Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 16.06.2014, 17:11   #1
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Hallo

Wenn Minecraft läuft meldet avast free in 2 Speicherblöcken die dem Prozess javaw.exe zugeornet sind den Trojaner Win32:Banker-KDL. Auf den Festplatten jedoch nichts.

Beende ich Minekraft findet er auch im Speicher nichts mehr.
Diese Verhalten ist reproduzierbar.

Java (v 7.60 in W32 und W64)und Minekraft (v1.7.4)habe ich schon neu installiert.
Di Kaspersky Rescue Disk findet auf den Platten auch nichts (weil ja MC nicht läuft).

Ist das vielleicht eine Falschmeldung und avast springt auf eine Codestelle in Minecraft an oder habe ich mir wirklich einen Trojaner eingefangen.

Bitte um Hilfe

Danke Zecka

Alt 16.06.2014, 17:22   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 16.06.2014, 20:22   #3
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Bitte hier die FRST.TXT

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-06-2014
Ran by Zecka (administrator) on BIGBLUE on 16-06-2014 21:17:49
Running from D:\Eigene Dateien\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Microsoft Corporation) D:\Program Files (x86)\Zune\ZuneLauncher.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CTxfispi.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(CyberLink) D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe
(CyberLink Corp.) D:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\Ctxfihlp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) D:\Program Files (x86)\Zune\ZuneNss.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [Zune Launcher] => D:\Program Files (x86)\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM-x32\...\Run: [CTXFIREG] => CTxfiReg.exe
HKLM-x32\...\Run: [hpqSRMon] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [GrooveMonitor] => D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [CLMLServer] => D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe [107816 2010-08-20] (CyberLink)
HKLM-x32\...\Run: [UpdateLBPShortCut] => D:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [InstantBurn] => D:\Program Files (x86)\CyberLink\InstantBurn\Win2K\IBurn.exe [697640 2010-11-12] (CyberLink Corporation.)
HKLM-x32\...\Run: [RemoteControl10] => D:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [87336 2011-03-30] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-11-12] (cyberlink)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [4934880 2013-04-09] (FNet Co., Ltd.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-15] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe [241789 2009-07-07] (Creative Technology Ltd)
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Run: [Fatal1tySTU] => [X]
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Run: [Power2GoExpress] => NA
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Run: [Google Update] => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-09-03] (Google Inc.)
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-621507476-1095879060-1196749333-1000\...\MountPoints2: {1c5b4b7a-dd53-11e0-9126-002522d3e1cd} - H:\Autorun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xEDF87229C469CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-at
SearchScopes: HKCU - DefaultScope {39A81EE2-5205-48B4-84E7-3E14B5CFED5B} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {39A81EE2-5205-48B4-84E7-3E14B5CFED5B} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {F8917DBD-0A37-4A76-AE5A-A2956A897D4D} URL = hxxp://www.google.at/search?q={searchTerms}&rlz=
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker64.dll (AVAST Software)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker32.dll (AVAST Software)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Zecka\AppData\Roaming\Mozilla\Firefox\Profiles\8k0o6nag.default
FF NewTab: hxxp://www.google.com/firefox
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com/firefox
FF Keyword.URL: hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Zecka\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Zecka\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\Zecka\AppData\Roaming\Mozilla\Firefox\Profiles\8k0o6nag.default\user.js
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-09-03]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-04-10]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-09-03]
FF StartMenuInternet: FIREFOX.EXE - d:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-15] (AVAST Software)
S2 CLKMSVC10_58664B3D; D:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2010-11-12] (CyberLink)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-06-01] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [294912 2010-12-28] (Creative Technology Ltd) [File not signed]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165664 2012-08-23] (Intel Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-08-16] (Hewlett-Packard Company) [File not signed]
S3 Microsoft Office Groove Audit Service; D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 WMZuneComm; D:\Program Files (x86)\Zune\WMZuneComm.exe [306400 2011-08-05] (Microsoft Corporation)
R2 ZuneNetworkSvc; D:\Program Files (x86)\Zune\ZuneNss.exe [8277728 2011-08-05] (Microsoft Corporation)
S3 ZuneWlanCfgSvc; D:\Program Files (x86)\Zune\ZuneWlanCfgSvc.exe [467680 2011-08-05] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 AsrHidFilter; C:\Windows\System32\DRIVERS\AsrHidFilter.sys [17928 2011-02-17] (ASRock Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-15] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-15] ()
S1 cdrbsdrv; C:\Windows\SysWow64\Drivers\cdrbsdrv.sys [33408 2013-06-05] (B.H.A Corporation) [File not signed]
R1 CLBStor; C:\Windows\System32\Drivers\CLBStor.sys [24560 2010-07-15] (Cyberlink Co.,Ltd.)
S2 CLBUDFbk; No ImagePath
S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2014-02-13] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2013-04-09] (FNet Co., Ltd.)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2013-01-26] ()
S3 COMMONFX.DLL; system32\COMMONFX.DLL [X]
S3 CT20XUT.DLL; system32\CT20XUT.DLL [X]
S3 CTAUDFX; system32\drivers\CTAUDFX.SYS [X]
S3 CTAUDFX.DLL; system32\CTAUDFX.DLL [X]
S3 CTAUDFX.SYS; \SystemRoot\System32\drivers\CTAUDFX.SYS [X]
S3 CTEAPSFX.DLL; system32\CTEAPSFX.DLL [X]
S3 CTEDSPFX.DLL; system32\CTEDSPFX.DLL [X]
S3 CTEDSPIO.DLL; system32\CTEDSPIO.DLL [X]
S3 CTEDSPSY.DLL; system32\CTEDSPSY.DLL [X]
S3 CTERFXFX; system32\drivers\CTERFXFX.SYS [X]
S3 CTERFXFX.DLL; system32\CTERFXFX.DLL [X]
S3 CTERFXFX.SYS; \SystemRoot\System32\drivers\CTERFXFX.SYS [X]
S3 CTEXFIFX.DLL; system32\CTEXFIFX.DLL [X]
S3 CTHWIUT.DLL; system32\CTHWIUT.DLL [X]
S3 CTSBLFX; system32\drivers\CTSBLFX.SYS [X]
S3 CTSBLFX.DLL; system32\CTSBLFX.DLL [X]
S3 CTSBLFX.SYS; \SystemRoot\System32\drivers\CTSBLFX.SYS [X]
S3 SANDRA; \??\d:\Program Files\SiSoftware\SiSoftware Sandra Lite 2011.SP4c\WNt500x64\Sandra.sys [X]
S3 TEAM; system32\DRIVERS\RtTeam60.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-16 21:17 - 2014-06-16 21:17 - 00000000 ____D () C:\FRST
2014-06-15 23:27 - 2014-06-16 18:20 - 00000000 ____D () C:\Users\Zecka\AppData\Roaming\.minecraft
2014-06-15 22:14 - 2014-06-15 22:10 - 00675988 _____ () C:\Users\Zecka\Desktop\Minecraft.exe
2014-06-15 22:12 - 2014-06-15 22:12 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-15 22:12 - 2014-06-15 22:12 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-15 21:48 - 2014-06-15 21:48 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-15 21:48 - 2014-06-15 21:48 - 00000000 ____D () C:\Program Files\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-14 13:18 - 2014-06-15 21:43 - 00000588 _____ () C:\Windows\system32\settingsbkup.sfm
2014-06-14 13:18 - 2014-06-15 21:43 - 00000588 _____ () C:\Windows\system32\settings.sfm
2014-05-19 19:16 - 2014-05-19 19:16 - 00004161 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log

==================== One Month Modified Files and Folders =======

2014-06-16 21:17 - 2014-06-16 21:17 - 00000000 ____D () C:\FRST
2014-06-16 20:52 - 2012-07-08 23:00 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-16 20:45 - 2011-09-03 03:20 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000UA.job
2014-06-16 18:52 - 2012-07-08 23:00 - 00001104 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-16 18:20 - 2014-06-15 23:27 - 00000000 ____D () C:\Users\Zecka\AppData\Roaming\.minecraft
2014-06-16 17:45 - 2011-09-03 03:20 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000Core.job
2014-06-16 17:15 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-16 17:15 - 2009-07-14 06:45 - 00021888 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-16 17:12 - 2011-04-12 09:43 - 00702926 _____ () C:\Windows\system32\perfh007.dat
2014-06-16 17:12 - 2011-04-12 09:43 - 00150566 _____ () C:\Windows\system32\perfc007.dat
2014-06-16 17:12 - 2009-07-14 07:13 - 01629276 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-16 17:10 - 2011-09-02 23:05 - 01228734 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 17:07 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-16 17:07 - 2009-07-14 06:51 - 00194678 _____ () C:\Windows\setupact.log
2014-06-15 22:12 - 2014-06-15 22:12 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-15 22:12 - 2014-06-15 22:12 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-15 22:12 - 2014-03-22 02:18 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-15 22:12 - 2013-04-10 23:46 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-15 22:12 - 2013-04-10 23:46 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-15 22:12 - 2013-04-10 23:46 - 00001976 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-15 22:10 - 2014-06-15 22:14 - 00675988 _____ () C:\Users\Zecka\Desktop\Minecraft.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-15 21:48 - 2014-06-15 21:48 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-06-15 21:48 - 2014-06-15 21:48 - 00000000 ____D () C:\Program Files\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-15 21:46 - 2014-06-15 21:46 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-15 21:46 - 2014-06-15 21:46 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-15 21:46 - 2013-10-08 17:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-15 21:43 - 2014-06-14 13:18 - 00000588 _____ () C:\Windows\system32\settingsbkup.sfm
2014-06-15 21:43 - 2014-06-14 13:18 - 00000588 _____ () C:\Windows\system32\settings.sfm
2014-06-14 10:08 - 2011-09-17 18:17 - 00000000 ____D () C:\Users\Zecka\AppData\Roaming\FileZilla
2014-06-12 20:47 - 2011-09-03 03:22 - 00002367 _____ () C:\Users\Zecka\Desktop\Google Chrome.lnk
2014-06-11 23:21 - 2012-04-28 15:15 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-11 23:21 - 2011-09-03 01:08 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-01 09:21 - 2012-03-19 22:40 - 00000000 ____D () C:\ProgramData\Creative
2014-06-01 09:21 - 2010-11-21 05:47 - 00488906 _____ () C:\Windows\PFRO.log
2014-06-01 09:20 - 2014-02-24 18:54 - 00000159 ___RH () C:\Windows\ctfile.rfc
2014-06-01 09:20 - 2011-09-03 01:36 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-06-01 09:20 - 2011-09-03 00:14 - 00466520 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-06-01 09:20 - 2011-09-03 00:14 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-06-01 09:20 - 2011-09-03 00:14 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-06-01 09:20 - 2011-09-02 23:57 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-01 09:19 - 2012-03-19 22:35 - 00000000 ____D () C:\Program Files\Creative
2014-06-01 09:19 - 2012-03-15 22:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-06-01 09:19 - 2012-03-15 01:11 - 00000000 ___HD () C:\Program Files (x86)\Creative Installation Information
2014-06-01 09:19 - 2011-09-03 11:10 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-05-28 18:18 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-19 19:16 - 2014-05-19 19:16 - 00004161 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_55-b14.log

