f5c BrUsbSer - ok
09:47:01.0294 0x0f5c [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
09:47:01.0357 0x0f5c BTHMODEM - ok
09:47:01.0409 0x0f5c [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:47:01.0450 0x0f5c cdfs - ok
09:47:01.0518 0x0f5c [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:47:01.0556 0x0f5c cdrom - ok
09:47:01.0606 0x0f5c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
09:47:01.0648 0x0f5c CertPropSvc - ok
09:47:01.0688 0x0f5c [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
09:47:01.0727 0x0f5c circlass - ok
09:47:01.0791 0x0f5c [ B53F9635457B56DCFFEF750E18AEC6CB, BAF6B8C8FAD040ED8E61209E9795C613C979B84C6B771FDED05B64BBEEB6A569 ] CLEDX C:\Windows\system32\DRIVERS\cledx.sys
09:47:01.0798 0x0f5c CLEDX - detected UnsignedFile.Multi.Generic ( 1 )
09:47:02.0036 0x0f5c Detect skipped due to KSN trusted
09:47:02.0036 0x0f5c CLEDX - ok
09:47:02.0063 0x0f5c [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
09:47:02.0088 0x0f5c CLFS - ok
09:47:02.0148 0x0f5c [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:47:02.0173 0x0f5c clr_optimization_v2.0.50727_32 - ok
09:47:02.0257 0x0f5c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:47:02.0273 0x0f5c clr_optimization_v4.0.30319_32 - ok
09:47:02.0315 0x0f5c [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:47:02.0365 0x0f5c CmBatt - ok
09:47:02.0383 0x0f5c [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:47:02.0398 0x0f5c cmdide - ok
09:47:02.0410 0x0f5c [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:47:02.0425 0x0f5c Compbatt - ok
09:47:02.0430 0x0f5c COMSysApp - ok
09:47:02.0436 0x0f5c [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
09:47:02.0452 0x0f5c crcdisk - ok
09:47:02.0467 0x0f5c [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
09:47:02.0498 0x0f5c Crusoe - ok
09:47:02.0546 0x0f5c [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:47:02.0580 0x0f5c CryptSvc - ok
09:47:02.0644 0x0f5c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:47:02.0726 0x0f5c DcomLaunch - ok
09:47:02.0767 0x0f5c [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:47:02.0814 0x0f5c DfsC - ok
09:47:02.0931 0x0f5c [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
09:47:03.0135 0x0f5c DFSR - ok
09:47:03.0184 0x0f5c [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
09:47:03.0199 0x0f5c dg_ssudbus - ok
09:47:03.0253 0x0f5c [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
09:47:03.0309 0x0f5c Dhcp - ok
09:47:03.0353 0x0f5c [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
09:47:03.0370 0x0f5c disk - ok
09:47:03.0400 0x0f5c [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:47:03.0455 0x0f5c Dnscache - ok
09:47:03.0493 0x0f5c [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
09:47:03.0521 0x0f5c dot3svc - ok
09:47:03.0562 0x0f5c [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
09:47:03.0614 0x0f5c DPS - ok
09:47:03.0665 0x0f5c [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:47:03.0701 0x0f5c drmkaud - ok
09:47:03.0758 0x0f5c [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:47:03.0813 0x0f5c DXGKrnl - ok
09:47:03.0848 0x0f5c [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
09:47:03.0881 0x0f5c E1G60 - ok
09:47:03.0910 0x0f5c [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
09:47:03.0951 0x0f5c EapHost - ok
09:47:04.0002 0x0f5c [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
09:47:04.0025 0x0f5c Ecache - ok
09:47:04.0088 0x0f5c [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:47:04.0114 0x0f5c ehRecvr - ok
09:47:04.0130 0x0f5c [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
09:47:04.0170 0x0f5c ehSched - ok
09:47:04.0191 0x0f5c [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
09:47:04.0206 0x0f5c ehstart - ok
09:47:04.0264 0x0f5c [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
09:47:04.0302 0x0f5c elxstor - ok
09:47:04.0353 0x0f5c [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
09:47:04.0427 0x0f5c EMDMgmt - ok
09:47:04.0462 0x0f5c [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:47:04.0503 0x0f5c ErrDev - ok
09:47:04.0541 0x0f5c [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
09:47:04.0589 0x0f5c EventSystem - ok
09:47:04.0631 0x0f5c [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
09:47:04.0666 0x0f5c exfat - ok
09:47:04.0698 0x0f5c [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:47:04.0725 0x0f5c fastfat - ok
09:47:04.0744 0x0f5c [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:47:04.0775 0x0f5c fdc - ok
09:47:04.0816 0x0f5c [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
09:47:04.0846 0x0f5c fdPHost - ok
09:47:04.0855 0x0f5c [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
09:47:04.0916 0x0f5c FDResPub - ok
09:47:04.0951 0x0f5c [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:47:04.0969 0x0f5c FileInfo - ok
09:47:04.0994 0x0f5c [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:47:05.0037 0x0f5c Filetrace - ok
09:47:05.0060 0x0f5c [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:47:05.0108 0x0f5c flpydisk - ok
09:47:05.0148 0x0f5c [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:47:05.0168 0x0f5c FltMgr - ok
09:47:05.0271 0x0f5c [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
09:47:05.0329 0x0f5c FontCache - ok
09:47:05.0417 0x0f5c [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:47:05.0431 0x0f5c FontCache3.0.0.0 - ok
09:47:05.0454 0x0f5c [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:47:05.0499 0x0f5c Fs_Rec - ok
09:47:05.0542 0x0f5c [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
09:47:05.0557 0x0f5c gagp30kx - ok
09:47:05.0624 0x0f5c [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:47:05.0637 0x0f5c GEARAspiWDM - ok
09:47:05.0691 0x0f5c [ 9E6B5241CB0B11DDDDF162865041D193, 66F8984276E65A8607A5FA981FB48897B52C22BD629864B01470DAF78B0D5CE1 ] GpdDevDPort C:\Windows\system32\directport.sys
09:47:05.0719 0x0f5c GpdDevDPort - detected UnsignedFile.Multi.Generic ( 1 )
09:47:06.0069 0x0f5c GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning
09:47:06.0371 0x0f5c [ E48C4E69E2126AAC01888C60CC6ED966, 46A5DE1BCEFA31A583770AB391EE2C940649CAF0A44557B479B1C34BF51D53CF ] GpdKbFilter C:\Windows\system32\kbfiltr.sys
09:47:06.0377 0x0f5c GpdKbFilter - detected UnsignedFile.Multi.Generic ( 1 )
09:47:06.0829 0x0f5c Detect skipped due to KSN trusted
09:47:06.0829 0x0f5c GpdKbFilter - ok
09:47:06.0921 0x0f5c [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
09:47:07.0001 0x0f5c gpsvc - ok
09:47:07.0051 0x0f5c [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:47:07.0105 0x0f5c HdAudAddService - ok
09:47:07.0150 0x0f5c [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
09:47:07.0244 0x0f5c HDAudBus - ok
09:47:07.0262 0x0f5c [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
09:47:07.0309 0x0f5c HidBth - ok
09:47:07.0320 0x0f5c [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
09:47:07.0387 0x0f5c HidIr - ok
09:47:07.0424 0x0f5c [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
09:47:07.0442 0x0f5c hidserv - ok
09:47:07.0498 0x0f5c [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:47:07.0533 0x0f5c HidUsb - ok
09:47:07.0593 0x0f5c [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
09:47:07.0624 0x0f5c hkmsvc - ok
09:47:07.0634 0x0f5c [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
09:47:07.0651 0x0f5c HpCISSs - ok
09:47:07.0696 0x0f5c [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:47:07.0794 0x0f5c HTTP - ok
09:47:07.0822 0x0f5c [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
09:47:07.0837 0x0f5c i2omp - ok
09:47:07.0894 0x0f5c [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
09:47:07.0919 0x0f5c i8042prt - ok
09:47:07.0962 0x0f5c [ E5A0034847537EAEE3C00349D5C34C5F, 3E0F99512CDFF0B628E2FF5B91BB371CDEF65201B03C53182C97DDE34E26E04C ] iaStor C:\Windows\system32\drivers\iastor.sys
09:47:07.0981 0x0f5c iaStor - ok
09:47:08.0038 0x0f5c [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
09:47:08.0059 0x0f5c iaStorV - ok
09:47:08.0139 0x0f5c [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:47:08.0206 0x0f5c idsvc - ok
09:47:08.0230 0x0f5c [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
09:47:08.0244 0x0f5c iirsp - ok
09:47:08.0296 0x0f5c [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
09:47:08.0384 0x0f5c IKEEXT - ok
09:47:08.0507 0x0f5c [ 2DEB2538C9372568BB67B5FDF2359790, 3F19414B12B5C8F361F9273E380D8C53938F344FAFB8C6517D4421755A3A994B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
09:47:08.0765 0x0f5c IntcAzAudAddService - ok
09:47:08.0822 0x0f5c [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
09:47:08.0837 0x0f5c intelide - ok
09:47:08.0915 0x0f5c [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:47:08.0958 0x0f5c intelppm - ok
09:47:09.0018 0x0f5c [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:47:09.0049 0x0f5c IPBusEnum - ok
09:47:09.0066 0x0f5c [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:47:09.0109 0x0f5c IpFilterDriver - ok
09:47:09.0149 0x0f5c [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:47:09.0201 0x0f5c iphlpsvc - ok
09:47:09.0205 0x0f5c IpInIp - ok
09:47:09.0226 0x0f5c [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
09:47:09.0290 0x0f5c IPMIDRV - ok
09:47:09.0322 0x0f5c [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
09:47:09.0368 0x0f5c IPNAT - ok
09:47:09.0432 0x0f5c [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:47:09.0462 0x0f5c iPod Service - ok
09:47:09.0501 0x0f5c [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:47:09.0561 0x0f5c IRENUM - ok
09:47:09.0595 0x0f5c [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:47:09.0610 0x0f5c isapnp - ok
09:47:09.0641 0x0f5c [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
09:47:09.0662 0x0f5c iScsiPrt - ok
09:47:09.0688 0x0f5c [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
09:47:09.0702 0x0f5c iteatapi - ok
09:47:09.0717 0x0f5c [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
09:47:09.0731 0x0f5c iteraid - ok
09:47:09.0765 0x0f5c [ C36F3A1A4E8416EF43F30DEAB7701730, 26A151FE87E1AFD18F7A88553E41E27DD3087721974C2B44621629D9029C4D29 ] JRAID C:\Windows\system32\drivers\jraid.sys
09:47:09.0787 0x0f5c JRAID - ok
09:47:09.0809 0x0f5c [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
09:47:09.0824 0x0f5c kbdclass - ok
09:47:09.0837 0x0f5c [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:47:09.0867 0x0f5c kbdhid - ok
09:47:09.0929 0x0f5c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
09:47:09.0967 0x0f5c KeyIso - ok
09:47:10.0025 0x0f5c [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:47:10.0084 0x0f5c KSecDD - ok
09:47:10.0155 0x0f5c [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
09:47:10.0229 0x0f5c KtmRm - ok
09:47:10.0266 0x0f5c [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
09:47:10.0299 0x0f5c LanmanServer - ok
09:47:10.0333 0x0f5c [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:47:10.0377 0x0f5c LanmanWorkstation - ok
09:47:10.0416 0x0f5c [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:47:10.0461 0x0f5c lltdio - ok
09:47:10.0503 0x0f5c [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:47:10.0538 0x0f5c lltdsvc - ok
09:47:10.0551 0x0f5c [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:47:10.0600 0x0f5c lmhosts - ok
09:47:10.0619 0x0f5c [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
09:47:10.0636 0x0f5c LSI_FC - ok
09:47:10.0647 0x0f5c [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
09:47:10.0663 0x0f5c LSI_SAS - ok
09:47:10.0694 0x0f5c [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
09:47:10.0711 0x0f5c LSI_SCSI - ok
09:47:10.0725 0x0f5c [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
09:47:10.0771 0x0f5c luafv - ok
09:47:10.0793 0x0f5c [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:47:10.0830 0x0f5c Mcx2Svc - ok
09:47:10.0847 0x0f5c [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
09:47:10.0864 0x0f5c megasas - ok
09:47:10.0920 0x0f5c [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
09:47:10.0981 0x0f5c MegaSR - ok
09:47:11.0041 0x0f5c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
09:47:11.0072 0x0f5c MMCSS - ok
09:47:11.0080 0x0f5c [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
09:47:11.0124 0x0f5c Modem - ok
09:47:11.0151 0x0f5c [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:47:11.0203 0x0f5c monitor - ok
09:47:11.0225 0x0f5c [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:47:11.0241 0x0f5c mouclass - ok
09:47:11.0249 0x0f5c [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:47:11.0299 0x0f5c mouhid - ok
09:47:11.0323 0x0f5c [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
09:47:11.0340 0x0f5c MountMgr - ok
09:47:11.0384 0x0f5c [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:47:11.0402 0x0f5c MozillaMaintenance - ok
09:47:11.0440 0x0f5c [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
09:47:11.0458 0x0f5c mpio - ok
09:47:11.0471 0x0f5c [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:47:11.0514 0x0f5c mpsdrv - ok
09:47:11.0560 0x0f5c [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:47:11.0609 0x0f5c MpsSvc - ok
09:47:11.0625 0x0f5c [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
09:47:11.0639 0x0f5c Mraid35x - ok
09:47:11.0663 0x0f5c [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:47:11.0698 0x0f5c MRxDAV - ok
09:47:11.0721 0x0f5c [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:47:11.0771 0x0f5c mrxsmb - ok
09:47:11.0807 0x0f5c [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:47:11.0847 0x0f5c mrxsmb10 - ok
09:47:11.0885 0x0f5c [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:47:11.0917 0x0f5c mrxsmb20 - ok
09:47:11.0968 0x0f5c [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci C:\Windows\system32\drivers\msahci.sys
09:47:11.0984 0x0f5c msahci - ok
09:47:12.0015 0x0f5c [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:47:12.0032 0x0f5c msdsm - ok
09:47:12.0053 0x0f5c [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
09:47:12.0097 0x0f5c MSDTC - ok
09:47:12.0133 0x0f5c [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:47:12.0164 0x0f5c Msfs - ok
09:47:12.0194 0x0f5c [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:47:12.0209 0x0f5c msisadrv - ok
09:47:12.0243 0x0f5c [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:47:12.0275 0x0f5c MSiSCSI - ok
09:47:12.0279 0x0f5c msiserver - ok
09:47:12.0294 0x0f5c [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:47:12.0336 0x0f5c MSKSSRV - ok
09:47:12.0367 0x0f5c [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:47:12.0396 0x0f5c MSPCLOCK - ok
09:47:12.0433 0x0f5c [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:47:12.0462 0x0f5c MSPQM - ok
09:47:12.0511 0x0f5c [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:47:12.0533 0x0f5c MsRPC - ok
09:47:12.0575 0x0f5c [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
09:47:12.0590 0x0f5c mssmbios - ok
09:47:12.0625 0x0f5c [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:47:12.0653 0x0f5c MSTEE - ok
09:47:12.0703 0x0f5c [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
09:47:12.0719 0x0f5c Mup - ok
09:47:12.0778 0x0f5c [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
09:47:12.0813 0x0f5c napagent - ok
09:47:12.0859 0x0f5c [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:47:12.0896 0x0f5c NativeWifiP - ok
09:47:12.0944 0x0f5c [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:47:13.0011 0x0f5c NDIS - ok
09:47:13.0064 0x0f5c [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:47:13.0099 0x0f5c NdisTapi - ok
09:47:13.0115 0x0f5c [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:47:13.0143 0x0f5c Ndisuio - ok
09:47:13.0189 0x0f5c [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:47:13.0216 0x0f5c NdisWan - ok
09:47:13.0233 0x0f5c [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:47:13.0271 0x0f5c NDProxy - ok
09:47:13.0367 0x0f5c [ B044BB341E164DA6750A9B8E6A5FF6A1, 5E5CB4713BA20971CD09D176CBBE8857EB21A032CAC02A9042E88E5DD15B44D3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
09:47:13.0482 0x0f5c Nero BackItUp Scheduler 3 - ok
09:47:13.0546 0x0f5c [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:47:13.0588 0x0f5c NetBIOS - ok
09:47:13.0613 0x0f5c [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
09:47:13.0658 0x0f5c netbt - ok
09:47:13.0676 0x0f5c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
09:47:13.0693 0x0f5c Netlogon - ok
09:47:13.0749 0x0f5c [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
09:47:13.0788 0x0f5c Netman - ok
09:47:13.0815 0x0f5c [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
09:47:13.0868 0x0f5c netprofm - ok
09:47:13.0894 0x0f5c [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:47:13.0909 0x0f5c NetTcpPortSharing - ok
09:47:14.0091 0x0f5c [ 840D89327C45B0CB9E1AB130249046E2, 13B937BAB596141000C554B9BB6753E7358ED42B3367B496D1777B9B74F6CEF8 ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
09:47:14.0548 0x0f5c NETw5v32 - ok
09:47:14.0597 0x0f5c [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
09:47:14.0611 0x0f5c nfrd960 - ok
09:47:14.0684 0x0f5c [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
09:47:14.0770 0x0f5c NlaSvc - ok
09:47:14.0903 0x0f5c [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
09:47:14.0950 0x0f5c NMIndexingService - ok
09:47:15.0102 0x0f5c [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:47:15.0160 0x0f5c Npfs - ok
09:47:15.0234 0x0f5c [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
09:47:15.0265 0x0f5c nsi - ok
09:47:15.0325 0x0f5c [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:47:15.0376 0x0f5c nsiproxy - ok
09:47:15.0521 0x0f5c [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:47:15.0683 0x0f5c Ntfs - ok
09:47:15.0746 0x0f5c [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
09:47:15.0794 0x0f5c ntrigdigi - ok
09:47:15.0821 0x0f5c [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
09:47:15.0896 0x0f5c Null - ok
09:47:16.0247 0x0f5c [ CEF89AD9AAABF89C9C36C65ADC62F1ED, A0BC68D32482EB674E6081673951FF53A780759215BED5E9DDC84E1DFC1B9FED ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:47:17.0125 0x0f5c nvlddmkm - ok
09:47:17.0172 0x0f5c [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:47:17.0188 0x0f5c nvraid - ok
09:47:17.0265 0x0f5c [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:47:17.0280 0x0f5c nvstor - ok
09:47:17.0316 0x0f5c [ CC0AA0355DED3D34B7D975B6815CF30A, E9B0E33E0965B47BDE22545C6886DEE036012E4A6A7FCF7B7FE46ADE142769F4 ] nvsvc C:\Windows\system32\nvvsvc.exe
09:47:17.0363 0x0f5c nvsvc - ok
09:47:17.0449 0x0f5c [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:47:17.0466 0x0f5c nv_agp - ok
09:47:17.0470 0x0f5c NwlnkFlt - ok
09:47:17.0475 0x0f5c NwlnkFwd - ok
09:47:17.0674 0x0f5c [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:47:17.0712 0x0f5c odserv - ok
09:47:17.0772 0x0f5c [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:47:17.0823 0x0f5c ohci1394 - ok
09:47:18.0001 0x0f5c [ B7EDD9FD6387802DFAA795372AECF212, 53E8EACC9CD678BC4FFBD22A0F463A7834B1E68D2741518C65CC8883757CD912 ] OsdService C:\Program Files\OEM\OSD_1.12\OsdService.exe
09:47:18.0114 0x0f5c OsdService - detected UnsignedFile.Multi.Generic ( 1 )
09:47:18.0349 0x0f5c Detect skipped due to KSN trusted
09:47:18.0349 0x0f5c OsdService - ok
09:47:18.0424 0x0f5c [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:47:18.0439 0x0f5c ose - ok
09:47:18.0506 0x0f5c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
09:47:18.0630 0x0f5c p2pimsvc - ok
09:47:18.0735 0x0f5c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
09:47:18.0810 0x0f5c p2psvc - ok
09:47:18.0840 0x0f5c [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
09:47:18.0889 0x0f5c Parport - ok
09:47:18.0917 0x0f5c [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:47:18.0934 0x0f5c partmgr - ok
09:47:18.0950 0x0f5c [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
09:47:18.0997 0x0f5c Parvdm - ok
09:47:19.0099 0x0f5c [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
09:47:19.0153 0x0f5c PcaSvc - ok
09:47:19.0189 0x0f5c [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
09:47:19.0209 0x0f5c pci - ok
09:47:19.0294 0x0f5c [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
09:47:19.0309 0x0f5c pciide - ok
09:47:19.0344 0x0f5c [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
09:47:19.0361 0x0f5c pcmcia - ok
09:47:19.0677 0x0f5c [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:47:19.0795 0x0f5c PEAUTH - ok
09:47:19.0883 0x0f5c [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
09:47:20.0008 0x0f5c pla - ok
09:47:20.0032 0x0f5c [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
09:47:20.0052 0x0f5c PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic ( 1 )
09:47:20.0290 0x0f5c Detect skipped due to KSN trusted
09:47:20.0290 0x0f5c PLFlash DeviceIoControl Service - ok
09:47:20.0347 0x0f5c [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:47:20.0400 0x0f5c PlugPlay - ok
09:47:20.0440 0x0f5c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
09:47:20.0480 0x0f5c PNRPAutoReg - ok
09:47:20.0529 0x0f5c [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
09:47:20.0593 0x0f5c PNRPsvc - ok
09:47:20.0660 0x0f5c [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:47:20.0738 0x0f5c PolicyAgent - ok
09:47:20.0782 0x0f5c [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:47:20.0811 0x0f5c PptpMiniport - ok
09:47:20.0839 0x0f5c [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
09:47:20.0868 0x0f5c Processor - ok
09:47:20.0930 0x0f5c [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
09:47:20.0959 0x0f5c ProfSvc - ok
09:47:20.0980 0x0f5c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
09:47:20.0997 0x0f5c ProtectedStorage - ok
09:47:21.0020 0x0f5c [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
09:47:21.0045 0x0f5c PSched - ok
09:47:21.0093 0x0f5c [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
09:47:21.0106 0x0f5c PxHelp20 - ok
09:47:21.0184 0x0f5c [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
09:47:21.0275 0x0f5c ql2300 - ok
09:47:21.0302 0x0f5c [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
09:47:21.0318 0x0f5c ql40xx - ok
09:47:21.0338 0x0f5c [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
09:47:21.0382 0x0f5c QWAVE - ok
09:47:21.0406 0x0f5c [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:47:21.0422 0x0f5c QWAVEdrv - ok
09:47:21.0431 0x0f5c [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:47:21.0470 0x0f5c RasAcd - ok
09:47:21.0504 0x0f5c [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
09:47:21.0544 0x0f5c RasAuto - ok
09:47:21.0557 0x0f5c [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:47:21.0600 0x0f5c Rasl2tp - ok
09:47:21.0630 0x0f5c [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
09:47:21.0663 0x0f5c RasMan - ok
09:47:21.0697 0x0f5c [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:47:21.0738 0x0f5c RasPppoe - ok
09:47:21.0757 0x0f5c [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:47:21.0792 0x0f5c RasSstp - ok
09:47:21.0834 0x0f5c [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:47:21.0878 0x0f5c rdbss - ok
09:47:21.0908 0x0f5c [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:47:21.0937 0x0f5c RDPCDD - ok
09:47:21.0963 0x0f5c [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
09:47:21.0999 0x0f5c rdpdr - ok
09:47:22.0004 0x0f5c [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:47:22.0052 0x0f5c RDPENCDD - ok
09:47:22.0091 0x0f5c [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:47:22.0122 0x0f5c RDPWD - ok
09:47:22.0166 0x0f5c [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
09:47:22.0197 0x0f5c RemoteAccess - ok
09:47:22.0212 0x0f5c [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:47:22.0251 0x0f5c RemoteRegistry - ok
09:47:22.0270 0x0f5c [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
09:47:22.0304 0x0f5c RpcLocator - ok
09:47:22.0344 0x0f5c [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
09:47:22.0388 0x0f5c RpcSs - ok
09:47:22.0438 0x0f5c [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:47:22.0487 0x0f5c rspndr - ok
09:47:22.0532 0x0f5c [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
09:47:22.0551 0x0f5c RTL8169 - ok
09:47:22.0613 0x0f5c [ 93F66FAEA8BF047D4242AC85AADA403D, EAC5EA048B255EA255E120FD8FCF6BC682843E08A57838FB731050A7B9B9EDCC ] RVIEG01 C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys
09:47:22.0642 0x0f5c RVIEG01 - detected UnsignedFile.Multi.Generic ( 1 )
09:47:22.0884 0x0f5c Detect skipped due to KSN trusted
09:47:22.0884 0x0f5c RVIEG01 - ok
09:47:22.0953 0x0f5c [ 3C74D9FDB1D9831EC932E89F3D874F00, 193577197D2EE5E91A282B8DF945A1A5459C4D44F8C93F7FD5D67801BEEF988B ] RVIEGVST C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
09:47:22.0988 0x0f5c RVIEGVST - detected UnsignedFile.Multi.Generic ( 1 )
09:47:23.0225 0x0f5c RVIEGVST ( UnsignedFile.Multi.Generic ) - warning
09:47:23.0226 0x0f5c Force sending object to P2P due to detect: C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
09:47:43.0227 0x0f5c Object send P2P result: false
09:47:43.0404 0x0f5c [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
09:47:43.0422 0x0f5c SamSs - ok
09:47:43.0439 0x0f5c [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:47:43.0454 0x0f5c sbp2port - ok
09:47:43.0490 0x0f5c [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:47:43.0534 0x0f5c SCardSvr - ok
09:47:43.0593 0x0f5c [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
09:47:43.0646 0x0f5c Schedule - ok
09:47:43.0674 0x0f5c [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
09:47:43.0698 0x0f5c SCPolicySvc - ok
09:47:43.0724 0x0f5c [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:47:43.0745 0x0f5c SDRSVC - ok
09:47:43.0767 0x0f5c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:47:43.0816 0x0f5c secdrv - ok
09:47:43.0832 0x0f5c [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
09:47:43.0863 0x0f5c seclogon - ok
09:47:43.0879 0x0f5c [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
09:47:43.0920 0x0f5c SENS - ok
09:47:43.0944 0x0f5c [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
09:47:44.0010 0x0f5c Serenum - ok
09:47:44.0045 0x0f5c [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
09:47:44.0094 0x0f5c Serial - ok
09:47:44.0104 0x0f5c [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
09:47:44.0133 0x0f5c sermouse - ok
09:47:44.0159 0x0f5c [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
09:47:44.0204 0x0f5c SessionEnv - ok
09:47:44.0222 0x0f5c [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:47:44.0267 0x0f5c sffdisk - ok
09:47:44.0288 0x0f5c [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:47:44.0339 0x0f5c sffp_mmc - ok
09:47:44.0360 0x0f5c [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:47:44.0389 0x0f5c sffp_sd - ok
09:47:44.0423 0x0f5c [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:47:44.0459 0x0f5c sfloppy - ok
09:47:44.0502 0x0f5c [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:47:44.0552 0x0f5c SharedAccess - ok
09:47:44.0594 0x0f5c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:47:44.0620 0x0f5c ShellHWDetection - ok
09:47:44.0633 0x0f5c [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
09:47:44.0649 0x0f5c sisagp - ok
09:47:44.0666 0x0f5c [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
09:47:44.0681 0x0f5c SiSRaid2 - ok
09:47:44.0699 0x0f5c [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
09:47:44.0715 0x0f5c SiSRaid4 - ok
09:47:44.0772 0x0f5c [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
09:47:44.0788 0x0f5c SkypeUpdate - ok
09:47:44.0949 0x0f5c [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
09:47:45.0219 0x0f5c slsvc - ok
09:47:45.0279 0x0f5c [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
09:47:45.0314 0x0f5c SLUINotify - ok
09:47:45.0349 0x0f5c [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:47:45.0374 0x0f5c Smb - ok
09:47:45.0407 0x0f5c [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:47:45.0424 0x0f5c SNMPTRAP - ok
09:47:45.0446 0x0f5c [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
09:47:45.0462 0x0f5c spldr - ok
09:47:45.0488 0x0f5c [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
09:47:45.0527 0x0f5c Spooler - ok
09:47:45.0579 0x0f5c [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
09:47:45.0613 0x0f5c srv - ok
09:47:45.0645 0x0f5c [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:47:45.0692 0x0f5c srv2 - ok
09:47:45.0731 0x0f5c [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:47:45.0764 0x0f5c srvnet - ok
09:47:45.0795 0x0f5c [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:47:45.0850 0x0f5c SSDPSRV - ok
09:47:45.0883 0x0f5c [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
09:47:45.0895 0x0f5c ssmdrv - ok
09:47:45.0924 0x0f5c [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:47:45.0946 0x0f5c SstpSvc - ok
09:47:45.0987 0x0f5c Steam Client Service - ok
09:47:46.0037 0x0f5c [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
09:47:46.0081 0x0f5c stisvc - ok
09:47:46.0118 0x0f5c [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
09:47:46.0132 0x0f5c swenum - ok
09:47:46.0172 0x0f5c [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
09:47:46.0218 0x0f5c swprv - ok
09:47:46.0239 0x0f5c [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
09:47:46.0254 0x0f5c Symc8xx - ok
09:47:46.0267 0x0f5c [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
09:47:46.0283 0x0f5c Sym_hi - ok
09:47:46.0298 0x0f5c [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
09:47:46.0314 0x0f5c Sym_u3 - ok
09:47:46.0345 0x0f5c [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
09:47:46.0442 0x0f5c SysMain - ok
09:47:46.0483 0x0f5c [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:47:46.0503 0x0f5c TabletInputService - ok
09:47:46.0545 0x0f5c [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:47:46.0596 0x0f5c TapiSrv - ok
09:47:46.0620 0x0f5c [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
09:47:46.0665 0x0f5c TBS - ok
09:47:46.0737 0x0f5c [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:47:46.0816 0x0f5c Tcpip - ok
09:47:46.0867 0x0f5c [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
09:47:46.0922 0x0f5c Tcpip6 - ok
09:47:46.0952 0x0f5c [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:47:46.0984 0x0f5c tcpipreg - ok
09:47:47.0022 0x0f5c [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:47:47.0064 0x0f5c TDPIPE - ok
09:47:47.0082 0x0f5c [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:47:47.0133 0x0f5c TDTCP - ok
09:47:47.0166 0x0f5c [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:47:47.0232 0x0f5c tdx - ok
09:47:47.0257 0x0f5c [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
09:47:47.0273 0x0f5c TermDD - ok
09:47:47.0299 0x0f5c [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
09:47:47.0349 0x0f5c TermService - ok
09:47:47.0434 0x0f5c [ 250B9120C7C103AFDC0C6643F9691055, 63E6CD6E92DAB86A07AED8C4E1C3955C818C0E6E60A33A18EF58DDEC06767B4C ] TestHandler C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
09:47:47.0452 0x0f5c TestHandler - detected UnsignedFile.Multi.Generic ( 1 )
09:47:47.0690 0x0f5c Detect skipped due to KSN trusted
09:47:47.0690 0x0f5c TestHandler - ok
09:47:47.0740 0x0f5c [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
09:47:47.0765 0x0f5c Themes - ok
09:47:47.0784 0x0f5c [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
09:47:47.0815 0x0f5c THREADORDER - ok
09:47:47.0848 0x0f5c [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
09:47:47.0892 0x0f5c TrkWks - ok
09:47:47.0930 0x0f5c [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:47:47.0954 0x0f5c TrustedInstaller - ok
09:47:47.0984 0x0f5c [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:47:48.0014 0x0f5c tssecsrv - ok
09:47:48.0063 0x0f5c [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
09:47:48.0096 0x0f5c tunmp - ok
09:47:48.0127 0x0f5c [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:47:48.0161 0x0f5c tunnel - ok
09:47:48.0187 0x0f5c [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
09:47:48.0202 0x0f5c uagp35 - ok
09:47:48.0232 0x0f5c [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:47:48.0264 0x0f5c udfs - ok
09:47:48.0296 0x0f5c [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:47:48.0326 0x0f5c UI0Detect - ok
09:47:48.0340 0x0f5c [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:47:48.0356 0x0f5c uliagpkx - ok
09:47:48.0381 0x0f5c [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
09:47:48.0402 0x0f5c uliahci - ok
09:47:48.0421 0x0f5c [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
09:47:48.0436 0x0f5c UlSata - ok
09:47:48.0454 0x0f5c [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
09:47:48.0471 0x0f5c ulsata2 - ok
09:47:48.0487 0x0f5c [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:47:48.0533 0x0f5c umbus - ok
09:47:48.0558 0x0f5c [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
09:47:48.0597 0x0f5c upnphost - ok
09:47:48.0632 0x0f5c [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
09:47:48.0667 0x0f5c USBAAPL - ok
09:47:48.0722 0x0f5c [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
09:47:48.0740 0x0f5c usbaudio - ok
09:47:48.0775 0x0f5c [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:47:48.0802 0x0f5c usbccgp - ok
09:47:48.0816 0x0f5c [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:47:48.0878 0x0f5c usbcir - ok
09:47:48.0915 0x0f5c [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:47:48.0933 0x0f5c usbehci - ok
09:47:48.0969 0x0f5c [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:47:49.0012 0x0f5c usbhub - ok
09:47:49.0029 0x0f5c [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
09:47:49.0088 0x0f5c usbohci - ok
09:47:49.0125 0x0f5c [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:47:49.0154 0x0f5c usbprint - ok
09:47:49.0193 0x0f5c [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
09:47:49.0243 0x0f5c usbscan - ok
09:47:49.0270 0x0f5c [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:47:49.0296 0x0f5c USBSTOR - ok
09:47:49.0328 0x0f5c [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
09:47:49.0345 0x0f5c usbuhci - ok
09:47:49.0380 0x0f5c [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
09:47:49.0422 0x0f5c usbvideo - ok
09:47:49.0441 0x0f5c [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
09:47:49.0466 0x0f5c UxSms - ok
09:47:49.0495 0x0f5c [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
09:47:49.0590 0x0f5c vds - ok
09:47:49.0635 0x0f5c [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:47:49.0664 0x0f5c vga - ok
09:47:49.0685 0x0f5c [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
09:47:49.0714 0x0f5c VgaSave - ok
09:47:49.0728 0x0f5c [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
09:47:49.0744 0x0f5c viaagp - ok
09:47:49.0764 0x0f5c [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
09:47:49.0793 0x0f5c ViaC7 - ok
09:47:49.0808 0x0f5c [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
09:47:49.0823 0x0f5c viaide - ok
09:47:49.0834 0x0f5c [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:47:49.0852 0x0f5c volmgr - ok
09:47:49.0894 0x0f5c [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:47:49.0931 0x0f5c volmgrx - ok
09:47:49.0964 0x0f5c [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:47:49.0988 0x0f5c volsnap - ok
09:47:50.0009 0x0f5c [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
09:47:50.0028 0x0f5c vsmraid - ok
09:47:50.0092 0x0f5c [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
09:47:50.0192 0x0f5c VSS - ok
09:47:50.0242 0x0f5c [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
09:47:50.0276 0x0f5c W32Time - ok
09:47:50.0296 0x0f5c [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
09:47:50.0364 0x0f5c WacomPen - ok
09:47:50.0387 0x0f5c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
09:47:50.0425 0x0f5c Wanarp - ok
09:47:50.0431 0x0f5c [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:47:50.0458 0x0f5c Wanarpv6 - ok
09:47:50.0487 0x0f5c [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:47:50.0530 0x0f5c wcncsvc - ok
09:47:50.0555 0x0f5c [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:47:50.0602 0x0f5c WcsPlugInService - ok
09:47:50.0624 0x0f5c [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
09:47:50.0638 0x0f5c Wd - ok
09:47:50.0679 0x0f5c [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:47:50.0720 0x0f5c Wdf01000 - ok
09:47:50.0739 0x0f5c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:47:50.0772 0x0f5c WdiServiceHost - ok
09:47:50.0777 0x0f5c [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:47:50.0809 0x0f5c WdiSystemHost - ok
09:47:50.0840 0x0f5c [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
09:47:50.0885 0x0f5c WebClient - ok
09:47:50.0935 0x0f5c [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:47:50.0957 0x0f5c Wecsvc - ok
09:47:50.0970 0x0f5c [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:47:51.0008 0x0f5c wercplsupport - ok
09:47:51.0047 0x0f5c [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
09:47:51.0076 0x0f5c WerSvc - ok
09:47:51.0098 0x0f5c WinHttpAutoProxySvc - ok
09:47:51.0161 0x0f5c [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:47:51.0189 0x0f5c Winmgmt - ok
09:47:51.0262 0x0f5c [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
09:47:51.0402 0x0f5c WinRM - ok
09:47:51.0486 0x0f5c [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:47:51.0529 0x0f5c Wlansvc - ok
09:47:51.0578 0x0f5c [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:47:51.0603 0x0f5c WmiAcpi - ok
09:47:51.0634 0x0f5c [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:47:51.0671 0x0f5c wmiApSrv - ok
09:47:51.0745 0x0f5c [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
09:47:51.0827 0x0f5c WMPNetworkSvc - ok
09:47:51.0871 0x0f5c [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:47:51.0910 0x0f5c WPCSvc - ok
09:47:51.0941 0x0f5c [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:47:51.0961 0x0f5c WPDBusEnum - ok
09:47:51.0995 0x0f5c [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
09:47:52.0013 0x0f5c WpdUsb - ok
09:47:52.0127 0x0f5c [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
09:47:52.0180 0x0f5c WPFFontCache_v0400 - ok
09:47:52.0205 0x0f5c [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:47:52.0234 0x0f5c ws2ifsl - ok
09:47:52.0248 0x0f5c [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
09:47:52.0270 0x0f5c wscsvc - ok
09:47:52.0274 0x0f5c WSearch - ok
09:47:52.0376 0x0f5c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
09:47:52.0513 0x0f5c wuauserv - ok
09:47:52.0578 0x0f5c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:47:52.0599 0x0f5c WudfPf - ok
09:47:52.0633 0x0f5c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:47:52.0673 0x0f5c WUDFRd - ok
09:47:52.0703 0x0f5c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:47:52.0723 0x0f5c wudfsvc - ok
09:47:52.0734 0x0f5c ================ Scan global ===============================
09:47:52.0766 0x0f5c [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
09:47:52.0808 0x0f5c [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
09:47:52.0851 0x0f5c [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
09:47:52.0905 0x0f5c [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
09:47:52.0913 0x0f5c [ Global ] - ok
09:47:52.0913 0x0f5c ================ Scan MBR ==================================
09:47:52.0926 0x0f5c [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
09:47:53.0432 0x0f5c \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
09:47:53.0433 0x0f5c \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:47:53.0564 0x0f5c ================ Scan VBR ==================================
09:47:53.0567 0x0f5c [ 475F109F98C97AD8B988A9DFE2889F3C ] \Device\Harddisk0\DR0\Partition1
09:47:53.0569 0x0f5c \Device\Harddisk0\DR0\Partition1 - ok
09:47:53.0589 0x0f5c [ 2E8119675E5F4A5D83E35072BAE43E85 ] \Device\Harddisk0\DR0\Partition2
09:47:53.0592 0x0f5c \Device\Harddisk0\DR0\Partition2 - ok
09:47:53.0592 0x0f5c Waiting for KSN requests completion. In queue: 120
09:47:54.0696 0x0f5c AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
09:47:54.0725 0x0f5c AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.1.641 ), 0x41000 ( enabled : updated )
09:47:54.0756 0x0f5c Win FW state via NFP2: enabled
09:47:54.0886 0x0f5c ============================================================
09:47:54.0886 0x0f5c Scan finished
09:47:54.0886 0x0f5c ============================================================
09:47:54.0894 0x1668 Detected object count: 3
09:47:54.0894 0x1668 Actual detected object count: 3
09:48:04.0544 0x1668 GpdDevDPort ( UnsignedFile.Multi.Generic ) - skipped by user
09:48:04.0544 0x1668 GpdDevDPort ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:48:04.0545 0x1668 RVIEGVST ( UnsignedFile.Multi.Generic ) - skipped by user
09:48:04.0546 0x1668 RVIEGVST ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:48:04.0547 0x1668 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
09:48:04.0547 0x1668 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
__________________

Alt 02.12.2013, 10:35   #4
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



...und die GMER Log-Datei

Alt 05.12.2013, 10:55   #5
schrauber
/// the machine
/// TB-Ausbilder
 

Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.





Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.


__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 05.12.2013, 13:19   #6
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Hallo Schrauber,

Ich habe Combofix jetzt ca. 1,5 Stunden laufen lassen, doch der Scan wurde nicht abgeschlossen. Soll ich es noch länger probieren? Da stand etwas von 10, max. 20 Minuten.

Grüße
Richard

Alt 06.12.2013, 09:53   #7
schrauber
/// the machine
/// TB-Ausbilder
 

Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Abbrechen.

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 06.12.2013, 12:33   #8
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Code:
ATTFilter
12:29:33.0886 0x1418  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:29:37.0006 0x1418  ============================================================
12:29:37.0006 0x1418  Current date / time: 2013/12/06 12:29:37.0006
12:29:37.0006 0x1418  SystemInfo:
12:29:37.0006 0x1418  
12:29:37.0006 0x1418  OS Version: 6.0.6002 ServicePack: 2.0
12:29:37.0006 0x1418  Product type: Workstation
12:29:37.0006 0x1418  ComputerName: RICHARD-PC
12:29:37.0006 0x1418  UserName: Richard
12:29:37.0006 0x1418  Windows directory: C:\Windows
12:29:37.0006 0x1418  System windows directory: C:\Windows
12:29:37.0006 0x1418  Processor architecture: Intel x86
12:29:37.0006 0x1418  Number of processors: 2
12:29:37.0006 0x1418  Page size: 0x1000
12:29:37.0006 0x1418  Boot type: Normal boot
12:29:37.0006 0x1418  ============================================================
12:29:40.0298 0x1418  KLMD registered as C:\Windows\system32\drivers\00456434.sys
12:29:40.0875 0x1418  System UUID: {1DD9EEBB-7F7A-37D7-BD67-B0028FB386EB}
12:29:42.0622 0x1418  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:29:42.0622 0x1418  ============================================================
12:29:42.0622 0x1418  \Device\Harddisk0\DR0:
12:29:42.0622 0x1418  MBR partitions:
12:29:42.0622 0x1418  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1194800, BlocksNum 0xBC51800
12:29:42.0622 0x1418  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCDE6000, BlocksNum 0x186482B0
12:29:42.0622 0x1418  ============================================================
12:29:42.0700 0x1418  C: <-> \Device\Harddisk0\DR0\Partition1
12:29:42.0747 0x1418  D: <-> \Device\Harddisk0\DR0\Partition2
12:29:42.0747 0x1418  ============================================================
12:29:42.0747 0x1418  Initialize success
12:29:42.0747 0x1418  ============================================================
12:29:52.0507 0x17b8  ============================================================
12:29:52.0507 0x17b8  Scan started
12:29:52.0507 0x17b8  Mode: Manual; SigCheck; TDLFS; 
12:29:52.0507 0x17b8  ============================================================
12:29:52.0507 0x17b8  KSN ping started
12:30:03.0770 0x17b8  KSN ping finished: true
12:30:05.0736 0x17b8  ================ Scan system memory ========================
12:30:05.0736 0x17b8  System memory - ok
12:30:05.0736 0x17b8  ================ Scan services =============================
12:30:06.0048 0x17b8  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:30:06.0173 0x17b8  ACPI - ok
12:30:06.0391 0x17b8  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:30:06.0438 0x17b8  AdobeARMservice - ok
12:30:06.0563 0x17b8  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:30:06.0578 0x17b8  AdobeFlashPlayerUpdateSvc - ok
12:30:06.0625 0x17b8  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:30:06.0781 0x17b8  adp94xx - ok
12:30:06.0812 0x17b8  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:30:06.0875 0x17b8  adpahci - ok
12:30:06.0984 0x17b8  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:30:07.0078 0x17b8  adpu160m - ok
12:30:07.0093 0x17b8  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:30:07.0187 0x17b8  adpu320 - ok
12:30:07.0218 0x17b8  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:30:07.0296 0x17b8  AeLookupSvc - ok
12:30:07.0343 0x17b8  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
12:30:07.0421 0x17b8  AFD - ok
12:30:07.0468 0x17b8  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:30:07.0514 0x17b8  agp440 - ok
12:30:07.0546 0x17b8  [ 0DEE2B628D4C6E23285BB91EFFDABFDE, 58F14336AA1642D97D4EA540166FDCFA7B9125062E4350F0DD51D235E395ED00 ] ahcix86s        C:\Windows\system32\drivers\ahcix86s.sys
12:30:07.0686 0x17b8  ahcix86s - ok
12:30:07.0733 0x17b8  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:30:07.0826 0x17b8  aic78xx - ok
12:30:07.0858 0x17b8  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
12:30:07.0951 0x17b8  ALG - ok
12:30:07.0998 0x17b8  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
12:30:08.0107 0x17b8  aliide - ok
12:30:08.0138 0x17b8  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:30:08.0294 0x17b8  amdagp - ok
12:30:08.0326 0x17b8  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
12:30:08.0450 0x17b8  amdide - ok
12:30:08.0482 0x17b8  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:30:08.0622 0x17b8  AmdK7 - ok
12:30:08.0653 0x17b8  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:30:08.0840 0x17b8  AmdK8 - ok
12:30:09.0028 0x17b8  [ 0D1E15010057B8426583A99CB179A6C4, 645C7D27E27AAC4124F7F907374B6A50D07D349B95AA869D7091372BD3AF653B ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
12:30:09.0091 0x17b8  AntiVirSchedulerService - ok
12:30:09.0185 0x17b8  [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
12:30:09.0263 0x17b8  AntiVirService - ok
12:30:09.0356 0x17b8  [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
12:30:09.0465 0x17b8  AntiVirWebService - ok
12:30:09.0512 0x17b8  [ BEF294FFE5F40BE768BDCBE1837DFABE, A5EBC3289758E2E152BA1571BB288FA33D7E2D23FE715CB51D39992369FDFC19 ] APNMCP          C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
12:30:09.0559 0x17b8  APNMCP - ok
12:30:09.0606 0x17b8  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
12:30:09.0637 0x17b8  Appinfo - ok
12:30:09.0746 0x17b8  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:30:09.0793 0x17b8  Apple Mobile Device - ok
12:30:09.0840 0x17b8  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
12:30:09.0918 0x17b8  arc - ok
12:30:09.0965 0x17b8  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:30:10.0074 0x17b8  arcsas - ok
12:30:10.0121 0x17b8  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:30:10.0214 0x17b8  AsyncMac - ok
12:30:10.0245 0x17b8  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
12:30:10.0261 0x17b8  atapi - ok
12:30:10.0339 0x17b8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:30:10.0417 0x17b8  AudioEndpointBuilder - ok
12:30:10.0448 0x17b8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:30:10.0479 0x17b8  Audiosrv - ok
12:30:10.0557 0x17b8  [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
12:30:10.0698 0x17b8  Avgdiskx - ok
12:30:10.0932 0x17b8  [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:30:11.0275 0x17b8  AVGIDSAgent - ok
12:30:11.0369 0x17b8  [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:30:11.0493 0x17b8  AVGIDSDriver - ok
12:30:11.0587 0x17b8  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
12:30:11.0603 0x17b8  AVGIDSHX - ok
12:30:11.0634 0x17b8  [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:30:11.0727 0x17b8  AVGIDSShim - ok
12:30:11.0790 0x17b8  [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
12:30:11.0961 0x17b8  Avgldx86 - ok
12:30:12.0039 0x17b8  [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
12:30:12.0086 0x17b8  Avglogx - ok
12:30:12.0117 0x17b8  [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
12:30:12.0133 0x17b8  Avgmfx86 - ok
12:30:12.0211 0x17b8  [ 6B4362EDB2EB956DF594D9168D179972, 7E2F5E76C6885BB3D889726B240A4AC3394216C2884EE2088B2CD05F91571B19 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
12:30:12.0273 0x17b8  avgntflt - ok
12:30:12.0351 0x17b8  [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
12:30:12.0398 0x17b8  Avgrkx86 - ok
12:30:12.0429 0x17b8  [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
12:30:12.0539 0x17b8  Avgtdix - ok
12:30:12.0601 0x17b8  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:30:12.0632 0x17b8  avgwd - ok
12:30:12.0695 0x17b8  [ C0F13672DEA7BDB40A89414AB0411705, 5B0C2391340BEE31CB6D8D7433786EDD48BBCD5D5737A539D4A0A54F37636720 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
12:30:12.0741 0x17b8  avipbb - ok
12:30:12.0788 0x17b8  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
12:30:12.0804 0x17b8  avkmgr - ok
12:30:12.0866 0x17b8  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:30:13.0007 0x17b8  Beep - ok
12:30:13.0085 0x17b8  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
12:30:13.0178 0x17b8  BFE - ok
12:30:13.0256 0x17b8  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
12:30:13.0412 0x17b8  BITS - ok
12:30:13.0475 0x17b8  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:30:13.0631 0x17b8  blbdrive - ok
12:30:13.0755 0x17b8  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:30:13.0833 0x17b8  Bonjour Service - ok
12:30:13.0865 0x17b8  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:30:14.0021 0x17b8  bowser - ok
12:30:14.0052 0x17b8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:30:14.0177 0x17b8  BrFiltLo - ok
12:30:14.0192 0x17b8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:30:14.0333 0x17b8  BrFiltUp - ok
12:30:14.0348 0x17b8  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
12:30:14.0411 0x17b8  Browser - ok
12:30:14.0473 0x17b8  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:30:14.0676 0x17b8  Brserid - ok
12:30:14.0723 0x17b8  [ 1A5FC78E41840EDF79D65EC16EFF2787, 05BC4C07C88ADDE6D7FF01B821DDB944EEEC8035AC1B6D780E39FDBD12FCA885 ] BrSerIf         C:\Windows\system32\Drivers\BrSerIf.sys
12:30:14.0801 0x17b8  BrSerIf - ok
12:30:14.0847 0x17b8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:30:14.0988 0x17b8  BrSerWdm - ok
12:30:15.0003 0x17b8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:30:15.0159 0x17b8  BrUsbMdm - ok
12:30:15.0191 0x17b8  [ A24C7B39602218F8DBDB2B6704325FC7, B90A1BA412A33AD041A2CE47FBB73AE296AF07A2F3DF1F56D9FEE5B3B1E0BBD5 ] BrUsbSer        C:\Windows\system32\Drivers\BrUsbSer.sys
12:30:15.0269 0x17b8  BrUsbSer - ok
12:30:15.0300 0x17b8  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:30:15.0440 0x17b8  BTHMODEM - ok
12:30:15.0674 0x17b8  catchme - ok
12:30:15.0783 0x17b8  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:30:15.0924 0x17b8  cdfs - ok
12:30:16.0002 0x17b8  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:30:16.0173 0x17b8  cdrom - ok
12:30:16.0220 0x17b8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
12:30:16.0298 0x17b8  CertPropSvc - ok
12:30:16.0361 0x17b8  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:30:16.0548 0x17b8  circlass - ok
12:30:16.0719 0x17b8  [ B53F9635457B56DCFFEF750E18AEC6CB, BAF6B8C8FAD040ED8E61209E9795C613C979B84C6B771FDED05B64BBEEB6A569 ] CLEDX           C:\Windows\system32\DRIVERS\cledx.sys
12:30:16.0782 0x17b8  CLEDX - detected UnsignedFile.Multi.Generic ( 1 )
12:30:17.0265 0x17b8  Detect skipped due to KSN trusted
12:30:17.0265 0x17b8  CLEDX - ok
12:30:17.0468 0x17b8  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
12:30:17.0640 0x17b8  CLFS - ok
12:30:17.0796 0x17b8  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:30:18.0217 0x17b8  clr_optimization_v2.0.50727_32 - ok
12:30:18.0607 0x17b8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:30:18.0763 0x17b8  clr_optimization_v4.0.30319_32 - ok
12:30:19.0059 0x17b8  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:30:19.0279 0x17b8  CmBatt - ok
12:30:19.0435 0x17b8  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:30:19.0544 0x17b8  cmdide - ok
12:30:19.0560 0x17b8  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:30:19.0903 0x17b8  Compbatt - ok
12:30:19.0918 0x17b8  COMSysApp - ok
12:30:19.0965 0x17b8  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:30:20.0043 0x17b8  crcdisk - ok
12:30:20.0090 0x17b8  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:30:20.0620 0x17b8  Crusoe - ok
12:30:20.0730 0x17b8  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:30:20.0870 0x17b8  CryptSvc - ok
12:30:20.0964 0x17b8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:30:21.0120 0x17b8  DcomLaunch - ok
12:30:21.0213 0x17b8  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:30:21.0354 0x17b8  DfsC - ok
12:30:21.0775 0x17b8  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
12:30:22.0555 0x17b8  DFSR - ok
12:30:22.0648 0x17b8  [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:30:22.0758 0x17b8  dg_ssudbus - ok
12:30:22.0820 0x17b8  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:30:22.0867 0x17b8  Dhcp - ok
12:30:22.0929 0x17b8  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
12:30:23.0054 0x17b8  disk - ok
12:30:23.0101 0x17b8  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:30:23.0132 0x17b8  Dnscache - ok
12:30:23.0179 0x17b8  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
12:30:23.0210 0x17b8  dot3svc - ok
12:30:23.0304 0x17b8  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
12:30:23.0460 0x17b8  DPS - ok
12:30:23.0678 0x17b8  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:30:23.0959 0x17b8  drmkaud - ok
12:30:24.0052 0x17b8  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:30:24.0115 0x17b8  DXGKrnl - ok
12:30:24.0208 0x17b8  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:30:24.0630 0x17b8  E1G60 - ok
12:30:24.0770 0x17b8  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
12:30:24.0832 0x17b8  EapHost - ok
12:30:24.0910 0x17b8  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:30:24.0973 0x17b8  Ecache - ok
12:30:25.0113 0x17b8  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:30:25.0129 0x17b8  ehRecvr - ok
12:30:25.0207 0x17b8  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
12:30:25.0550 0x17b8  ehSched - ok
12:30:25.0581 0x17b8  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
12:30:26.0049 0x17b8  ehstart - ok
12:30:26.0205 0x17b8  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:30:26.0673 0x17b8  elxstor - ok
12:30:27.0126 0x17b8  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:30:27.0204 0x17b8  EMDMgmt - ok
12:30:27.0406 0x17b8  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:30:27.0828 0x17b8  ErrDev - ok
12:30:27.0890 0x17b8  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
12:30:27.0999 0x17b8  EventSystem - ok
12:30:28.0046 0x17b8  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:30:28.0186 0x17b8  exfat - ok
12:30:28.0233 0x17b8  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:30:28.0405 0x17b8  fastfat - ok
12:30:28.0467 0x17b8  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:30:28.0670 0x17b8  fdc - ok
12:30:28.0717 0x17b8  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
12:30:28.0748 0x17b8  fdPHost - ok
12:30:28.0904 0x17b8  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:30:28.0966 0x17b8  FDResPub - ok
12:30:28.0998 0x17b8  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:30:29.0044 0x17b8  FileInfo - ok
12:30:29.0076 0x17b8  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:30:29.0247 0x17b8  Filetrace - ok
12:30:29.0263 0x17b8  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:30:29.0403 0x17b8  flpydisk - ok
12:30:29.0434 0x17b8  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:30:29.0497 0x17b8  FltMgr - ok
12:30:29.0700 0x17b8  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
12:30:29.0778 0x17b8  FontCache - ok
12:30:30.0012 0x17b8  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:30:30.0324 0x17b8  FontCache3.0.0.0 - ok
12:30:30.0339 0x17b8  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:30:30.0433 0x17b8  Fs_Rec - ok
12:30:30.0464 0x17b8  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:30:30.0526 0x17b8  gagp30kx - ok
12:30:30.0589 0x17b8  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:30:30.0698 0x17b8  GEARAspiWDM - ok
12:30:30.0760 0x17b8  [ 9E6B5241CB0B11DDDDF162865041D193, 66F8984276E65A8607A5FA981FB48897B52C22BD629864B01470DAF78B0D5CE1 ] GpdDevDPort     C:\Windows\system32\directport.sys
12:30:30.0870 0x17b8  GpdDevDPort - detected UnsignedFile.Multi.Generic ( 1 )
12:30:31.0135 0x17b8  GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning
12:30:31.0447 0x17b8  [ E48C4E69E2126AAC01888C60CC6ED966, 46A5DE1BCEFA31A583770AB391EE2C940649CAF0A44557B479B1C34BF51D53CF ] GpdKbFilter     C:\Windows\system32\kbfiltr.sys
12:30:31.0525 0x17b8  GpdKbFilter - detected UnsignedFile.Multi.Generic ( 1 )
12:30:31.0696 0x17b8  Detect skipped due to KSN trusted
12:30:31.0696 0x17b8  GpdKbFilter - ok
12:30:31.0759 0x17b8  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
12:30:31.0915 0x17b8  gpsvc - ok
12:30:31.0993 0x17b8  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:30:32.0586 0x17b8  HdAudAddService - ok
12:30:32.0695 0x17b8  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:30:32.0773 0x17b8  HDAudBus - ok
12:30:32.0882 0x17b8  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:30:33.0022 0x17b8  HidBth - ok
12:30:33.0038 0x17b8  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:30:33.0178 0x17b8  HidIr - ok
12:30:33.0194 0x17b8  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\System32\hidserv.dll
12:30:33.0225 0x17b8  hidserv - ok
12:30:33.0256 0x17b8  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:30:33.0319 0x17b8  HidUsb - ok
12:30:33.0366 0x17b8  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:30:33.0397 0x17b8  hkmsvc - ok
12:30:33.0428 0x17b8  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:30:33.0554 0x17b8  HpCISSs - ok
12:30:33.0601 0x17b8  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:30:33.0647 0x17b8  HTTP - ok
12:30:33.0694 0x17b8  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:30:33.0835 0x17b8  i2omp - ok
12:30:33.0897 0x17b8  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:30:34.0084 0x17b8  i8042prt - ok
12:30:34.0178 0x17b8  [ E5A0034847537EAEE3C00349D5C34C5F, 3E0F99512CDFF0B628E2FF5B91BB371CDEF65201B03C53182C97DDE34E26E04C ] iaStor          C:\Windows\system32\drivers\iastor.sys
12:30:34.0303 0x17b8  iaStor - ok
12:30:34.0334 0x17b8  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:30:34.0412 0x17b8  iaStorV - ok
12:30:34.0505 0x17b8  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:30:35.0254 0x17b8  idsvc - ok
12:30:35.0301 0x17b8  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:30:35.0410 0x17b8  iirsp - ok
12:30:35.0753 0x17b8  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:30:35.0800 0x17b8  IKEEXT - ok
12:30:35.0925 0x17b8  [ 2DEB2538C9372568BB67B5FDF2359790, 3F19414B12B5C8F361F9273E380D8C53938F344FAFB8C6517D4421755A3A994B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
12:30:36.0253 0x17b8  IntcAzAudAddService - ok
12:30:36.0299 0x17b8  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
12:30:36.0346 0x17b8  intelide - ok
12:30:36.0393 0x17b8  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:30:36.0440 0x17b8  intelppm - ok
12:30:36.0471 0x17b8  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:30:36.0549 0x17b8  IPBusEnum - ok
12:30:36.0596 0x17b8  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:30:36.0799 0x17b8  IpFilterDriver - ok
12:30:36.0877 0x17b8  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:30:36.0923 0x17b8  iphlpsvc - ok
12:30:36.0923 0x17b8  IpInIp - ok
12:30:36.0955 0x17b8  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:30:37.0079 0x17b8  IPMIDRV - ok
12:30:37.0126 0x17b8  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:30:37.0329 0x17b8  IPNAT - ok
12:30:37.0376 0x17b8  [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:30:37.0407 0x17b8  iPod Service - ok
12:30:37.0454 0x17b8  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:30:37.0579 0x17b8  IRENUM - ok
12:30:37.0610 0x17b8  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:30:37.0719 0x17b8  isapnp - ok
12:30:37.0750 0x17b8  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:30:37.0766 0x17b8  iScsiPrt - ok
12:30:37.0781 0x17b8  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:30:37.0875 0x17b8  iteatapi - ok
12:30:37.0922 0x17b8  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:30:37.0984 0x17b8  iteraid - ok
12:30:38.0015 0x17b8  [ C36F3A1A4E8416EF43F30DEAB7701730, 26A151FE87E1AFD18F7A88553E41E27DD3087721974C2B44621629D9029C4D29 ] JRAID           C:\Windows\system32\drivers\jraid.sys
12:30:38.0125 0x17b8  JRAID - ok
12:30:38.0125 0x17b8  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:30:38.0203 0x17b8  kbdclass - ok
12:30:38.0234 0x17b8  [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:30:38.0359 0x17b8  kbdhid - ok
12:30:38.0468 0x17b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
12:30:38.0561 0x17b8  KeyIso - ok
12:30:38.0733 0x17b8  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:30:38.0827 0x17b8  KSecDD - ok
12:30:38.0905 0x17b8  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:30:38.0967 0x17b8  KtmRm - ok
12:30:38.0998 0x17b8  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:30:39.0061 0x17b8  LanmanServer - ok
12:30:39.0093 0x17b8  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:30:39.0166 0x17b8  LanmanWorkstation - ok
12:30:39.0206 0x17b8  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:30:39.0313 0x17b8  lltdio - ok
12:30:39.0405 0x17b8  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:30:39.0607 0x17b8  lltdsvc - ok
12:30:39.0686 0x17b8  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:30:39.0762 0x17b8  lmhosts - ok
12:30:39.0821 0x17b8  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:30:39.0945 0x17b8  LSI_FC - ok
12:30:40.0060 0x17b8  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:30:40.0791 0x17b8  LSI_SAS - ok
12:30:40.0852 0x17b8  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:30:40.0924 0x17b8  LSI_SCSI - ok
12:30:40.0950 0x17b8  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:30:41.0097 0x17b8  luafv - ok
12:30:41.0162 0x17b8  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:30:41.0299 0x17b8  Mcx2Svc - ok
12:30:41.0338 0x17b8  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
12:30:41.0450 0x17b8  megasas - ok
12:30:41.0534 0x17b8  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
12:30:41.0846 0x17b8  MegaSR - ok
12:30:41.0899 0x17b8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
12:30:41.0933 0x17b8  MMCSS - ok
12:30:41.0971 0x17b8  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
12:30:42.0116 0x17b8  Modem - ok
12:30:42.0165 0x17b8  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:30:42.0231 0x17b8  monitor - ok
12:30:42.0261 0x17b8  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:30:42.0350 0x17b8  mouclass - ok
12:30:42.0385 0x17b8  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:30:42.0481 0x17b8  mouhid - ok
12:30:42.0515 0x17b8  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:30:42.0552 0x17b8  MountMgr - ok
12:30:42.0654 0x17b8  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:30:42.0845 0x17b8  MozillaMaintenance - ok
12:30:42.0909 0x17b8  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:30:43.0029 0x17b8  mpio - ok
12:30:43.0052 0x17b8  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:30:43.0106 0x17b8  mpsdrv - ok
12:30:43.0207 0x17b8  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:30:43.0259 0x17b8  MpsSvc - ok
12:30:43.0284 0x17b8  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:30:43.0328 0x17b8  Mraid35x - ok
12:30:43.0410 0x17b8  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:30:43.0487 0x17b8  MRxDAV - ok
12:30:43.0580 0x17b8  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:30:43.0652 0x17b8  mrxsmb - ok
12:30:43.0689 0x17b8  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:30:43.0883 0x17b8  mrxsmb10 - ok
12:30:44.0022 0x17b8  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:30:44.0154 0x17b8  mrxsmb20 - ok
12:30:44.0256 0x17b8  [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci          C:\Windows\system32\drivers\msahci.sys
12:30:44.0287 0x17b8  msahci - ok
12:30:44.0334 0x17b8  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:30:44.0382 0x17b8  msdsm - ok
12:30:44.0444 0x17b8  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
12:30:44.0959 0x17b8  MSDTC - ok
12:30:45.0099 0x17b8  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:30:45.0335 0x17b8  Msfs - ok
12:30:45.0554 0x17b8  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:30:45.0630 0x17b8  msisadrv - ok
12:30:45.0681 0x17b8  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:30:46.0014 0x17b8  MSiSCSI - ok
12:30:46.0023 0x17b8  msiserver - ok
12:30:46.0069 0x17b8  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:30:46.0307 0x17b8  MSKSSRV - ok
12:30:46.0365 0x17b8  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:30:46.0476 0x17b8  MSPCLOCK - ok
12:30:46.0533 0x17b8  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:30:46.0638 0x17b8  MSPQM - ok
12:30:46.0682 0x17b8  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:30:46.0753 0x17b8  MsRPC - ok
12:30:46.0857 0x17b8  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:30:46.0881 0x17b8  mssmbios - ok
12:30:46.0931 0x17b8  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:30:47.0044 0x17b8  MSTEE - ok
12:30:47.0074 0x17b8  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:30:47.0358 0x17b8  Mup - ok
12:30:47.0427 0x17b8  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
12:30:47.0490 0x17b8  napagent - ok
12:30:47.0631 0x17b8  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:30:47.0845 0x17b8  NativeWifiP - ok