Files to move or delete:
====================
C:\Users\Public\dcmsvcsetup.exe
C:\Users\Public\invokesi.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-05-29 13:36

==================== End Of Log ============================
         
--- --- ---


Und hier die Addition.TXT
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-06-2014
Ran by Zecka at 2014-06-16 21:18:07
Running from D:\Eigene Dateien\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

3DMark Vantage (HKLM-x32\...\{C40C3C3D-97CF-44B5-836C-766E374464B3}) (Version: 1.1.0 - Futuremark Corporation)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.38 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
AIO_Scan (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AMD Accelerated Video Transcoding (Version: 12.10.100.30328 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{C8807716-1F6F-5C43-3C32-7295A45CF060}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80328.2204 - Advanced Micro Devices, Inc.) Hidden
Analysis Center 2010 (HKLM-x32\...\Analysis Center 2010) (Version: 2010 - PAS-Products)
ANNO 1503 Königs- Edition (HKLM-x32\...\{DB833EF9-A198-49BE-970A-BD46F30BFBB4}) (Version: 3.05.042.00 - )
Anno 1701 (HKLM-x32\...\{A2433A63-5F5D-40E5-B529-9123C2B3E734}) (Version: 1.02 - Sunflowers)
Anvil Studio 2011 (HKLM-x32\...\{F76F7DB2-A632-4DE2-89ED-4D254141148B}) (Version: 11.12.01 - Willow Software)
AquaMark3 (HKLM-x32\...\AquaMark3) (Version:  - )
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
ATI AVIVO64 Codecs (Version: 11.6.0.10308 - ATI Technologies Inc.) Hidden
Audacity 2.0.2 (HKLM-x32\...\Audacity_is1) (Version: 2.0.2 - Audacity Team)
Audiograbber 1.83 SE  (HKLM-x32\...\Audiograbber) (Version: 1.83 SE  - Audiograbber)
Audiograbber MP3-Plugin (64 bit) (HKLM-x32\...\Audiograbber-Lame) (Version: 1.0 - AG)
AutoMode Switcher (HKLM-x32\...\Creative AutoMode Switcher) (Version: 1.00 - Creative Technology Limited)
avast! Ad Blocker (HKLM-x32\...\{021C6667-63D3-4416-B537-865E77F4DF4F}) (Version: 1.0.0.0 - AVAST Software)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2018 - Avast Software)
BOINC (HKLM\...\{424ACECA-B0D4-4F64-94E4-511BA5DC31DE}) (Version: 7.2.39 - Space Sciences Laboratory, U.C. Berkeley)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
C5200 (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
C5200_Help (x32 Version: 100.0.206.000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2013.0328.2218.38225 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
Chromatia Tuner v3.6 (HKLM-x32\...\Chromatia Tuner_is1) (Version:  - FMJ-Software)
Copy (x32 Version: 130.0.428.000 - Hewlett-Packard) Hidden
Core Temp 1.0 RC5 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
CPUID CPU-Z 1.65.0 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.19 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.43 - Creative Technology Limited)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Konsole Starter (HKLM-x32\...\Console Launcher) (Version: 2.61 - Creative Technology Limited)
Creative Lautsprecher-Einrichtungskonsole (HKLM-x32\...\THX_Console_Unicode) (Version: 3.50 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.02 - Creative Technology Limited)
CrystalDiskInfo 5.3.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.3.1 - Crystal Dew World)
CyberLink InstantBurn (HKLM-x32\...\{19C64880-BBCA-11D4-9EEE-0004ACDDDB3B}) (Version: 5.0.7112 - CyberLink Corp.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3602 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3602 - CyberLink Corp.) Hidden
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
CyberLink Media Suite (x32 Version: 8.0.2227 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1001 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 7.0.0.1001 - CyberLink Corp.) Hidden
CyberLink PowerBackup (HKLM-x32\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.6023 - CyberLink Corp.)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.3715.01 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.3715.01 - CyberLink Corp.) Hidden
CyberLink WaveEditor (HKLM-x32\...\InstallShield_{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 1.0.1.2011 - CyberLink Corp.)
CyberLink WaveEditor (x32 Version: 1.0.1.2011 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Space™ (HKLM-x32\...\{4D87DC92-C328-46EC-A7B4-9C88129DC696}) (Version: 1.0.222.0 - Electronic Arts)
Dead Space™ 2 (HKLM-x32\...\{96D06FDD-6AF4-4309-BC1B-1C9588B0575E}) (Version: 1.0.943.0 - Electronic Arts)
Dead Space™ 3 (HKLM-x32\...\{D4329609-4102-4F8C-B83F-7FE024EEA314}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
DH Driver Cleaner Professional Edition (HKLM-x32\...\Driver Cleaner Pro) (Version: Version 1.5 - Ruud Ketelaars)
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.02 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
DVD Flick 1.3.0.7 (HKLM-x32\...\DVD Flick_is1) (Version: 1.3.0.7 - Dennis Meuwissen)
DVDStyler v2.4.3 (HKLM-x32\...\DVDStyler_is1) (Version:  - )
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version:  - )
FileZilla Client 3.6.0.2 (HKCU\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Free Disk Analyzer (HKLM-x32\...\Free Disk Analyzer) (Version: 1.0.1.22 - Extensoft)
F-Stream Tuning v0.1.73.31001 (HKLM-x32\...\F-Stream Tuning_is1) (Version:  - )
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.0.0.0 - Futuremark Corporation)
Google Chrome (HKCU\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HD Tach version 3 (HKLM-x32\...\HD Tach_is1) (Version:  - Simpli Software, Inc.)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart All-In-One Driver Software 13.0 Rel. 2 (HKLM\...\{988329F4-A1A1-4D51-803C-EF2725A97627}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Product Detection (HKLM-x32\...\{CAE7D1D9-3794-4169-B4DD-964ADBC534EE}) (Version: 10.7.9.0 - Hewlett-Packard Company)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PaperLabel (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabel_PrintOnDisc (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
hpphotosmartdisclabelplugin (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2361 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{12914061-EB9B-4AE7-AC7E-0B8A607C7DF4}) (Version: 2.3.1338 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.2.0.400 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.26.242.3 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417060FF}) (Version: 7.0.600 - Oracle)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Lautstärkefenster (HKLM-x32\...\Creative Volume Panel) (Version: 2.21 - Creative Technology Limited)
LightScribe System Software (HKLM-x32\...\{705B639E-FAAF-40D7-AD58-C445321C7C3F}) (Version: 1.18.18.1 - LightScribe)
Logitech SetPoint 6.32 (HKLM\...\sp6) (Version: 6.32.20 - Logitech)
Lunatics Unified Win64 v0.41 (HKLM-x32\...\Lunatics Unified Win64) (Version: v0.41 - Lunatics)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mediaport (HKLM-x32\...\Mediaport) (Version:  - )
MFC RunTime files (x32 Version: 1.0.0 - Extensoft) Hidden
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM-x32\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Mozilla Firefox 13.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 13.0.1 (x86 de)) (Version: 13.0.1 - Mozilla)
Mozilla Firefox 28.0 (x86 de) (HKCU\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 11 DiscSpeed (HKLM-x32\...\{B8B03F99-F600-4D96-ADBD-2F384240FB9C}) (Version: 11.0.00400 - Nero AG)
Nero ControlCenter (x32 Version: 11.0.15500 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 12.0.7000 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.20200 - Nero AG) Hidden
Nero CoverDesigner (HKLM-x32\...\{35F59E66-CAA0-4585-8DC4-037A04717FCF}) (Version: 12.0.01100 - Nero AG)
Nero CoverDesigner (x32 Version: 12.0.10001 - Nero AG) Hidden
Nero CoverDesigner Help (CHM) (x32 Version: 12.0.2000 - Nero AG) Hidden
Nero DiscSpeed 11 (x32 Version: 7.0.10400.2.100 - Nero AG) Hidden
Nero DiscSpeed 11 Help (CHM) (x32 Version: 11.0.10000 - Nero AG) Hidden
nero.prerequisites.msi (x32 Version: 11.0.20008 - Nero AG) Hidden
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
Neuratron PhotoScore Ultimate (HKLM-x32\...\Neuratron PhotoScore Ultimate) (Version: 7.0.0 - Neuratron Ltd)
nLite 1.4.9.1 (HKLM-x32\...\nLite_is1) (Version: 1.4.9.1 - Dino Nuhagic (nuhi))
Nokia Connectivity Cable Driver (HKLM-x32\...\{AF88496B-4BBA-4922-97E9-2582D3A28358}) (Version: 7.1.48.0 - Nokia)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Paragon Partition Manager™ 12 Free (HKLM-x32\...\{47E5588F-C3A0-11DE-9857-005056C00008}) (Version: 90.00.0003 - Paragon Software)
PC Connectivity Solution (HKLM-x32\...\{55EB7967-5BB1-4EA2-8AFF-B2F9E487E553}) (Version: 11.5.13.0 - Nokia)
PlexUTILITIES 1.3.0.0 (HKLM-x32\...\PlexUtil) (Version: 1.3.0.0 - Plextor)
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
PS_AIO_02_ProductContext (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
PS_AIO_02_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6378 - Realtek Semiconductor Corp.)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SETIspirit 2.1.0 (HKLM-x32\...\{1D4D7684-28E1-4537-8EA4-ECC933DB1025}_is1) (Version: 2.1 - Dirk Schwarting)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
Sibelius v1.4 - OxYGeN (HKLM-x32\...\Sibelius v1.4 - OxYGeN) (Version:  - )
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 1.0.0.0 - Electronic Arts)
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SoundFont-Bank-Manager (HKLM-x32\...\SFBM) (Version:  - )
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version:  - )
System Requirements Lab for Intel (64-bit) (HKLM\...\{419B57C2-BEB5-4201-91F5-CEF73F24C219}) (Version: 4.5.13.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Tomb Raider: Anniversary 1.0 (HKLM-x32\...\Tomb Raider: Anniversary) (Version:  - )
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
TRON 2.0 (HKLM-x32\...\{FC272B66-8372-49EF-A642-28CAD2B9EAC9}) (Version:  - )
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Mobile Device Updater Component (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Windows-Treiberpaket - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
WinFF 1.5 (Codename EMMA) (HKLM-x32\...\WinFF_is1) (Version:  - WinFF.org)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.30 - ASRock Inc.)
XMedia Recode Version 3.1.7.3 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.7.3 - XMedia Recode)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)
Zune (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CHT) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (CSY) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DAN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (DEU) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ELL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ESP) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FIN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (FRA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (HUN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (IND) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (ITA) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (JPN) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (KOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (MSL) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NLD) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (NOR) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PLK) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTB) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (PTG) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (RUS) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden
Zune Language Pack (SVE) (Version: 04.08.2345.00 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

27-05-2014 05:14:36 Geplanter Prüfpunkt
01-06-2014 07:11:55 Wiederherstellungsvorgang
01-06-2014 07:14:41 Installiert Creative ALchemy
01-06-2014 07:14:53 Installiert Creative Audio Control Panel
01-06-2014 07:15:17 Installiert Creative AutoMode Switcher
01-06-2014 07:15:43 Installiert Console Launcher
01-06-2014 07:18:57 Installiert Dolby Digital Live Pack
01-06-2014 07:19:06 Installiert DTS Connect Pack
01-06-2014 07:19:12 Installiert SoundFont Bank Manager
01-06-2014 07:19:19 Installiert Speaker Setup Console
01-06-2014 07:19:40 Installiert Creative Volume Panel
08-06-2014 09:36:24 Geplanter Prüfpunkt
15-06-2014 19:42:33 Removed Java 7 Update 55
15-06-2014 19:43:09 Removed Java 7 Update 55 (64-bit)
15-06-2014 19:45:54 Installed Java 7 Update 60
15-06-2014 19:48:34 Installed Java 7 Update 60 (64-bit)
15-06-2014 20:11:47 avast! antivirus system restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03AF10B1-5D3F-42D7-9E71-446825316DAD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-08] (Google Inc.)
Task: {08E5358A-A8EE-4170-8B8E-6BC911CF2A23} - System32\Tasks\{C186358A-DDB1-4861-8166-36907E032C5C} => H:\Setup.exe
Task: {0A77039A-EFA5-4C6B-9C99-8358A0BE7884} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {0C38FF6A-3562-4148-8238-E54E3804DECE} - System32\Tasks\{5BBF8DE9-A880-4A62-A374-E11CFBB632A9} => D:\Programme\Programme ALT\CW\WINCAKE.EXE [1995-05-22] (Twelve Tone Systems, Inc.)
Task: {16796833-6A51-454A-91F1-130A3418742B} - System32\Tasks\{8523F91D-BA6B-4949-8C52-BCAAD54DD988} => C:\Program Files (x86)\Creative\Support\System Information\CTSI.exe
Task: {1A8BB35A-65FA-42DC-B8DC-FC14D18C99B7} - System32\Tasks\{EDBB608D-7838-466A-AE43-1566E2B95ACC} => D:\Program Files (x86)\Audacity\audacity.exe [2012-08-20] (The Audacity Team)
Task: {27804D36-F756-4C18-82CD-1531CC67D44D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000UA => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-03] (Google Inc.)
Task: {2AA76D6A-9D6C-4CCA-AEA5-1CA94DFB6DA0} - System32\Tasks\{0D964118-F0AF-4732-A938-1CF715BA9C62} => D:\Program Files (x86)\Paragon Software\Partition Manager\WinPM\WinPM.exe
Task: {46C499DF-F424-46D6-B0D7-82BBC171DE52} - System32\Tasks\{A705021E-2206-4A98-AA96-AEC51793584D} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: {5F3F4338-8859-409B-8E45-D215D0378581} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {61129373-0880-4512-8C14-6047E8B09B98} - System32\Tasks\{FF97C27F-12B9-4ACC-8D79-645B25F908B7} => D:\Program Files (x86)\Simpli Software\HD Tach\hdtach.exe [2007-04-16] (Simpli Software, Inc.)
Task: {66AF863C-6F44-4BC0-94B6-9C17444BB1FA} - System32\Tasks\{DACA3617-43B6-4B63-BD23-331C9FF7B452} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: {74659195-E039-4894-BBF9-217B1FB13969} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {846D868A-ACEC-4E3D-8B83-111AA5F5D023} - System32\Tasks\{0A4612D5-810F-4148-9C20-AB3FC2476A78} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: {97082BE5-5B60-471B-AAC0-BB91A96474DC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-06-15] (AVAST Software)
Task: {A290F5E7-A5A7-4F62-8EAD-A0585A7C26A1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-07-08] (Google Inc.)
Task: {C134D5AE-C90A-435C-BC37-D22B00630CD9} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000Core => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-03] (Google Inc.)
Task: {DB11EB0C-BEB9-4738-970C-C86EBBFB3734} - System32\Tasks\{40955255-0CCA-4A6F-AFA4-51CEE8D8DC5D} => G:\Setup.exe
Task: {E8909FF8-926B-42FD-AE5E-172F27BB1EFF} - System32\Tasks\{586E360E-6BAC-4589-B435-C16529035586} => D:\Program Files (x86)\Paragon Software\Partition Manager\WinPM\WinPM.exe
Task: {EAFDECC7-7B60-4A9F-AD9F-2F09BD1CFA8E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-02-28] ()
Task: {FE059885-A399-45F7-87A8-06F3BB32D2D1} - System32\Tasks\{03109562-BD6E-433E-8F7D-9382E88E4339} => C:\Program Files (x86)\Cyberlink\WaveEditor\WaveEditor.exe [2010-08-11] (Cyberlink)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000Core.job => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-621507476-1095879060-1196749333-1000UA.job => C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () d:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2011-10-07 11:39 - 2011-10-07 11:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2014-06-15 21:51 - 2014-06-15 21:51 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061501\algo.dll
2014-06-16 17:08 - 2014-06-16 17:08 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061600\algo.dll
2014-02-24 18:54 - 2011-07-21 20:02 - 00207872 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2012-03-14 19:00 - 2007-09-13 23:05 - 00002560 _____ () C:\Windows\system32\CTXFIGER.DLL
2010-08-20 09:57 - 2010-08-20 09:57 - 00619816 _____ () D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMediaLibrary.dll
2010-08-20 09:57 - 2010-08-20 09:57 - 00013096 _____ () D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvcPS.dll
2014-03-22 02:17 - 2014-03-22 02:17 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-02-24 18:54 - 2011-07-21 20:04 - 00074240 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2013-01-26 12:38 - 2012-10-22 15:22 - 01199648 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========


==================== Faulty Device Manager Devices =============

Name: AMD High Definition Audio Device
Description: AMD High Definition Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices
Service: AtiHDAudioService
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Standard-Zweikanal-PCI-IDE-Controller
Description: Standard-Zweikanal-PCI-IDE-Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-IDE-ATA/ATAPI-Controller)
Service: pciide
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/15/2014 11:26:47 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (06/15/2014 10:10:31 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (06/14/2014 09:48:11 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (06/06/2014 06:33:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0x1b60
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (06/04/2014 07:49:49 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=50964a88-ab5f-4c91-b70e-66a2eadb5423 (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))

Error: (06/04/2014 07:49:41 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=E57B59E7-5862-4250-9CE0-76FB411DC0D2 (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))

Error: (06/04/2014 07:49:38 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=821fe777-bf67-463b-99f0-b2e0e4d9813b (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))

Error: (06/04/2014 07:49:34 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=E57B59E7-5862-4250-9CE0-76FB411DC0D2 (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))

Error: (06/04/2014 07:49:31 PM) (Source: iumsvc) (EventID: 255) (User: )
Description: Exception : ('Device Profile Push Failure', ConnectionError(MaxRetryError("HTTPSConnectionPool(host='servicegateway.intel.com', port=443): Max retries exceeded with url: /DeviceProfile/Service.svc/Rest/DeviceProfileManager?deviceId=d7900c0e-eaa9-4c94-b8ec-89c0e5fe0672&DomainId=4E00205A-2AB1-4423-8F77-CC25B82CDE1D (Caused by <class 'socket.error'>: [Errno 10054] Eine vorhandene Verbindung wurde vom Remotehost geschlossen)",),))

Error: (06/03/2014 10:18:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0x1180
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3


System errors:
=============
Error: (06/16/2014 05:07:58 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
pciide

Error: (06/16/2014 05:07:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CyberLink InstantBurn UDF Filesystem" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/16/2014 05:07:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (06/16/2014 05:07:50 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (06/16/2014 05:07:49 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (06/15/2014 11:23:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
pciide

Error: (06/15/2014 11:23:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "CyberLink InstantBurn UDF Filesystem" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (06/15/2014 10:24:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (06/15/2014 10:24:55 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (06/15/2014 10:24:54 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\cdrbsdrv.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.


Microsoft Office Sessions:
=========================
Error: (07/09/2012 07:37:59 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 61 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (07/04/2012 06:01:53 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 15 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (05/31/2012 06:33:10 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (02/26/2012 05:25:46 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (11/29/2011 00:49:35 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (10/26/2011 00:28:51 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 2654 seconds with 1320 seconds of active time.  This session ended with a crash.

Error: (10/23/2011 10:12:19 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 3 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (09/18/2011 10:40:22 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 86 seconds with 0 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-02-03 17:22:07.188
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-09-11 19:46:42.976
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 19:46:42.929
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 19:46:15.513
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 19:46:15.466
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 19:43:25.526
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-09-11 19:43:25.479
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\CPUTempWDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2012-01-07 22:30:14.491
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume6\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-01-07 22:28:29.090
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume6\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2012-01-07 22:20:07.871
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume6\Program Files\Common Files\ATI Technologies\Multimedia\AMDMFTDecoder_64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 36%
Total physical RAM: 8155.78 MB
Available physical RAM: 5212.59 MB
Total Pagefile: 20153.96 MB
Available Pagefile: 18030.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (SYSTEM SSD) (Fixed) (Total:111.42 GB) (Free:81.34 GB) NTFS
Drive d: (Daten) (Fixed) (Total:488.28 GB) (Free:319.38 GB) NTFS
Drive e: (Musik/Video) (Fixed) (Total:443.23 GB) (Free:176.81 GB) NTFS
Drive x: (AUX) (Fixed) (Total:49.8 GB) (Free:35.49 GB) NTFS
Drive y: (Backup) (Fixed) (Total:317.38 GB) (Free:55.35 GB) NTFS
Drive z: (Setup) (Fixed) (Total:98.57 GB) (Free:66.21 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 145265CF)
Partition 1: (Not Active) - (Size=488 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=443 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 1FD70B5C)
Partition 1: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=317 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=99 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: F4F6464A)
Partition 1: (Active) - (Size=376 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         


Wenn benötigt kann ich einen durchlauf mit gestartetem Minecraft machen

Danke
__________________

Alt 17.06.2014, 09:45   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



lass die angemeckerten Dateien bitte mal www.virustotal.com scannen.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.06.2014, 10:53   #5
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Hallo schrauber

Du meinst die Javaw.exe der der Speicheblock mit den Virusmeldungen zugeordnet ist vermute ich mal.

Ich werde heute wenn ich zu Hause bin alle Java*.exe Dateien mit dem vorgeschlagenen Tool scannen

mfg Zecka


Geändert von Zecka (17.06.2014 um 11:06 Uhr) Grund: Rechtschreibfehler :)

Alt 17.06.2014, 11:04   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



warte mal, zeig mir zuerst nen Screenshot von der Avast-Meldung bitte.
__________________
--> Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft

Alt 17.06.2014, 11:15   #7
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Heute um ca 17:00 bin ich wieder beim Rechner dann werde ich dir den Screenshot nachreichen.

Sowas ist mir auch noch nicht untergekommen. Die Dateien werden vom Scanner durchgewinkt aber im Speicher läuft irgent etwas das die Aufmerksahmkeit des Scaners erregt
Minecraft ladet beim Start zwar immer Daten aus dem Netz nach aber das Scanmodul spricht darauf auch nicht an, erst wenn alles läuft wird im Speicher rumgemotzt.