12:30:47.0905 0x17b8  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:30:48.0010 0x17b8  NDIS - ok
12:30:48.0057 0x17b8  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:30:48.0849 0x17b8  NdisTapi - ok
12:30:48.0865 0x17b8  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:30:49.0278 0x17b8  Ndisuio - ok
12:30:49.0386 0x17b8  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:30:49.0512 0x17b8  NdisWan - ok
12:30:49.0572 0x17b8  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:30:50.0278 0x17b8  NDProxy - ok
12:30:50.0448 0x17b8  [ B044BB341E164DA6750A9B8E6A5FF6A1, 5E5CB4713BA20971CD09D176CBBE8857EB21A032CAC02A9042E88E5DD15B44D3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
12:30:50.0698 0x17b8  Nero BackItUp Scheduler 3 - ok
12:30:50.0745 0x17b8  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:30:50.0901 0x17b8  NetBIOS - ok
12:30:50.0932 0x17b8  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:30:51.0119 0x17b8  netbt - ok
12:30:51.0182 0x17b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
12:30:51.0197 0x17b8  Netlogon - ok
12:30:51.0245 0x17b8  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
12:30:51.0326 0x17b8  Netman - ok
12:30:51.0366 0x17b8  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
12:30:51.0475 0x17b8  netprofm - ok
12:30:51.0501 0x17b8  [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:30:51.0528 0x17b8  NetTcpPortSharing - ok
12:30:51.0887 0x17b8  [ 840D89327C45B0CB9E1AB130249046E2, 13B937BAB596141000C554B9BB6753E7358ED42B3367B496D1777B9B74F6CEF8 ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
12:30:52.0740 0x17b8  NETw5v32 - ok
12:30:52.0860 0x17b8  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:30:52.0966 0x17b8  nfrd960 - ok
12:30:53.0014 0x17b8  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:30:53.0049 0x17b8  NlaSvc - ok
12:30:53.0177 0x17b8  [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
12:30:53.0659 0x17b8  NMIndexingService - ok
12:30:53.0710 0x17b8  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:30:53.0881 0x17b8  Npfs - ok
12:30:53.0952 0x17b8  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
12:30:53.0983 0x17b8  nsi - ok
12:30:54.0055 0x17b8  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:30:54.0393 0x17b8  nsiproxy - ok
12:30:54.0484 0x17b8  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:30:55.0319 0x17b8  Ntfs - ok
12:30:55.0344 0x17b8  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:30:55.0539 0x17b8  ntrigdigi - ok
12:30:55.0552 0x17b8  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
12:30:55.0760 0x17b8  Null - ok
12:30:56.0128 0x17b8  [ CEF89AD9AAABF89C9C36C65ADC62F1ED, A0BC68D32482EB674E6081673951FF53A780759215BED5E9DDC84E1DFC1B9FED ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:30:57.0664 0x17b8  nvlddmkm - ok
12:30:57.0716 0x17b8  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:30:57.0943 0x17b8  nvraid - ok
12:30:57.0974 0x17b8  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:30:58.0073 0x17b8  nvstor - ok
12:30:58.0136 0x17b8  [ CC0AA0355DED3D34B7D975B6815CF30A, E9B0E33E0965B47BDE22545C6886DEE036012E4A6A7FCF7B7FE46ADE142769F4 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:30:58.0327 0x17b8  nvsvc - ok
12:30:58.0359 0x17b8  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:30:58.0523 0x17b8  nv_agp - ok
12:30:58.0530 0x17b8  NwlnkFlt - ok
12:30:58.0536 0x17b8  NwlnkFwd - ok
12:30:58.0627 0x17b8  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:30:59.0139 0x17b8  odserv - ok
12:30:59.0270 0x17b8  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:30:59.0402 0x17b8  ohci1394 - ok
12:30:59.0454 0x17b8  [ B7EDD9FD6387802DFAA795372AECF212, 53E8EACC9CD678BC4FFBD22A0F463A7834B1E68D2741518C65CC8883757CD912 ] OsdService      C:\Program Files\OEM\OSD_1.12\OsdService.exe
12:30:59.0723 0x17b8  OsdService - detected UnsignedFile.Multi.Generic ( 1 )
12:31:00.0212 0x17b8  Detect skipped due to KSN trusted
12:31:00.0212 0x17b8  OsdService - ok
12:31:00.0300 0x17b8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:31:00.0459 0x17b8  ose - ok
12:31:00.0518 0x17b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:31:00.0724 0x17b8  p2pimsvc - ok
12:31:00.0760 0x17b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:31:00.0865 0x17b8  p2psvc - ok
12:31:00.0894 0x17b8  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
12:31:01.0045 0x17b8  Parport - ok
12:31:01.0160 0x17b8  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:31:01.0245 0x17b8  partmgr - ok
12:31:01.0296 0x17b8  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
12:31:01.0440 0x17b8  Parvdm - ok
12:31:01.0475 0x17b8  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:31:01.0655 0x17b8  PcaSvc - ok
12:31:01.0699 0x17b8  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
12:31:01.0754 0x17b8  pci - ok
12:31:01.0789 0x17b8  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:31:01.0855 0x17b8  pciide - ok
12:31:01.0877 0x17b8  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:31:01.0993 0x17b8  pcmcia - ok
12:31:02.0059 0x17b8  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:31:02.0321 0x17b8  PEAUTH - ok
12:31:02.0554 0x17b8  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
12:31:02.0848 0x17b8  pla - ok
12:31:02.0886 0x17b8  [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
12:31:02.0962 0x17b8  PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic ( 1 )
12:31:03.0419 0x17b8  Detect skipped due to KSN trusted
12:31:03.0419 0x17b8  PLFlash DeviceIoControl Service - ok
12:31:03.0502 0x17b8  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:31:03.0615 0x17b8  PlugPlay - ok
12:31:03.0753 0x17b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:31:03.0836 0x17b8  PNRPAutoReg - ok
12:31:03.0896 0x17b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:31:03.0958 0x17b8  PNRPsvc - ok
12:31:04.0024 0x17b8  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:31:04.0230 0x17b8  PolicyAgent - ok
12:31:04.0303 0x17b8  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:31:04.0421 0x17b8  PptpMiniport - ok
12:31:04.0460 0x17b8  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
12:31:04.0600 0x17b8  Processor - ok
12:31:04.0652 0x17b8  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
12:31:04.0693 0x17b8  ProfSvc - ok
12:31:04.0746 0x17b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
12:31:04.0783 0x17b8  ProtectedStorage - ok
12:31:04.0830 0x17b8  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:31:04.0878 0x17b8  PSched - ok
12:31:04.0959 0x17b8  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
12:31:05.0027 0x17b8  PxHelp20 - ok
12:31:05.0136 0x17b8  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:31:05.0491 0x17b8  ql2300 - ok
12:31:05.0524 0x17b8  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:31:05.0648 0x17b8  ql40xx - ok
12:31:05.0693 0x17b8  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
12:31:05.0762 0x17b8  QWAVE - ok
12:31:05.0806 0x17b8  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:31:05.0849 0x17b8  QWAVEdrv - ok
12:31:05.0879 0x17b8  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:31:06.0064 0x17b8  RasAcd - ok
12:31:06.0138 0x17b8  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
12:31:06.0227 0x17b8  RasAuto - ok
12:31:06.0257 0x17b8  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:31:06.0370 0x17b8  Rasl2tp - ok
12:31:06.0431 0x17b8  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
12:31:06.0476 0x17b8  RasMan - ok
12:31:06.0531 0x17b8  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:31:06.0703 0x17b8  RasPppoe - ok
12:31:06.0723 0x17b8  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:31:06.0900 0x17b8  RasSstp - ok
12:31:06.0948 0x17b8  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:31:07.0132 0x17b8  rdbss - ok
12:31:07.0175 0x17b8  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:31:07.0266 0x17b8  RDPCDD - ok
12:31:07.0309 0x17b8  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:31:07.0480 0x17b8  rdpdr - ok
12:31:07.0520 0x17b8  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:31:07.0647 0x17b8  RDPENCDD - ok
12:31:07.0714 0x17b8  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:31:07.0848 0x17b8  RDPWD - ok
12:31:07.0946 0x17b8  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:31:07.0994 0x17b8  RemoteAccess - ok
12:31:08.0046 0x17b8  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:31:08.0110 0x17b8  RemoteRegistry - ok
12:31:08.0157 0x17b8  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
12:31:08.0263 0x17b8  RpcLocator - ok
12:31:08.0414 0x17b8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
12:31:08.0487 0x17b8  RpcSs - ok
12:31:08.0527 0x17b8  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:31:08.0605 0x17b8  rspndr - ok
12:31:08.0666 0x17b8  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
12:31:08.0820 0x17b8  RTL8169 - ok
12:31:08.0903 0x17b8  [ 93F66FAEA8BF047D4242AC85AADA403D, EAC5EA048B255EA255E120FD8FCF6BC682843E08A57838FB731050A7B9B9EDCC ] RVIEG01         C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys
12:31:08.0965 0x17b8  RVIEG01 - detected UnsignedFile.Multi.Generic ( 1 )
12:31:18.0965 0x17b8  RVIEG01 ( UnsignedFile.Multi.Generic ) - warning
12:31:20.0371 0x17b8  [ 3C74D9FDB1D9831EC932E89F3D874F00, 193577197D2EE5E91A282B8DF945A1A5459C4D44F8C93F7FD5D67801BEEF988B ] RVIEGVST        C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
12:31:20.0462 0x17b8  RVIEGVST - detected UnsignedFile.Multi.Generic ( 1 )
12:31:20.0931 0x17b8  RVIEGVST ( UnsignedFile.Multi.Generic ) - warning
12:31:21.0325 0x17b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
12:31:21.0358 0x17b8  SamSs - ok
12:31:21.0379 0x17b8  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:31:21.0515 0x17b8  sbp2port - ok
12:31:21.0555 0x17b8  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:31:21.0589 0x17b8  SCardSvr - ok
12:31:21.0735 0x17b8  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
12:31:21.0793 0x17b8  Schedule - ok
12:31:21.0815 0x17b8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:31:21.0849 0x17b8  SCPolicySvc - ok
12:31:21.0888 0x17b8  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:31:21.0935 0x17b8  SDRSVC - ok
12:31:22.0008 0x17b8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:31:22.0131 0x17b8  secdrv - ok
12:31:22.0161 0x17b8  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
12:31:22.0227 0x17b8  seclogon - ok
12:31:22.0253 0x17b8  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
12:31:22.0312 0x17b8  SENS - ok
12:31:22.0395 0x17b8  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:31:22.0765 0x17b8  Serenum - ok
12:31:22.0808 0x17b8  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
12:31:23.0085 0x17b8  Serial - ok
12:31:23.0123 0x17b8  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:31:23.0211 0x17b8  sermouse - ok
12:31:23.0279 0x17b8  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:31:23.0350 0x17b8  SessionEnv - ok
12:31:23.0395 0x17b8  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:31:23.0570 0x17b8  sffdisk - ok
12:31:23.0631 0x17b8  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:31:23.0740 0x17b8  sffp_mmc - ok
12:31:23.0784 0x17b8  [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:31:24.0015 0x17b8  sffp_sd - ok
12:31:24.0052 0x17b8  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:31:24.0371 0x17b8  sfloppy - ok
12:31:24.0434 0x17b8  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:31:24.0520 0x17b8  SharedAccess - ok
12:31:24.0713 0x17b8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:31:24.0766 0x17b8  ShellHWDetection - ok
12:31:24.0886 0x17b8  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:31:25.0011 0x17b8  sisagp - ok
12:31:25.0041 0x17b8  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:31:25.0134 0x17b8  SiSRaid2 - ok
12:31:25.0219 0x17b8  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:31:25.0324 0x17b8  SiSRaid4 - ok
12:31:25.0437 0x17b8  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
12:31:25.0464 0x17b8  SkypeUpdate - ok
12:31:25.0772 0x17b8  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
12:31:26.0721 0x17b8  slsvc - ok
12:31:26.0821 0x17b8  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:31:26.0885 0x17b8  SLUINotify - ok
12:31:26.0914 0x17b8  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:31:27.0017 0x17b8  Smb - ok
12:31:27.0072 0x17b8  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:31:27.0097 0x17b8  SNMPTRAP - ok
12:31:27.0167 0x17b8  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:31:27.0215 0x17b8  spldr - ok
12:31:27.0253 0x17b8  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
12:31:27.0506 0x17b8  Spooler - ok
12:31:27.0612 0x17b8  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:31:27.0763 0x17b8  srv - ok
12:31:27.0811 0x17b8  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:31:28.0028 0x17b8  srv2 - ok
12:31:28.0107 0x17b8  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:31:28.0177 0x17b8  srvnet - ok
12:31:28.0216 0x17b8  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:31:28.0288 0x17b8  SSDPSRV - ok
12:31:28.0326 0x17b8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
12:31:28.0397 0x17b8  ssmdrv - ok
12:31:28.0459 0x17b8  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:31:28.0485 0x17b8  SstpSvc - ok
12:31:28.0530 0x17b8  Steam Client Service - ok
12:31:28.0683 0x17b8  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
12:31:28.0827 0x17b8  stisvc - ok
12:31:28.0894 0x17b8  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:31:28.0981 0x17b8  swenum - ok
12:31:29.0571 0x17b8  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
12:31:30.0177 0x17b8  swprv - ok
12:31:30.0313 0x17b8  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:31:30.0444 0x17b8  Symc8xx - ok
12:31:30.0478 0x17b8  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:31:30.0637 0x17b8  Sym_hi - ok
12:31:30.0687 0x17b8  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:31:30.0797 0x17b8  Sym_u3 - ok
12:31:30.0880 0x17b8  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
12:31:30.0987 0x17b8  SysMain - ok
12:31:31.0027 0x17b8  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:31:31.0054 0x17b8  TabletInputService - ok
12:31:31.0101 0x17b8  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:31:31.0167 0x17b8  TapiSrv - ok
12:31:31.0209 0x17b8  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
12:31:31.0263 0x17b8  TBS - ok
12:31:31.0373 0x17b8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:31:31.0584 0x17b8  Tcpip - ok
12:31:31.0654 0x17b8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:31:31.0762 0x17b8  Tcpip6 - ok
12:31:31.0819 0x17b8  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:31:31.0903 0x17b8  tcpipreg - ok
12:31:31.0959 0x17b8  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:31:32.0079 0x17b8  TDPIPE - ok
12:31:32.0105 0x17b8  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:31:32.0240 0x17b8  TDTCP - ok
12:31:32.0322 0x17b8  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:31:32.0495 0x17b8  tdx - ok
12:31:32.0524 0x17b8  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:31:32.0699 0x17b8  TermDD - ok
12:31:32.0769 0x17b8  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
12:31:32.0871 0x17b8  TermService - ok
12:31:32.0957 0x17b8  [ 250B9120C7C103AFDC0C6643F9691055, 63E6CD6E92DAB86A07AED8C4E1C3955C818C0E6E60A33A18EF58DDEC06767B4C ] TestHandler     C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
12:31:32.0996 0x17b8  TestHandler - detected UnsignedFile.Multi.Generic ( 1 )
12:31:33.0503 0x17b8  Detect skipped due to KSN trusted
12:31:33.0503 0x17b8  TestHandler - ok
12:31:33.0530 0x17b8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
12:31:33.0564 0x17b8  Themes - ok
12:31:33.0608 0x17b8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
12:31:33.0658 0x17b8  THREADORDER - ok
12:31:33.0720 0x17b8  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
12:31:33.0816 0x17b8  TrkWks - ok
12:31:33.0887 0x17b8  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:31:33.0918 0x17b8  TrustedInstaller - ok
12:31:33.0953 0x17b8  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:31:34.0061 0x17b8  tssecsrv - ok
12:31:34.0108 0x17b8  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:31:34.0226 0x17b8  tunmp - ok
12:31:34.0261 0x17b8  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:31:34.0327 0x17b8  tunnel - ok
12:31:34.0354 0x17b8  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:31:34.0463 0x17b8  uagp35 - ok
12:31:34.0500 0x17b8  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:31:34.0606 0x17b8  udfs - ok
12:31:34.0642 0x17b8  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:31:34.0721 0x17b8  UI0Detect - ok
12:31:34.0752 0x17b8  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:31:34.0836 0x17b8  uliagpkx - ok
12:31:34.0873 0x17b8  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:31:34.0954 0x17b8  uliahci - ok
12:31:34.0986 0x17b8  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:31:35.0042 0x17b8  UlSata - ok
12:31:35.0066 0x17b8  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:31:35.0142 0x17b8  ulsata2 - ok
12:31:35.0166 0x17b8  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:31:35.0262 0x17b8  umbus - ok
12:31:35.0355 0x17b8  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
12:31:35.0441 0x17b8  upnphost - ok
12:31:35.0522 0x17b8  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
12:31:35.0680 0x17b8  USBAAPL - ok
12:31:35.0728 0x17b8  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:31:35.0792 0x17b8  usbaudio - ok
12:31:35.0899 0x17b8  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:31:35.0992 0x17b8  usbccgp - ok
12:31:36.0015 0x17b8  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:31:36.0185 0x17b8  usbcir - ok
12:31:36.0228 0x17b8  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:31:36.0283 0x17b8  usbehci - ok
12:31:36.0316 0x17b8  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:31:36.0485 0x17b8  usbhub - ok
12:31:36.0557 0x17b8  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:31:36.0678 0x17b8  usbohci - ok
12:31:36.0716 0x17b8  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:31:36.0776 0x17b8  usbprint - ok
12:31:36.0817 0x17b8  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:31:36.0886 0x17b8  usbscan - ok
12:31:36.0949 0x17b8  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:31:37.0002 0x17b8  USBSTOR - ok
12:31:37.0041 0x17b8  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:31:37.0115 0x17b8  usbuhci - ok
12:31:37.0150 0x17b8  [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:31:37.0253 0x17b8  usbvideo - ok
12:31:37.0285 0x17b8  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
12:31:37.0347 0x17b8  UxSms - ok
12:31:37.0388 0x17b8  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
12:31:37.0545 0x17b8  vds - ok
12:31:37.0588 0x17b8  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:31:37.0701 0x17b8  vga - ok
12:31:37.0733 0x17b8  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:31:37.0881 0x17b8  VgaSave - ok
12:31:37.0910 0x17b8  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:31:38.0009 0x17b8  viaagp - ok
12:31:38.0032 0x17b8  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:31:38.0181 0x17b8  ViaC7 - ok
12:31:38.0210 0x17b8  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:31:38.0287 0x17b8  viaide - ok
12:31:38.0314 0x17b8  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:31:38.0355 0x17b8  volmgr - ok
12:31:38.0399 0x17b8  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:31:38.0473 0x17b8  volmgrx - ok
12:31:38.0510 0x17b8  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:31:38.0557 0x17b8  volsnap - ok
12:31:38.0589 0x17b8  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:31:38.0675 0x17b8  vsmraid - ok
12:31:38.0757 0x17b8  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
12:31:38.0986 0x17b8  VSS - ok
12:31:39.0038 0x17b8  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
12:31:39.0096 0x17b8  W32Time - ok
12:31:39.0141 0x17b8  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:31:39.0275 0x17b8  WacomPen - ok
12:31:39.0300 0x17b8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:31:39.0413 0x17b8  Wanarp - ok
12:31:39.0419 0x17b8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:31:39.0449 0x17b8  Wanarpv6 - ok
12:31:39.0547 0x17b8  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:31:39.0690 0x17b8  wcncsvc - ok
12:31:39.0724 0x17b8  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:31:39.0809 0x17b8  WcsPlugInService - ok
12:31:39.0840 0x17b8  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
12:31:39.0911 0x17b8  Wd - ok
12:31:39.0961 0x17b8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:31:40.0057 0x17b8  Wdf01000 - ok
12:31:40.0087 0x17b8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:31:40.0165 0x17b8  WdiServiceHost - ok
12:31:40.0172 0x17b8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:31:40.0213 0x17b8  WdiSystemHost - ok
12:31:40.0256 0x17b8  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
12:31:40.0295 0x17b8  WebClient - ok
12:31:40.0349 0x17b8  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:31:40.0409 0x17b8  Wecsvc - ok
12:31:40.0440 0x17b8  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:31:40.0507 0x17b8  wercplsupport - ok
12:31:40.0639 0x17b8  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:31:40.0679 0x17b8  WerSvc - ok
12:31:40.0785 0x17b8  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:31:40.0944 0x17b8  WinDefend - ok
12:31:40.0954 0x17b8  WinHttpAutoProxySvc - ok
12:31:41.0043 0x17b8  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:31:41.0090 0x17b8  Winmgmt - ok
12:31:41.0190 0x17b8  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:31:41.0396 0x17b8  WinRM - ok
12:31:41.0502 0x17b8  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:31:41.0577 0x17b8  Wlansvc - ok
12:31:41.0635 0x17b8  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:31:41.0793 0x17b8  WmiAcpi - ok
12:31:41.0827 0x17b8  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:31:42.0452 0x17b8  wmiApSrv - ok
12:31:42.0578 0x17b8  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:31:42.0989 0x17b8  WMPNetworkSvc - ok
12:31:43.0030 0x17b8  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:31:43.0096 0x17b8  WPCSvc - ok
12:31:43.0178 0x17b8  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:31:43.0208 0x17b8  WPDBusEnum - ok
12:31:43.0466 0x17b8  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:31:43.0638 0x17b8  WpdUsb - ok
12:31:43.0809 0x17b8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:31:43.0944 0x17b8  WPFFontCache_v0400 - ok
12:31:43.0978 0x17b8  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:31:44.0124 0x17b8  ws2ifsl - ok
12:31:44.0152 0x17b8  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:31:44.0178 0x17b8  wscsvc - ok
12:31:44.0183 0x17b8  WSearch - ok
12:31:44.0318 0x17b8  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:31:45.0093 0x17b8  wuauserv - ok
12:31:45.0172 0x17b8  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:31:45.0211 0x17b8  WudfPf - ok
12:31:45.0272 0x17b8  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:31:45.0359 0x17b8  WUDFRd - ok
12:31:45.0397 0x17b8  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:31:45.0442 0x17b8  wudfsvc - ok
12:31:45.0474 0x17b8  ================ Scan global ===============================
12:31:45.0538 0x17b8  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
12:31:46.0220 0x17b8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:31:46.0421 0x17b8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:31:46.0722 0x17b8  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
12:31:46.0731 0x17b8  [ Global ] - ok
12:31:46.0732 0x17b8  ================ Scan MBR ==================================
12:31:46.0776 0x17b8  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:31:47.0638 0x17b8  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
12:31:47.0638 0x17b8  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
12:31:47.0871 0x17b8  ================ Scan VBR ==================================
12:31:47.0890 0x17b8  [ 475F109F98C97AD8B988A9DFE2889F3C ] \Device\Harddisk0\DR0\Partition1
12:31:47.0893 0x17b8  \Device\Harddisk0\DR0\Partition1 - ok
12:31:47.0917 0x17b8  [ 2E8119675E5F4A5D83E35072BAE43E85 ] \Device\Harddisk0\DR0\Partition2
12:31:47.0919 0x17b8  \Device\Harddisk0\DR0\Partition2 - ok
12:31:47.0920 0x17b8  Waiting for KSN requests completion. In queue: 121
12:31:49.0095 0x17b8  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
12:31:49.0160 0x17b8  AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.1.641 ), 0x41000 ( enabled : updated )
12:31:49.0177 0x17b8  Win FW state via NFP2: enabled
12:31:49.0441 0x17b8  ============================================================
12:31:49.0441 0x17b8  Scan finished
12:31:49.0441 0x17b8  ============================================================
12:31:49.0459 0x0790  Detected object count: 4
12:31:49.0459 0x0790  Actual detected object count: 4
12:32:15.0636 0x0790  GpdDevDPort ( UnsignedFile.Multi.Generic ) - skipped by user
12:32:15.0636 0x0790  GpdDevDPort ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:32:15.0638 0x0790  RVIEG01 ( UnsignedFile.Multi.Generic ) - skipped by user
12:32:15.0638 0x0790  RVIEG01 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:32:15.0638 0x0790  RVIEGVST ( UnsignedFile.Multi.Generic ) - skipped by user
12:32:15.0638 0x0790  RVIEGVST ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:32:15.0640 0x0790  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
12:32:15.0640 0x0790  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
         