Alt 17.06.2014, 16:20   #8
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Bitte hier ist der Screenshot

Name:  Avast.jpg
Hits: 213
Größe:  38,3 KB

musste leider die breite von 1000 px etwas überschreiten damit es leserlich bleibt

lg Zecka

Alt 18.06.2014, 09:39   #9
schrauber
/// the machine
/// TB-Ausbilder
 

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



hi,

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 18.06.2014, 16:37   #10
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Danke für die schnellen Antworten.

Soll ich den Scan mit gestartetem Minecraft oder ohne machen

lg Zecka

So erst einmal ohne Minecraft

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.06.18.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16844
Zecka :: BIGBLUE [administrator]

18.06.2014 17:16:27
mbar-log-2014-06-18 (17-16-27).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 324156
Time elapsed: 5 minute(s), 

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         


Code:
ATTFilter
17:33:38.0688 0x1bf8  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
17:33:43.0150 0x1bf8  ============================================================
17:33:43.0150 0x1bf8  Current date / time: 2014/06/18 17:33:43.0150
17:33:43.0150 0x1bf8  SystemInfo:
17:33:43.0150 0x1bf8  
17:33:43.0150 0x1bf8  OS Version: 6.1.7601 ServicePack: 1.0
17:33:43.0150 0x1bf8  Product type: Workstation
17:33:43.0150 0x1bf8  ComputerName: BIGBLUE
17:33:43.0150 0x1bf8  UserName: Zecka
17:33:43.0150 0x1bf8  Windows directory: C:\Windows
17:33:43.0150 0x1bf8  System windows directory: C:\Windows
17:33:43.0150 0x1bf8  Running under WOW64
17:33:43.0150 0x1bf8  Processor architecture: Intel x64
17:33:43.0150 0x1bf8  Number of processors: 8
17:33:43.0150 0x1bf8  Page size: 0x1000
17:33:43.0150 0x1bf8  Boot type: Normal boot
17:33:43.0150 0x1bf8  ============================================================
17:33:43.0228 0x1bf8  KLMD registered as C:\Windows\system32\drivers\43628271.sys
17:33:43.0290 0x1bf8  System UUID: {86E11EC7-E533-0560-C787-DDE2F20AF30A}
17:33:43.0524 0x1bf8  Drive \Device\Harddisk2\DR2 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:33:43.0524 0x1bf8  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:33:43.0540 0x1bf8  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:33:43.0540 0x1bf8  ============================================================
17:33:43.0540 0x1bf8  \Device\Harddisk2\DR2:
17:33:43.0540 0x1bf8  MBR partitions:
17:33:43.0540 0x1bf8  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xBBC30
17:33:43.0540 0x1bf8  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xBC800, BlocksNum 0xDED83B0
17:33:43.0540 0x1bf8  \Device\Harddisk1\DR1:
17:33:43.0540 0x1bf8  MBR partitions:
17:33:43.0540 0x1bf8  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x639C000
17:33:43.0540 0x1bf8  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x639C800, BlocksNum 0x27AC4000
17:33:43.0540 0x1bf8  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2DE60800, BlocksNum 0xC524800
17:33:43.0540 0x1bf8  \Device\Harddisk0\DR0:
17:33:43.0540 0x1bf8  MBR partitions:
17:33:43.0540 0x1bf8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3D090000
17:33:43.0540 0x1bf8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3D090800, BlocksNum 0x37675000
17:33:43.0540 0x1bf8  ============================================================
17:33:43.0540 0x1bf8  C: <-> \Device\Harddisk2\DR2\Partition2
17:33:43.0555 0x1bf8  D: <-> \Device\Harddisk0\DR0\Partition1
17:33:43.0587 0x1bf8  E: <-> \Device\Harddisk0\DR0\Partition2
17:33:43.0633 0x1bf8  Z: <-> \Device\Harddisk1\DR1\Partition3
17:33:43.0649 0x1bf8  X: <-> \Device\Harddisk1\DR1\Partition1
17:33:43.0665 0x1bf8  Y: <-> \Device\Harddisk1\DR1\Partition2
17:33:43.0665 0x1bf8  ============================================================
17:33:43.0665 0x1bf8  Initialize success
17:33:43.0665 0x1bf8  ============================================================
17:33:48.0953 0x15b8  ============================================================
17:33:48.0953 0x15b8  Scan started
17:33:48.0953 0x15b8  Mode: Manual; SigCheck; TDLFS; 
17:33:48.0953 0x15b8  ============================================================
17:33:48.0953 0x15b8  KSN ping started
17:33:51.0839 0x15b8  KSN ping finished: true
17:33:52.0291 0x15b8  ================ Scan system memory ========================
17:33:52.0291 0x15b8  System memory - ok
17:33:52.0291 0x15b8  ================ Scan services =============================
17:33:52.0323 0x15b8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
17:33:52.0369 0x15b8  1394ohci - ok
17:33:52.0385 0x15b8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:33:52.0401 0x15b8  ACPI - ok
17:33:52.0401 0x15b8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:33:52.0416 0x15b8  AcpiPmi - ok
17:33:52.0416 0x15b8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:33:52.0432 0x15b8  AdobeARMservice - ok
17:33:52.0432 0x15b8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
17:33:52.0447 0x15b8  adp94xx - ok
17:33:52.0463 0x15b8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
17:33:52.0479 0x15b8  adpahci - ok
17:33:52.0479 0x15b8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
17:33:52.0479 0x15b8  adpu320 - ok
17:33:52.0494 0x15b8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:33:52.0510 0x15b8  AeLookupSvc - ok
17:33:52.0525 0x15b8  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
17:33:52.0541 0x15b8  AFD - ok
17:33:52.0541 0x15b8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
17:33:52.0557 0x15b8  agp440 - ok
17:33:52.0557 0x15b8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
17:33:52.0572 0x15b8  ALG - ok
17:33:52.0572 0x15b8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:33:52.0572 0x15b8  aliide - ok
17:33:52.0588 0x15b8  [ 310F86335B0505DDC6D2DD48E66EF06B, 936273CA046B3AE0944E6C1557CECB2A0C61D034977BBB9FACBE062617CF3A2C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:33:52.0603 0x15b8  AMD External Events Utility - ok
17:33:52.0603 0x15b8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:33:52.0603 0x15b8  amdide - ok
17:33:52.0619 0x15b8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
17:33:52.0619 0x15b8  AmdK8 - ok
17:33:52.0822 0x15b8  [ 79CC9BE187E3144E1B58A54B842475E7, 89DD3177B5CE649AC0093603CE13FBFD93AC24F8E16C52672549110141106F4A ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:33:53.0040 0x15b8  amdkmdag - ok
17:33:53.0056 0x15b8  [ 07561D3B7FD99F6E186C49C2D0628E38, D2D72EB45EAD29A3099C040E99A4F1F4902D3BDC0466800C63ECD33343DC1224 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
17:33:53.0087 0x15b8  amdkmdap - ok
17:33:53.0087 0x15b8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
17:33:53.0087 0x15b8  AmdPPM - ok
17:33:53.0103 0x15b8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:33:53.0103 0x15b8  amdsata - ok
17:33:53.0103 0x15b8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
17:33:53.0118 0x15b8  amdsbs - ok
17:33:53.0118 0x15b8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:33:53.0118 0x15b8  amdxata - ok
17:33:53.0134 0x15b8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
17:33:53.0149 0x15b8  AppID - ok
17:33:53.0149 0x15b8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:33:53.0181 0x15b8  AppIDSvc - ok
17:33:53.0181 0x15b8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
17:33:53.0196 0x15b8  Appinfo - ok
17:33:53.0196 0x15b8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
17:33:53.0196 0x15b8  arc - ok
17:33:53.0196 0x15b8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:33:53.0212 0x15b8  arcsas - ok
17:33:53.0212 0x15b8  [ 6FE3237C1177E66437E7AD0E8AC1A6E5, 3223D4E57150DE8F768BC1BE0E6DCFFC6CA5B09DC7D7ADF283C90929100B0B7B ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
17:33:53.0227 0x15b8  asmthub3 - ok
17:33:53.0243 0x15b8  [ C4043E39A2ABBC56581CA25DF161E9F7, 1B53A8BEE4823EA842A00F5304428F0B4D14078045CF84ED20D8DF0FB8826040 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
17:33:53.0259 0x15b8  asmtxhci - ok
17:33:53.0274 0x15b8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:33:53.0274 0x15b8  aspnet_state - ok
17:33:53.0274 0x15b8  [ EDC0C73FA41DF1C8B1FEA3852AED2848, A3FE7EE1AB15ED603403479CFD011DF9B506C1FE95730C0980F1410810C2F736 ] AsrHidFilter    C:\Windows\system32\DRIVERS\AsrHidFilter.sys
17:33:53.0290 0x15b8  AsrHidFilter - ok
17:33:53.0290 0x15b8  [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
17:33:53.0290 0x15b8  aswHwid - ok
17:33:53.0290 0x15b8  [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
17:33:53.0305 0x15b8  aswMonFlt - ok
17:33:53.0305 0x15b8  [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
17:33:53.0321 0x15b8  aswRdr - ok
17:33:53.0321 0x15b8  [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
17:33:53.0321 0x15b8  aswRvrt - ok
17:33:53.0352 0x15b8  [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
17:33:53.0368 0x15b8  aswSnx - ok
17:33:53.0383 0x15b8  [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
17:33:53.0399 0x15b8  aswSP - ok
17:33:53.0399 0x15b8  [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
17:33:53.0399 0x15b8  aswStm - ok
17:33:53.0415 0x15b8  [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
17:33:53.0415 0x15b8  aswVmm - ok
17:33:53.0430 0x15b8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:33:53.0446 0x15b8  AsyncMac - ok
17:33:53.0446 0x15b8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
17:33:53.0461 0x15b8  atapi - ok
17:33:53.0461 0x15b8  [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:33:53.0477 0x15b8  AtiHDAudioService - ok
17:33:53.0477 0x15b8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:33:53.0524 0x15b8  AudioEndpointBuilder - ok
17:33:53.0524 0x15b8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:33:53.0555 0x15b8  AudioSrv - ok
17:33:53.0571 0x15b8  [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:33:53.0571 0x15b8  avast! Antivirus - ok
17:33:53.0586 0x15b8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:33:53.0586 0x15b8  AxInstSV - ok
17:33:53.0602 0x15b8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
17:33:53.0617 0x15b8  b06bdrv - ok
17:33:53.0633 0x15b8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:33:53.0633 0x15b8  b57nd60a - ok
17:33:53.0649 0x15b8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:33:53.0649 0x15b8  BDESVC - ok
17:33:53.0649 0x15b8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:33:53.0680 0x15b8  Beep - ok
17:33:53.0695 0x15b8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
17:33:53.0711 0x15b8  BFE - ok
17:33:53.0727 0x15b8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
17:33:53.0773 0x15b8  BITS - ok
17:33:53.0773 0x15b8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:33:53.0773 0x15b8  blbdrive - ok
17:33:53.0789 0x15b8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:33:53.0789 0x15b8  bowser - ok
17:33:53.0789 0x15b8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
17:33:53.0805 0x15b8  BrFiltLo - ok
17:33:53.0805 0x15b8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
17:33:53.0820 0x15b8  BrFiltUp - ok
17:33:53.0820 0x15b8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
17:33:53.0836 0x15b8  Browser - ok
17:33:53.0836 0x15b8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:33:53.0851 0x15b8  Brserid - ok
17:33:53.0851 0x15b8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:33:53.0867 0x15b8  BrSerWdm - ok
17:33:53.0867 0x15b8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:33:53.0883 0x15b8  BrUsbMdm - ok
17:33:53.0883 0x15b8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:33:53.0883 0x15b8  BrUsbSer - ok
17:33:53.0898 0x15b8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:33:53.0898 0x15b8  BTHMODEM - ok
17:33:53.0914 0x15b8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
17:33:53.0929 0x15b8  bthserv - ok
17:33:53.0929 0x15b8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:33:53.0961 0x15b8  cdfs - ok
17:33:53.0961 0x15b8  cdrbsdrv - ok
17:33:53.0961 0x15b8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:33:53.0976 0x15b8  cdrom - ok
17:33:53.0976 0x15b8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
17:33:54.0007 0x15b8  CertPropSvc - ok
17:33:54.0007 0x15b8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
17:33:54.0007 0x15b8  circlass - ok
17:33:54.0023 0x15b8  [ 2B6B01F0B1DE1B9A0285F9CF36FD6B22, 2D93CE3AABA5DE94FA1724AAE272CAAA95AE9416F4A51E73E126344DD938968B ] CLBStor         C:\Windows\system32\drivers\CLBStor.sys
17:33:54.0023 0x15b8  CLBStor - ok
17:33:54.0023 0x15b8  CLBUDFbk - ok
17:33:54.0039 0x15b8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
17:33:54.0039 0x15b8  CLFS - ok
17:33:54.0117 0x15b8  [ 524DC3807CB1746225F9D26ADD19C319, DC23392E8C542B02860BA1F57F03AD08A58B256D155CC6B81A48691A79D3A3F6 ] CLKMSVC10_58664B3D D:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
17:33:54.0132 0x15b8  CLKMSVC10_58664B3D - ok
17:33:54.0148 0x15b8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:33:54.0148 0x15b8  clr_optimization_v2.0.50727_32 - ok
17:33:54.0163 0x15b8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:33:54.0163 0x15b8  clr_optimization_v2.0.50727_64 - ok
17:33:54.0179 0x15b8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:33:54.0179 0x15b8  clr_optimization_v4.0.30319_32 - ok
17:33:54.0179 0x15b8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:33:54.0195 0x15b8  clr_optimization_v4.0.30319_64 - ok
17:33:54.0195 0x15b8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
17:33:54.0210 0x15b8  CmBatt - ok
17:33:54.0210 0x15b8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:33:54.0210 0x15b8  cmdide - ok
17:33:54.0226 0x15b8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
17:33:54.0241 0x15b8  CNG - ok
17:33:54.0241 0x15b8  [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX        C:\Windows\system32\drivers\COMMONFX.SYS
17:33:54.0257 0x15b8  COMMONFX - ok
17:33:54.0257 0x15b8  COMMONFX.DLL - ok
17:33:54.0257 0x15b8  [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX.SYS    C:\Windows\System32\drivers\COMMONFX.SYS
17:33:54.0257 0x15b8  COMMONFX.SYS - ok
17:33:54.0273 0x15b8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
17:33:54.0273 0x15b8  Compbatt - ok
17:33:54.0273 0x15b8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
17:33:54.0288 0x15b8  CompositeBus - ok
17:33:54.0288 0x15b8  COMSysApp - ok
17:33:54.0288 0x15b8  [ C08063F052308B6F5882482615387F30, 523D1D43E896077F32CD9ACAA8E85B513BFB7B013A625E56F0D4E9675D9822BA ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
17:33:54.0288 0x15b8  cpuz135 - ok
17:33:54.0304 0x15b8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
17:33:54.0304 0x15b8  crcdisk - ok
17:33:54.0304 0x15b8  [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:33:54.0319 0x15b8  Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
17:33:57.0081 0x15b8  Detect skipped due to KSN trusted
17:33:57.0081 0x15b8  Creative ALchemy AL6 Licensing Service - ok
17:33:57.0096 0x15b8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:33:57.0112 0x15b8  CryptSvc - ok
17:33:57.0127 0x15b8  [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT         C:\Windows\system32\drivers\CT20XUT.SYS
17:33:57.0127 0x15b8  CT20XUT - ok
17:33:57.0127 0x15b8  CT20XUT.DLL - ok
17:33:57.0143 0x15b8  [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT.SYS     C:\Windows\System32\drivers\CT20XUT.SYS
17:33:57.0143 0x15b8  CT20XUT.SYS - ok
17:33:57.0159 0x15b8  [ F5964C14C10497317901E6776CCDA2CA, 30995316CC8265B813BE8EEA3214648C62E90EED3CC170807AF5CA4566295FFE ] ctac32k         C:\Windows\system32\drivers\ctac32k.sys
17:33:57.0174 0x15b8  ctac32k - ok
17:33:57.0190 0x15b8  [ D778E18645602CC567B055A30C6A35B4, BDE6A6ADFCE8A193E48B9DAE58CD9F2A02C3D769F6ECC8779C6B5C2D15F69A44 ] ctaud2k         C:\Windows\system32\drivers\ctaud2k.sys
17:33:57.0205 0x15b8  ctaud2k - ok
17:33:57.0205 0x15b8  CTAUDFX - ok
17:33:57.0205 0x15b8  CTAUDFX.DLL - ok
17:33:57.0205 0x15b8  CTAUDFX.SYS - ok
17:33:57.0221 0x15b8  [ 7D564A71907B389C62191E7D7B9069D8, 3590C38A65BCE379374C979328BC560DA21A687630CB1524DDFA4C6124001F93 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:33:57.0221 0x15b8  CTAudSvcService - detected UnsignedFile.Multi.Generic ( 1 )
17:33:59.0998 0x15b8  Detect skipped due to KSN trusted
17:33:59.0998 0x15b8  CTAudSvcService - ok
17:33:59.0998 0x15b8  CTEAPSFX.DLL - ok
17:34:00.0013 0x15b8  CTEDSPFX.DLL - ok
17:34:00.0013 0x15b8  CTEDSPIO.DLL - ok
17:34:00.0013 0x15b8  CTEDSPSY.DLL - ok
17:34:00.0013 0x15b8  CTERFXFX - ok
17:34:00.0029 0x15b8  CTERFXFX.DLL - ok
17:34:00.0029 0x15b8  CTERFXFX.SYS - ok
17:34:00.0060 0x15b8  [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX        C:\Windows\system32\drivers\CTEXFIFX.SYS
17:34:00.0076 0x15b8  CTEXFIFX - ok
17:34:00.0076 0x15b8  CTEXFIFX.DLL - ok
17:34:00.0107 0x15b8  [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX.SYS    C:\Windows\System32\drivers\CTEXFIFX.SYS
17:34:00.0138 0x15b8  CTEXFIFX.SYS - ok
17:34:00.0138 0x15b8  [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT         C:\Windows\system32\drivers\CTHWIUT.SYS
17:34:00.0138 0x15b8  CTHWIUT - ok
17:34:00.0154 0x15b8  CTHWIUT.DLL - ok
17:34:00.0154 0x15b8  [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT.SYS     C:\Windows\System32\drivers\CTHWIUT.SYS
17:34:00.0154 0x15b8  CTHWIUT.SYS - ok
17:34:00.0154 0x15b8  [ 133C4C45E1B68F49A9CEBA88973F60E2, 1B79F8C7650568C6C951262C0CF0FA890047E3D148580A3C38695F7C35BDA69B ] ctprxy2k        C:\Windows\system32\drivers\ctprxy2k.sys
17:34:00.0169 0x15b8  ctprxy2k - ok
17:34:00.0169 0x15b8  CTSBLFX - ok
17:34:00.0169 0x15b8  CTSBLFX.DLL - ok
17:34:00.0169 0x15b8  CTSBLFX.SYS - ok
17:34:00.0169 0x15b8  [ 9B670F98B9D35274C13ACC36F341C070, D3EB5421E6105278E87603012170F74CF4D9173242BBFB676CF6F6B304D16199 ] ctsfm2k         C:\Windows\system32\drivers\ctsfm2k.sys
17:34:00.0185 0x15b8  ctsfm2k - ok
17:34:00.0201 0x15b8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:34:00.0232 0x15b8  DcomLaunch - ok
17:34:00.0232 0x15b8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
17:34:00.0263 0x15b8  defragsvc - ok
17:34:00.0263 0x15b8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:34:00.0279 0x15b8  DfsC - ok
17:34:00.0294 0x15b8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:34:00.0310 0x15b8  Dhcp - ok
17:34:00.0310 0x15b8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
17:34:00.0325 0x15b8  discache - ok
17:34:00.0341 0x15b8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
17:34:00.0341 0x15b8  Disk - ok
17:34:00.0341 0x15b8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:34:00.0357 0x15b8  Dnscache - ok
17:34:00.0372 0x15b8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:34:00.0388 0x15b8  dot3svc - ok
17:34:00.0403 0x15b8  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
17:34:00.0403 0x15b8  Dot4 - ok
17:34:00.0403 0x15b8  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:34:00.0419 0x15b8  Dot4Print - ok
17:34:00.0419 0x15b8  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
17:34:00.0435 0x15b8  dot4usb - ok
17:34:00.0435 0x15b8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
17:34:00.0466 0x15b8  DPS - ok
17:34:00.0466 0x15b8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:34:00.0466 0x15b8  drmkaud - ok
17:34:00.0497 0x15b8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:34:00.0513 0x15b8  DXGKrnl - ok
17:34:00.0513 0x15b8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
17:34:00.0544 0x15b8  EapHost - ok
17:34:00.0591 0x15b8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
17:34:00.0669 0x15b8  ebdrv - ok
17:34:00.0669 0x15b8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
17:34:00.0684 0x15b8  EFS - ok
17:34:00.0684 0x15b8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:34:00.0715 0x15b8  ehRecvr - ok
17:34:00.0715 0x15b8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
17:34:00.0731 0x15b8  ehSched - ok
17:34:00.0731 0x15b8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
17:34:00.0747 0x15b8  elxstor - ok
17:34:00.0762 0x15b8  [ 5AF6DE61E2CB029C2C9BE268D69F2BB8, 40DD35CC37AA57D6B6324B45C4D050DA539112F10E619AD2B827C600DA524793 ] emupia          C:\Windows\system32\drivers\emupia2k.sys
17:34:00.0762 0x15b8  emupia - ok
17:34:00.0762 0x15b8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:34:00.0778 0x15b8  ErrDev - ok
17:34:00.0778 0x15b8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
17:34:00.0809 0x15b8  EventSystem - ok
17:34:00.0825 0x15b8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
17:34:00.0840 0x15b8  exfat - ok
17:34:00.0856 0x15b8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:34:00.0871 0x15b8  fastfat - ok
17:34:00.0887 0x15b8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
17:34:00.0903 0x15b8  Fax - ok
17:34:00.0903 0x15b8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
17:34:00.0918 0x15b8  fdc - ok
17:34:00.0918 0x15b8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
17:34:00.0949 0x15b8  fdPHost - ok
17:34:00.0949 0x15b8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:34:00.0965 0x15b8  FDResPub - ok
17:34:00.0965 0x15b8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:34:00.0981 0x15b8  FileInfo - ok
17:34:00.0981 0x15b8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:34:01.0012 0x15b8  Filetrace - ok
17:34:01.0012 0x15b8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
17:34:01.0012 0x15b8  flpydisk - ok
17:34:01.0027 0x15b8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:34:01.0027 0x15b8  FltMgr - ok
17:34:01.0043 0x15b8  [ 508401A63E6B1CBF0B9C9A011498731F, F636B0A9C0EB6AE7EC04E5C5FD8A0578AEB76A1B0D974F355BCE6B6091901725 ] FNETTBOH_305    C:\Windows\system32\drivers\FNETTBOH_305.SYS
17:34:01.0043 0x15b8  FNETTBOH_305 - ok