Alt 07.12.2013, 11:36   #9
schrauber
/// the machine
/// TB-Ausbilder
 

Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Zitat:
12:32:15.0640 0x0790 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
12:32:15.0640 0x0790 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
Neben diesen Funden Cure wählen und weiter. Logfle posten. Frischen Scan mit TDSSKIller machen, Logfile posten. Dann:


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 07.12.2013, 12:09   #10
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Code:
ATTFilter
12:04:19.0584 0x15a8  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:04:21.0939 0x15a8  ============================================================
12:04:21.0939 0x15a8  Current date / time: 2013/12/07 12:04:21.0939
12:04:21.0939 0x15a8  SystemInfo:
12:04:21.0939 0x15a8  
12:04:21.0939 0x15a8  OS Version: 6.0.6002 ServicePack: 2.0
12:04:21.0939 0x15a8  Product type: Workstation
12:04:21.0939 0x15a8  ComputerName: RICHARD-PC
12:04:21.0939 0x15a8  UserName: Richard
12:04:21.0939 0x15a8  Windows directory: C:\Windows
12:04:21.0939 0x15a8  System windows directory: C:\Windows
12:04:21.0939 0x15a8  Processor architecture: Intel x86
12:04:21.0939 0x15a8  Number of processors: 2
12:04:21.0939 0x15a8  Page size: 0x1000
12:04:21.0939 0x15a8  Boot type: Normal boot
12:04:21.0939 0x15a8  ============================================================
12:04:24.0888 0x15a8  KLMD registered as C:\Windows\system32\drivers\47855603.sys
12:04:25.0371 0x15a8  System UUID: {1DD9EEBB-7F7A-37D7-BD67-B0028FB386EB}
12:04:26.0775 0x15a8  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:04:26.0775 0x15a8  ============================================================
12:04:26.0775 0x15a8  \Device\Harddisk0\DR0:
12:04:26.0775 0x15a8  MBR partitions:
12:04:26.0775 0x15a8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1194800, BlocksNum 0xBC51800
12:04:26.0775 0x15a8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCDE6000, BlocksNum 0x186482B0
12:04:26.0775 0x15a8  ============================================================
12:04:26.0807 0x15a8  C: <-> \Device\Harddisk0\DR0\Partition1
12:04:26.0853 0x15a8  D: <-> \Device\Harddisk0\DR0\Partition2
12:04:26.0853 0x15a8  ============================================================
12:04:26.0853 0x15a8  Initialize success
12:04:26.0853 0x15a8  ============================================================
12:04:32.0142 0x12b8  ============================================================
12:04:32.0142 0x12b8  Scan started
12:04:32.0142 0x12b8  Mode: Manual; SigCheck; TDLFS; 
12:04:32.0142 0x12b8  ============================================================
12:04:32.0142 0x12b8  KSN ping started
12:04:43.0389 0x12b8  KSN ping finished: true
12:04:44.0481 0x12b8  ================ Scan system memory ========================
12:04:44.0481 0x12b8  System memory - ok
12:04:44.0481 0x12b8  ================ Scan services =============================
12:04:44.0653 0x12b8  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:04:44.0778 0x12b8  ACPI - ok
12:04:44.0887 0x12b8  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:04:44.0918 0x12b8  AdobeARMservice - ok
12:04:44.0996 0x12b8  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:04:45.0027 0x12b8  AdobeFlashPlayerUpdateSvc - ok
12:04:45.0074 0x12b8  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:04:45.0137 0x12b8  adp94xx - ok
12:04:45.0152 0x12b8  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:04:45.0199 0x12b8  adpahci - ok
12:04:45.0215 0x12b8  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:04:45.0246 0x12b8  adpu160m - ok
12:04:45.0261 0x12b8  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:04:45.0293 0x12b8  adpu320 - ok
12:04:45.0339 0x12b8  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:04:45.0371 0x12b8  AeLookupSvc - ok
12:04:45.0417 0x12b8  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
12:04:45.0449 0x12b8  AFD - ok
12:04:45.0480 0x12b8  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:04:45.0495 0x12b8  agp440 - ok
12:04:45.0542 0x12b8  [ 0DEE2B628D4C6E23285BB91EFFDABFDE, 58F14336AA1642D97D4EA540166FDCFA7B9125062E4350F0DD51D235E395ED00 ] ahcix86s        C:\Windows\system32\drivers\ahcix86s.sys
12:04:45.0573 0x12b8  ahcix86s - ok
12:04:45.0620 0x12b8  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:04:45.0636 0x12b8  aic78xx - ok
12:04:45.0667 0x12b8  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
12:04:45.0698 0x12b8  ALG - ok
12:04:45.0714 0x12b8  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
12:04:45.0729 0x12b8  aliide - ok
12:04:45.0745 0x12b8  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:04:45.0761 0x12b8  amdagp - ok
12:04:45.0776 0x12b8  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
12:04:45.0807 0x12b8  amdide - ok
12:04:45.0823 0x12b8  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:04:45.0854 0x12b8  AmdK7 - ok
12:04:45.0854 0x12b8  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:04:45.0901 0x12b8  AmdK8 - ok
12:04:46.0027 0x12b8  [ 0D1E15010057B8426583A99CB179A6C4, 645C7D27E27AAC4124F7F907374B6A50D07D349B95AA869D7091372BD3AF653B ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
12:04:46.0058 0x12b8  AntiVirSchedulerService - ok
12:04:46.0136 0x12b8  [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
12:04:46.0168 0x12b8  AntiVirService - ok
12:04:46.0293 0x12b8  [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
12:04:46.0387 0x12b8  AntiVirWebService - ok
12:04:46.0465 0x12b8  [ BEF294FFE5F40BE768BDCBE1837DFABE, A5EBC3289758E2E152BA1571BB288FA33D7E2D23FE715CB51D39992369FDFC19 ] APNMCP          C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
12:04:46.0480 0x12b8  APNMCP - ok
12:04:46.0511 0x12b8  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
12:04:46.0543 0x12b8  Appinfo - ok
12:04:46.0621 0x12b8  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:04:46.0636 0x12b8  Apple Mobile Device - ok
12:04:46.0683 0x12b8  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
12:04:46.0714 0x12b8  arc - ok
12:04:46.0745 0x12b8  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:04:46.0761 0x12b8  arcsas - ok
12:04:46.0792 0x12b8  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:04:46.0823 0x12b8  AsyncMac - ok
12:04:46.0855 0x12b8  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
12:04:46.0870 0x12b8  atapi - ok
12:04:46.0917 0x12b8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:04:46.0964 0x12b8  AudioEndpointBuilder - ok
12:04:46.0995 0x12b8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:04:47.0026 0x12b8  Audiosrv - ok
12:04:47.0120 0x12b8  [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
12:04:47.0151 0x12b8  Avgdiskx - ok
12:04:47.0338 0x12b8  [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:04:47.0557 0x12b8  AVGIDSAgent - ok
12:04:47.0619 0x12b8  [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:04:47.0650 0x12b8  AVGIDSDriver - ok
12:04:47.0728 0x12b8  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
12:04:47.0759 0x12b8  AVGIDSHX - ok
12:04:47.0775 0x12b8  [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:04:47.0791 0x12b8  AVGIDSShim - ok
12:04:47.0822 0x12b8  [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
12:04:47.0853 0x12b8  Avgldx86 - ok
12:04:47.0931 0x12b8  [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
12:04:47.0962 0x12b8  Avglogx - ok
12:04:47.0993 0x12b8  [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
12:04:48.0009 0x12b8  Avgmfx86 - ok
12:04:48.0071 0x12b8  [ 6B4362EDB2EB956DF594D9168D179972, 7E2F5E76C6885BB3D889726B240A4AC3394216C2884EE2088B2CD05F91571B19 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
12:04:48.0103 0x12b8  avgntflt - ok
12:04:48.0149 0x12b8  [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
12:04:48.0165 0x12b8  Avgrkx86 - ok
12:04:48.0243 0x12b8  [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
12:04:48.0259 0x12b8  Avgtdix - ok
12:04:48.0305 0x12b8  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:04:48.0337 0x12b8  avgwd - ok
12:04:48.0383 0x12b8  [ C0F13672DEA7BDB40A89414AB0411705, 5B0C2391340BEE31CB6D8D7433786EDD48BBCD5D5737A539D4A0A54F37636720 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
12:04:48.0399 0x12b8  avipbb - ok
12:04:48.0430 0x12b8  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
12:04:48.0446 0x12b8  avkmgr - ok
12:04:48.0493 0x12b8  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:04:48.0539 0x12b8  Beep - ok
12:04:48.0586 0x12b8  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
12:04:48.0649 0x12b8  BFE - ok
12:04:48.0711 0x12b8  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
12:04:48.0789 0x12b8  BITS - ok
12:04:48.0805 0x12b8  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:04:48.0836 0x12b8  blbdrive - ok
12:04:48.0929 0x12b8  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:04:48.0976 0x12b8  Bonjour Service - ok
12:04:49.0007 0x12b8  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:04:49.0023 0x12b8  bowser - ok
12:04:49.0054 0x12b8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:04:49.0085 0x12b8  BrFiltLo - ok
12:04:49.0085 0x12b8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:04:49.0132 0x12b8  BrFiltUp - ok
12:04:49.0148 0x12b8  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
12:04:49.0210 0x12b8  Browser - ok
12:04:49.0241 0x12b8  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:04:49.0288 0x12b8  Brserid - ok
12:04:49.0319 0x12b8  [ 1A5FC78E41840EDF79D65EC16EFF2787, 05BC4C07C88ADDE6D7FF01B821DDB944EEEC8035AC1B6D780E39FDBD12FCA885 ] BrSerIf         C:\Windows\system32\Drivers\BrSerIf.sys
12:04:49.0366 0x12b8  BrSerIf - ok
12:04:49.0397 0x12b8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:04:49.0444 0x12b8  BrSerWdm - ok
12:04:49.0460 0x12b8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:04:49.0522 0x12b8  BrUsbMdm - ok
12:04:49.0538 0x12b8  [ A24C7B39602218F8DBDB2B6704325FC7, B90A1BA412A33AD041A2CE47FBB73AE296AF07A2F3DF1F56D9FEE5B3B1E0BBD5 ] BrUsbSer        C:\Windows\system32\Drivers\BrUsbSer.sys
12:04:49.0553 0x12b8  BrUsbSer - ok
12:04:49.0569 0x12b8  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:04:49.0631 0x12b8  BTHMODEM - ok
12:04:49.0803 0x12b8  catchme - ok
12:04:49.0834 0x12b8  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:04:49.0881 0x12b8  cdfs - ok
12:04:49.0928 0x12b8  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:04:49.0959 0x12b8  cdrom - ok
12:04:50.0006 0x12b8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
12:04:50.0037 0x12b8  CertPropSvc - ok
12:04:50.0068 0x12b8  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:04:50.0115 0x12b8  circlass - ok
12:04:50.0162 0x12b8  [ B53F9635457B56DCFFEF750E18AEC6CB, BAF6B8C8FAD040ED8E61209E9795C613C979B84C6B771FDED05B64BBEEB6A569 ] CLEDX           C:\Windows\system32\DRIVERS\cledx.sys
12:04:50.0177 0x12b8  CLEDX - detected UnsignedFile.Multi.Generic ( 1 )
12:04:50.0349 0x12b8  Detect skipped due to KSN trusted
12:04:50.0349 0x12b8  CLEDX - ok
12:04:50.0380 0x12b8  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
12:04:50.0411 0x12b8  CLFS - ok
12:04:50.0474 0x12b8  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:04:50.0505 0x12b8  clr_optimization_v2.0.50727_32 - ok
12:04:50.0583 0x12b8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:04:50.0661 0x12b8  clr_optimization_v4.0.30319_32 - ok
12:04:50.0692 0x12b8  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:04:50.0739 0x12b8  CmBatt - ok
12:04:50.0770 0x12b8  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:04:50.0786 0x12b8  cmdide - ok
12:04:50.0801 0x12b8  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:04:50.0817 0x12b8  Compbatt - ok
12:04:50.0833 0x12b8  COMSysApp - ok
12:04:50.0833 0x12b8  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:04:50.0848 0x12b8  crcdisk - ok
12:04:50.0879 0x12b8  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:04:50.0911 0x12b8  Crusoe - ok
12:04:50.0957 0x12b8  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:04:50.0989 0x12b8  CryptSvc - ok
12:04:51.0052 0x12b8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:04:51.0114 0x12b8  DcomLaunch - ok
12:04:51.0161 0x12b8  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:04:51.0192 0x12b8  DfsC - ok
12:04:51.0334 0x12b8  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
12:04:51.0537 0x12b8  DFSR - ok
12:04:51.0583 0x12b8  [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:04:51.0615 0x12b8  dg_ssudbus - ok
12:04:51.0739 0x12b8  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:04:51.0771 0x12b8  Dhcp - ok
12:04:51.0802 0x12b8  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
12:04:51.0817 0x12b8  disk - ok
12:04:51.0864 0x12b8  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:04:51.0880 0x12b8  Dnscache - ok
12:04:51.0911 0x12b8  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
12:04:51.0942 0x12b8  dot3svc - ok
12:04:52.0005 0x12b8  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
12:04:52.0051 0x12b8  DPS - ok
12:04:52.0114 0x12b8  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:04:52.0161 0x12b8  drmkaud - ok
12:04:52.0208 0x12b8  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:04:52.0302 0x12b8  DXGKrnl - ok
12:04:52.0333 0x12b8  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:04:52.0380 0x12b8  E1G60 - ok
12:04:52.0411 0x12b8  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
12:04:52.0458 0x12b8  EapHost - ok
12:04:52.0505 0x12b8  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:04:52.0536 0x12b8  Ecache - ok
12:04:52.0598 0x12b8  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:04:52.0614 0x12b8  ehRecvr - ok
12:04:52.0630 0x12b8  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
12:04:52.0676 0x12b8  ehSched - ok
12:04:52.0692 0x12b8  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
12:04:52.0708 0x12b8  ehstart - ok
12:04:52.0754 0x12b8  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:04:52.0801 0x12b8  elxstor - ok
12:04:52.0848 0x12b8  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:04:52.0910 0x12b8  EMDMgmt - ok
12:04:52.0942 0x12b8  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:04:52.0973 0x12b8  ErrDev - ok
12:04:53.0020 0x12b8  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
12:04:53.0098 0x12b8  EventSystem - ok
12:04:53.0129 0x12b8  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:04:53.0160 0x12b8  exfat - ok
12:04:53.0191 0x12b8  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:04:53.0222 0x12b8  fastfat - ok
12:04:53.0254 0x12b8  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:04:53.0285 0x12b8  fdc - ok
12:04:53.0316 0x12b8  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
12:04:53.0347 0x12b8  fdPHost - ok
12:04:53.0363 0x12b8  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:04:53.0410 0x12b8  FDResPub - ok
12:04:53.0425 0x12b8  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:04:53.0441 0x12b8  FileInfo - ok
12:04:53.0456 0x12b8  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:04:53.0503 0x12b8  Filetrace - ok
12:04:53.0534 0x12b8  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:04:53.0566 0x12b8  flpydisk - ok
12:04:53.0581 0x12b8  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:04:53.0597 0x12b8  FltMgr - ok
12:04:53.0690 0x12b8  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
12:04:53.0753 0x12b8  FontCache - ok
12:04:53.0846 0x12b8  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:04:53.0862 0x12b8  FontCache3.0.0.0 - ok
12:04:53.0893 0x12b8  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:04:53.0909 0x12b8  Fs_Rec - ok
12:04:53.0940 0x12b8  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:04:53.0956 0x12b8  gagp30kx - ok
12:04:54.0002 0x12b8  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:04:54.0018 0x12b8  GEARAspiWDM - ok
12:04:54.0065 0x12b8  [ 9E6B5241CB0B11DDDDF162865041D193, 66F8984276E65A8607A5FA981FB48897B52C22BD629864B01470DAF78B0D5CE1 ] GpdDevDPort     C:\Windows\system32\directport.sys
12:04:54.0080 0x12b8  GpdDevDPort - detected UnsignedFile.Multi.Generic ( 1 )
12:04:54.0346 0x12b8  GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning
12:04:54.0611 0x12b8  [ E48C4E69E2126AAC01888C60CC6ED966, 46A5DE1BCEFA31A583770AB391EE2C940649CAF0A44557B479B1C34BF51D53CF ] GpdKbFilter     C:\Windows\system32\kbfiltr.sys
12:04:54.0626 0x12b8  GpdKbFilter - detected UnsignedFile.Multi.Generic ( 1 )
12:04:54.0798 0x12b8  Detect skipped due to KSN trusted
12:04:54.0798 0x12b8  GpdKbFilter - ok
12:04:54.0845 0x12b8  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
12:04:54.0923 0x12b8  gpsvc - ok
12:04:54.0985 0x12b8  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:04:55.0079 0x12b8  HdAudAddService - ok
12:04:55.0126 0x12b8  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:04:55.0204 0x12b8  HDAudBus - ok
12:04:55.0235 0x12b8  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:04:55.0313 0x12b8  HidBth - ok
12:04:55.0328 0x12b8  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:04:55.0406 0x12b8  HidIr - ok
12:04:55.0453 0x12b8  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\System32\hidserv.dll
12:04:55.0469 0x12b8  hidserv - ok
12:04:55.0484 0x12b8  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:04:55.0516 0x12b8  HidUsb - ok
12:04:55.0547 0x12b8  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:04:55.0578 0x12b8  hkmsvc - ok
12:04:55.0609 0x12b8  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:04:55.0625 0x12b8  HpCISSs - ok
12:04:55.0672 0x12b8  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:04:55.0750 0x12b8  HTTP - ok
12:04:55.0781 0x12b8  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:04:55.0812 0x12b8  i2omp - ok
12:04:55.0859 0x12b8  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:04:55.0890 0x12b8  i8042prt - ok
12:04:55.0921 0x12b8  [ E5A0034847537EAEE3C00349D5C34C5F, 3E0F99512CDFF0B628E2FF5B91BB371CDEF65201B03C53182C97DDE34E26E04C ] iaStor          C:\Windows\system32\drivers\iastor.sys
12:04:55.0952 0x12b8  iaStor - ok
12:04:55.0984 0x12b8  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:04:56.0030 0x12b8  iaStorV - ok
12:04:56.0093 0x12b8  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:04:56.0218 0x12b8  idsvc - ok
12:04:56.0249 0x12b8  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:04:56.0264 0x12b8  iirsp - ok
12:04:56.0342 0x12b8  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:04:56.0420 0x12b8  IKEEXT - ok
12:04:56.0545 0x12b8  [ 2DEB2538C9372568BB67B5FDF2359790, 3F19414B12B5C8F361F9273E380D8C53938F344FAFB8C6517D4421755A3A994B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
12:04:56.0748 0x12b8  IntcAzAudAddService - ok
12:04:56.0810 0x12b8  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
12:04:56.0826 0x12b8  intelide - ok
12:04:56.0857 0x12b8  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:04:56.0888 0x12b8  intelppm - ok
12:04:56.0920 0x12b8  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:04:56.0951 0x12b8  IPBusEnum - ok
12:04:56.0966 0x12b8  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:04:56.0998 0x12b8  IpFilterDriver - ok
12:04:57.0044 0x12b8  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:04:57.0076 0x12b8  iphlpsvc - ok
12:04:57.0076 0x12b8  IpInIp - ok
12:04:57.0107 0x12b8  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:04:57.0154 0x12b8  IPMIDRV - ok
12:04:57.0185 0x12b8  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:04:57.0263 0x12b8  IPNAT - ok
12:04:57.0341 0x12b8  [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:04:57.0373 0x12b8  iPod Service - ok
12:04:57.0385 0x12b8  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:04:57.0456 0x12b8  IRENUM - ok
12:04:57.0476 0x12b8  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:04:57.0501 0x12b8  isapnp - ok
12:04:57.0544 0x12b8  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:04:57.0575 0x12b8  iScsiPrt - ok
12:04:57.0592 0x12b8  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:04:57.0650 0x12b8  iteatapi - ok
12:04:57.0698 0x12b8  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:04:57.0718 0x12b8  iteraid - ok
12:04:57.0735 0x12b8  [ C36F3A1A4E8416EF43F30DEAB7701730, 26A151FE87E1AFD18F7A88553E41E27DD3087721974C2B44621629D9029C4D29 ] JRAID           C:\Windows\system32\drivers\jraid.sys
12:04:57.0819 0x12b8  JRAID - ok
12:04:57.0846 0x12b8  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:04:57.0867 0x12b8  kbdclass - ok
12:04:57.0896 0x12b8  [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:04:57.0931 0x12b8  kbdhid - ok
12:04:57.0978 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
12:04:58.0062 0x12b8  KeyIso - ok
12:04:58.0118 0x12b8  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:04:58.0208 0x12b8  KSecDD - ok
12:04:58.0281 0x12b8  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:04:58.0381 0x12b8  KtmRm - ok
12:04:58.0448 0x12b8  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:04:58.0504 0x12b8  LanmanServer - ok
12:04:58.0548 0x12b8  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:04:58.0606 0x12b8  LanmanWorkstation - ok
12:04:58.0664 0x12b8  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:04:58.0724 0x12b8  lltdio - ok
12:04:58.0785 0x12b8  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:04:58.0834 0x12b8  lltdsvc - ok
12:04:58.0867 0x12b8  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:04:58.0921 0x12b8  lmhosts - ok
12:04:58.0945 0x12b8  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:04:58.0980 0x12b8  LSI_FC - ok
12:04:59.0018 0x12b8  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:04:59.0050 0x12b8  LSI_SAS - ok
12:04:59.0099 0x12b8  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:04:59.0128 0x12b8  LSI_SCSI - ok
12:04:59.0173 0x12b8  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:04:59.0215 0x12b8  luafv - ok
12:04:59.0253 0x12b8  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:04:59.0282 0x12b8  Mcx2Svc - ok
12:04:59.0295 0x12b8  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
12:04:59.0317 0x12b8  megasas - ok
12:04:59.0379 0x12b8  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
12:04:59.0432 0x12b8  MegaSR - ok
12:04:59.0456 0x12b8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
12:04:59.0515 0x12b8  MMCSS - ok
12:04:59.0528 0x12b8  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
12:04:59.0567 0x12b8  Modem - ok
12:04:59.0578 0x12b8  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:04:59.0616 0x12b8  monitor - ok
12:04:59.0629 0x12b8  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:04:59.0654 0x12b8  mouclass - ok
12:04:59.0664 0x12b8  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:04:59.0771 0x12b8  mouhid - ok
12:04:59.0793 0x12b8  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:04:59.0817 0x12b8  MountMgr - ok
12:04:59.0855 0x12b8  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:04:59.0882 0x12b8  MozillaMaintenance - ok
12:04:59.0910 0x12b8  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:04:59.0951 0x12b8  mpio - ok
12:05:00.0020 0x12b8  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:05:00.0086 0x12b8  mpsdrv - ok
12:05:00.0209 0x12b8  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:05:00.0297 0x12b8  MpsSvc - ok
12:05:00.0351 0x12b8  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:05:00.0374 0x12b8  Mraid35x - ok
12:05:00.0413 0x12b8  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:05:00.0458 0x12b8  MRxDAV - ok
12:05:00.0503 0x12b8  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:05:00.0581 0x12b8  mrxsmb - ok
12:05:00.0622 0x12b8  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:05:00.0686 0x12b8  mrxsmb10 - ok
12:05:00.0723 0x12b8  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:05:00.0766 0x12b8  mrxsmb20 - ok
12:05:00.0806 0x12b8  [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci          C:\Windows\system32\drivers\msahci.sys
12:05:00.0834 0x12b8  msahci - ok
12:05:00.0862 0x12b8  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:05:00.0896 0x12b8  msdsm - ok
12:05:00.0924 0x12b8  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
12:05:00.0980 0x12b8  MSDTC - ok
12:05:01.0015 0x12b8  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:05:01.0068 0x12b8  Msfs - ok
12:05:01.0110 0x12b8  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:05:01.0130 0x12b8  msisadrv - ok
12:05:01.0158 0x12b8  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:05:01.0213 0x12b8  MSiSCSI - ok
12:05:01.0217 0x12b8  msiserver - ok
12:05:01.0258 0x12b8  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:05:01.0307 0x12b8  MSKSSRV - ok
12:05:01.0387 0x12b8  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:05:01.0447 0x12b8  MSPCLOCK - ok
12:05:01.0466 0x12b8  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:05:01.0509 0x12b8  MSPQM - ok
12:05:01.0558 0x12b8  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:05:01.0604 0x12b8  MsRPC - ok
12:05:01.0624 0x12b8  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:05:01.0663 0x12b8  mssmbios - ok
12:05:01.0686 0x12b8  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:05:01.0724 0x12b8  MSTEE - ok
12:05:01.0751 0x12b8  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:05:01.0778 0x12b8  Mup - ok
12:05:01.0827 0x12b8  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
12:05:01.0863 0x12b8  napagent - ok
12:05:01.0908 0x12b8  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:05:01.0990 0x12b8  NativeWifiP - ok
12:05:02.0048 0x12b8  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:05:02.0113 0x12b8  NDIS - ok
12:05:02.0135 0x12b8  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:05:02.0182 0x12b8  NdisTapi - ok
12:05:02.0208 0x12b8  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:05:02.0244 0x12b8  Ndisuio - ok
12:05:02.0261 0x12b8  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:05:02.0313 0x12b8  NdisWan - ok
12:05:02.0348 0x12b8  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:05:02.0399 0x12b8  NDProxy - ok
12:05:02.0504 0x12b8  [ B044BB341E164DA6750A9B8E6A5FF6A1, 5E5CB4713BA20971CD09D176CBBE8857EB21A032CAC02A9042E88E5DD15B44D3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
12:05:02.0577 0x12b8  Nero BackItUp Scheduler 3 - ok
12:05:02.0606 0x12b8  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:05:02.0641 0x12b8  NetBIOS - ok
12:05:02.0662 0x12b8  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:05:02.0718 0x12b8  netbt - ok
12:05:02.0736 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
12:05:02.0765 0x12b8  Netlogon - ok
12:05:02.0820 0x12b8  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
12:05:02.0879 0x12b8  Netman - ok
12:05:02.0908 0x12b8  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
12:05:02.0983 0x12b8  netprofm - ok
12:05:03.0009 0x12b8  [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:05:03.0038 0x12b8  NetTcpPortSharing - ok
12:05:03.0215 0x12b8  [ 840D89327C45B0CB9E1AB130249046E2, 13B937BAB596141000C554B9BB6753E7358ED42B3367B496D1777B9B74F6CEF8 ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
12:05:03.0659 0x12b8  NETw5v32 - ok
12:05:03.0702 0x12b8  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:05:03.0724 0x12b8  nfrd960 - ok
12:05:03.0766 0x12b8  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:05:03.0808 0x12b8  NlaSvc - ok
12:05:03.0896 0x12b8  [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
12:05:03.0974 0x12b8  NMIndexingService - ok
12:05:04.0018 0x12b8  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:05:04.0047 0x12b8  Npfs - ok
12:05:04.0094 0x12b8  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
12:05:04.0123 0x12b8  nsi - ok
12:05:04.0152 0x12b8  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:05:04.0210 0x12b8  nsiproxy - ok
12:05:04.0314 0x12b8  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:05:04.0480 0x12b8  Ntfs - ok
12:05:04.0496 0x12b8  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:05:04.0547 0x12b8  ntrigdigi - ok
12:05:04.0559 0x12b8  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
12:05:04.0611 0x12b8  Null - ok
12:05:04.0927 0x12b8  [ CEF89AD9AAABF89C9C36C65ADC62F1ED, A0BC68D32482EB674E6081673951FF53A780759215BED5E9DDC84E1DFC1B9FED ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:05:05.0804 0x12b8  nvlddmkm - ok
12:05:05.0856 0x12b8  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:05:05.0886 0x12b8  nvraid - ok
12:05:05.0914 0x12b8  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:05:05.0936 0x12b8  nvstor - ok
12:05:05.0976 0x12b8  [ CC0AA0355DED3D34B7D975B6815CF30A, E9B0E33E0965B47BDE22545C6886DEE036012E4A6A7FCF7B7FE46ADE142769F4 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:05:06.0011 0x12b8  nvsvc - ok
12:05:06.0031 0x12b8  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:05:06.0057 0x12b8  nv_agp - ok
12:05:06.0061 0x12b8  NwlnkFlt - ok
12:05:06.0066 0x12b8  NwlnkFwd - ok
12:05:06.0155 0x12b8  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:05:06.0219 0x12b8  odserv - ok
12:05:06.0243 0x12b8  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:05:06.0320 0x12b8  ohci1394 - ok
12:05:06.0382 0x12b8  [ B7EDD9FD6387802DFAA795372AECF212, 53E8EACC9CD678BC4FFBD22A0F463A7834B1E68D2741518C65CC8883757CD912 ] OsdService      C:\Program Files\OEM\OSD_1.12\OsdService.exe
12:05:06.0399 0x12b8  OsdService - detected UnsignedFile.Multi.Generic ( 1 )
12:05:06.0561 0x12b8  Detect skipped due to KSN trusted
12:05:06.0561 0x12b8  OsdService - ok
12:05:06.0595 0x12b8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:05:06.0621 0x12b8  ose - ok
12:05:06.0665 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:05:06.0742 0x12b8  p2pimsvc - ok
12:05:06.0772 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:05:06.0816 0x12b8  p2psvc - ok
12:05:06.0844 0x12b8  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
12:05:06.0900 0x12b8  Parport - ok
12:05:06.0921 0x12b8  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:05:06.0946 0x12b8  partmgr - ok
12:05:06.0957 0x12b8  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
12:05:07.0009 0x12b8  Parvdm - ok
12:05:07.0036 0x12b8  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:05:07.0069 0x12b8  PcaSvc - ok
12:05:07.0104 0x12b8  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
12:05:07.0132 0x12b8  pci - ok
12:05:07.0150 0x12b8  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:05:07.0171 0x12b8  pciide - ok
12:05:07.0192 0x12b8  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:05:07.0220 0x12b8  pcmcia - ok
12:05:07.0281 0x12b8  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:05:07.0437 0x12b8  PEAUTH - ok
12:05:07.0533 0x12b8  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
12:05:07.0666 0x12b8  pla - ok
12:05:07.0691 0x12b8  [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
12:05:07.0700 0x12b8  PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic ( 1 )
12:05:08.0308 0x12b8  Detect skipped due to KSN trusted
12:05:08.0308 0x12b8  PLFlash DeviceIoControl Service - ok
12:05:08.0340 0x12b8  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:05:08.0393 0x12b8  PlugPlay - ok
12:05:08.0434 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:05:08.0516 0x12b8  PNRPAutoReg - ok
12:05:08.0556 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:05:08.0600 0x12b8  PNRPsvc - ok
12:05:08.0642 0x12b8  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:05:08.0705 0x12b8  PolicyAgent - ok
12:05:08.0741 0x12b8  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:05:08.0848 0x12b8  PptpMiniport - ok
12:05:08.0876 0x12b8  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
12:05:08.0926 0x12b8  Processor - ok
12:05:08.0967 0x12b8  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
12:05:09.0021 0x12b8  ProfSvc - ok
12:05:09.0051 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
12:05:09.0090 0x12b8  ProtectedStorage - ok
12:05:09.0124 0x12b8  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:05:09.0203 0x12b8  PSched - ok
12:05:09.0264 0x12b8  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
12:05:09.0379 0x12b8  PxHelp20 - ok
12:05:09.0645 0x12b8  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:05:09.0789 0x12b8  ql2300 - ok
12:05:09.0818 0x12b8  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:05:09.0869 0x12b8  ql40xx - ok
12:05:09.0942 0x12b8  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
12:05:10.0001 0x12b8  QWAVE - ok
12:05:10.0021 0x12b8  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:05:10.0072 0x12b8  QWAVEdrv - ok
12:05:10.0113 0x12b8  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:05:10.0167 0x12b8  RasAcd - ok
12:05:10.0231 0x12b8  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
12:05:10.0268 0x12b8  RasAuto - ok
12:05:10.0295 0x12b8  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:05:10.0363 0x12b8  Rasl2tp - ok
12:05:10.0424 0x12b8  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
12:05:10.0495 0x12b8  RasMan - ok
12:05:10.0602 0x12b8  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:05:10.0712 0x12b8  RasPppoe - ok
12:05:10.0728 0x12b8  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:05:10.0899 0x12b8  RasSstp - ok
12:05:10.0994 0x12b8  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:05:11.0050 0x12b8  rdbss - ok
12:05:11.0102 0x12b8  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:05:11.0143 0x12b8  RDPCDD - ok
12:05:11.0179 0x12b8  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:05:11.0509 0x12b8  rdpdr - ok
12:05:11.0685 0x12b8  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:05:11.0824 0x12b8  RDPENCDD - ok
12:05:12.0041 0x12b8  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:05:12.0075 0x12b8  RDPWD - ok
12:05:12.0238 0x12b8  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:05:12.0274 0x12b8  RemoteAccess - ok
12:05:12.0340 0x12b8  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:05:12.0490 0x12b8  RemoteRegistry - ok
12:05:12.0595 0x12b8  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
12:05:12.0788 0x12b8  RpcLocator - ok
12:05:12.0883 0x12b8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
12:05:12.0932 0x12b8  RpcSs - ok
12:05:13.0010 0x12b8  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:05:13.0093 0x12b8  rspndr - ok
12:05:13.0160 0x12b8  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
12:05:13.0208 0x12b8  RTL8169 - ok
12:05:13.0297 0x12b8  [ 93F66FAEA8BF047D4242AC85AADA403D, EAC5EA048B255EA255E120FD8FCF6BC682843E08A57838FB731050A7B9B9EDCC ] RVIEG01         C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys
12:05:13.0358 0x12b8  RVIEG01 - detected UnsignedFile.Multi.Generic ( 1 )
12:05:14.0097 0x12b8  Detect skipped due to KSN trusted
12:05:14.0097 0x12b8  RVIEG01 - ok
12:05:14.0137 0x12b8  [ 3C74D9FDB1D9831EC932E89F3D874F00, 193577197D2EE5E91A282B8DF945A1A5459C4D44F8C93F7FD5D67801BEEF988B ] RVIEGVST        C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
12:05:14.0171 0x12b8  RVIEGVST - detected UnsignedFile.Multi.Generic ( 1 )
12:05:15.0038 0x12b8  RVIEGVST ( UnsignedFile.Multi.Generic ) - warning
12:05:15.0199 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
12:05:15.0227 0x12b8  SamSs - ok
12:05:15.0245 0x12b8  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:05:15.0268 0x12b8  sbp2port - ok
12:05:15.0319 0x12b8  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:05:15.0386 0x12b8  SCardSvr - ok
12:05:15.0467 0x12b8  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
12:05:15.0520 0x12b8  Schedule - ok
12:05:15.0528 0x12b8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:05:15.0553 0x12b8  SCPolicySvc - ok
12:05:15.0608 0x12b8  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:05:15.0666 0x12b8  SDRSVC - ok
12:05:15.0695 0x12b8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:05:15.0762 0x12b8  secdrv - ok
12:05:15.0782 0x12b8  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
12:05:15.0813 0x12b8  seclogon - ok
12:05:15.0829 0x12b8  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
12:05:15.0884 0x12b8  SENS - ok
12:05:15.0905 0x12b8  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:05:15.0974 0x12b8  Serenum - ok
12:05:15.0995 0x12b8  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
12:05:16.0114 0x12b8  Serial - ok
12:05:16.0144 0x12b8  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:05:16.0185 0x12b8  sermouse - ok
12:05:16.0232 0x12b8  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:05:16.0278 0x12b8  SessionEnv - ok
12:05:16.0349 0x12b8  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:05:16.0396 0x12b8  sffdisk - ok
12:05:16.0418 0x12b8  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:05:16.0480 0x12b8  sffp_mmc - ok
12:05:16.0504 0x12b8  [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:05:16.0559 0x12b8  sffp_sd - ok
12:05:16.0583 0x12b8  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:05:16.0627 0x12b8  sfloppy - ok
12:05:16.0664 0x12b8  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:05:16.0706 0x12b8  SharedAccess - ok
12:05:16.0878 0x12b8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:05:16.0920 0x12b8  ShellHWDetection - ok
12:05:16.0941 0x12b8  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:05:16.0965 0x12b8  sisagp - ok
12:05:16.0995 0x12b8  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:05:17.0017 0x12b8  SiSRaid2 - ok
12:05:17.0050 0x12b8  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:05:17.0085 0x12b8  SiSRaid4 - ok
12:05:17.0179 0x12b8  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
12:05:17.0199 0x12b8  SkypeUpdate - ok
12:05:17.0368 0x12b8  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
12:05:17.0794 0x12b8  slsvc - ok
12:05:17.0852 0x12b8  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:05:17.0888 0x12b8  SLUINotify - ok
12:05:17.0911 0x12b8  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:05:17.0946 0x12b8  Smb - ok
12:05:17.0980 0x12b8  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:05:18.0000 0x12b8  SNMPTRAP - ok
12:05:18.0030 0x12b8  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:05:18.0054 0x12b8  spldr - ok
12:05:18.0083 0x12b8  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
12:05:18.0127 0x12b8  Spooler - ok
12:05:18.0174 0x12b8  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:05:18.0301 0x12b8  srv - ok
12:05:18.0363 0x12b8  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:05:18.0440 0x12b8  srv2 - ok
12:05:18.0481 0x12b8  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:05:18.0526 0x12b8  srvnet - ok
12:05:18.0557 0x12b8  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:05:18.0612 0x12b8  SSDPSRV - ok
12:05:18.0645 0x12b8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
12:05:18.0663 0x12b8  ssmdrv - ok
12:05:18.0701 0x12b8  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:05:18.0728 0x12b8  SstpSvc - ok
12:05:18.0771 0x12b8  Steam Client Service - ok
12:05:18.0822 0x12b8  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
12:05:18.0905 0x12b8  stisvc - ok
12:05:19.0080 0x12b8  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:05:19.0204 0x12b8  swenum - ok
12:05:19.0269 0x12b8  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
12:05:19.0427 0x12b8  swprv - ok
12:05:19.0687 0x12b8  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:05:19.0708 0x12b8  Symc8xx - ok
12:05:19.0741 0x12b8  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:05:19.0761 0x12b8  Sym_hi - ok
12:05:19.0782 0x12b8  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:05:19.0804 0x12b8  Sym_u3 - ok
12:05:19.0942 0x12b8  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
12:05:20.0029 0x12b8  SysMain - ok
12:05:20.0067 0x12b8  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:05:20.0103 0x12b8  TabletInputService - ok
12:05:20.0164 0x12b8  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:05:20.0238 0x12b8  TapiSrv - ok
12:05:20.0271 0x12b8  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
12:05:20.0343 0x12b8  TBS - ok
12:05:20.0457 0x12b8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:05:20.0541 0x12b8  Tcpip - ok
12:05:20.0574 0x12b8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:05:20.0677 0x12b8  Tcpip6 - ok
12:05:20.0715 0x12b8  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:05:20.0770 0x12b8  tcpipreg - ok
12:05:20.0798 0x12b8  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:05:20.0850 0x12b8  TDPIPE - ok
12:05:20.0867 0x12b8  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:05:20.0929 0x12b8  TDTCP - ok
12:05:20.0961 0x12b8  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:05:21.0039 0x12b8  tdx - ok
12:05:21.0075 0x12b8  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:05:21.0099 0x12b8  TermDD - ok
12:05:21.0131 0x12b8  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
12:05:21.0238 0x12b8  TermService - ok
12:05:21.0643 0x12b8  [ 250B9120C7C103AFDC0C6643F9691055, 63E6CD6E92DAB86A07AED8C4E1C3955C818C0E6E60A33A18EF58DDEC06767B4C ] TestHandler     C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
12:05:21.0708 0x12b8  TestHandler - detected UnsignedFile.Multi.Generic ( 1 )
12:05:21.0876 0x12b8  Detect skipped due to KSN trusted
12:05:21.0876 0x12b8  TestHandler - ok
12:05:21.0914 0x12b8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
12:05:21.0957 0x12b8  Themes - ok
12:05:21.0980 0x12b8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
12:05:22.0010 0x12b8  THREADORDER - ok
12:05:22.0133 0x12b8  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
12:05:22.0192 0x12b8  TrkWks - ok
12:05:22.0238 0x12b8  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:05:22.0264 0x12b8  TrustedInstaller - ok
12:05:22.0304 0x12b8  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:05:22.0333 0x12b8  tssecsrv - ok
12:05:22.0381 0x12b8  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:05:22.0463 0x12b8  tunmp - ok
12:05:22.0534 0x12b8  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:05:22.0569 0x12b8  tunnel - ok
12:05:22.0594 0x12b8  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:05:22.0618 0x12b8  uagp35 - ok
12:05:22.0684 0x12b8  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:05:22.0743 0x12b8  udfs - ok
12:05:22.0781 0x12b8  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:05:22.0831 0x12b8  UI0Detect - ok
12:05:22.0861 0x12b8  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:05:22.0927 0x12b8  uliagpkx - ok
12:05:22.0955 0x12b8  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:05:22.0991 0x12b8  uliahci - ok
12:05:23.0007 0x12b8  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:05:23.0034 0x12b8  UlSata - ok
12:05:23.0062 0x12b8  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:05:23.0100 0x12b8  ulsata2 - ok
12:05:23.0116 0x12b8  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:05:23.0168 0x12b8  umbus - ok
12:05:23.0221 0x12b8  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
12:05:23.0262 0x12b8  upnphost - ok
12:05:23.0306 0x12b8  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
12:05:23.0342 0x12b8  USBAAPL - ok
12:05:23.0434 0x12b8  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:05:23.0482 0x12b8  usbaudio - ok
12:05:23.0550 0x12b8  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:05:23.0639 0x12b8  usbccgp - ok
12:05:23.0655 0x12b8  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:05:23.0776 0x12b8  usbcir - ok
12:05:23.0823 0x12b8  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:05:23.0861 0x12b8  usbehci - ok
12:05:23.0910 0x12b8  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:05:24.0010 0x12b8  usbhub - ok
12:05:24.0030 0x12b8  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:05:24.0103 0x12b8  usbohci - ok
12:05:24.0133 0x12b8  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:05:24.0186 0x12b8  usbprint - ok
12:05:24.0223 0x12b8  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:05:24.0273 0x12b8  usbscan - ok
12:05:24.0322 0x12b8  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:05:24.0356 0x12b8  USBSTOR - ok
12:05:24.0380 0x12b8  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:05:24.0413 0x12b8  usbuhci - ok
12:05:24.0444 0x12b8  [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:05:24.0478 0x12b8  usbvideo - ok
12:05:24.0648 0x12b8  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
12:05:24.0711 0x12b8  UxSms - ok
12:05:24.0782 0x12b8  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
12:05:24.0877 0x12b8  vds - ok
12:05:24.0994 0x12b8  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:05:25.0041 0x12b8  vga - ok
12:05:25.0072 0x12b8  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:05:25.0145 0x12b8  VgaSave - ok
12:05:25.0159 0x12b8  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:05:25.0264 0x12b8  viaagp - ok
12:05:25.0283 0x12b8  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:05:25.0576 0x12b8  ViaC7 - ok
12:05:25.0772 0x12b8  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:05:25.0826 0x12b8  viaide - ok
12:05:25.0842 0x12b8  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:05:25.0960 0x12b8  volmgr - ok
12:05:26.0080 0x12b8  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:05:26.0135 0x12b8  volmgrx - ok
12:05:26.0172 0x12b8  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:05:26.0209 0x12b8  volsnap - ok
12:05:26.0274 0x12b8  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:05:26.0331 0x12b8  vsmraid - ok
12:05:26.0479 0x12b8  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
12:05:26.0790 0x12b8  VSS - ok
12:05:26.0840 0x12b8  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
12:05:26.0877 0x12b8  W32Time - ok
12:05:26.0903 0x12b8  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:05:26.0975 0x12b8  WacomPen - ok
12:05:26.0995 0x12b8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:05:27.0030 0x12b8  Wanarp - ok
12:05:27.0036 0x12b8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:05:27.0066 0x12b8  Wanarpv6 - ok
12:05:27.0165 0x12b8  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:05:27.0271 0x12b8  wcncsvc - ok
12:05:27.0308 0x12b8  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:05:27.0379 0x12b8  WcsPlugInService - ok
12:05:27.0402 0x12b8  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
12:05:27.0425 0x12b8  Wd - ok
12:05:27.0478 0x12b8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:05:27.0520 0x12b8  Wdf01000 - ok
12:05:27.0548 0x12b8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:05:27.0595 0x12b8  WdiServiceHost - ok
12:05:27.0601 0x12b8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:05:27.0638 0x12b8  WdiSystemHost - ok
12:05:27.0683 0x12b8  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
12:05:27.0711 0x12b8  WebClient - ok
12:05:27.0766 0x12b8  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:05:27.0824 0x12b8  Wecsvc - ok
12:05:27.0857 0x12b8  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:05:27.0918 0x12b8  wercplsupport - ok
12:05:27.0956 0x12b8  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:05:27.0999 0x12b8  WerSvc - ok
12:05:28.0142 0x12b8  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:05:28.0217 0x12b8  WinDefend - ok
12:05:28.0223 0x12b8  WinHttpAutoProxySvc - ok
12:05:28.0304 0x12b8  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:05:28.0336 0x12b8  Winmgmt - ok
12:05:28.0494 0x12b8  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:05:28.0623 0x12b8  WinRM - ok
12:05:28.0773 0x12b8  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:05:28.0861 0x12b8  Wlansvc - ok
12:05:28.0886 0x12b8  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:05:28.0953 0x12b8  WmiAcpi - ok
12:05:29.0044 0x12b8  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:05:29.0075 0x12b8  wmiApSrv - ok
12:05:29.0221 0x12b8  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:05:29.0347 0x12b8  WMPNetworkSvc - ok
12:05:29.0402 0x12b8  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:05:29.0564 0x12b8  WPCSvc - ok
12:05:29.0617 0x12b8  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:05:29.0639 0x12b8  WPDBusEnum - ok
12:05:29.0693 0x12b8  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:05:29.0742 0x12b8  WpdUsb - ok
12:05:30.0337 0x12b8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:05:30.0424 0x12b8  WPFFontCache_v0400 - ok
12:05:30.0440 0x12b8  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:05:30.0597 0x12b8  ws2ifsl - ok
12:05:30.0724 0x12b8  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:05:30.0746 0x12b8  wscsvc - ok
12:05:30.0750 0x12b8  WSearch - ok
12:05:31.0064 0x12b8  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:05:31.0937 0x12b8  wuauserv - ok
12:05:32.0044 0x12b8  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:05:32.0079 0x12b8  WudfPf - ok
12:05:32.0121 0x12b8  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:05:32.0167 0x12b8  WUDFRd - ok
12:05:32.0202 0x12b8  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:05:32.0244 0x12b8  wudfsvc - ok
12:05:32.0264 0x12b8  ================ Scan global ===============================
12:05:32.0310 0x12b8  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
12:05:32.0352 0x12b8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:05:32.0439 0x12b8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:05:32.0593 0x12b8  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
12:05:32.0602 0x12b8  [ Global ] - ok
12:05:32.0605 0x12b8  ================ Scan MBR ==================================
12:05:32.0648 0x12b8  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:05:33.0655 0x12b8  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
12:05:33.0655 0x12b8  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
12:05:33.0797 0x12b8  ================ Scan VBR ==================================
12:05:33.0818 0x12b8  [ 475F109F98C97AD8B988A9DFE2889F3C ] \Device\Harddisk0\DR0\Partition1
12:05:33.0820 0x12b8  \Device\Harddisk0\DR0\Partition1 - ok
12:05:33.0844 0x12b8  [ 2E8119675E5F4A5D83E35072BAE43E85 ] \Device\Harddisk0\DR0\Partition2
12:05:33.0847 0x12b8  \Device\Harddisk0\DR0\Partition2 - ok
12:05:33.0847 0x12b8  Waiting for KSN requests completion. In queue: 45
12:05:35.0226 0x12b8  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
12:05:35.0239 0x12b8  AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.1.641 ), 0x41000 ( enabled : updated )
12:05:35.0258 0x12b8  Win FW state via NFP2: enabled
12:05:35.0396 0x12b8  ============================================================
12:05:35.0396 0x12b8  Scan finished
12:05:35.0396 0x12b8  ============================================================
12:05:35.0409 0x0a6c  Detected object count: 3
12:05:35.0409 0x0a6c  Actual detected object count: 3
12:07:54.0865 0x0a6c  GpdDevDPort ( UnsignedFile.Multi.Generic ) - skipped by user
12:07:54.0865 0x0a6c  GpdDevDPort ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:07:54.0865 0x0a6c  RVIEGVST ( UnsignedFile.Multi.Generic ) - skipped by user
12:07:54.0865 0x0a6c  RVIEGVST ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\vbr - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine
12:07:55.0005 0x0a6c  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
12:07:55.0068 0x0a6c  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
12:07:55.0083 0x0a6c  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
12:07:55.0083 0x0a6c  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
12:07:55.0083 0x0a6c  \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine
12:07:55.0099 0x0a6c  \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine
12:07:55.0099 0x0a6c  \Device\Harddisk0\DR0\TDLFS - deleted
12:07:55.0099 0x0a6c  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
         

Alt 07.12.2013, 12:14   #11
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Code:
ATTFilter
12:04:19.0584 0x15a8  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:04:21.0939 0x15a8  ============================================================
12:04:21.0939 0x15a8  Current date / time: 2013/12/07 12:04:21.0939
12:04:21.0939 0x15a8  SystemInfo:
12:04:21.0939 0x15a8  
12:04:21.0939 0x15a8  OS Version: 6.0.6002 ServicePack: 2.0
12:04:21.0939 0x15a8  Product type: Workstation
12:04:21.0939 0x15a8  ComputerName: RICHARD-PC
12:04:21.0939 0x15a8  UserName: Richard
12:04:21.0939 0x15a8  Windows directory: C:\Windows
12:04:21.0939 0x15a8  System windows directory: C:\Windows
12:04:21.0939 0x15a8  Processor architecture: Intel x86
12:04:21.0939 0x15a8  Number of processors: 2
12:04:21.0939 0x15a8  Page size: 0x1000
12:04:21.0939 0x15a8  Boot type: Normal boot
12:04:21.0939 0x15a8  ============================================================
12:04:24.0888 0x15a8  KLMD registered as C:\Windows\system32\drivers\47855603.sys
12:04:25.0371 0x15a8  System UUID: {1DD9EEBB-7F7A-37D7-BD67-B0028FB386EB}
12:04:26.0775 0x15a8  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:04:26.0775 0x15a8  ============================================================
12:04:26.0775 0x15a8  \Device\Harddisk0\DR0:
12:04:26.0775 0x15a8  MBR partitions:
12:04:26.0775 0x15a8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1194800, BlocksNum 0xBC51800
12:04:26.0775 0x15a8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xCDE6000, BlocksNum 0x186482B0
12:04:26.0775 0x15a8  ============================================================
12:04:26.0807 0x15a8  C: <-> \Device\Harddisk0\DR0\Partition1
12:04:26.0853 0x15a8  D: <-> \Device\Harddisk0\DR0\Partition2
12:04:26.0853 0x15a8  ============================================================
12:04:26.0853 0x15a8  Initialize success
12:04:26.0853 0x15a8  ============================================================
12:04:32.0142 0x12b8  ============================================================
12:04:32.0142 0x12b8  Scan started
12:04:32.0142 0x12b8  Mode: Manual; SigCheck; TDLFS; 
12:04:32.0142 0x12b8  ============================================================
12:04:32.0142 0x12b8  KSN ping started
12:04:43.0389 0x12b8  KSN ping finished: true
12:04:44.0481 0x12b8  ================ Scan system memory ========================
12:04:44.0481 0x12b8  System memory - ok
12:04:44.0481 0x12b8  ================ Scan services =============================
12:04:44.0653 0x12b8  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:04:44.0778 0x12b8  ACPI - ok
12:04:44.0887 0x12b8  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:04:44.0918 0x12b8  AdobeARMservice - ok
12:04:44.0996 0x12b8  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:04:45.0027 0x12b8  AdobeFlashPlayerUpdateSvc - ok
12:04:45.0074 0x12b8  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:04:45.0137 0x12b8  adp94xx - ok
12:04:45.0152 0x12b8  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:04:45.0199 0x12b8  adpahci - ok
12:04:45.0215 0x12b8  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:04:45.0246 0x12b8  adpu160m - ok
12:04:45.0261 0x12b8  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:04:45.0293 0x12b8  adpu320 - ok
12:04:45.0339 0x12b8  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:04:45.0371 0x12b8  AeLookupSvc - ok
12:04:45.0417 0x12b8  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
12:04:45.0449 0x12b8  AFD - ok
12:04:45.0480 0x12b8  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:04:45.0495 0x12b8  agp440 - ok
12:04:45.0542 0x12b8  [ 0DEE2B628D4C6E23285BB91EFFDABFDE, 58F14336AA1642D97D4EA540166FDCFA7B9125062E4350F0DD51D235E395ED00 ] ahcix86s        C:\Windows\system32\drivers\ahcix86s.sys
12:04:45.0573 0x12b8  ahcix86s - ok
12:04:45.0620 0x12b8  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:04:45.0636 0x12b8  aic78xx - ok
12:04:45.0667 0x12b8  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
12:04:45.0698 0x12b8  ALG - ok
12:04:45.0714 0x12b8  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
12:04:45.0729 0x12b8  aliide - ok
12:04:45.0745 0x12b8  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:04:45.0761 0x12b8  amdagp - ok
12:04:45.0776 0x12b8  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
12:04:45.0807 0x12b8  amdide - ok
12:04:45.0823 0x12b8  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:04:45.0854 0x12b8  AmdK7 - ok
12:04:45.0854 0x12b8  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:04:45.0901 0x12b8  AmdK8 - ok
12:04:46.0027 0x12b8  [ 0D1E15010057B8426583A99CB179A6C4, 645C7D27E27AAC4124F7F907374B6A50D07D349B95AA869D7091372BD3AF653B ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
12:04:46.0058 0x12b8  AntiVirSchedulerService - ok
12:04:46.0136 0x12b8  [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
12:04:46.0168 0x12b8  AntiVirService - ok
12:04:46.0293 0x12b8  [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
12:04:46.0387 0x12b8  AntiVirWebService - ok
12:04:46.0465 0x12b8  [ BEF294FFE5F40BE768BDCBE1837DFABE, A5EBC3289758E2E152BA1571BB288FA33D7E2D23FE715CB51D39992369FDFC19 ] APNMCP          C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
12:04:46.0480 0x12b8  APNMCP - ok
12:04:46.0511 0x12b8  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
12:04:46.0543 0x12b8  Appinfo - ok
12:04:46.0621 0x12b8  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:04:46.0636 0x12b8  Apple Mobile Device - ok
12:04:46.0683 0x12b8  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
12:04:46.0714 0x12b8  arc - ok
12:04:46.0745 0x12b8  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:04:46.0761 0x12b8  arcsas - ok
12:04:46.0792 0x12b8  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:04:46.0823 0x12b8  AsyncMac - ok
12:04:46.0855 0x12b8  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
12:04:46.0870 0x12b8  atapi - ok
12:04:46.0917 0x12b8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:04:46.0964 0x12b8  AudioEndpointBuilder - ok
12:04:46.0995 0x12b8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:04:47.0026 0x12b8  Audiosrv - ok
12:04:47.0120 0x12b8  [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
12:04:47.0151 0x12b8  Avgdiskx - ok
12:04:47.0338 0x12b8  [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:04:47.0557 0x12b8  AVGIDSAgent - ok
12:04:47.0619 0x12b8  [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:04:47.0650 0x12b8  AVGIDSDriver - ok
12:04:47.0728 0x12b8  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
12:04:47.0759 0x12b8  AVGIDSHX - ok
12:04:47.0775 0x12b8  [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:04:47.0791 0x12b8  AVGIDSShim - ok
12:04:47.0822 0x12b8  [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
12:04:47.0853 0x12b8  Avgldx86 - ok
12:04:47.0931 0x12b8  [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
12:04:47.0962 0x12b8  Avglogx - ok
12:04:47.0993 0x12b8  [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
12:04:48.0009 0x12b8  Avgmfx86 - ok
12:04:48.0071 0x12b8  [ 6B4362EDB2EB956DF594D9168D179972, 7E2F5E76C6885BB3D889726B240A4AC3394216C2884EE2088B2CD05F91571B19 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
12:04:48.0103 0x12b8  avgntflt - ok
12:04:48.0149 0x12b8  [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
12:04:48.0165 0x12b8  Avgrkx86 - ok
12:04:48.0243 0x12b8  [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
12:04:48.0259 0x12b8  Avgtdix - ok
12:04:48.0305 0x12b8  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:04:48.0337 0x12b8  avgwd - ok
12:04:48.0383 0x12b8  [ C0F13672DEA7BDB40A89414AB0411705, 5B0C2391340BEE31CB6D8D7433786EDD48BBCD5D5737A539D4A0A54F37636720 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
12:04:48.0399 0x12b8  avipbb - ok
12:04:48.0430 0x12b8  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
12:04:48.0446 0x12b8  avkmgr - ok
12:04:48.0493 0x12b8  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:04:48.0539 0x12b8  Beep - ok
12:04:48.0586 0x12b8  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
12:04:48.0649 0x12b8  BFE - ok
12:04:48.0711 0x12b8  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
12:04:48.0789 0x12b8  BITS - ok
12:04:48.0805 0x12b8  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:04:48.0836 0x12b8  blbdrive - ok
12:04:48.0929 0x12b8  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:04:48.0976 0x12b8  Bonjour Service - ok
12:04:49.0007 0x12b8  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:04:49.0023 0x12b8  bowser - ok
12:04:49.0054 0x12b8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:04:49.0085 0x12b8  BrFiltLo - ok
12:04:49.0085 0x12b8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:04:49.0132 0x12b8  BrFiltUp - ok
12:04:49.0148 0x12b8  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
12:04:49.0210 0x12b8  Browser - ok
12:04:49.0241 0x12b8  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:04:49.0288 0x12b8  Brserid - ok
12:04:49.0319 0x12b8  [ 1A5FC78E41840EDF79D65EC16EFF2787, 05BC4C07C88ADDE6D7FF01B821DDB944EEEC8035AC1B6D780E39FDBD12FCA885 ] BrSerIf         C:\Windows\system32\Drivers\BrSerIf.sys
12:04:49.0366 0x12b8  BrSerIf - ok
12:04:49.0397 0x12b8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:04:49.0444 0x12b8  BrSerWdm - ok
12:04:49.0460 0x12b8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:04:49.0522 0x12b8  BrUsbMdm - ok
12:04:49.0538 0x12b8  [ A24C7B39602218F8DBDB2B6704325FC7, B90A1BA412A33AD041A2CE47FBB73AE296AF07A2F3DF1F56D9FEE5B3B1E0BBD5 ] BrUsbSer        C:\Windows\system32\Drivers\BrUsbSer.sys
12:04:49.0553 0x12b8  BrUsbSer - ok
12:04:49.0569 0x12b8  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:04:49.0631 0x12b8  BTHMODEM - ok
12:04:49.0803 0x12b8  catchme - ok
12:04:49.0834 0x12b8  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:04:49.0881 0x12b8  cdfs - ok
12:04:49.0928 0x12b8  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:04:49.0959 0x12b8  cdrom - ok
12:04:50.0006 0x12b8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
12:04:50.0037 0x12b8  CertPropSvc - ok
12:04:50.0068 0x12b8  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:04:50.0115 0x12b8  circlass - ok
12:04:50.0162 0x12b8  [ B53F9635457B56DCFFEF750E18AEC6CB, BAF6B8C8FAD040ED8E61209E9795C613C979B84C6B771FDED05B64BBEEB6A569 ] CLEDX           C:\Windows\system32\DRIVERS\cledx.sys
12:04:50.0177 0x12b8  CLEDX - detected UnsignedFile.Multi.Generic ( 1 )
12:04:50.0349 0x12b8  Detect skipped due to KSN trusted
12:04:50.0349 0x12b8  CLEDX - ok
12:04:50.0380 0x12b8  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
12:04:50.0411 0x12b8  CLFS - ok
12:04:50.0474 0x12b8  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:04:50.0505 0x12b8  clr_optimization_v2.0.50727_32 - ok
12:04:50.0583 0x12b8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:04:50.0661 0x12b8  clr_optimization_v4.0.30319_32 - ok
12:04:50.0692 0x12b8  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:04:50.0739 0x12b8  CmBatt - ok
12:04:50.0770 0x12b8  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:04:50.0786 0x12b8  cmdide - ok
12:04:50.0801 0x12b8  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:04:50.0817 0x12b8  Compbatt - ok
12:04:50.0833 0x12b8  COMSysApp - ok
12:04:50.0833 0x12b8  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:04:50.0848 0x12b8  crcdisk - ok
12:04:50.0879 0x12b8  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:04:50.0911 0x12b8  Crusoe - ok
12:04:50.0957 0x12b8  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:04:50.0989 0x12b8  CryptSvc - ok
12:04:51.0052 0x12b8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:04:51.0114 0x12b8  DcomLaunch - ok
12:04:51.0161 0x12b8  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:04:51.0192 0x12b8  DfsC - ok
12:04:51.0334 0x12b8  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
12:04:51.0537 0x12b8  DFSR - ok
12:04:51.0583 0x12b8  [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:04:51.0615 0x12b8  dg_ssudbus - ok
12:04:51.0739 0x12b8  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:04:51.0771 0x12b8  Dhcp - ok
12:04:51.0802 0x12b8  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
12:04:51.0817 0x12b8  disk - ok
12:04:51.0864 0x12b8  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:04:51.0880 0x12b8  Dnscache - ok
12:04:51.0911 0x12b8  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
12:04:51.0942 0x12b8  dot3svc - ok
12:04:52.0005 0x12b8  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
12:04:52.0051 0x12b8  DPS - ok
12:04:52.0114 0x12b8  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:04:52.0161 0x12b8  drmkaud - ok
12:04:52.0208 0x12b8  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:04:52.0302 0x12b8  DXGKrnl - ok
12:04:52.0333 0x12b8  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:04:52.0380 0x12b8  E1G60 - ok
12:04:52.0411 0x12b8  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
12:04:52.0458 0x12b8  EapHost - ok
12:04:52.0505 0x12b8  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:04:52.0536 0x12b8  Ecache - ok
12:04:52.0598 0x12b8  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:04:52.0614 0x12b8  ehRecvr - ok
12:04:52.0630 0x12b8  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
12:04:52.0676 0x12b8  ehSched - ok
12:04:52.0692 0x12b8  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
12:04:52.0708 0x12b8  ehstart - ok
12:04:52.0754 0x12b8  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:04:52.0801 0x12b8  elxstor - ok
12:04:52.0848 0x12b8  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:04:52.0910 0x12b8  EMDMgmt - ok
12:04:52.0942 0x12b8  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:04:52.0973 0x12b8  ErrDev - ok
12:04:53.0020 0x12b8  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
12:04:53.0098 0x12b8  EventSystem - ok
12:04:53.0129 0x12b8  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:04:53.0160 0x12b8  exfat - ok
12:04:53.0191 0x12b8  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:04:53.0222 0x12b8  fastfat - ok
12:04:53.0254 0x12b8  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:04:53.0285 0x12b8  fdc - ok
12:04:53.0316 0x12b8  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
12:04:53.0347 0x12b8  fdPHost - ok
12:04:53.0363 0x12b8  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:04:53.0410 0x12b8  FDResPub - ok
12:04:53.0425 0x12b8  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:04:53.0441 0x12b8  FileInfo - ok
12:04:53.0456 0x12b8  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:04:53.0503 0x12b8  Filetrace - ok
12:04:53.0534 0x12b8  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:04:53.0566 0x12b8  flpydisk - ok
12:04:53.0581 0x12b8  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:04:53.0597 0x12b8  FltMgr - ok
12:04:53.0690 0x12b8  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
12:04:53.0753 0x12b8  FontCache - ok
12:04:53.0846 0x12b8  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:04:53.0862 0x12b8  FontCache3.0.0.0 - ok
12:04:53.0893 0x12b8  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:04:53.0909 0x12b8  Fs_Rec - ok
12:04:53.0940 0x12b8  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:04:53.0956 0x12b8  gagp30kx - ok
12:04:54.0002 0x12b8  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:04:54.0018 0x12b8  GEARAspiWDM - ok
12:04:54.0065 0x12b8  [ 9E6B5241CB0B11DDDDF162865041D193, 66F8984276E65A8607A5FA981FB48897B52C22BD629864B01470DAF78B0D5CE1 ] GpdDevDPort     C:\Windows\system32\directport.sys
12:04:54.0080 0x12b8  GpdDevDPort - detected UnsignedFile.Multi.Generic ( 1 )
12:04:54.0346 0x12b8  GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning
12:04:54.0611 0x12b8  [ E48C4E69E2126AAC01888C60CC6ED966, 46A5DE1BCEFA31A583770AB391EE2C940649CAF0A44557B479B1C34BF51D53CF ] GpdKbFilter     C:\Windows\system32\kbfiltr.sys
12:04:54.0626 0x12b8  GpdKbFilter - detected UnsignedFile.Multi.Generic ( 1 )
12:04:54.0798 0x12b8  Detect skipped due to KSN trusted
12:04:54.0798 0x12b8  GpdKbFilter - ok
12:04:54.0845 0x12b8  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
12:04:54.0923 0x12b8  gpsvc - ok
12:04:54.0985 0x12b8  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:04:55.0079 0x12b8  HdAudAddService - ok
12:04:55.0126 0x12b8  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:04:55.0204 0x12b8  HDAudBus - ok
12:04:55.0235 0x12b8  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:04:55.0313 0x12b8  HidBth - ok
12:04:55.0328 0x12b8  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:04:55.0406 0x12b8  HidIr - ok
12:04:55.0453 0x12b8  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\System32\hidserv.dll
12:04:55.0469 0x12b8  hidserv - ok
12:04:55.0484 0x12b8  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:04:55.0516 0x12b8  HidUsb - ok
12:04:55.0547 0x12b8  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:04:55.0578 0x12b8  hkmsvc - ok
12:04:55.0609 0x12b8  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:04:55.0625 0x12b8  HpCISSs - ok
12:04:55.0672 0x12b8  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:04:55.0750 0x12b8  HTTP - ok
12:04:55.0781 0x12b8  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:04:55.0812 0x12b8  i2omp - ok
12:04:55.0859 0x12b8  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:04:55.0890 0x12b8  i8042prt - ok
12:04:55.0921 0x12b8  [ E5A0034847537EAEE3C00349D5C34C5F, 3E0F99512CDFF0B628E2FF5B91BB371CDEF65201B03C53182C97DDE34E26E04C ] iaStor          C:\Windows\system32\drivers\iastor.sys
12:04:55.0952 0x12b8  iaStor - ok
12:04:55.0984 0x12b8  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:04:56.0030 0x12b8  iaStorV - ok
12:04:56.0093 0x12b8  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:04:56.0218 0x12b8  idsvc - ok
12:04:56.0249 0x12b8  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:04:56.0264 0x12b8  iirsp - ok
12:04:56.0342 0x12b8  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:04:56.0420 0x12b8  IKEEXT - ok
12:04:56.0545 0x12b8  [ 2DEB2538C9372568BB67B5FDF2359790, 3F19414B12B5C8F361F9273E380D8C53938F344FAFB8C6517D4421755A3A994B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
12:04:56.0748 0x12b8  IntcAzAudAddService - ok
12:04:56.0810 0x12b8  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
12:04:56.0826 0x12b8  intelide - ok
12:04:56.0857 0x12b8  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:04:56.0888 0x12b8  intelppm - ok
12:04:56.0920 0x12b8  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:04:56.0951 0x12b8  IPBusEnum - ok
12:04:56.0966 0x12b8  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:04:56.0998 0x12b8  IpFilterDriver - ok
12:04:57.0044 0x12b8  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:04:57.0076 0x12b8  iphlpsvc - ok
12:04:57.0076 0x12b8  IpInIp - ok
12:04:57.0107 0x12b8  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:04:57.0154 0x12b8  IPMIDRV - ok
12:04:57.0185 0x12b8  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:04:57.0263 0x12b8  IPNAT - ok
12:04:57.0341 0x12b8  [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:04:57.0373 0x12b8  iPod Service - ok
12:04:57.0385 0x12b8  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:04:57.0456 0x12b8  IRENUM - ok
12:04:57.0476 0x12b8  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:04:57.0501 0x12b8  isapnp - ok
12:04:57.0544 0x12b8  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:04:57.0575 0x12b8  iScsiPrt - ok
12:04:57.0592 0x12b8  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:04:57.0650 0x12b8  iteatapi - ok
12:04:57.0698 0x12b8  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:04:57.0718 0x12b8  iteraid - ok
12:04:57.0735 0x12b8  [ C36F3A1A4E8416EF43F30DEAB7701730, 26A151FE87E1AFD18F7A88553E41E27DD3087721974C2B44621629D9029C4D29 ] JRAID           C:\Windows\system32\drivers\jraid.sys
12:04:57.0819 0x12b8  JRAID - ok
12:04:57.0846 0x12b8  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:04:57.0867 0x12b8  kbdclass - ok
12:04:57.0896 0x12b8  [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:04:57.0931 0x12b8  kbdhid - ok
12:04:57.0978 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
12:04:58.0062 0x12b8  KeyIso - ok
12:04:58.0118 0x12b8  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:04:58.0208 0x12b8  KSecDD - ok
12:04:58.0281 0x12b8  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:04:58.0381 0x12b8  KtmRm - ok
12:04:58.0448 0x12b8  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:04:58.0504 0x12b8  LanmanServer - ok
12:04:58.0548 0x12b8  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:04:58.0606 0x12b8  LanmanWorkstation - ok
12:04:58.0664 0x12b8  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:04:58.0724 0x12b8  lltdio - ok
12:04:58.0785 0x12b8  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:04:58.0834 0x12b8  lltdsvc - ok
12:04:58.0867 0x12b8  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:04:58.0921 0x12b8  lmhosts - ok
12:04:58.0945 0x12b8  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:04:58.0980 0x12b8  LSI_FC - ok
12:04:59.0018 0x12b8  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:04:59.0050 0x12b8  LSI_SAS - ok
12:04:59.0099 0x12b8  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:04:59.0128 0x12b8  LSI_SCSI - ok
12:04:59.0173 0x12b8  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:04:59.0215 0x12b8  luafv - ok
12:04:59.0253 0x12b8  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:04:59.0282 0x12b8  Mcx2Svc - ok
12:04:59.0295 0x12b8  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
12:04:59.0317 0x12b8  megasas - ok
12:04:59.0379 0x12b8  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
12:04:59.0432 0x12b8  MegaSR - ok
12:04:59.0456 0x12b8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
12:04:59.0515 0x12b8  MMCSS - ok
12:04:59.0528 0x12b8  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
12:04:59.0567 0x12b8  Modem - ok
12:04:59.0578 0x12b8  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:04:59.0616 0x12b8  monitor - ok
12:04:59.0629 0x12b8  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:04:59.0654 0x12b8  mouclass - ok
12:04:59.0664 0x12b8  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:04:59.0771 0x12b8  mouhid - ok
12:04:59.0793 0x12b8  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:04:59.0817 0x12b8  MountMgr - ok
12:04:59.0855 0x12b8  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:04:59.0882 0x12b8  MozillaMaintenance - ok
12:04:59.0910 0x12b8  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:04:59.0951 0x12b8  mpio - ok
12:05:00.0020 0x12b8  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:05:00.0086 0x12b8  mpsdrv - ok
12:05:00.0209 0x12b8  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:05:00.0297 0x12b8  MpsSvc - ok
12:05:00.0351 0x12b8  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:05:00.0374 0x12b8  Mraid35x - ok
12:05:00.0413 0x12b8  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:05:00.0458 0x12b8  MRxDAV - ok
12:05:00.0503 0x12b8  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:05:00.0581 0x12b8  mrxsmb - ok
12:05:00.0622 0x12b8  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:05:00.0686 0x12b8  mrxsmb10 - ok
12:05:00.0723 0x12b8  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:05:00.0766 0x12b8  mrxsmb20 - ok
12:05:00.0806 0x12b8  [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci          C:\Windows\system32\drivers\msahci.sys
12:05:00.0834 0x12b8  msahci - ok
12:05:00.0862 0x12b8  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:05:00.0896 0x12b8  msdsm - ok
12:05:00.0924 0x12b8  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
12:05:00.0980 0x12b8  MSDTC - ok
12:05:01.0015 0x12b8  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:05:01.0068 0x12b8  Msfs - ok
12:05:01.0110 0x12b8  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:05:01.0130 0x12b8  msisadrv - ok
12:05:01.0158 0x12b8  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:05:01.0213 0x12b8  MSiSCSI - ok
12:05:01.0217 0x12b8  msiserver - ok
12:05:01.0258 0x12b8  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:05:01.0307 0x12b8  MSKSSRV - ok
12:05:01.0387 0x12b8  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:05:01.0447 0x12b8  MSPCLOCK - ok
12:05:01.0466 0x12b8  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:05:01.0509 0x12b8  MSPQM - ok
12:05:01.0558 0x12b8  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:05:01.0604 0x12b8  MsRPC - ok
12:05:01.0624 0x12b8  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:05:01.0663 0x12b8  mssmbios - ok
12:05:01.0686 0x12b8  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:05:01.0724 0x12b8  MSTEE - ok
12:05:01.0751 0x12b8  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:05:01.0778 0x12b8  Mup - ok
12:05:01.0827 0x12b8  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
12:05:01.0863 0x12b8  napagent - ok
12:05:01.0908 0x12b8  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:05:01.0990 0x12b8  NativeWifiP - ok
12:05:02.0048 0x12b8  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:05:02.0113 0x12b8  NDIS - ok
12:05:02.0135 0x12b8  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:05:02.0182 0x12b8  NdisTapi - ok
12:05:02.0208 0x12b8  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:05:02.0244 0x12b8  Ndisuio - ok
12:05:02.0261 0x12b8  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:05:02.0313 0x12b8  NdisWan - ok
12:05:02.0348 0x12b8  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:05:02.0399 0x12b8  NDProxy - ok
12:05:02.0504 0x12b8  [ B044BB341E164DA6750A9B8E6A5FF6A1, 5E5CB4713BA20971CD09D176CBBE8857EB21A032CAC02A9042E88E5DD15B44D3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
12:05:02.0577 0x12b8  Nero BackItUp Scheduler 3 - ok
12:05:02.0606 0x12b8  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:05:02.0641 0x12b8  NetBIOS - ok
12:05:02.0662 0x12b8  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:05:02.0718 0x12b8  netbt - ok
12:05:02.0736 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
12:05:02.0765 0x12b8  Netlogon - ok
12:05:02.0820 0x12b8  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
12:05:02.0879 0x12b8  Netman - ok
12:05:02.0908 0x12b8  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
12:05:02.0983 0x12b8  netprofm - ok
12:05:03.0009 0x12b8  [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:05:03.0038 0x12b8  NetTcpPortSharing - ok
12:05:03.0215 0x12b8  [ 840D89327C45B0CB9E1AB130249046E2, 13B937BAB596141000C554B9BB6753E7358ED42B3367B496D1777B9B74F6CEF8 ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
12:05:03.0659 0x12b8  NETw5v32 - ok
12:05:03.0702 0x12b8  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:05:03.0724 0x12b8  nfrd960 - ok
12:05:03.0766 0x12b8  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:05:03.0808 0x12b8  NlaSvc - ok
12:05:03.0896 0x12b8  [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
12:05:03.0974 0x12b8  NMIndexingService - ok
12:05:04.0018 0x12b8  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:05:04.0047 0x12b8  Npfs - ok
12:05:04.0094 0x12b8  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
12:05:04.0123 0x12b8  nsi - ok
12:05:04.0152 0x12b8  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:05:04.0210 0x12b8  nsiproxy - ok
12:05:04.0314 0x12b8  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:05:04.0480 0x12b8  Ntfs - ok
12:05:04.0496 0x12b8  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:05:04.0547 0x12b8  ntrigdigi - ok
12:05:04.0559 0x12b8  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
12:05:04.0611 0x12b8  Null - ok
12:05:04.0927 0x12b8  [ CEF89AD9AAABF89C9C36C65ADC62F1ED, A0BC68D32482EB674E6081673951FF53A780759215BED5E9DDC84E1DFC1B9FED ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:05:05.0804 0x12b8  nvlddmkm - ok
12:05:05.0856 0x12b8  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:05:05.0886 0x12b8  nvraid - ok
12:05:05.0914 0x12b8  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:05:05.0936 0x12b8  nvstor - ok
12:05:05.0976 0x12b8  [ CC0AA0355DED3D34B7D975B6815CF30A, E9B0E33E0965B47BDE22545C6886DEE036012E4A6A7FCF7B7FE46ADE142769F4 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:05:06.0011 0x12b8  nvsvc - ok
12:05:06.0031 0x12b8  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:05:06.0057 0x12b8  nv_agp - ok
12:05:06.0061 0x12b8  NwlnkFlt - ok
12:05:06.0066 0x12b8  NwlnkFwd - ok
12:05:06.0155 0x12b8  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:05:06.0219 0x12b8  odserv - ok
12:05:06.0243 0x12b8  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:05:06.0320 0x12b8  ohci1394 - ok
12:05:06.0382 0x12b8  [ B7EDD9FD6387802DFAA795372AECF212, 53E8EACC9CD678BC4FFBD22A0F463A7834B1E68D2741518C65CC8883757CD912 ] OsdService      C:\Program Files\OEM\OSD_1.12\OsdService.exe
12:05:06.0399 0x12b8  OsdService - detected UnsignedFile.Multi.Generic ( 1 )
12:05:06.0561 0x12b8  Detect skipped due to KSN trusted
12:05:06.0561 0x12b8  OsdService - ok
12:05:06.0595 0x12b8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:05:06.0621 0x12b8  ose - ok
12:05:06.0665 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:05:06.0742 0x12b8  p2pimsvc - ok
12:05:06.0772 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:05:06.0816 0x12b8  p2psvc - ok
12:05:06.0844 0x12b8  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
12:05:06.0900 0x12b8  Parport - ok
12:05:06.0921 0x12b8  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:05:06.0946 0x12b8  partmgr - ok
12:05:06.0957 0x12b8  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