17:34:01.0043 0x15b8  [ 7C3C4B4C951EC1BDFD4F769D05E2CC68, 7B9DA195D3CF0E7BE6BB532CC5D058BC6658B7538B5C5CF09B1A4ABEF1ECACB4 ] FNETURPX        C:\Windows\system32\drivers\FNETURPX.SYS
17:34:01.0043 0x15b8  FNETURPX - ok
17:34:01.0074 0x15b8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
17:34:01.0105 0x15b8  FontCache - ok
17:34:01.0105 0x15b8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:34:01.0105 0x15b8  FontCache3.0.0.0 - ok
17:34:01.0121 0x15b8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:34:01.0121 0x15b8  FsDepends - ok
17:34:01.0121 0x15b8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:34:01.0137 0x15b8  Fs_Rec - ok
17:34:01.0137 0x15b8  [ 79B4CDE2B69ED8BA4011859780A66A4D, D2572B737232F8FDD46A811FF69D8DAE4AAD4D2FA47507D78C0C54BF01C4CC4A ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
17:34:01.0137 0x15b8  Futuremark SystemInfo Service - ok
17:34:01.0152 0x15b8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:34:01.0152 0x15b8  fvevol - ok
17:34:01.0168 0x15b8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:34:01.0168 0x15b8  gagp30kx - ok
17:34:01.0183 0x15b8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
17:34:01.0215 0x15b8  gpsvc - ok
17:34:01.0230 0x15b8  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:34:01.0230 0x15b8  gupdate - ok
17:34:01.0230 0x15b8  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:34:01.0246 0x15b8  gupdatem - ok
17:34:01.0261 0x15b8  [ 82B68F585110AE8500A6D23623AE1F74, 1ADCFA2D77E3BB9BDCDD15DC21E7F6707823788A1CFB31ED959BC470595EE89B ] ha10kx2k        C:\Windows\system32\drivers\ha10kx2k.sys
17:34:01.0293 0x15b8  ha10kx2k - ok
17:34:01.0324 0x15b8  [ EC2D3B3E6C27A7E9E93DC194C1FF13A5, 1390880D74F97550E8803B43FA590F0613024D7670D025FBD4DA20ED59F07CC3 ] ha20x22k        C:\Windows\system32\drivers\ha20x22k.sys
17:34:01.0355 0x15b8  ha20x22k - ok
17:34:01.0386 0x15b8  [ 1B04A2F6CD01468B5DAF4699E203C3E2, A8FBC1F32EDDDC478CDACA13C656E81E8E2F2FD4AC3987BEFAA42D4222ACD85F ] ha20x2k         C:\Windows\system32\drivers\ha20x2k.sys
17:34:01.0417 0x15b8  ha20x2k - ok
17:34:01.0417 0x15b8  [ 83F647F9ACE9192556F758E528024F68, 1007C2E3C8FDB3CB5FB3C336F9904AD076DC31BB263E633EF17E3813B9ED6EF6 ] hap16v2k        C:\Windows\system32\drivers\hap16v2k.sys
17:34:01.0433 0x15b8  hap16v2k - ok
17:34:01.0433 0x15b8  [ E815D29361DE89D24C8DBE3E5A7006C9, 2B9075CC6A2425D06E6C3CB77E0755727F8B0920575C660CF261981464D190F0 ] hap17v2k        C:\Windows\system32\drivers\hap17v2k.sys
17:34:01.0449 0x15b8  hap17v2k - ok
17:34:01.0449 0x15b8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:34:01.0449 0x15b8  hcw85cir - ok
17:34:01.0464 0x15b8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:34:01.0480 0x15b8  HdAudAddService - ok
17:34:01.0480 0x15b8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:34:01.0495 0x15b8  HDAudBus - ok
17:34:01.0495 0x15b8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
17:34:01.0511 0x15b8  HidBatt - ok
17:34:01.0511 0x15b8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:34:01.0511 0x15b8  HidBth - ok
17:34:01.0527 0x15b8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
17:34:01.0527 0x15b8  HidIr - ok
17:34:01.0527 0x15b8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
17:34:01.0558 0x15b8  hidserv - ok
17:34:01.0558 0x15b8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:34:01.0573 0x15b8  HidUsb - ok
17:34:01.0573 0x15b8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:34:01.0589 0x15b8  hkmsvc - ok
17:34:01.0605 0x15b8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:34:01.0605 0x15b8  HomeGroupListener - ok
17:34:01.0620 0x15b8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:34:01.0636 0x15b8  HomeGroupProvider - ok
17:34:01.0636 0x15b8  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:34:01.0651 0x15b8  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
17:34:04.0475 0x15b8  Detect skipped due to KSN trusted
17:34:04.0475 0x15b8  hpqcxs08 - ok
17:34:04.0491 0x15b8  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:34:04.0506 0x15b8  hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:34:07.0252 0x15b8  Detect skipped due to KSN trusted
17:34:07.0252 0x15b8  hpqddsvc - ok
17:34:07.0267 0x15b8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:34:07.0283 0x15b8  HpSAMD - ok
17:34:07.0314 0x15b8  [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:34:07.0345 0x15b8  HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
17:34:10.0107 0x15b8  Detect skipped due to KSN trusted
17:34:10.0107 0x15b8  HPSLPSVC - ok
17:34:10.0138 0x15b8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:34:10.0185 0x15b8  HTTP - ok
17:34:10.0185 0x15b8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:34:10.0200 0x15b8  hwpolicy - ok
17:34:10.0200 0x15b8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:34:10.0216 0x15b8  i8042prt - ok
17:34:10.0216 0x15b8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:34:10.0231 0x15b8  iaStorV - ok
17:34:10.0247 0x15b8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:34:10.0263 0x15b8  idsvc - ok
17:34:10.0465 0x15b8  [ 174BCAC474DE13B2650E444CF124828E, 42410700408873D890AA0EA1A885086B0DF6D1196957E3CD8A8323C46139E2C6 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
17:34:10.0684 0x15b8  igfx - ok
17:34:10.0699 0x15b8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
17:34:10.0699 0x15b8  iirsp - ok
17:34:10.0715 0x15b8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
17:34:10.0746 0x15b8  IKEEXT - ok
17:34:10.0793 0x15b8  [ C7124DA48E557D8F88D0D7F1254557F4, 300BC8ACB5CCB15F80ECAEAD27F12925EE94C84FE8110143A3E0F30E19DDA87B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:34:10.0840 0x15b8  IntcAzAudAddService - ok
17:34:10.0855 0x15b8  [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
17:34:10.0871 0x15b8  Intel(R) Capability Licensing Service Interface - ok
17:34:10.0871 0x15b8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:34:10.0871 0x15b8  intelide - ok
17:34:10.0887 0x15b8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:34:10.0887 0x15b8  intelppm - ok
17:34:10.0902 0x15b8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:34:10.0918 0x15b8  IPBusEnum - ok
17:34:10.0918 0x15b8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:34:10.0949 0x15b8  IpFilterDriver - ok
17:34:10.0949 0x15b8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:34:10.0980 0x15b8  iphlpsvc - ok
17:34:10.0980 0x15b8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:34:10.0980 0x15b8  IPMIDRV - ok
17:34:10.0996 0x15b8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:34:11.0011 0x15b8  IPNAT - ok
17:34:11.0011 0x15b8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:34:11.0027 0x15b8  IRENUM - ok
17:34:11.0027 0x15b8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:34:11.0043 0x15b8  isapnp - ok
17:34:11.0043 0x15b8  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:34:11.0058 0x15b8  iScsiPrt - ok
17:34:11.0058 0x15b8  [ 5C9B001D8970C2DA36254A916F3DA8F7, 625AC5C3DFAE52BD34EC3F93742D1D2C229785E4F0F3484CFB7B8728A1C830DF ] iumsvc          C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
17:34:11.0074 0x15b8  iumsvc - ok
17:34:11.0074 0x15b8  [ 54C6B346D6FF1944A6E7587EB4942589, 618FA57637277AA08D726B911E7BAF85373807D466CBDBEC4212F1065E6105DC ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
17:34:11.0089 0x15b8  jhi_service - ok
17:34:11.0089 0x15b8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:34:11.0089 0x15b8  kbdclass - ok
17:34:11.0089 0x15b8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:34:11.0105 0x15b8  kbdhid - ok
17:34:11.0105 0x15b8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
17:34:11.0121 0x15b8  KeyIso - ok
17:34:11.0121 0x15b8  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:34:11.0121 0x15b8  KSecDD - ok
17:34:11.0136 0x15b8  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:34:11.0136 0x15b8  KSecPkg - ok
17:34:11.0136 0x15b8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:34:11.0167 0x15b8  ksthunk - ok
17:34:11.0167 0x15b8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:34:11.0199 0x15b8  KtmRm - ok
17:34:11.0199 0x15b8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:34:11.0230 0x15b8  LanmanServer - ok
17:34:11.0230 0x15b8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:34:11.0261 0x15b8  LanmanWorkstation - ok
17:34:11.0277 0x15b8  [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:34:11.0277 0x15b8  LBTServ - ok
17:34:11.0292 0x15b8  [ ED7EC050CD6C20E1A93A4DAFB7EFD14D, 9B3B9FA23788680D13E3DC2EEA2F127591A368578AEAB70F03AC379BA7379184 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
17:34:11.0292 0x15b8  LEqdUsb - ok
17:34:11.0292 0x15b8  [ 3267BC698E29474A8381E68904EB0390, A653ED6364D4B7E02FB7087D364E33D029B15A92E0FAAB176877DE5F93B36B65 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
17:34:11.0308 0x15b8  LHidEqd - ok
17:34:11.0308 0x15b8  [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:34:11.0308 0x15b8  LHidFilt - ok
17:34:11.0308 0x15b8  [ FCBDCC6F1801E32244235608E1277752, 8CC8E22E412645F4A534C51FB550AB22410AE90FA266D75498827EB922E8191E ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:34:11.0323 0x15b8  LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
17:34:17.0907 0x15b8  Detect skipped due to KSN trusted
17:34:17.0907 0x15b8  LightScribeService - ok
17:34:17.0922 0x15b8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:34:17.0969 0x15b8  lltdio - ok
17:34:17.0969 0x15b8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:34:18.0000 0x15b8  lltdsvc - ok
17:34:18.0000 0x15b8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:34:18.0031 0x15b8  lmhosts - ok
17:34:18.0031 0x15b8  [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:34:18.0031 0x15b8  LMouFilt - ok
17:34:18.0047 0x15b8  [ 4BE94D758691FAA00181F799CF528088, 81D1E6794EBEFA32643975359B7E89781E428B11F592AC67147D0D8C5E4D0056 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:34:18.0047 0x15b8  LMS - ok
17:34:18.0063 0x15b8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:34:18.0063 0x15b8  LSI_FC - ok
17:34:18.0063 0x15b8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
17:34:18.0078 0x15b8  LSI_SAS - ok
17:34:18.0078 0x15b8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
17:34:18.0094 0x15b8  LSI_SAS2 - ok
17:34:18.0094 0x15b8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:34:18.0094 0x15b8  LSI_SCSI - ok
17:34:18.0109 0x15b8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
17:34:18.0125 0x15b8  luafv - ok
17:34:18.0125 0x15b8  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
17:34:18.0141 0x15b8  MBfilt - ok
17:34:18.0141 0x15b8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:34:18.0156 0x15b8  Mcx2Svc - ok
17:34:18.0156 0x15b8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
17:34:18.0156 0x15b8  megasas - ok
17:34:18.0172 0x15b8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