12:05:07.0009 0x12b8  Parvdm - ok
12:05:07.0036 0x12b8  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:05:07.0069 0x12b8  PcaSvc - ok
12:05:07.0104 0x12b8  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
12:05:07.0132 0x12b8  pci - ok
12:05:07.0150 0x12b8  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:05:07.0171 0x12b8  pciide - ok
12:05:07.0192 0x12b8  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:05:07.0220 0x12b8  pcmcia - ok
12:05:07.0281 0x12b8  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:05:07.0437 0x12b8  PEAUTH - ok
12:05:07.0533 0x12b8  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
12:05:07.0666 0x12b8  pla - ok
12:05:07.0691 0x12b8  [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
12:05:07.0700 0x12b8  PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic ( 1 )
12:05:08.0308 0x12b8  Detect skipped due to KSN trusted
12:05:08.0308 0x12b8  PLFlash DeviceIoControl Service - ok
12:05:08.0340 0x12b8  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:05:08.0393 0x12b8  PlugPlay - ok
12:05:08.0434 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:05:08.0516 0x12b8  PNRPAutoReg - ok
12:05:08.0556 0x12b8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:05:08.0600 0x12b8  PNRPsvc - ok
12:05:08.0642 0x12b8  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:05:08.0705 0x12b8  PolicyAgent - ok
12:05:08.0741 0x12b8  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:05:08.0848 0x12b8  PptpMiniport - ok
12:05:08.0876 0x12b8  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
12:05:08.0926 0x12b8  Processor - ok
12:05:08.0967 0x12b8  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
12:05:09.0021 0x12b8  ProfSvc - ok
12:05:09.0051 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
12:05:09.0090 0x12b8  ProtectedStorage - ok
12:05:09.0124 0x12b8  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:05:09.0203 0x12b8  PSched - ok
12:05:09.0264 0x12b8  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
12:05:09.0379 0x12b8  PxHelp20 - ok
12:05:09.0645 0x12b8  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:05:09.0789 0x12b8  ql2300 - ok
12:05:09.0818 0x12b8  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:05:09.0869 0x12b8  ql40xx - ok
12:05:09.0942 0x12b8  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
12:05:10.0001 0x12b8  QWAVE - ok
12:05:10.0021 0x12b8  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:05:10.0072 0x12b8  QWAVEdrv - ok
12:05:10.0113 0x12b8  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:05:10.0167 0x12b8  RasAcd - ok
12:05:10.0231 0x12b8  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
12:05:10.0268 0x12b8  RasAuto - ok
12:05:10.0295 0x12b8  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:05:10.0363 0x12b8  Rasl2tp - ok
12:05:10.0424 0x12b8  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
12:05:10.0495 0x12b8  RasMan - ok
12:05:10.0602 0x12b8  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:05:10.0712 0x12b8  RasPppoe - ok
12:05:10.0728 0x12b8  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:05:10.0899 0x12b8  RasSstp - ok
12:05:10.0994 0x12b8  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:05:11.0050 0x12b8  rdbss - ok
12:05:11.0102 0x12b8  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:05:11.0143 0x12b8  RDPCDD - ok
12:05:11.0179 0x12b8  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:05:11.0509 0x12b8  rdpdr - ok
12:05:11.0685 0x12b8  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:05:11.0824 0x12b8  RDPENCDD - ok
12:05:12.0041 0x12b8  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:05:12.0075 0x12b8  RDPWD - ok
12:05:12.0238 0x12b8  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:05:12.0274 0x12b8  RemoteAccess - ok
12:05:12.0340 0x12b8  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:05:12.0490 0x12b8  RemoteRegistry - ok
12:05:12.0595 0x12b8  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
12:05:12.0788 0x12b8  RpcLocator - ok
12:05:12.0883 0x12b8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
12:05:12.0932 0x12b8  RpcSs - ok
12:05:13.0010 0x12b8  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:05:13.0093 0x12b8  rspndr - ok
12:05:13.0160 0x12b8  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
12:05:13.0208 0x12b8  RTL8169 - ok
12:05:13.0297 0x12b8  [ 93F66FAEA8BF047D4242AC85AADA403D, EAC5EA048B255EA255E120FD8FCF6BC682843E08A57838FB731050A7B9B9EDCC ] RVIEG01         C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys
12:05:13.0358 0x12b8  RVIEG01 - detected UnsignedFile.Multi.Generic ( 1 )
12:05:14.0097 0x12b8  Detect skipped due to KSN trusted
12:05:14.0097 0x12b8  RVIEG01 - ok
12:05:14.0137 0x12b8  [ 3C74D9FDB1D9831EC932E89F3D874F00, 193577197D2EE5E91A282B8DF945A1A5459C4D44F8C93F7FD5D67801BEEF988B ] RVIEGVST        C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
12:05:14.0171 0x12b8  RVIEGVST - detected UnsignedFile.Multi.Generic ( 1 )
12:05:15.0038 0x12b8  RVIEGVST ( UnsignedFile.Multi.Generic ) - warning
12:05:15.0199 0x12b8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
12:05:15.0227 0x12b8  SamSs - ok
12:05:15.0245 0x12b8  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:05:15.0268 0x12b8  sbp2port - ok
12:05:15.0319 0x12b8  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:05:15.0386 0x12b8  SCardSvr - ok
12:05:15.0467 0x12b8  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
12:05:15.0520 0x12b8  Schedule - ok
12:05:15.0528 0x12b8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:05:15.0553 0x12b8  SCPolicySvc - ok
12:05:15.0608 0x12b8  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:05:15.0666 0x12b8  SDRSVC - ok
12:05:15.0695 0x12b8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:05:15.0762 0x12b8  secdrv - ok
12:05:15.0782 0x12b8  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
12:05:15.0813 0x12b8  seclogon - ok
12:05:15.0829 0x12b8  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
12:05:15.0884 0x12b8  SENS - ok
12:05:15.0905 0x12b8  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:05:15.0974 0x12b8  Serenum - ok
12:05:15.0995 0x12b8  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
12:05:16.0114 0x12b8  Serial - ok
12:05:16.0144 0x12b8  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:05:16.0185 0x12b8  sermouse - ok
12:05:16.0232 0x12b8  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:05:16.0278 0x12b8  SessionEnv - ok
12:05:16.0349 0x12b8  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:05:16.0396 0x12b8  sffdisk - ok
12:05:16.0418 0x12b8  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:05:16.0480 0x12b8  sffp_mmc - ok
12:05:16.0504 0x12b8  [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:05:16.0559 0x12b8  sffp_sd - ok
12:05:16.0583 0x12b8  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:05:16.0627 0x12b8  sfloppy - ok
12:05:16.0664 0x12b8  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:05:16.0706 0x12b8  SharedAccess - ok
12:05:16.0878 0x12b8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:05:16.0920 0x12b8  ShellHWDetection - ok
12:05:16.0941 0x12b8  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:05:16.0965 0x12b8  sisagp - ok
12:05:16.0995 0x12b8  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:05:17.0017 0x12b8  SiSRaid2 - ok
12:05:17.0050 0x12b8  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:05:17.0085 0x12b8  SiSRaid4 - ok
12:05:17.0179 0x12b8  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
12:05:17.0199 0x12b8  SkypeUpdate - ok
12:05:17.0368 0x12b8  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
12:05:17.0794 0x12b8  slsvc - ok
12:05:17.0852 0x12b8  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:05:17.0888 0x12b8  SLUINotify - ok
12:05:17.0911 0x12b8  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:05:17.0946 0x12b8  Smb - ok
12:05:17.0980 0x12b8  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:05:18.0000 0x12b8  SNMPTRAP - ok
12:05:18.0030 0x12b8  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:05:18.0054 0x12b8  spldr - ok
12:05:18.0083 0x12b8  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
12:05:18.0127 0x12b8  Spooler - ok
12:05:18.0174 0x12b8  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:05:18.0301 0x12b8  srv - ok
12:05:18.0363 0x12b8  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:05:18.0440 0x12b8  srv2 - ok
12:05:18.0481 0x12b8  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:05:18.0526 0x12b8  srvnet - ok
12:05:18.0557 0x12b8  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:05:18.0612 0x12b8  SSDPSRV - ok
12:05:18.0645 0x12b8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
12:05:18.0663 0x12b8  ssmdrv - ok
12:05:18.0701 0x12b8  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:05:18.0728 0x12b8  SstpSvc - ok
12:05:18.0771 0x12b8  Steam Client Service - ok
12:05:18.0822 0x12b8  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
12:05:18.0905 0x12b8  stisvc - ok
12:05:19.0080 0x12b8  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:05:19.0204 0x12b8  swenum - ok
12:05:19.0269 0x12b8  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
12:05:19.0427 0x12b8  swprv - ok
12:05:19.0687 0x12b8  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:05:19.0708 0x12b8  Symc8xx - ok
12:05:19.0741 0x12b8  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:05:19.0761 0x12b8  Sym_hi - ok
12:05:19.0782 0x12b8  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:05:19.0804 0x12b8  Sym_u3 - ok
12:05:19.0942 0x12b8  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
12:05:20.0029 0x12b8  SysMain - ok
12:05:20.0067 0x12b8  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:05:20.0103 0x12b8  TabletInputService - ok
12:05:20.0164 0x12b8  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:05:20.0238 0x12b8  TapiSrv - ok
12:05:20.0271 0x12b8  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
12:05:20.0343 0x12b8  TBS - ok
12:05:20.0457 0x12b8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:05:20.0541 0x12b8  Tcpip - ok
12:05:20.0574 0x12b8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:05:20.0677 0x12b8  Tcpip6 - ok
12:05:20.0715 0x12b8  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:05:20.0770 0x12b8  tcpipreg - ok
12:05:20.0798 0x12b8  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:05:20.0850 0x12b8  TDPIPE - ok
12:05:20.0867 0x12b8  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:05:20.0929 0x12b8  TDTCP - ok
12:05:20.0961 0x12b8  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:05:21.0039 0x12b8  tdx - ok
12:05:21.0075 0x12b8  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:05:21.0099 0x12b8  TermDD - ok
12:05:21.0131 0x12b8  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
12:05:21.0238 0x12b8  TermService - ok
12:05:21.0643 0x12b8  [ 250B9120C7C103AFDC0C6643F9691055, 63E6CD6E92DAB86A07AED8C4E1C3955C818C0E6E60A33A18EF58DDEC06767B4C ] TestHandler     C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
12:05:21.0708 0x12b8  TestHandler - detected UnsignedFile.Multi.Generic ( 1 )
12:05:21.0876 0x12b8  Detect skipped due to KSN trusted
12:05:21.0876 0x12b8  TestHandler - ok
12:05:21.0914 0x12b8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
12:05:21.0957 0x12b8  Themes - ok
12:05:21.0980 0x12b8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
12:05:22.0010 0x12b8  THREADORDER - ok
12:05:22.0133 0x12b8  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
12:05:22.0192 0x12b8  TrkWks - ok
12:05:22.0238 0x12b8  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:05:22.0264 0x12b8  TrustedInstaller - ok
12:05:22.0304 0x12b8  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:05:22.0333 0x12b8  tssecsrv - ok
12:05:22.0381 0x12b8  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:05:22.0463 0x12b8  tunmp - ok
12:05:22.0534 0x12b8  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:05:22.0569 0x12b8  tunnel - ok
12:05:22.0594 0x12b8  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:05:22.0618 0x12b8  uagp35 - ok
12:05:22.0684 0x12b8  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:05:22.0743 0x12b8  udfs - ok
12:05:22.0781 0x12b8  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:05:22.0831 0x12b8  UI0Detect - ok
12:05:22.0861 0x12b8  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:05:22.0927 0x12b8  uliagpkx - ok
12:05:22.0955 0x12b8  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:05:22.0991 0x12b8  uliahci - ok
12:05:23.0007 0x12b8  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:05:23.0034 0x12b8  UlSata - ok
12:05:23.0062 0x12b8  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:05:23.0100 0x12b8  ulsata2 - ok
12:05:23.0116 0x12b8  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:05:23.0168 0x12b8  umbus - ok
12:05:23.0221 0x12b8  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
12:05:23.0262 0x12b8  upnphost - ok
12:05:23.0306 0x12b8  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
12:05:23.0342 0x12b8  USBAAPL - ok
12:05:23.0434 0x12b8  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:05:23.0482 0x12b8  usbaudio - ok
12:05:23.0550 0x12b8  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:05:23.0639 0x12b8  usbccgp - ok
12:05:23.0655 0x12b8  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:05:23.0776 0x12b8  usbcir - ok
12:05:23.0823 0x12b8  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:05:23.0861 0x12b8  usbehci - ok
12:05:23.0910 0x12b8  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:05:24.0010 0x12b8  usbhub - ok
12:05:24.0030 0x12b8  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:05:24.0103 0x12b8  usbohci - ok
12:05:24.0133 0x12b8  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:05:24.0186 0x12b8  usbprint - ok
12:05:24.0223 0x12b8  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:05:24.0273 0x12b8  usbscan - ok
12:05:24.0322 0x12b8  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:05:24.0356 0x12b8  USBSTOR - ok
12:05:24.0380 0x12b8  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:05:24.0413 0x12b8  usbuhci - ok
12:05:24.0444 0x12b8  [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:05:24.0478 0x12b8  usbvideo - ok
12:05:24.0648 0x12b8  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
12:05:24.0711 0x12b8  UxSms - ok
12:05:24.0782 0x12b8  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
12:05:24.0877 0x12b8  vds - ok
12:05:24.0994 0x12b8  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:05:25.0041 0x12b8  vga - ok
12:05:25.0072 0x12b8  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:05:25.0145 0x12b8  VgaSave - ok
12:05:25.0159 0x12b8  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:05:25.0264 0x12b8  viaagp - ok
12:05:25.0283 0x12b8  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:05:25.0576 0x12b8  ViaC7 - ok
12:05:25.0772 0x12b8  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:05:25.0826 0x12b8  viaide - ok
12:05:25.0842 0x12b8  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:05:25.0960 0x12b8  volmgr - ok
12:05:26.0080 0x12b8  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:05:26.0135 0x12b8  volmgrx - ok
12:05:26.0172 0x12b8  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:05:26.0209 0x12b8  volsnap - ok
12:05:26.0274 0x12b8  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:05:26.0331 0x12b8  vsmraid - ok
12:05:26.0479 0x12b8  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
12:05:26.0790 0x12b8  VSS - ok
12:05:26.0840 0x12b8  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
12:05:26.0877 0x12b8  W32Time - ok
12:05:26.0903 0x12b8  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:05:26.0975 0x12b8  WacomPen - ok
12:05:26.0995 0x12b8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:05:27.0030 0x12b8  Wanarp - ok
12:05:27.0036 0x12b8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:05:27.0066 0x12b8  Wanarpv6 - ok
12:05:27.0165 0x12b8  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:05:27.0271 0x12b8  wcncsvc - ok
12:05:27.0308 0x12b8  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:05:27.0379 0x12b8  WcsPlugInService - ok
12:05:27.0402 0x12b8  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
12:05:27.0425 0x12b8  Wd - ok
12:05:27.0478 0x12b8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:05:27.0520 0x12b8  Wdf01000 - ok
12:05:27.0548 0x12b8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:05:27.0595 0x12b8  WdiServiceHost - ok
12:05:27.0601 0x12b8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:05:27.0638 0x12b8  WdiSystemHost - ok
12:05:27.0683 0x12b8  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
12:05:27.0711 0x12b8  WebClient - ok
12:05:27.0766 0x12b8  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:05:27.0824 0x12b8  Wecsvc - ok
12:05:27.0857 0x12b8  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:05:27.0918 0x12b8  wercplsupport - ok
12:05:27.0956 0x12b8  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:05:27.0999 0x12b8  WerSvc - ok
12:05:28.0142 0x12b8  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:05:28.0217 0x12b8  WinDefend - ok
12:05:28.0223 0x12b8  WinHttpAutoProxySvc - ok
12:05:28.0304 0x12b8  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:05:28.0336 0x12b8  Winmgmt - ok
12:05:28.0494 0x12b8  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:05:28.0623 0x12b8  WinRM - ok
12:05:28.0773 0x12b8  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:05:28.0861 0x12b8  Wlansvc - ok
12:05:28.0886 0x12b8  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:05:28.0953 0x12b8  WmiAcpi - ok
12:05:29.0044 0x12b8  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:05:29.0075 0x12b8  wmiApSrv - ok
12:05:29.0221 0x12b8  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:05:29.0347 0x12b8  WMPNetworkSvc - ok
12:05:29.0402 0x12b8  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:05:29.0564 0x12b8  WPCSvc - ok
12:05:29.0617 0x12b8  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:05:29.0639 0x12b8  WPDBusEnum - ok
12:05:29.0693 0x12b8  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:05:29.0742 0x12b8  WpdUsb - ok
12:05:30.0337 0x12b8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:05:30.0424 0x12b8  WPFFontCache_v0400 - ok
12:05:30.0440 0x12b8  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:05:30.0597 0x12b8  ws2ifsl - ok
12:05:30.0724 0x12b8  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:05:30.0746 0x12b8  wscsvc - ok
12:05:30.0750 0x12b8  WSearch - ok
12:05:31.0064 0x12b8  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:05:31.0937 0x12b8  wuauserv - ok
12:05:32.0044 0x12b8  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:05:32.0079 0x12b8  WudfPf - ok
12:05:32.0121 0x12b8  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:05:32.0167 0x12b8  WUDFRd - ok
12:05:32.0202 0x12b8  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:05:32.0244 0x12b8  wudfsvc - ok
12:05:32.0264 0x12b8  ================ Scan global ===============================
12:05:32.0310 0x12b8  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
12:05:32.0352 0x12b8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:05:32.0439 0x12b8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:05:32.0593 0x12b8  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
12:05:32.0602 0x12b8  [ Global ] - ok
12:05:32.0605 0x12b8  ================ Scan MBR ==================================
12:05:32.0648 0x12b8  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:05:33.0655 0x12b8  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
12:05:33.0655 0x12b8  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
12:05:33.0797 0x12b8  ================ Scan VBR ==================================
12:05:33.0818 0x12b8  [ 475F109F98C97AD8B988A9DFE2889F3C ] \Device\Harddisk0\DR0\Partition1
12:05:33.0820 0x12b8  \Device\Harddisk0\DR0\Partition1 - ok
12:05:33.0844 0x12b8  [ 2E8119675E5F4A5D83E35072BAE43E85 ] \Device\Harddisk0\DR0\Partition2
12:05:33.0847 0x12b8  \Device\Harddisk0\DR0\Partition2 - ok
12:05:33.0847 0x12b8  Waiting for KSN requests completion. In queue: 45
12:05:35.0226 0x12b8  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
12:05:35.0239 0x12b8  AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.1.641 ), 0x41000 ( enabled : updated )
12:05:35.0258 0x12b8  Win FW state via NFP2: enabled
12:05:35.0396 0x12b8  ============================================================
12:05:35.0396 0x12b8  Scan finished
12:05:35.0396 0x12b8  ============================================================
12:05:35.0409 0x0a6c  Detected object count: 3
12:05:35.0409 0x0a6c  Actual detected object count: 3
12:07:54.0865 0x0a6c  GpdDevDPort ( UnsignedFile.Multi.Generic ) - skipped by user
12:07:54.0865 0x0a6c  GpdDevDPort ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:07:54.0865 0x0a6c  RVIEGVST ( UnsignedFile.Multi.Generic ) - skipped by user
12:07:54.0865 0x0a6c  RVIEGVST ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\vbr - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine
12:07:54.0943 0x0a6c  \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine
12:07:54.0958 0x0a6c  \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine
12:07:55.0005 0x0a6c  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
12:07:55.0068 0x0a6c  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
12:07:55.0083 0x0a6c  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
12:07:55.0083 0x0a6c  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
12:07:55.0083 0x0a6c  \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine
12:07:55.0099 0x0a6c  \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine
12:07:55.0099 0x0a6c  \Device\Harddisk0\DR0\TDLFS - deleted
12:07:55.0099 0x0a6c  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete 
12:09:12.0024 0x1110  ============================================================
12:09:12.0024 0x1110  Scan started
12:09:12.0024 0x1110  Mode: Manual; SigCheck; TDLFS; 
12:09:12.0024 0x1110  ============================================================
12:09:12.0024 0x1110  KSN ping started
12:09:23.0178 0x1110  KSN ping finished: true
12:09:24.0161 0x1110  ================ Scan system memory ========================
12:09:24.0161 0x1110  Scan was interrupted by user!
12:09:24.0177 0x1110  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
12:09:24.0177 0x1110  AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.1.641 ), 0x41000 ( enabled : updated )
12:09:24.0177 0x1110  Win FW state via NFP2: enabled
12:09:24.0333 0x1110  ============================================================
12:09:24.0333 0x1110  Scan finished
12:09:24.0333 0x1110  ============================================================
12:09:24.0333 0x0fd8  Detected object count: 0
12:09:24.0333 0x0fd8  Actual detected object count: 0
12:09:35.0362 0x14cc  ============================================================
12:09:35.0362 0x14cc  Scan started
12:09:35.0362 0x14cc  Mode: Manual; SigCheck; TDLFS; 
12:09:35.0362 0x14cc  ============================================================
12:09:35.0362 0x14cc  KSN ping started
12:09:35.0455 0x14cc  KSN ping finished: true
12:09:36.0033 0x14cc  ================ Scan system memory ========================
12:09:36.0033 0x14cc  System memory - ok
12:09:36.0033 0x14cc  ================ Scan services =============================
12:09:36.0235 0x14cc  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
12:09:36.0267 0x14cc  ACPI - ok
12:09:36.0345 0x14cc  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
12:09:36.0360 0x14cc  AdobeARMservice - ok
12:09:36.0501 0x14cc  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:09:36.0516 0x14cc  AdobeFlashPlayerUpdateSvc - ok
12:09:36.0563 0x14cc  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:09:36.0594 0x14cc  adp94xx - ok
12:09:36.0610 0x14cc  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:09:36.0641 0x14cc  adpahci - ok
12:09:36.0672 0x14cc  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
12:09:36.0688 0x14cc  adpu160m - ok
12:09:36.0703 0x14cc  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:09:36.0719 0x14cc  adpu320 - ok
12:09:36.0766 0x14cc  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:09:36.0781 0x14cc  AeLookupSvc - ok
12:09:36.0844 0x14cc  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
12:09:36.0859 0x14cc  AFD - ok
12:09:36.0906 0x14cc  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:09:36.0922 0x14cc  agp440 - ok
12:09:36.0953 0x14cc  [ 0DEE2B628D4C6E23285BB91EFFDABFDE, 58F14336AA1642D97D4EA540166FDCFA7B9125062E4350F0DD51D235E395ED00 ] ahcix86s        C:\Windows\system32\drivers\ahcix86s.sys
12:09:36.0969 0x14cc  ahcix86s - ok
12:09:37.0000 0x14cc  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
12:09:37.0015 0x14cc  aic78xx - ok
12:09:37.0031 0x14cc  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
12:09:37.0062 0x14cc  ALG - ok
12:09:37.0078 0x14cc  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
12:09:37.0093 0x14cc  aliide - ok
12:09:37.0140 0x14cc  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:09:37.0156 0x14cc  amdagp - ok
12:09:37.0171 0x14cc  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
12:09:37.0187 0x14cc  amdide - ok
12:09:37.0249 0x14cc  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
12:09:37.0281 0x14cc  AmdK7 - ok
12:09:37.0296 0x14cc  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:09:37.0343 0x14cc  AmdK8 - ok
12:09:37.0515 0x14cc  [ 0D1E15010057B8426583A99CB179A6C4, 645C7D27E27AAC4124F7F907374B6A50D07D349B95AA869D7091372BD3AF653B ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
12:09:37.0516 0x14cc  AntiVirSchedulerService - ok
12:09:37.0625 0x14cc  [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
12:09:37.0703 0x14cc  AntiVirService - ok
12:09:37.0874 0x14cc  [ 48543D304F54C8997462208555662BA4, ADA3B62E6D1513FF24D044B03EFCBBD4268DB32C213F575D8AD3867D3F82B340 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
12:09:37.0968 0x14cc  AntiVirWebService - ok
12:09:38.0093 0x14cc  [ BEF294FFE5F40BE768BDCBE1837DFABE, A5EBC3289758E2E152BA1571BB288FA33D7E2D23FE715CB51D39992369FDFC19 ] APNMCP          C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
12:09:38.0108 0x14cc  APNMCP - ok
12:09:38.0155 0x14cc  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
12:09:38.0171 0x14cc  Appinfo - ok
12:09:38.0296 0x14cc  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:09:38.0311 0x14cc  Apple Mobile Device - ok
12:09:38.0389 0x14cc  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
12:09:38.0405 0x14cc  arc - ok
12:09:38.0420 0x14cc  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:09:38.0436 0x14cc  arcsas - ok
12:09:38.0452 0x14cc  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:09:38.0483 0x14cc  AsyncMac - ok
12:09:38.0514 0x14cc  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
12:09:38.0530 0x14cc  atapi - ok
12:09:38.0576 0x14cc  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:09:38.0608 0x14cc  AudioEndpointBuilder - ok
12:09:38.0686 0x14cc  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:09:38.0717 0x14cc  Audiosrv - ok
12:09:38.0795 0x14cc  [ 9C7C45DE9E167F6268D32D6D10133F7D, 58005B49AE6D5CABB3ECEFF0D800F53D6E81A67B5EFE25E9374EC061FEC5601F ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
12:09:38.0810 0x14cc  Avgdiskx - ok
12:09:39.0091 0x14cc  [ F89B2DACE0FBE54CF65D12B7081C19C3, 64BBA5A29948ABFADB8865CE0D7D0259AB291B8DA04786AB351055D57B49D439 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
12:09:39.0263 0x14cc  AVGIDSAgent - ok
12:09:39.0341 0x14cc  [ C66B17D93F94622293608C2FB91C5806, 5BA6948A5328D73B1BAF6DACC7B2A842FD0072246DD416DE39F6993EAABC2997 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
12:09:39.0356 0x14cc  AVGIDSDriver - ok
12:09:39.0388 0x14cc  [ 0C70FAB4B08DC1FF6612AA3F352CFCA9, 6991B6A9E5063611C280968F758E6B0F431E19EB8539808531C6293A0F313C47 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
12:09:39.0403 0x14cc  AVGIDSHX - ok
12:09:39.0434 0x14cc  [ 4118A9D326A76D485713A36988102C3E, 10C494165258D091AB31533C37FA05C29013471D5B2D6BDA60F731715FA02248 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
12:09:39.0450 0x14cc  AVGIDSShim - ok
12:09:39.0528 0x14cc  [ 578ECC3D911897B2C5B760EDAF8ED6CA, 99CAACB349C8629D4BE6070BDBFB0BDB4A13ABFFF738F04D723D2AFE7EA58894 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
12:09:39.0544 0x14cc  Avgldx86 - ok
12:09:39.0622 0x14cc  [ BD1A440B9F126AFE52978A44952B0018, 83577249AACC3F0C655C27A471739113B2086BFC1FF15D0ED7E64B0215B739DB ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
12:09:39.0637 0x14cc  Avglogx - ok
12:09:39.0731 0x14cc  [ 7DC192EC714342E7C020C7CF42E394D8, 09F4CFFD93067E62B09C550A7A0588E90CAD190E49E1B7082FC5A949AF389781 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
12:09:39.0746 0x14cc  Avgmfx86 - ok
12:09:39.0793 0x14cc  [ 6B4362EDB2EB956DF594D9168D179972, 7E2F5E76C6885BB3D889726B240A4AC3394216C2884EE2088B2CD05F91571B19 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
12:09:39.0809 0x14cc  avgntflt - ok
12:09:39.0856 0x14cc  [ E6322DF686CE1C59D7797FAEF0732454, 03534F19568B421F9BE9C99A7A5302D38FCABA26E95C49A492DA49E58A918B55 ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
12:09:39.0871 0x14cc  Avgrkx86 - ok
12:09:39.0902 0x14cc  [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
12:09:39.0918 0x14cc  Avgtdix - ok
12:09:40.0012 0x14cc  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
12:09:40.0027 0x14cc  avgwd - ok
12:09:40.0058 0x14cc  [ C0F13672DEA7BDB40A89414AB0411705, 5B0C2391340BEE31CB6D8D7433786EDD48BBCD5D5737A539D4A0A54F37636720 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
         

Alt 07.12.2013, 12:18   #12
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Code:
ATTFilter
12:09:40.0074 0x14cc  avipbb - ok
12:09:40.0121 0x14cc  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
12:09:40.0136 0x14cc  avkmgr - ok
12:09:40.0199 0x14cc  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:09:40.0230 0x14cc  Beep - ok
12:09:40.0277 0x14cc  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
12:09:40.0308 0x14cc  BFE - ok
12:09:40.0355 0x14cc  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
12:09:40.0433 0x14cc  BITS - ok
12:09:40.0464 0x14cc  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:09:40.0495 0x14cc  blbdrive - ok
12:09:40.0651 0x14cc  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:09:40.0667 0x14cc  Bonjour Service - ok
12:09:40.0729 0x14cc  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:09:40.0745 0x14cc  bowser - ok
12:09:40.0760 0x14cc  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
12:09:40.0776 0x14cc  BrFiltLo - ok
12:09:40.0807 0x14cc  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
12:09:40.0823 0x14cc  BrFiltUp - ok
12:09:40.0854 0x14cc  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
12:09:40.0885 0x14cc  Browser - ok
12:09:40.0916 0x14cc  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
12:09:40.0963 0x14cc  Brserid - ok
12:09:40.0994 0x14cc  [ 1A5FC78E41840EDF79D65EC16EFF2787, 05BC4C07C88ADDE6D7FF01B821DDB944EEEC8035AC1B6D780E39FDBD12FCA885 ] BrSerIf         C:\Windows\system32\Drivers\BrSerIf.sys
12:09:41.0026 0x14cc  BrSerIf - ok
12:09:41.0041 0x14cc  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
12:09:41.0088 0x14cc  BrSerWdm - ok
12:09:41.0119 0x14cc  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
12:09:41.0182 0x14cc  BrUsbMdm - ok
12:09:41.0275 0x14cc  [ A24C7B39602218F8DBDB2B6704325FC7, B90A1BA412A33AD041A2CE47FBB73AE296AF07A2F3DF1F56D9FEE5B3B1E0BBD5 ] BrUsbSer        C:\Windows\system32\Drivers\BrUsbSer.sys
12:09:41.0291 0x14cc  BrUsbSer - ok
12:09:41.0306 0x14cc  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:09:41.0353 0x14cc  BTHMODEM - ok
12:09:41.0494 0x14cc  catchme - ok
12:09:41.0540 0x14cc  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:09:41.0572 0x14cc  cdfs - ok
12:09:41.0618 0x14cc  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:09:41.0650 0x14cc  cdrom - ok
12:09:41.0681 0x14cc  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
12:09:41.0696 0x14cc  CertPropSvc - ok
12:09:41.0790 0x14cc  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:09:41.0821 0x14cc  circlass - ok
12:09:41.0884 0x14cc  [ B53F9635457B56DCFFEF750E18AEC6CB, BAF6B8C8FAD040ED8E61209E9795C613C979B84C6B771FDED05B64BBEEB6A569 ] CLEDX           C:\Windows\system32\DRIVERS\cledx.sys
12:09:41.0884 0x14cc  CLEDX - detected UnsignedFile.Multi.Generic ( 1 )
12:09:41.0884 0x14cc  Detect skipped due to KSN trusted
12:09:41.0884 0x14cc  CLEDX - ok
12:09:41.0930 0x14cc  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
12:09:41.0962 0x14cc  CLFS - ok
12:09:42.0008 0x14cc  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:09:42.0024 0x14cc  clr_optimization_v2.0.50727_32 - ok
12:09:42.0133 0x14cc  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:09:42.0149 0x14cc  clr_optimization_v4.0.30319_32 - ok
12:09:42.0196 0x14cc  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:09:42.0227 0x14cc  CmBatt - ok
12:09:42.0242 0x14cc  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:09:42.0258 0x14cc  cmdide - ok
12:09:42.0274 0x14cc  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:09:42.0289 0x14cc  Compbatt - ok
12:09:42.0289 0x14cc  COMSysApp - ok
12:09:42.0289 0x14cc  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:09:42.0305 0x14cc  crcdisk - ok
12:09:42.0367 0x14cc  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
12:09:42.0414 0x14cc  Crusoe - ok
12:09:42.0476 0x14cc  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:09:42.0539 0x14cc  CryptSvc - ok
12:09:42.0601 0x14cc  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:09:42.0648 0x14cc  DcomLaunch - ok
12:09:42.0679 0x14cc  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:09:42.0710 0x14cc  DfsC - ok
12:09:42.0821 0x14cc  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
12:09:42.0945 0x14cc  DFSR - ok
12:09:42.0992 0x14cc  [ 6CC6C4B9D7B906A151AA094CA087B9F0, 5D06DC2FCAF86C256792D541D5581AF5AFEDA247814E07C6017BEE92284CAA56 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:09:43.0023 0x14cc  dg_ssudbus - ok
12:09:43.0101 0x14cc  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
12:09:43.0133 0x14cc  Dhcp - ok
12:09:43.0179 0x14cc  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
12:09:43.0195 0x14cc  disk - ok
12:09:43.0242 0x14cc  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:09:43.0289 0x14cc  Dnscache - ok
12:09:43.0320 0x14cc  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
12:09:43.0367 0x14cc  dot3svc - ok
12:09:43.0398 0x14cc  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
12:09:43.0445 0x14cc  DPS - ok
12:09:43.0476 0x14cc  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:09:43.0507 0x14cc  drmkaud - ok
12:09:43.0585 0x14cc  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:09:43.0616 0x14cc  DXGKrnl - ok
12:09:43.0647 0x14cc  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
12:09:43.0679 0x14cc  E1G60 - ok
12:09:43.0710 0x14cc  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
12:09:43.0725 0x14cc  EapHost - ok
12:09:43.0757 0x14cc  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
12:09:43.0788 0x14cc  Ecache - ok
12:09:43.0944 0x14cc  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:09:43.0975 0x14cc  ehRecvr - ok
12:09:44.0006 0x14cc  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
12:09:44.0022 0x14cc  ehSched - ok
12:09:44.0037 0x14cc  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
12:09:44.0053 0x14cc  ehstart - ok
12:09:44.0240 0x14cc  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:09:44.0303 0x14cc  elxstor - ok
12:09:44.0365 0x14cc  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
12:09:44.0427 0x14cc  EMDMgmt - ok
12:09:44.0443 0x14cc  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:09:44.0459 0x14cc  ErrDev - ok
12:09:44.0505 0x14cc  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
12:09:44.0537 0x14cc  EventSystem - ok
12:09:44.0630 0x14cc  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:09:44.0646 0x14cc  exfat - ok
12:09:44.0677 0x14cc  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:09:44.0708 0x14cc  fastfat - ok
12:09:44.0724 0x14cc  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:09:44.0755 0x14cc  fdc - ok
12:09:44.0833 0x14cc  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
12:09:44.0864 0x14cc  fdPHost - ok
12:09:44.0895 0x14cc  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:09:44.0942 0x14cc  FDResPub - ok
12:09:44.0973 0x14cc  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:09:44.0989 0x14cc  FileInfo - ok
12:09:45.0005 0x14cc  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:09:45.0036 0x14cc  Filetrace - ok
12:09:45.0083 0x14cc  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:09:45.0114 0x14cc  flpydisk - ok
12:09:45.0223 0x14cc  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:09:45.0239 0x14cc  FltMgr - ok
12:09:45.0301 0x14cc  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
12:09:45.0363 0x14cc  FontCache - ok
12:09:45.0426 0x14cc  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:09:45.0441 0x14cc  FontCache3.0.0.0 - ok
12:09:45.0473 0x14cc  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:09:45.0504 0x14cc  Fs_Rec - ok
12:09:45.0535 0x14cc  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:09:45.0551 0x14cc  gagp30kx - ok
12:09:45.0597 0x14cc  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:09:45.0613 0x14cc  GEARAspiWDM - ok
12:09:45.0629 0x14cc  [ 9E6B5241CB0B11DDDDF162865041D193, 66F8984276E65A8607A5FA981FB48897B52C22BD629864B01470DAF78B0D5CE1 ] GpdDevDPort     C:\Windows\system32\directport.sys
12:09:45.0629 0x14cc  GpdDevDPort - detected UnsignedFile.Multi.Generic ( 1 )
12:09:45.0629 0x14cc  GpdDevDPort ( UnsignedFile.Multi.Generic ) - warning
12:09:45.0878 0x14cc  [ E48C4E69E2126AAC01888C60CC6ED966, 46A5DE1BCEFA31A583770AB391EE2C940649CAF0A44557B479B1C34BF51D53CF ] GpdKbFilter     C:\Windows\system32\kbfiltr.sys
12:09:45.0894 0x14cc  GpdKbFilter - detected UnsignedFile.Multi.Generic ( 1 )
12:09:45.0894 0x14cc  Detect skipped due to KSN trusted
12:09:45.0894 0x14cc  GpdKbFilter - ok
12:09:45.0941 0x14cc  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
12:09:45.0987 0x14cc  gpsvc - ok
12:09:46.0019 0x14cc  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:09:46.0081 0x14cc  HdAudAddService - ok
12:09:46.0159 0x14cc  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:09:46.0206 0x14cc  HDAudBus - ok
12:09:46.0221 0x14cc  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:09:46.0268 0x14cc  HidBth - ok
12:09:46.0346 0x14cc  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:09:46.0393 0x14cc  HidIr - ok
12:09:46.0424 0x14cc  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\System32\hidserv.dll
12:09:46.0440 0x14cc  hidserv - ok
12:09:46.0487 0x14cc  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:09:46.0518 0x14cc  HidUsb - ok
12:09:46.0580 0x14cc  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:09:46.0611 0x14cc  hkmsvc - ok
12:09:46.0643 0x14cc  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
12:09:46.0658 0x14cc  HpCISSs - ok
12:09:46.0752 0x14cc  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:09:46.0814 0x14cc  HTTP - ok
12:09:46.0845 0x14cc  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
12:09:46.0861 0x14cc  i2omp - ok
12:09:46.0892 0x14cc  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:09:46.0908 0x14cc  i8042prt - ok
12:09:46.0955 0x14cc  [ E5A0034847537EAEE3C00349D5C34C5F, 3E0F99512CDFF0B628E2FF5B91BB371CDEF65201B03C53182C97DDE34E26E04C ] iaStor          C:\Windows\system32\drivers\iastor.sys
12:09:46.0986 0x14cc  iaStor - ok
12:09:47.0001 0x14cc  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
12:09:47.0017 0x14cc  iaStorV - ok
12:09:47.0126 0x14cc  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:09:47.0157 0x14cc  idsvc - ok
12:09:47.0204 0x14cc  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:09:47.0220 0x14cc  iirsp - ok
12:09:47.0298 0x14cc  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:09:47.0345 0x14cc  IKEEXT - ok
12:09:47.0469 0x14cc  [ 2DEB2538C9372568BB67B5FDF2359790, 3F19414B12B5C8F361F9273E380D8C53938F344FAFB8C6517D4421755A3A994B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
12:09:47.0579 0x14cc  IntcAzAudAddService - ok
12:09:47.0610 0x14cc  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
12:09:47.0625 0x14cc  intelide - ok
12:09:47.0750 0x14cc  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:09:47.0781 0x14cc  intelppm - ok
12:09:47.0970 0x14cc  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:09:48.0001 0x14cc  IPBusEnum - ok
12:09:48.0032 0x14cc  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:09:48.0063 0x14cc  IpFilterDriver - ok
12:09:48.0204 0x14cc  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:09:48.0219 0x14cc  iphlpsvc - ok
12:09:48.0219 0x14cc  IpInIp - ok
12:09:48.0250 0x14cc  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
12:09:48.0297 0x14cc  IPMIDRV - ok
12:09:48.0422 0x14cc  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
12:09:48.0453 0x14cc  IPNAT - ok
12:09:48.0578 0x14cc  [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:09:48.0609 0x14cc  iPod Service - ok
12:09:48.0656 0x14cc  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:09:48.0687 0x14cc  IRENUM - ok
12:09:48.0750 0x14cc  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:09:48.0765 0x14cc  isapnp - ok
12:09:48.0828 0x14cc  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:09:48.0843 0x14cc  iScsiPrt - ok
12:09:48.0874 0x14cc  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
12:09:48.0890 0x14cc  iteatapi - ok
12:09:48.0906 0x14cc  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
12:09:48.0906 0x14cc  iteraid - ok
12:09:48.0921 0x14cc  [ C36F3A1A4E8416EF43F30DEAB7701730, 26A151FE87E1AFD18F7A88553E41E27DD3087721974C2B44621629D9029C4D29 ] JRAID           C:\Windows\system32\drivers\jraid.sys
12:09:48.0968 0x14cc  JRAID - ok
12:09:48.0984 0x14cc  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:09:48.0999 0x14cc  kbdclass - ok
12:09:49.0015 0x14cc  [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:09:49.0046 0x14cc  kbdhid - ok
12:09:49.0124 0x14cc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
12:09:49.0140 0x14cc  KeyIso - ok
12:09:49.0186 0x14cc  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:09:49.0218 0x14cc  KSecDD - ok
12:09:49.0249 0x14cc  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:09:49.0296 0x14cc  KtmRm - ok
12:09:49.0342 0x14cc  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:09:49.0389 0x14cc  LanmanServer - ok
12:09:49.0436 0x14cc  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:09:49.0483 0x14cc  LanmanWorkstation - ok
12:09:49.0576 0x14cc  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:09:49.0608 0x14cc  lltdio - ok
12:09:49.0654 0x14cc  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:09:49.0686 0x14cc  lltdsvc - ok
12:09:49.0701 0x14cc  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:09:49.0748 0x14cc  lmhosts - ok
12:09:49.0842 0x14cc  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:09:49.0857 0x14cc  LSI_FC - ok
12:09:49.0888 0x14cc  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:09:49.0920 0x14cc  LSI_SAS - ok
12:09:49.0982 0x14cc  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:09:49.0998 0x14cc  LSI_SCSI - ok
12:09:50.0013 0x14cc  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:09:50.0044 0x14cc  luafv - ok
12:09:50.0122 0x14cc  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:09:50.0138 0x14cc  Mcx2Svc - ok
12:09:50.0154 0x14cc  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
12:09:50.0169 0x14cc  megasas - ok
12:09:50.0200 0x14cc  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
12:09:50.0232 0x14cc  MegaSR - ok
12:09:50.0263 0x14cc  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
12:09:50.0294 0x14cc  MMCSS - ok
12:09:50.0310 0x14cc  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
12:09:50.0341 0x14cc  Modem - ok
12:09:50.0372 0x14cc  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:09:50.0403 0x14cc  monitor - ok
12:09:50.0434 0x14cc  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:09:50.0450 0x14cc  mouclass - ok
12:09:50.0466 0x14cc  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:09:50.0497 0x14cc  mouhid - ok
12:09:50.0512 0x14cc  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
12:09:50.0528 0x14cc  MountMgr - ok
12:09:50.0559 0x14cc  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:09:50.0590 0x14cc  MozillaMaintenance - ok
12:09:50.0606 0x14cc  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:09:50.0622 0x14cc  mpio - ok
12:09:50.0668 0x14cc  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:09:50.0684 0x14cc  mpsdrv - ok
12:09:50.0731 0x14cc  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:09:50.0778 0x14cc  MpsSvc - ok
12:09:50.0778 0x14cc  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
12:09:50.0793 0x14cc  Mraid35x - ok
12:09:50.0856 0x14cc  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:09:50.0871 0x14cc  MRxDAV - ok
12:09:50.0902 0x14cc  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:09:50.0949 0x14cc  mrxsmb - ok
12:09:50.0996 0x14cc  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:09:51.0027 0x14cc  mrxsmb10 - ok
12:09:51.0027 0x14cc  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:09:51.0058 0x14cc  mrxsmb20 - ok
12:09:51.0090 0x14cc  [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci          C:\Windows\system32\drivers\msahci.sys
12:09:51.0105 0x14cc  msahci - ok
12:09:51.0121 0x14cc  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:09:51.0152 0x14cc  msdsm - ok
12:09:51.0183 0x14cc  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
12:09:51.0214 0x14cc  MSDTC - ok
12:09:51.0230 0x14cc  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:09:51.0261 0x14cc  Msfs - ok
12:09:51.0324 0x14cc  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:09:51.0339 0x14cc  msisadrv - ok
12:09:51.0370 0x14cc  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:09:51.0402 0x14cc  MSiSCSI - ok
12:09:51.0402 0x14cc  msiserver - ok
12:09:51.0417 0x14cc  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:09:51.0448 0x14cc  MSKSSRV - ok
12:09:51.0480 0x14cc  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:09:51.0511 0x14cc  MSPCLOCK - ok
12:09:51.0526 0x14cc  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:09:51.0558 0x14cc  MSPQM - ok
12:09:51.0620 0x14cc  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:09:51.0636 0x14cc  MsRPC - ok
12:09:51.0714 0x14cc  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:09:51.0729 0x14cc  mssmbios - ok
12:09:51.0745 0x14cc  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:09:51.0776 0x14cc  MSTEE - ok
12:09:51.0792 0x14cc  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:09:51.0807 0x14cc  Mup - ok
12:09:51.0854 0x14cc  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
12:09:51.0901 0x14cc  napagent - ok
12:09:51.0948 0x14cc  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:09:51.0963 0x14cc  NativeWifiP - ok
12:09:52.0010 0x14cc  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:09:52.0057 0x14cc  NDIS - ok
12:09:52.0088 0x14cc  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:09:52.0119 0x14cc  NdisTapi - ok
12:09:52.0135 0x14cc  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:09:52.0166 0x14cc  Ndisuio - ok
12:09:52.0197 0x14cc  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:09:52.0213 0x14cc  NdisWan - ok
12:09:52.0244 0x14cc  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:09:52.0260 0x14cc  NDProxy - ok
12:09:52.0431 0x14cc  [ B044BB341E164DA6750A9B8E6A5FF6A1, 5E5CB4713BA20971CD09D176CBBE8857EB21A032CAC02A9042E88E5DD15B44D3 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
12:09:52.0509 0x14cc  Nero BackItUp Scheduler 3 - ok
12:09:52.0572 0x14cc  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:09:52.0603 0x14cc  NetBIOS - ok
12:09:52.0650 0x14cc  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
12:09:52.0681 0x14cc  netbt - ok
12:09:52.0696 0x14cc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
12:09:52.0728 0x14cc  Netlogon - ok
12:09:52.0790 0x14cc  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
12:09:52.0837 0x14cc  Netman - ok
12:09:52.0869 0x14cc  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
12:09:52.0916 0x14cc  netprofm - ok
12:09:52.0947 0x14cc  [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:09:52.0963 0x14cc  NetTcpPortSharing - ok
12:09:53.0181 0x14cc  [ 840D89327C45B0CB9E1AB130249046E2, 13B937BAB596141000C554B9BB6753E7358ED42B3367B496D1777B9B74F6CEF8 ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
12:09:53.0758 0x14cc  NETw5v32 - ok
12:09:53.0852 0x14cc  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:09:53.0867 0x14cc  nfrd960 - ok
12:09:53.0930 0x14cc  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:09:53.0961 0x14cc  NlaSvc - ok
12:09:54.0179 0x14cc  [ EBA1B4BF2E2375ABDADEDB649F283541, 8B27AE794678C55791F95F34E67E12BAD5BE753F812C49D6511BB657CF453B52 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
12:09:54.0211 0x14cc  NMIndexingService - ok
12:09:54.0304 0x14cc  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:09:54.0335 0x14cc  Npfs - ok
12:09:54.0398 0x14cc  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
12:09:54.0429 0x14cc  nsi - ok
12:09:54.0491 0x14cc  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:09:54.0523 0x14cc  nsiproxy - ok
12:09:54.0616 0x14cc  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:09:54.0679 0x14cc  Ntfs - ok
12:09:54.0725 0x14cc  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
12:09:54.0772 0x14cc  ntrigdigi - ok
12:09:54.0772 0x14cc  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
12:09:54.0803 0x14cc  Null - ok
12:09:55.0100 0x14cc  [ CEF89AD9AAABF89C9C36C65ADC62F1ED, A0BC68D32482EB674E6081673951FF53A780759215BED5E9DDC84E1DFC1B9FED ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:09:55.0490 0x14cc  nvlddmkm - ok
12:09:55.0537 0x14cc  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:09:55.0552 0x14cc  nvraid - ok
12:09:55.0599 0x14cc  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:09:55.0615 0x14cc  nvstor - ok
12:09:55.0693 0x14cc  [ CC0AA0355DED3D34B7D975B6815CF30A, E9B0E33E0965B47BDE22545C6886DEE036012E4A6A7FCF7B7FE46ADE142769F4 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:09:55.0708 0x14cc  nvsvc - ok
12:09:55.0724 0x14cc  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:09:55.0755 0x14cc  nv_agp - ok
12:09:55.0755 0x14cc  NwlnkFlt - ok
12:09:55.0755 0x14cc  NwlnkFwd - ok
12:09:55.0880 0x14cc  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:09:55.0911 0x14cc  odserv - ok
12:09:55.0958 0x14cc  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:09:56.0020 0x14cc  ohci1394 - ok
12:09:56.0051 0x14cc  [ B7EDD9FD6387802DFAA795372AECF212, 53E8EACC9CD678BC4FFBD22A0F463A7834B1E68D2741518C65CC8883757CD912 ] OsdService      C:\Program Files\OEM\OSD_1.12\OsdService.exe
12:09:56.0051 0x14cc  OsdService - detected UnsignedFile.Multi.Generic ( 1 )
12:09:56.0051 0x14cc  Detect skipped due to KSN trusted
12:09:56.0051 0x14cc  OsdService - ok
12:09:56.0145 0x14cc  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:09:56.0161 0x14cc  ose - ok
12:09:56.0192 0x14cc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
12:09:56.0285 0x14cc  p2pimsvc - ok
12:09:56.0301 0x14cc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:09:56.0348 0x14cc  p2psvc - ok
12:09:56.0395 0x14cc  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
12:09:56.0441 0x14cc  Parport - ok
12:09:56.0473 0x14cc  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:09:56.0488 0x14cc  partmgr - ok
12:09:56.0504 0x14cc  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
12:09:56.0551 0x14cc  Parvdm - ok
12:09:56.0691 0x14cc  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:09:56.0707 0x14cc  PcaSvc - ok
12:09:56.0738 0x14cc  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
12:09:56.0753 0x14cc  pci - ok
12:09:56.0878 0x14cc  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:09:56.0894 0x14cc  pciide - ok
12:09:56.0909 0x14cc  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:09:56.0925 0x14cc  pcmcia - ok
12:09:56.0987 0x14cc  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:09:57.0081 0x14cc  PEAUTH - ok
12:09:57.0190 0x14cc  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
12:09:57.0346 0x14cc  pla - ok
12:09:57.0377 0x14cc  [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
12:09:57.0393 0x14cc  PLFlash DeviceIoControl Service - detected UnsignedFile.Multi.Generic ( 1 )
12:09:57.0393 0x14cc  Detect skipped due to KSN trusted
12:09:57.0393 0x14cc  PLFlash DeviceIoControl Service - ok
12:09:57.0440 0x14cc  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:09:57.0471 0x14cc  PlugPlay - ok
12:09:57.0518 0x14cc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
12:09:57.0549 0x14cc  PNRPAutoReg - ok
12:09:57.0627 0x14cc  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
12:09:57.0658 0x14cc  PNRPsvc - ok
12:09:57.0721 0x14cc  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:09:57.0752 0x14cc  PolicyAgent - ok
12:09:57.0956 0x14cc  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:09:57.0987 0x14cc  PptpMiniport - ok
12:09:58.0002 0x14cc  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
12:09:58.0034 0x14cc  Processor - ok
12:09:58.0096 0x14cc  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
12:09:58.0112 0x14cc  ProfSvc - ok
12:09:58.0143 0x14cc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
12:09:58.0158 0x14cc  ProtectedStorage - ok
12:09:58.0205 0x14cc  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
12:09:58.0221 0x14cc  PSched - ok
12:09:58.0299 0x14cc  [ E42E3433DBB4CFFE8FDD91EAB29AEA8E, 20ABD8372B242FD356AC143E7EB56F93CFEA4988ED1B0C4434CB64C387D7F66C ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
12:09:58.0314 0x14cc  PxHelp20 - ok
12:09:58.0439 0x14cc  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:09:58.0502 0x14cc  ql2300 - ok
12:09:58.0533 0x14cc  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:09:58.0548 0x14cc  ql40xx - ok
12:09:58.0580 0x14cc  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
12:09:58.0611 0x14cc  QWAVE - ok
12:09:58.0626 0x14cc  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:09:58.0658 0x14cc  QWAVEdrv - ok
12:09:58.0673 0x14cc  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:09:58.0704 0x14cc  RasAcd - ok
12:09:58.0736 0x14cc  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
12:09:58.0767 0x14cc  RasAuto - ok
12:09:58.0767 0x14cc  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:09:58.0799 0x14cc  Rasl2tp - ok
12:09:58.0893 0x14cc  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
12:09:58.0924 0x14cc  RasMan - ok
12:09:58.0955 0x14cc  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:09:58.0986 0x14cc  RasPppoe - ok
12:09:58.0986 0x14cc  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:09:59.0017 0x14cc  RasSstp - ok
12:09:59.0049 0x14cc  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:09:59.0080 0x14cc  rdbss - ok
12:09:59.0095 0x14cc  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:09:59.0127 0x14cc  RDPCDD - ok
12:09:59.0173 0x14cc  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
12:09:59.0220 0x14cc  rdpdr - ok
12:09:59.0220 0x14cc  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:09:59.0251 0x14cc  RDPENCDD - ok
12:09:59.0298 0x14cc  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:09:59.0314 0x14cc  RDPWD - ok
12:09:59.0392 0x14cc  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:09:59.0423 0x14cc  RemoteAccess - ok
12:09:59.0501 0x14cc  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:09:59.0517 0x14cc  RemoteRegistry - ok
12:09:59.0595 0x14cc  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
12:09:59.0610 0x14cc  RpcLocator - ok
12:09:59.0641 0x14cc  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
12:09:59.0688 0x14cc  RpcSs - ok
12:09:59.0766 0x14cc  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:09:59.0797 0x14cc  rspndr - ok
12:09:59.0860 0x14cc  [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
12:09:59.0875 0x14cc  RTL8169 - ok
12:09:59.0969 0x14cc  [ 93F66FAEA8BF047D4242AC85AADA403D, EAC5EA048B255EA255E120FD8FCF6BC682843E08A57838FB731050A7B9B9EDCC ] RVIEG01         C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys
12:09:59.0985 0x14cc  RVIEG01 - detected UnsignedFile.Multi.Generic ( 1 )
12:09:59.0985 0x14cc  Detect skipped due to KSN trusted
12:09:59.0985 0x14cc  RVIEG01 - ok
12:10:00.0031 0x14cc  [ 3C74D9FDB1D9831EC932E89F3D874F00, 193577197D2EE5E91A282B8DF945A1A5459C4D44F8C93F7FD5D67801BEEF988B ] RVIEGVST        C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
12:10:00.0047 0x14cc  RVIEGVST - detected UnsignedFile.Multi.Generic ( 1 )
12:10:00.0047 0x14cc  RVIEGVST ( UnsignedFile.Multi.Generic ) - warning
12:10:00.0047 0x14cc  Force sending object to P2P due to detect: C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys
12:10:00.0718 0x14cc  Object send P2P result: true
12:10:00.0858 0x14cc  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
12:10:00.0889 0x14cc  SamSs - ok
12:10:00.0921 0x14cc  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:10:00.0936 0x14cc  sbp2port - ok
12:10:00.0983 0x14cc  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:10:01.0014 0x14cc  SCardSvr - ok
12:10:01.0061 0x14cc  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
12:10:01.0139 0x14cc  Schedule - ok
12:10:01.0170 0x14cc  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:10:01.0201 0x14cc  SCPolicySvc - ok
12:10:01.0264 0x14cc  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:10:01.0279 0x14cc  SDRSVC - ok
12:10:01.0373 0x14cc  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:10:01.0420 0x14cc  secdrv - ok
12:10:01.0435 0x14cc  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
12:10:01.0467 0x14cc  seclogon - ok
12:10:01.0482 0x14cc  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
12:10:01.0513 0x14cc  SENS - ok
12:10:01.0529 0x14cc  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:10:01.0576 0x14cc  Serenum - ok
12:10:01.0607 0x14cc  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
12:10:01.0654 0x14cc  Serial - ok
12:10:01.0669 0x14cc  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:10:01.0701 0x14cc  sermouse - ok
12:10:01.0716 0x14cc  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:10:01.0763 0x14cc  SessionEnv - ok
12:10:01.0794 0x14cc  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:10:01.0810 0x14cc  sffdisk - ok
12:10:01.0857 0x14cc  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:10:01.0872 0x14cc  sffp_mmc - ok
12:10:01.0919 0x14cc  [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:10:01.0935 0x14cc  sffp_sd - ok
12:10:01.0997 0x14cc  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:10:02.0028 0x14cc  sfloppy - ok
12:10:02.0091 0x14cc  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:10:02.0137 0x14cc  SharedAccess - ok
12:10:02.0200 0x14cc  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:10:02.0247 0x14cc  ShellHWDetection - ok
12:10:02.0278 0x14cc  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:10:02.0293 0x14cc  sisagp - ok
12:10:02.0309 0x14cc  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
12:10:02.0325 0x14cc  SiSRaid2 - ok
12:10:02.0340 0x14cc  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:10:02.0356 0x14cc  SiSRaid4 - ok
12:10:02.0418 0x14cc  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
12:10:02.0434 0x14cc  SkypeUpdate - ok
12:10:02.0605 0x14cc  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
12:10:02.0777 0x14cc  slsvc - ok
12:10:02.0855 0x14cc  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
12:10:02.0886 0x14cc  SLUINotify - ok
12:10:02.0917 0x14cc  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:10:02.0949 0x14cc  Smb - ok
12:10:03.0027 0x14cc  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:10:03.0042 0x14cc  SNMPTRAP - ok
12:10:03.0058 0x14cc  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:10:03.0073 0x14cc  spldr - ok
12:10:03.0105 0x14cc  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
12:10:03.0214 0x14cc  Spooler - ok
12:10:03.0261 0x14cc  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:10:03.0292 0x14cc  srv - ok
12:10:03.0323 0x14cc  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:10:03.0354 0x14cc  srv2 - ok
12:10:03.0385 0x14cc  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:10:03.0401 0x14cc  srvnet - ok
12:10:03.0432 0x14cc  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:10:03.0463 0x14cc  SSDPSRV - ok
12:10:03.0510 0x14cc  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
12:10:03.0526 0x14cc  ssmdrv - ok
12:10:03.0541 0x14cc  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:10:03.0557 0x14cc  SstpSvc - ok
12:10:03.0573 0x14cc  Steam Client Service - ok
12:10:03.0697 0x14cc  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
12:10:03.0744 0x14cc  stisvc - ok
12:10:03.0775 0x14cc  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:10:03.0791 0x14cc  swenum - ok
12:10:03.0838 0x14cc  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
12:10:03.0869 0x14cc  swprv - ok
12:10:03.0885 0x14cc  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
12:10:03.0900 0x14cc  Symc8xx - ok
12:10:03.0931 0x14cc  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
12:10:03.0947 0x14cc  Sym_hi - ok
12:10:03.0963 0x14cc  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
12:10:03.0978 0x14cc  Sym_u3 - ok
12:10:04.0103 0x14cc  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
12:10:04.0150 0x14cc  SysMain - ok
12:10:04.0181 0x14cc  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:10:04.0212 0x14cc  TabletInputService - ok
12:10:04.0290 0x14cc  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:10:04.0337 0x14cc  TapiSrv - ok
12:10:04.0353 0x14cc  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
12:10:04.0384 0x14cc  TBS - ok
12:10:04.0446 0x14cc  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:10:04.0509 0x14cc  Tcpip - ok
12:10:04.0555 0x14cc  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
12:10:04.0633 0x14cc  Tcpip6 - ok
12:10:04.0665 0x14cc  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:10:04.0758 0x14cc  tcpipreg - ok
12:10:04.0789 0x14cc  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:10:04.0821 0x14cc  TDPIPE - ok
12:10:04.0836 0x14cc  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:10:04.0867 0x14cc  TDTCP - ok
12:10:04.0899 0x14cc  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:10:04.0930 0x14cc  tdx - ok
12:10:04.0945 0x14cc  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:10:04.0961 0x14cc  TermDD - ok
12:10:05.0039 0x14cc  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
12:10:05.0070 0x14cc  TermService - ok
12:10:05.0164 0x14cc  [ 250B9120C7C103AFDC0C6643F9691055, 63E6CD6E92DAB86A07AED8C4E1C3955C818C0E6E60A33A18EF58DDEC06767B4C ] TestHandler     C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
12:10:05.0179 0x14cc  TestHandler - detected UnsignedFile.Multi.Generic ( 1 )
12:10:05.0179 0x14cc  Detect skipped due to KSN trusted
12:10:05.0179 0x14cc  TestHandler - ok
12:10:05.0211 0x14cc  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
12:10:05.0242 0x14cc  Themes - ok
12:10:05.0304 0x14cc  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
12:10:05.0335 0x14cc  THREADORDER - ok
12:10:05.0367 0x14cc  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
12:10:05.0398 0x14cc  TrkWks - ok
12:10:05.0460 0x14cc  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:10:05.0491 0x14cc  TrustedInstaller - ok
12:10:05.0569 0x14cc  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:10:05.0585 0x14cc  tssecsrv - ok
12:10:05.0647 0x14cc  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
12:10:05.0663 0x14cc  tunmp - ok
12:10:05.0679 0x14cc  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:10:05.0710 0x14cc  tunnel - ok
12:10:05.0725 0x14cc  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:10:05.0741 0x14cc  uagp35 - ok
12:10:05.0819 0x14cc  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:10:05.0850 0x14cc  udfs - ok
12:10:05.0881 0x14cc  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:10:05.0913 0x14cc  UI0Detect - ok
12:10:05.0928 0x14cc  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:10:05.0944 0x14cc  uliagpkx - ok
12:10:05.0991 0x14cc  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
12:10:06.0022 0x14cc  uliahci - ok
12:10:06.0053 0x14cc  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
12:10:06.0069 0x14cc  UlSata - ok
12:10:06.0115 0x14cc  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
12:10:06.0131 0x14cc  ulsata2 - ok
12:10:06.0131 0x14cc  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:10:06.0162 0x14cc  umbus - ok
12:10:06.0193 0x14cc  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
12:10:06.0240 0x14cc  upnphost - ok
12:10:06.0287 0x14cc  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
12:10:06.0303 0x14cc  USBAAPL - ok
12:10:06.0318 0x14cc  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:10:06.0381 0x14cc  usbaudio - ok
12:10:06.0412 0x14cc  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:10:06.0443 0x14cc  usbccgp - ok
12:10:06.0490 0x14cc  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:10:06.0552 0x14cc  usbcir - ok
12:10:06.0583 0x14cc  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:10:06.0599 0x14cc  usbehci - ok
12:10:06.0630 0x14cc  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:10:06.0646 0x14cc  usbhub - ok
12:10:06.0677 0x14cc  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:10:06.0724 0x14cc  usbohci - ok
12:10:06.0802 0x14cc  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:10:06.0833 0x14cc  usbprint - ok
12:10:06.0849 0x14cc  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:10:06.0880 0x14cc  usbscan - ok
12:10:06.0895 0x14cc  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:10:06.0927 0x14cc  USBSTOR - ok
12:10:06.0989 0x14cc  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:10:07.0005 0x14cc  usbuhci - ok
12:10:07.0036 0x14cc  [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:10:07.0067 0x14cc  usbvideo - ok
12:10:07.0083 0x14cc  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
12:10:07.0098 0x14cc  UxSms - ok
12:10:07.0129 0x14cc  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
12:10:07.0176 0x14cc  vds - ok
12:10:07.0207 0x14cc  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:10:07.0239 0x14cc  vga - ok
12:10:07.0254 0x14cc  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:10:07.0285 0x14cc  VgaSave - ok
12:10:07.0301 0x14cc  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:10:07.0317 0x14cc  viaagp - ok
12:10:07.0363 0x14cc  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
12:10:07.0395 0x14cc  ViaC7 - ok
12:10:07.0426 0x14cc  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:10:07.0441 0x14cc  viaide - ok
12:10:07.0441 0x14cc  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:10:07.0473 0x14cc  volmgr - ok
12:10:07.0504 0x14cc  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:10:07.0535 0x14cc  volmgrx - ok
12:10:07.0597 0x14cc  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:10:07.0629 0x14cc  volsnap - ok
12:10:07.0644 0x14cc  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:10:07.0660 0x14cc  vsmraid - ok
12:10:07.0738 0x14cc  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
12:10:07.0816 0x14cc  VSS - ok
12:10:07.0894 0x14cc  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
12:10:07.0925 0x14cc  W32Time - ok
12:10:07.0941 0x14cc  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:10:07.0987 0x14cc  WacomPen - ok
12:10:08.0019 0x14cc  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:10:08.0034 0x14cc  Wanarp - ok
12:10:08.0050 0x14cc  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:10:08.0065 0x14cc  Wanarpv6 - ok
12:10:08.0112 0x14cc  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:10:08.0190 0x14cc  wcncsvc - ok
12:10:08.0221 0x14cc  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:10:08.0253 0x14cc  WcsPlugInService - ok
12:10:08.0284 0x14cc  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
12:10:08.0299 0x14cc  Wd - ok
12:10:08.0346 0x14cc  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:10:08.0424 0x14cc  Wdf01000 - ok
12:10:08.0455 0x14cc  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:10:08.0487 0x14cc  WdiServiceHost - ok
12:10:08.0487 0x14cc  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:10:08.0533 0x14cc  WdiSystemHost - ok
12:10:08.0565 0x14cc  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
12:10:08.0596 0x14cc  WebClient - ok
12:10:08.0627 0x14cc  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:10:08.0658 0x14cc  Wecsvc - ok
12:10:08.0689 0x14cc  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:10:08.0721 0x14cc  wercplsupport - ok
12:10:08.0767 0x14cc  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:10:08.0799 0x14cc  WerSvc - ok
12:10:08.0877 0x14cc  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:10:08.0908 0x14cc  WinDefend - ok
12:10:08.0908 0x14cc  WinHttpAutoProxySvc - ok
12:10:08.0987 0x14cc  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:10:09.0018 0x14cc  Winmgmt - ok
12:10:09.0127 0x14cc  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:10:09.0205 0x14cc  WinRM - ok
12:10:09.0252 0x14cc  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:10:09.0314 0x14cc  Wlansvc - ok
12:10:09.0346 0x14cc  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:10:09.0377 0x14cc  WmiAcpi - ok
12:10:09.0424 0x14cc  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:10:09.0455 0x14cc  wmiApSrv - ok
12:10:09.0611 0x14cc  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:10:09.0736 0x14cc  WMPNetworkSvc - ok
12:10:09.0782 0x14cc  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:10:09.0814 0x14cc  WPCSvc - ok
12:10:09.0845 0x14cc  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:10:09.0860 0x14cc  WPDBusEnum - ok
12:10:09.0924 0x14cc  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
12:10:09.0955 0x14cc  WpdUsb - ok
12:10:10.0095 0x14cc  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:10:10.0142 0x14cc  WPFFontCache_v0400 - ok
12:10:10.0173 0x14cc  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:10:10.0205 0x14cc  ws2ifsl - ok
12:10:10.0236 0x14cc  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:10:10.0267 0x14cc  wscsvc - ok
12:10:10.0267 0x14cc  WSearch - ok
12:10:10.0376 0x14cc  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:10:10.0532 0x14cc  wuauserv - ok
12:10:10.0563 0x14cc  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:10:10.0595 0x14cc  WudfPf - ok
12:10:10.0610 0x14cc  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:10:10.0641 0x14cc  WUDFRd - ok
12:10:10.0673 0x14cc  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:10:10.0688 0x14cc  wudfsvc - ok
12:10:10.0704 0x14cc  ================ Scan global ===============================
12:10:10.0735 0x14cc  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
12:10:10.0797 0x14cc  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:10:10.0844 0x14cc  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
12:10:10.0907 0x14cc  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
12:10:10.0922 0x14cc  [ Global ] - ok
12:10:10.0922 0x14cc  ================ Scan MBR ==================================
12:10:10.0953 0x14cc  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
12:10:11.0531 0x14cc  \Device\Harddisk0\DR0 - ok
12:10:11.0531 0x14cc  ================ Scan VBR ==================================
12:10:11.0577 0x14cc  [ 475F109F98C97AD8B988A9DFE2889F3C ] \Device\Harddisk0\DR0\Partition1
12:10:11.0577 0x14cc  \Device\Harddisk0\DR0\Partition1 - ok
12:10:11.0609 0x14cc  [ 2E8119675E5F4A5D83E35072BAE43E85 ] \Device\Harddisk0\DR0\Partition2
12:10:11.0609 0x14cc  \Device\Harddisk0\DR0\Partition2 - ok
12:10:11.0609 0x14cc  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
12:10:11.0624 0x14cc  AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.1.641 ), 0x41000 ( enabled : updated )
12:10:11.0624 0x14cc  Win FW state via NFP2: enabled
12:10:11.0765 0x14cc  ============================================================
12:10:11.0765 0x14cc  Scan finished
12:10:11.0765 0x14cc  ============================================================
12:10:11.0765 0x133c  Detected object count: 2
12:10:11.0765 0x133c  Actual detected object count: 2
12:10:22.0716 0x133c  GpdDevDPort ( UnsignedFile.Multi.Generic ) - skipped by user
12:10:22.0716 0x133c  GpdDevDPort ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:10:22.0716 0x133c  RVIEGVST ( UnsignedFile.Multi.Generic ) - skipped by user
12:10:22.0716 0x133c  RVIEGVST ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
hallo schrauber,