17:34:18.0172 0x15b8  MegaSR - ok
17:34:18.0172 0x15b8  [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
17:34:18.0187 0x15b8  MEIx64 - ok
17:34:18.0234 0x15b8  [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:34:18.0234 0x15b8  Microsoft Office Groove Audit Service - ok
17:34:18.0250 0x15b8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
17:34:18.0281 0x15b8  MMCSS - ok
17:34:18.0281 0x15b8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
17:34:18.0297 0x15b8  Modem - ok
17:34:18.0297 0x15b8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:34:18.0312 0x15b8  monitor - ok
17:34:18.0312 0x15b8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:34:18.0328 0x15b8  mouclass - ok
17:34:18.0328 0x15b8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:34:18.0328 0x15b8  mouhid - ok
17:34:18.0343 0x15b8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:34:18.0343 0x15b8  mountmgr - ok
17:34:18.0343 0x15b8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:34:18.0359 0x15b8  mpio - ok
17:34:18.0359 0x15b8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:34:18.0390 0x15b8  mpsdrv - ok
17:34:18.0406 0x15b8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:34:18.0437 0x15b8  MpsSvc - ok
17:34:18.0437 0x15b8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:34:18.0453 0x15b8  MRxDAV - ok
17:34:18.0453 0x15b8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:18.0468 0x15b8  mrxsmb - ok
17:34:18.0484 0x15b8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:18.0484 0x15b8  mrxsmb10 - ok
17:34:18.0499 0x15b8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:18.0499 0x15b8  mrxsmb20 - ok
17:34:18.0499 0x15b8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:34:18.0515 0x15b8  msahci - ok
17:34:18.0515 0x15b8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:34:18.0531 0x15b8  msdsm - ok
17:34:18.0531 0x15b8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
17:34:18.0546 0x15b8  MSDTC - ok
17:34:18.0546 0x15b8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:34:18.0562 0x15b8  Msfs - ok
17:34:18.0562 0x15b8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:34:18.0593 0x15b8  mshidkmdf - ok
17:34:18.0593 0x15b8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:34:18.0593 0x15b8  msisadrv - ok
17:34:18.0609 0x15b8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:34:18.0624 0x15b8  MSiSCSI - ok
17:34:18.0624 0x15b8  msiserver - ok
17:34:18.0640 0x15b8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:34:18.0655 0x15b8  MSKSSRV - ok
17:34:18.0655 0x15b8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:34:18.0687 0x15b8  MSPCLOCK - ok
17:34:18.0687 0x15b8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:34:18.0702 0x15b8  MSPQM - ok
17:34:18.0718 0x15b8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:34:18.0718 0x15b8  MsRPC - ok
17:34:18.0733 0x15b8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:34:18.0733 0x15b8  mssmbios - ok
17:34:18.0733 0x15b8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:34:18.0749 0x15b8  MSTEE - ok
17:34:18.0765 0x15b8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
17:34:18.0765 0x15b8  MTConfig - ok
17:34:18.0765 0x15b8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
17:34:18.0780 0x15b8  Mup - ok
17:34:18.0780 0x15b8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
17:34:18.0811 0x15b8  napagent - ok
17:34:18.0827 0x15b8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:34:18.0843 0x15b8  NativeWifiP - ok
17:34:18.0858 0x15b8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:34:18.0874 0x15b8  NDIS - ok
17:34:18.0889 0x15b8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:34:18.0905 0x15b8  NdisCap - ok
17:34:18.0905 0x15b8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:34:18.0936 0x15b8  NdisTapi - ok
17:34:18.0936 0x15b8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:34:18.0952 0x15b8  Ndisuio - ok
17:34:18.0967 0x15b8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:34:18.0983 0x15b8  NdisWan - ok
17:34:18.0983 0x15b8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:34:19.0014 0x15b8  NDProxy - ok
17:34:19.0014 0x15b8  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:34:19.0014 0x15b8  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:34:25.0535 0x15b8  Detect skipped due to KSN trusted
17:34:25.0535 0x15b8  Net Driver HPZ12 - ok
17:34:25.0535 0x15b8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:34:25.0582 0x15b8  NetBIOS - ok
17:34:25.0582 0x15b8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:34:25.0613 0x15b8  NetBT - ok
17:34:25.0613 0x15b8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
17:34:25.0629 0x15b8  Netlogon - ok
17:34:25.0629 0x15b8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
17:34:25.0660 0x15b8  Netman - ok
17:34:25.0660 0x15b8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0675 0x15b8  NetMsmqActivator - ok
17:34:25.0675 0x15b8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0691 0x15b8  NetPipeActivator - ok
17:34:25.0691 0x15b8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
17:34:25.0722 0x15b8  netprofm - ok
17:34:25.0738 0x15b8  [ 618C55B392238B9467F9113E13525C49, 304A77EF3E1E7A1738E5A4F6A911B4DF736CEF4867C6F07CA71E227048E90370 ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
17:34:25.0769 0x15b8  netr28ux - ok
17:34:25.0769 0x15b8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0785 0x15b8  NetTcpActivator - ok
17:34:25.0785 0x15b8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:25.0800 0x15b8  NetTcpPortSharing - ok
17:34:25.0800 0x15b8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
17:34:25.0800 0x15b8  nfrd960 - ok
17:34:25.0816 0x15b8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:34:25.0831 0x15b8  NlaSvc - ok
17:34:25.0831 0x15b8  [ 907B5E1E4A592E5EDC5E4CCBDE4863C2, 7A3FA5B779CBBED46CA81328951B71352E4FC60153A91965877834EC7C6F0074 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
17:34:25.0847 0x15b8  nmwcd - ok
17:34:25.0847 0x15b8  [ 41C1AC1F3613435EB32D67BCB80A5FA5, 93A313BC4A7FA2FC3372CFBF2D76F417007B4A82455092724D3B0B6FA5A88F23 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
17:34:25.0863 0x15b8  nmwcdc - ok
17:34:25.0863 0x15b8  [ A962BE6433EF016E0DFB52ECA15A5378, 765D47BCA040034E565CA139120B94562834984EB78DA11807C054BDD5313496 ] nmwcdnsucx64    C:\Windows\system32\drivers\nmwcdnsucx64.sys
17:34:25.0878 0x15b8  nmwcdnsucx64 - ok
17:34:25.0878 0x15b8  [ 9573223E205907247AE6D948E3453770, 35D32A415F74863D7408229508F134D53CA0FA7EDD8B0E5FEEFC9DE588D0607B ] nmwcdnsux64     C:\Windows\system32\drivers\nmwcdnsux64.sys
17:34:25.0894 0x15b8  nmwcdnsux64 - ok
17:34:25.0894 0x15b8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:34:25.0925 0x15b8  Npfs - ok
17:34:25.0925 0x15b8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
17:34:25.0941 0x15b8  nsi - ok
17:34:25.0956 0x15b8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:34:25.0972 0x15b8  nsiproxy - ok
17:34:26.0003 0x15b8  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:34:26.0034 0x15b8  Ntfs - ok
17:34:26.0034 0x15b8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
17:34:26.0050 0x15b8  Null - ok
17:34:26.0065 0x15b8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:34:26.0065 0x15b8  nvraid - ok
17:34:26.0081 0x15b8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:34:26.0081 0x15b8  nvstor - ok
17:34:26.0081 0x15b8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:34:26.0097 0x15b8  nv_agp - ok
17:34:26.0097 0x15b8  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:34:26.0112 0x15b8  odserv - ok
17:34:26.0112 0x15b8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:34:26.0128 0x15b8  ohci1394 - ok
17:34:26.0128 0x15b8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:34:26.0143 0x15b8  ose - ok
17:34:26.0143 0x15b8  [ 61B16C288D2E96353323717442E08AFC, 24BF4523D0C29145866DFD4D1428E076793A69C5F005C49E647987C31D1A87F7 ] ossrv           C:\Windows\system32\drivers\ctoss2k.sys
17:34:26.0159 0x15b8  ossrv - ok
17:34:26.0159 0x15b8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:34:26.0175 0x15b8  p2pimsvc - ok
17:34:26.0190 0x15b8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
17:34:26.0206 0x15b8  p2psvc - ok
17:34:26.0206 0x15b8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
17:34:26.0221 0x15b8  Parport - ok
17:34:26.0221 0x15b8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:34:26.0221 0x15b8  partmgr - ok
17:34:26.0237 0x15b8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:34:26.0253 0x15b8  PcaSvc - ok
17:34:26.0253 0x15b8  [ BC0018C2D29F655188A0ED3FA94FDB24, BCF7F2CA5E30F569AEB69049BA3C196982C72EA7264CFBA59D7123041BA96E5A ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
17:34:26.0253 0x15b8  pccsmcfd - ok
17:34:26.0268 0x15b8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
17:34:26.0268 0x15b8  pci - ok
17:34:26.0268 0x15b8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:34:26.0284 0x15b8  pciide - ok
17:34:26.0284 0x15b8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:34:26.0299 0x15b8  pcmcia - ok
17:34:26.0299 0x15b8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:34:26.0299 0x15b8  pcw - ok
17:34:26.0315 0x15b8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:34:26.0346 0x15b8  PEAUTH - ok
17:34:26.0377 0x15b8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:34:26.0377 0x15b8  PerfHost - ok
17:34:26.0409 0x15b8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
17:34:26.0455 0x15b8  pla - ok
17:34:26.0471 0x15b8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:34:26.0487 0x15b8  PlugPlay - ok
17:34:26.0487 0x15b8  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:34:26.0487 0x15b8  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:34:29.0263 0x15b8  Detect skipped due to KSN trusted
17:34:29.0263 0x15b8  Pml Driver HPZ12 - ok
17:34:29.0263 0x15b8  [ 0BEE791C7C7ACE453C134E73633C497D, 82B30461DBF40AC15FCE6A83B9BAD2EBD05B27DEA1B784EAA096422FE8927B7B ] pmxdrv          C:\Windows\system32\drivers\pmxdrv.sys
17:34:29.0279 0x15b8  pmxdrv - ok
17:34:29.0279 0x15b8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:34:29.0310 0x15b8  PNRPAutoReg - ok
17:34:29.0310 0x15b8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:34:29.0326 0x15b8  PNRPsvc - ok
17:34:29.0341 0x15b8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:34:29.0373 0x15b8  PolicyAgent - ok
17:34:29.0373 0x15b8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
17:34:29.0404 0x15b8  Power - ok
17:34:29.0404 0x15b8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:34:29.0435 0x15b8  PptpMiniport - ok
17:34:29.0435 0x15b8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
17:34:29.0435 0x15b8  Processor - ok
17:34:29.0451 0x15b8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:34:29.0466 0x15b8  ProfSvc - ok
17:34:29.0466 0x15b8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:34:29.0466 0x15b8  ProtectedStorage - ok