danke für die antworten! die logfile nach dem wiederholten scan war zu groß, deshalb hab ich sie in zwei antworten gepostet.

richard

Alt 07.12.2013, 12:46   #13
schrauber
/// the machine
/// TB-Ausbilder
 

Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Supi, dann den Rest von oben
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 07.12.2013, 13:41   #14
richardebert
 
Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden



Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.07.03

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Richard :: RICHARD-PC [Administrator]

Schutz: Aktiviert

07.12.2013 12:23:17
mbam-log-2013-12-07 (12-23-17).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 204164
Laufzeit: 9 Minute(n), 43 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 1
HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings|ProxyServer (PUM.Bad.Proxy) -> Daten: http=127.0.0.1:56020 -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 1
C:\Users\Richard\M-1-52-5782-8752-5245 (Trojan.Agent.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 1
C:\ProgramData\lsass.exe (Trojan.Delf) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Code:
ATTFilter
2013/12/07 12:20:18 +0100	RICHARD-PC	Richard	MESSAGE	Starting protection
2013/12/07 12:20:18 +0100	RICHARD-PC	Richard	MESSAGE	Protection started successfully
2013/12/07 12:20:18 +0100	RICHARD-PC	Richard	MESSAGE	Starting IP protection
2013/12/07 12:20:34 +0100	RICHARD-PC	Richard	MESSAGE	IP Protection started successfully
2013/12/07 12:20:36 +0100	RICHARD-PC	Richard	MESSAGE	Starting database refresh
2013/12/07 12:20:36 +0100	RICHARD-PC	Richard	MESSAGE	Stopping IP protection
2013/12/07 12:20:36 +0100	RICHARD-PC	Richard	MESSAGE	IP Protection stopped successfully
2013/12/07 12:20:40 +0100	RICHARD-PC	Richard	MESSAGE	Database refreshed successfully
2013/12/07 12:20:40 +0100	RICHARD-PC	Richard	MESSAGE	Starting IP protection
2013/12/07 12:20:45 +0100	RICHARD-PC	Richard	MESSAGE	IP Protection started successfully
2013/12/07 12:21:21 +0100	RICHARD-PC	Richard	MESSAGE	Executing scheduled update:  Daily
2013/12/07 12:21:25 +0100	RICHARD-PC	Richard	MESSAGE	Database already up-to-date
2013/12/07 13:05:41 +0100	RICHARD-PC	Richard	MESSAGE	Starting protection
2013/12/07 13:05:41 +0100	RICHARD-PC	Richard	MESSAGE	Protection started successfully
2013/12/07 13:05:41 +0100	RICHARD-PC	Richard	MESSAGE	Starting IP protection
2013/12/07 13:05:45 +0100	RICHARD-PC	Richard	MESSAGE	IP Protection started successfully
         
Code:
ATTFilter
# AdwCleaner v3.014 - Bericht erstellt am 07/12/2013 um 13:25:01
# Updated 01/12/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : Richard - RICHARD-PC
# Gestartet von : C:\Users\Richard\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\NCH Software
Ordner Gelöscht : C:\Program Files\NCH Software
Ordner Gelöscht : C:\Users\Richard\AppData\Roaming\NCH Software
Ordner Gelöscht : C:\Users\Richard\AppData\Roaming\pdfforge
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk
Datei Gelöscht : C:\Windows\System32\Tasks\NCH Software

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{407D1122-E570-4C9F-9C2B-45FFBCADCCD4}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2A56F2C-8793-4445-A299-46EFA32B3458}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\AVG Nation toolbar
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\NCH Software
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKLM\Software\AVG Nation toolbar
Schlüssel Gelöscht : HKLM\Software\AVG Secure Search
Schlüssel Gelöscht : HKLM\Software\AVG Security Toolbar
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\NCH Software
Schlüssel Gelöscht : HKLM\Software\Trymedia Systems

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16520


-\\ Mozilla Firefox v25.0.1 (de)

[ Datei : C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\evpl76q9.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [2855 octets] - [07/12/2013 13:24:08]
AdwCleaner[S0].txt - [2792 octets] - [07/12/2013 13:25:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2852 octets] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows Vista (TM) Home Premium x86
Ran by Richard on 07.12.2013 at 13:33:08,64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"



~~~ FireFox

Successfully deleted: [File] C:\Users\Richard\AppData\Roaming\mozilla\firefox\profiles\evpl76q9.default\extensions\toolbar_avira-v7@apn.ask.com.xpi
Emptied folder: C:\Users\Richard\AppData\Roaming\mozilla\firefox\profiles\evpl76q9.default\minidumps [338 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07.12.2013 at 13:37:49,95
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-12-2013 01
Ran by Richard (administrator) on RICHARD-PC on 07-12-2013 13:40:40
Running from C:\Users\Richard\Downloads
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe
(Spotify Ltd) C:\Users\Richard\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Fujitsu Siemens Computers) C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Dropbox, Inc.) C:\Users\Richard\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6111232 2008-04-25] (Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552 2010-05-14] (Sun Microsystems, Inc.)
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [PDFPrint] - C:\Program Files\PDF24\pdf24.exe [162856 2013-07-22] (Geek Software GmbH)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Richard\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-11-18] (Spotify Ltd)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18642024 2013-02-28] (Skype Technologies S.A.)
HKCU\...\Run: [AVG-Secure-Search-Update_0913b] - C:\Users\Richard\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid a25629733f7e47d18d83d14a4b47895b-e2d58aa5192df42f33b082801a16ed7e8dfe1348 --CMPID 0913b
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\wmpnscfg.exe [202240 2008-01-21] (Microsoft Corporation)
MountPoints2: {16e47d92-032e-11e2-b577-00030da360a8} - F:\LaunchU3.exe -a
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
Startup: C:\Users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Richard\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain?brand=FUJD&bmod=FUJD
SearchScopes: HKLM - DefaultScope value is missing.
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\evpl76q9.default
FF Homepage: hxxp://www.tagesschau.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10174.dll (Amazon.com, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Richard\AppData\Roaming\Mozilla\Firefox\Profiles\evpl76q9.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-11-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-29] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1164360 2013-11-29] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 OsdService; C:\Program Files\OEM\OSD_1.12\OsdService.exe [94208 2008-02-22] (TODO: <公司名稱>)
R2 TestHandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [303104 2008-04-25] (Fujitsu Siemens Computers)

==================== Drivers (Whitelisted) ====================

S4 ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [170000 2007-12-19] (AMD Technologies Inc.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-03] (Avira Operations GmbH & Co. KG)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-11-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-29] (Avira Operations GmbH & Co. KG)
R3 CLEDX; C:\Windows\System32\DRIVERS\cledx.sys [33792 2005-05-09] (Team H2O)
S3 GpdDevDPort; C:\Windows\system32\directport.sys [7168 2007-11-21] ()
S3 GpdKbFilter; C:\Windows\system32\kbfiltr.sys [8192 2008-03-31] (Windows (R) Codename Longhorn DDK provider)
S4 JRAID; C:\Windows\system32\drivers\jraid.sys [76688 2008-04-03] (JMicron Technology Corp.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R2 RVIEG01; C:\Program Files\Roland\Virtual Sound Canvas DXi\RVIEg01.sys [187992 2001-04-13] (Roland)
R2 RVIEGVST; C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys [188276 2001-04-13] (Roland)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-07-31] (Avira GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Richard\AppData\Local\Temp\catchme.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-07 13:40 - 2013-12-07 13:40 - 01059921 _____ (Farbar) C:\Users\Richard\Downloads\FRST.exe
2013-12-07 13:37 - 2013-12-07 13:37 - 00001195 _____ C:\Users\Richard\Desktop\JRT.txt
2013-12-07 13:33 - 2013-12-07 13:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-07 13:24 - 2013-12-07 13:25 - 00000000 ____D C:\AdwCleaner
2013-12-07 12:20 - 2013-12-07 12:20 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Malwarebytes
2013-12-07 12:19 - 2013-12-07 12:19 - 00000912 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-07 12:19 - 2013-12-07 12:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-07 12:19 - 2013-12-07 12:19 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-07 12:19 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-07 12:07 - 2013-12-07 12:07 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-12-07 12:06 - 2013-12-07 12:06 - 01034531 _____ (Thisisu) C:\Users\Richard\Downloads\JRT.exe
2013-12-07 12:05 - 2013-12-07 12:05 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Richard\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-07 12:05 - 2013-12-07 12:05 - 01110034 _____ C:\Users\Richard\Downloads\adwcleaner.exe
2013-12-06 12:17 - 2013-12-07 13:05 - 00001054 _____ C:\Windows\PFRO.log
2013-12-06 10:16 - 2013-12-06 10:18 - 00000000 ___SD C:\ComboFix
2013-12-05 11:12 - 2013-12-05 11:12 - 00000000 ____D C:\Qoobox
2013-12-05 11:12 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-05 11:12 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-05 11:12 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-05 11:12 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-05 11:12 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-05 11:12 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-05 11:12 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-05 11:12 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-05 11:11 - 2013-12-06 10:16 - 00000000 ___SD C:\32788R22FWJFW
2013-12-05 11:11 - 2013-12-05 11:11 - 00000000 ____D C:\Windows\erdnt
2013-12-05 11:08 - 2013-12-06 10:11 - 05153080 ____R (Swearware) C:\Users\Richard\Desktop\ComboFix.exe
2013-12-02 10:25 - 2013-12-02 10:25 - 00002651 _____ C:\Users\Richard\Downloads\GMER.log
2013-12-02 10:08 - 2013-12-02 10:08 - 01110476 _____ C:\Users\Richard\Downloads\7z920.exe
2013-12-02 10:03 - 2013-12-02 10:03 - 00377856 _____ C:\Users\Richard\Downloads\gmer_2.1.19163.exe
2013-12-02 10:02 - 2013-12-02 10:03 - 00000476 _____ C:\Users\Richard\Downloads\defogger_disable.log
2013-12-02 10:02 - 2013-12-02 10:02 - 00050477 _____ C:\Users\Richard\Downloads\Defogger.exe
2013-12-02 10:02 - 2013-12-02 10:02 - 00000000 _____ C:\Users\Richard\defogger_reenable
2013-12-02 09:33 - 2013-12-02 09:34 - 00015931 _____ C:\Users\Richard\Downloads\Addition.txt
2013-12-02 09:32 - 2013-12-07 13:40 - 00012114 _____ C:\Users\Richard\Downloads\FRST.txt
2013-12-02 09:32 - 2013-12-02 09:32 - 00000000 ____D C:\FRST
2013-11-30 20:25 - 2013-11-30 20:25 - 04101441 _____ C:\Users\Richard\Downloads\tdsskiller.zip
2013-11-30 20:25 - 2013-11-30 20:25 - 00000000 ____D C:\Users\Richard\Desktop\tdsskiller
2013-11-30 20:18 - 2013-11-18 09:28 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Richard\Desktop\tdsskiller.exe
2013-11-27 12:19 - 2013-11-27 12:19 - 106424558 _____ C:\Windows\system32\咁ॎ᭄™
2013-11-19 14:47 - 2013-11-19 14:48 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-11-19 14:47 - 2013-11-19 14:48 - 00000000 ____D C:\Program Files\iTunes
2013-11-19 14:47 - 2013-11-19 14:47 - 00000000 ____D C:\Program Files\iPod
2013-11-19 14:06 - 2013-11-19 14:09 - 98633040 _____ (Apple Inc.) C:\Users\Richard\Downloads\iTunesSetup.exe
2013-11-18 10:49 - 2013-11-18 10:50 - 19071742 _____ C:\Users\Richard\Downloads\Jonas-Burgwinkel-Press-Pictures.zip
2013-11-17 21:50 - 2013-11-17 21:52 - 164009087 _____ C:\Users\Richard\Downloads\sascha-26-10-13.zip
2013-11-15 21:56 - 2013-11-15 21:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-14 09:01 - 2013-10-13 11:42 - 12344832 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-14 09:01 - 2013-10-13 11:08 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-14 09:01 - 2013-10-13 10:48 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-14 09:01 - 2013-10-13 10:37 - 01104896 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-14 09:01 - 2013-10-13 10:35 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-14 09:01 - 2013-10-13 10:35 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-14 09:01 - 2013-10-13 10:33 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-14 09:01 - 2013-10-13 10:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-14 09:01 - 2013-10-13 10:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-14 09:01 - 2013-10-13 10:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-14 09:01 - 2013-10-13 10:29 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-14 09:01 - 2013-10-13 10:27 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-14 09:01 - 2013-10-13 10:27 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-14 09:01 - 2013-10-13 10:26 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-14 09:01 - 2013-10-13 10:25 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-14 09:01 - 2013-10-13 10:20 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-13 14:07 - 2013-10-11 03:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 14:07 - 2013-10-11 03:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 14:07 - 2013-10-11 01:39 - 00218228 _____ C:\Windows\system32\WFP.TMF
2013-11-13 14:07 - 2013-10-03 13:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 14:07 - 2013-10-03 13:45 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

==================== One Month Modified Files and Folders =======

2013-12-07 13:40 - 2013-12-07 13:40 - 01059921 _____ (Farbar) C:\Users\Richard\Downloads\FRST.exe
2013-12-07 13:40 - 2013-12-02 09:32 - 00012114 _____ C:\Users\Richard\Downloads\FRST.txt
2013-12-07 13:37 - 2013-12-07 13:37 - 00001195 _____ C:\Users\Richard\Desktop\JRT.txt
2013-12-07 13:33 - 2013-12-07 13:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-07 13:33 - 2011-10-10 17:01 - 01239759 _____ C:\Windows\WindowsUpdate.log
2013-12-07 13:29 - 2012-02-21 19:32 - 00000000 ___RD C:\Users\Richard\Dropbox
2013-12-07 13:29 - 2012-02-21 19:29 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Dropbox
2013-12-07 13:27 - 2008-07-03 05:11 - 00042749 _____ C:\ProgramData\nvModes.dat
2013-12-07 13:27 - 2008-07-03 05:11 - 00042749 _____ C:\ProgramData\nvModes.001
2013-12-07 13:27 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-07 13:27 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-07 13:27 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-07 13:26 - 2006-11-02 14:01 - 00032538 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-07 13:25 - 2013-12-07 13:24 - 00000000 ____D C:\AdwCleaner
2013-12-07 13:18 - 2012-09-06 10:10 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-07 13:05 - 2013-12-06 12:17 - 00001054 _____ C:\Windows\PFRO.log
2013-12-07 12:37 - 2011-10-10 17:09 - 00000000 ____D C:\Users\Richard
2013-12-07 12:20 - 2013-12-07 12:20 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Malwarebytes
2013-12-07 12:19 - 2013-12-07 12:19 - 00000912 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-07 12:19 - 2013-12-07 12:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-07 12:19 - 2013-12-07 12:19 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-07 12:07 - 2013-12-07 12:07 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-12-07 12:06 - 2013-12-07 12:06 - 01034531 _____ (Thisisu) C:\Users\Richard\Downloads\JRT.exe
2013-12-07 12:05 - 2013-12-07 12:05 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Richard\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-07 12:05 - 2013-12-07 12:05 - 01110034 _____ C:\Users\Richard\Downloads\adwcleaner.exe
2013-12-07 11:53 - 2011-11-07 17:58 - 00000000 ____D C:\ProgramData\MFAData
2013-12-06 12:14 - 2011-10-10 18:09 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Winamp
2013-12-06 12:04 - 2008-01-21 08:16 - 01445310 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-06 10:18 - 2013-12-06 10:16 - 00000000 ___SD C:\ComboFix
2013-12-06 10:16 - 2013-12-05 11:11 - 00000000 ___SD C:\32788R22FWJFW
2013-12-06 10:11 - 2013-12-05 11:08 - 05153080 ____R (Swearware) C:\Users\Richard\Desktop\ComboFix.exe
2013-12-05 22:49 - 2008-07-03 14:25 - 00000000 ____D C:\Windows\Panther
2013-12-05 13:24 - 2011-11-17 13:11 - 00000000 ____D C:\bb
2013-12-05 11:12 - 2013-12-05 11:12 - 00000000 ____D C:\Qoobox
2013-12-05 11:11 - 2013-12-05 11:11 - 00000000 ____D C:\Windows\erdnt
2013-12-03 15:55 - 2011-10-10 17:15 - 00000000 ____D C:\Users\Richard\Documents\Rechnungen, Verträge, Angebote
2013-12-03 14:48 - 2013-07-31 18:05 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-02 10:25 - 2013-12-02 10:25 - 00002651 _____ C:\Users\Richard\Downloads\GMER.log
2013-12-02 10:08 - 2013-12-02 10:08 - 01110476 _____ C:\Users\Richard\Downloads\7z920.exe
2013-12-02 10:03 - 2013-12-02 10:03 - 00377856 _____ C:\Users\Richard\Downloads\gmer_2.1.19163.exe
2013-12-02 10:03 - 2013-12-02 10:02 - 00000476 _____ C:\Users\Richard\Downloads\defogger_disable.log
2013-12-02 10:02 - 2013-12-02 10:02 - 00050477 _____ C:\Users\Richard\Downloads\Defogger.exe
2013-12-02 10:02 - 2013-12-02 10:02 - 00000000 _____ C:\Users\Richard\defogger_reenable
2013-12-02 09:34 - 2013-12-02 09:33 - 00015931 _____ C:\Users\Richard\Downloads\Addition.txt
2013-12-02 09:32 - 2013-12-02 09:32 - 00000000 ____D C:\FRST
2013-11-30 20:25 - 2013-11-30 20:25 - 04101441 _____ C:\Users\Richard\Downloads\tdsskiller.zip
2013-11-30 20:25 - 2013-11-30 20:25 - 00000000 ____D C:\Users\Richard\Desktop\tdsskiller
2013-11-29 12:25 - 2012-10-18 00:33 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Spotify
2013-11-29 11:32 - 2013-07-31 18:05 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-29 11:32 - 2013-07-31 18:05 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-27 12:19 - 2013-11-27 12:19 - 106424558 _____ C:\Windows\system32\咁ॎ᭄™
2013-11-27 10:18 - 2013-10-29 09:47 - 00000864 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-11-27 10:16 - 2011-11-07 19:17 - 00000000 ___HD C:\$AVG
2013-11-25 22:15 - 2012-10-18 00:33 - 00000000 ____D C:\Users\Richard\AppData\Local\Spotify
2013-11-25 11:31 - 2012-07-27 10:54 - 00000000 ____D C:\Users\Richard\AppData\Local\Paint.NET
2013-11-23 13:50 - 2013-07-26 11:31 - 00000000 ____D C:\Users\Richard\Documents\C-Sheets
2013-11-22 11:03 - 2011-11-18 21:13 - 00000000 ____D C:\Users\Richard\AppData\Roaming\Skype
2013-11-19 14:48 - 2013-11-19 14:47 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-11-19 14:48 - 2013-11-19 14:47 - 00000000 ____D C:\Program Files\iTunes
2013-11-19 14:47 - 2013-11-19 14:47 - 00000000 ____D C:\Program Files\iPod
2013-11-19 14:47 - 2013-02-06 12:26 - 00000000 ____D C:\ProgramData\Apple Computer
2013-11-19 14:47 - 2012-10-14 22:38 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-11-19 14:09 - 2013-11-19 14:06 - 98633040 _____ (Apple Inc.) C:\Users\Richard\Downloads\iTunesSetup.exe
2013-11-19 10:19 - 2013-07-29 11:04 - 00000000 ____D C:\Windows\system32\MRT
2013-11-18 10:50 - 2013-11-18 10:49 - 19071742 _____ C:\Users\Richard\Downloads\Jonas-Burgwinkel-Press-Pictures.zip
2013-11-18 09:28 - 2013-11-30 20:18 - 04121952 _____ (Kaspersky Lab ZAO) C:\Users\Richard\Desktop\tdsskiller.exe
2013-11-17 21:52 - 2013-11-17 21:50 - 164009087 _____ C:\Users\Richard\Downloads\sascha-26-10-13.zip
2013-11-17 12:43 - 2012-07-21 09:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-15 21:56 - 2013-11-15 21:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-14 09:54 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-11-14 09:34 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-11-14 08:58 - 2006-11-02 11:24 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

ZeroAccess:
C:\Users\Richard\AppData\Local\7dcd0ae1
C:\Users\Richard\AppData\Local\7dcd0ae1\@
C:\Users\Richard\AppData\Local\7dcd0ae1\loader.tlb

Files to move or delete:
====================
C:\ProgramData\0tbpw.pad


Some content of TEMP:
====================
C:\Users\Richard\AppData\Local\Temp\avgnt.exe
C:\Users\Richard\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-07 13:34

==================== End Of Log ============================
         
--- --- ---

--- --- ---

Alt 08.12.2013, 07:02   #15
schrauber
/// the machine
/// TB-Ausbilder
 

Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Standard

Win Vista: Avira meldet 'BOO/TDss.O' gefunden




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Win Vista: Avira meldet 'BOO/TDss.O' gefunden
avira, boo/tdss.o, entferne, entfernen, gefunde, geklickt, gescannt, immer wieder, laufwerk, mas, masterbootsektor, masterbootsektor hd0, melde, meldet, meldung, programm, schei, tdsskiller, virus, vista, win, win vista



Ähnliche Themen: Win Vista: Avira meldet 'BOO/TDss.O' gefunden


  1. Windows 7: Avira Antivirus meldet Virus oder unerwünschtes Programm 'EXP/SWF.ExKit.aer.1' gefunden
    Log-Analyse und Auswertung - 26.08.2014 (5)
  2. Avira meldet: 'TR/Crypt.Xpack.66163' [trojan] gefunden.
    Log-Analyse und Auswertung - 12.06.2014 (15)
  3. Windows Vista: Avira meldet TR/Dropper.Gen
    Plagegeister aller Art und deren Bekämpfung - 16.03.2014 (1)
  4. Avira meldet nach Update "TR/Spy.131488" gefunden --> Quarantäne und nun?
    Log-Analyse und Auswertung - 10.03.2014 (13)
  5. Win7, AVIRA meldet BOO/TDss.O auf D:
    Log-Analyse und Auswertung - 06.02.2014 (5)
  6. Virenfund bei Avira: BOO/TDss.O
    Plagegeister aller Art und deren Bekämpfung - 02.02.2014 (20)
  7. Vista: nach Avira Systemcheck einige Malware und Trojaner gefunden
    Log-Analyse und Auswertung - 26.01.2014 (3)
  8. Nach Avira Update: Win 7- BOO/TDss.O wurde im Masterbootsektor gefunden
    Log-Analyse und Auswertung - 22.01.2014 (23)
  9. Avira meldet tr/rogue 11125 gefunden
    Log-Analyse und Auswertung - 15.11.2013 (7)
  10. Windows Vista: Avira Antivir meldet erst ADWARE/bProtect.D einige Tage später TR/Fakeadb.A
    Log-Analyse und Auswertung - 26.10.2013 (17)
  11. Avira meldet BOO/Whistler.A [virus] gefunden
    Plagegeister aller Art und deren Bekämpfung - 21.06.2012 (27)
  12. Avira meldet : 'TR/Crypt.ZPACK.Gen2' (Trojan) gefunden
    Log-Analyse und Auswertung - 01.05.2012 (11)
  13. Avira AntiVir Personal meldet TOO/TDss.D und EXP/CVE-2010-0840
    Log-Analyse und Auswertung - 16.10.2011 (32)
  14. Bekämpfung von Windows Vista Repair Trojaner und TDSS Killer startet nicht
    Plagegeister aller Art und deren Bekämpfung - 28.06.2011 (23)
  15. Avira meldet Malware gefunden (TR/Spy.ZBot.29.8)
    Plagegeister aller Art und deren Bekämpfung - 26.12.2010 (3)
  16. Vista meldet bei fast allen exe-Dateien: "*.exe konnte nicht gefunden werden"
    Plagegeister aller Art und deren Bekämpfung - 13.01.2009 (1)
  17. Backdoor.TDSS.asz und TDSS.atb gefunden
    Mülltonne - 28.11.2008 (0)

Zum Thema Win Vista: Avira meldet 'BOO/TDss.O' gefunden - Hallo! Seit geraumer Zeit, meldet Avira immer wieder "Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder unerwüschtes Programm 'BOO/TDss.O' gefunden. Leider lässt sich der Virus scheinbar nicht entfernen, - Win Vista: Avira meldet 'BOO/TDss.O' gefunden...
Archiv
Du betrachtest: Win Vista: Avira meldet 'BOO/TDss.O' gefunden auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.