17:34:29.0482 0x15b8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:34:29.0497 0x15b8  Psched - ok
17:34:29.0529 0x15b8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:34:29.0560 0x15b8  ql2300 - ok
17:34:29.0560 0x15b8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:34:29.0575 0x15b8  ql40xx - ok
17:34:29.0575 0x15b8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
17:34:29.0591 0x15b8  QWAVE - ok
17:34:29.0591 0x15b8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:34:29.0607 0x15b8  QWAVEdrv - ok
17:34:29.0607 0x15b8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:34:29.0638 0x15b8  RasAcd - ok
17:34:29.0638 0x15b8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:34:29.0653 0x15b8  RasAgileVpn - ok
17:34:29.0669 0x15b8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
17:34:29.0685 0x15b8  RasAuto - ok
17:34:29.0700 0x15b8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:34:29.0716 0x15b8  Rasl2tp - ok
17:34:29.0731 0x15b8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
17:34:29.0763 0x15b8  RasMan - ok
17:34:29.0763 0x15b8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:34:29.0778 0x15b8  RasPppoe - ok
17:34:29.0794 0x15b8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:34:29.0809 0x15b8  RasSstp - ok
17:34:29.0825 0x15b8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:34:29.0841 0x15b8  rdbss - ok
17:34:29.0841 0x15b8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
17:34:29.0856 0x15b8  rdpbus - ok
17:34:29.0856 0x15b8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:34:29.0887 0x15b8  RDPCDD - ok
17:34:29.0887 0x15b8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:34:29.0903 0x15b8  RDPENCDD - ok
17:34:29.0919 0x15b8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:34:29.0934 0x15b8  RDPREFMP - ok
17:34:29.0934 0x15b8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:34:29.0950 0x15b8  RdpVideoMiniport - ok
17:34:29.0950 0x15b8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:34:29.0965 0x15b8  RDPWD - ok
17:34:29.0965 0x15b8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:34:29.0981 0x15b8  rdyboost - ok
17:34:29.0981 0x15b8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:34:30.0012 0x15b8  RemoteAccess - ok
17:34:30.0012 0x15b8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:34:30.0028 0x15b8  RemoteRegistry - ok
17:34:30.0043 0x15b8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:34:30.0059 0x15b8  RpcEptMapper - ok
17:34:30.0059 0x15b8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
17:34:30.0075 0x15b8  RpcLocator - ok
17:34:30.0090 0x15b8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
17:34:30.0121 0x15b8  RpcSs - ok
17:34:30.0121 0x15b8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:34:30.0137 0x15b8  rspndr - ok
17:34:30.0153 0x15b8  [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:34:30.0168 0x15b8  RTL8167 - ok
17:34:30.0168 0x15b8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
17:34:30.0184 0x15b8  SamSs - ok
17:34:30.0184 0x15b8  SANDRA - ok
17:34:30.0184 0x15b8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
17:34:30.0199 0x15b8  sbp2port - ok
17:34:30.0199 0x15b8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:34:30.0231 0x15b8  SCardSvr - ok
17:34:30.0231 0x15b8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:34:30.0246 0x15b8  scfilter - ok
17:34:30.0262 0x15b8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:34:30.0309 0x15b8  Schedule - ok
17:34:30.0309 0x15b8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:34:30.0340 0x15b8  SCPolicySvc - ok
17:34:30.0340 0x15b8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:34:30.0355 0x15b8  SDRSVC - ok
17:34:30.0355 0x15b8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:34:30.0387 0x15b8  secdrv - ok
17:34:30.0387 0x15b8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
17:34:30.0402 0x15b8  seclogon - ok
17:34:30.0402 0x15b8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
17:34:30.0433 0x15b8  SENS - ok
17:34:30.0433 0x15b8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:34:30.0449 0x15b8  SensrSvc - ok
17:34:30.0449 0x15b8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:34:30.0465 0x15b8  Serenum - ok
17:34:30.0465 0x15b8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:34:30.0480 0x15b8  Serial - ok
17:34:30.0480 0x15b8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:34:30.0480 0x15b8  sermouse - ok
17:34:30.0496 0x15b8  [ 668043F192AB9659761A349A4703600D, 44443E477A38913C6973817C06C25A776574F2C0F9F52609F070BAFA836EBE2E ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
17:34:30.0511 0x15b8  ServiceLayer - ok
17:34:30.0527 0x15b8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
17:34:30.0543 0x15b8  SessionEnv - ok
17:34:30.0543 0x15b8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:34:30.0558 0x15b8  sffdisk - ok
17:34:30.0558 0x15b8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:34:30.0574 0x15b8  sffp_mmc - ok
17:34:30.0574 0x15b8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:34:30.0589 0x15b8  sffp_sd - ok
17:34:30.0589 0x15b8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
17:34:30.0589 0x15b8  sfloppy - ok
17:34:30.0605 0x15b8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:34:30.0636 0x15b8  SharedAccess - ok
17:34:30.0636 0x15b8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:34:30.0667 0x15b8  ShellHWDetection - ok
17:34:30.0667 0x15b8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
17:34:30.0683 0x15b8  SiSRaid2 - ok
17:34:30.0683 0x15b8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:34:30.0699 0x15b8  SiSRaid4 - ok
17:34:30.0699 0x15b8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:34:30.0714 0x15b8  Smb - ok
17:34:30.0730 0x15b8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:34:30.0730 0x15b8  SNMPTRAP - ok
17:34:30.0730 0x15b8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:34:30.0745 0x15b8  spldr - ok
17:34:30.0761 0x15b8  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
17:34:30.0792 0x15b8  Spooler - ok
17:34:30.0855 0x15b8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
17:34:30.0933 0x15b8  sppsvc - ok
17:34:30.0948 0x15b8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:34:30.0964 0x15b8  sppuinotify - ok
17:34:30.0979 0x15b8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:34:30.0995 0x15b8  srv - ok
17:34:30.0995 0x15b8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:34:31.0011 0x15b8  srv2 - ok
17:34:31.0026 0x15b8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:34:31.0026 0x15b8  srvnet - ok
17:34:31.0042 0x15b8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:34:31.0073 0x15b8  SSDPSRV - ok
17:34:31.0073 0x15b8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:34:31.0089 0x15b8  SstpSvc - ok
17:34:31.0104 0x15b8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
17:34:31.0104 0x15b8  stexstor - ok
17:34:31.0120 0x15b8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
17:34:31.0135 0x15b8  stisvc - ok
17:34:31.0151 0x15b8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:34:31.0151 0x15b8  swenum - ok
17:34:31.0167 0x15b8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
17:34:31.0198 0x15b8  swprv - ok
17:34:31.0229 0x15b8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
17:34:31.0276 0x15b8  SysMain - ok
17:34:31.0276 0x15b8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:34:31.0291 0x15b8  TabletInputService - ok
17:34:31.0291 0x15b8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:34:31.0323 0x15b8  TapiSrv - ok
17:34:31.0323 0x15b8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
17:34:31.0354 0x15b8  TBS - ok
17:34:31.0385 0x15b8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:34:31.0416 0x15b8  Tcpip - ok
17:34:31.0447 0x15b8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:34:31.0494 0x15b8  TCPIP6 - ok
17:34:31.0494 0x15b8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:34:31.0510 0x15b8  tcpipreg - ok
17:34:31.0510 0x15b8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:34:31.0525 0x15b8  TDPIPE - ok
17:34:31.0525 0x15b8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:34:31.0525 0x15b8  TDTCP - ok
17:34:31.0541 0x15b8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:34:31.0557 0x15b8  tdx - ok
17:34:31.0557 0x15b8  TEAM - ok
17:34:31.0557 0x15b8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:34:31.0572 0x15b8  TermDD - ok
17:34:31.0588 0x15b8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
17:34:31.0619 0x15b8  TermService - ok
17:34:31.0619 0x15b8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
17:34:31.0635 0x15b8  Themes - ok
17:34:31.0635 0x15b8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
17:34:31.0666 0x15b8  THREADORDER - ok
17:34:31.0666 0x15b8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
17:34:31.0697 0x15b8  TrkWks - ok
17:34:31.0697 0x15b8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:34:31.0728 0x15b8  TrustedInstaller - ok
17:34:31.0728 0x15b8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:34:31.0744 0x15b8  tssecsrv - ok
17:34:31.0744 0x15b8  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:34:31.0744 0x15b8  TsUsbFlt - ok
17:34:31.0759 0x15b8  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
17:34:31.0759 0x15b8  TsUsbGD - ok
17:34:31.0759 0x15b8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:34:31.0791 0x15b8  tunnel - ok
17:34:31.0791 0x15b8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:34:31.0806 0x15b8  uagp35 - ok
17:34:31.0806 0x15b8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:34:31.0837 0x15b8  udfs - ok
17:34:31.0837 0x15b8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:34:31.0853 0x15b8  UI0Detect - ok
17:34:31.0853 0x15b8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:34:31.0869 0x15b8  uliagpkx - ok
17:34:31.0869 0x15b8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:34:31.0869 0x15b8  umbus - ok
17:34:31.0884 0x15b8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
17:34:31.0884 0x15b8  UmPass - ok
17:34:31.0900 0x15b8  [ C3F2CA25E371DA2EB0AE13DDF9484FDE, 0F66F597C2EE1CE780ED9AD679D33AD52046C98C6F69672EEDD3EDEB45822B0E ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:34:31.0900 0x15b8  UNS - ok
17:34:31.0915 0x15b8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
17:34:31.0947 0x15b8  upnphost - ok
17:34:31.0947 0x15b8  [ 4E93C8496359E97830C75AC36393654D, D0482257B019512D77484D92E4DEFEFE4FED53CB440ACB7AA879D6FD0574FA9A ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
17:34:31.0962 0x15b8  upperdev - ok
17:34:31.0962 0x15b8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:34:31.0978 0x15b8  usbccgp - ok
17:34:31.0978 0x15b8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:34:31.0978 0x15b8  usbcir - ok
17:34:31.0993 0x15b8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:34:31.0993 0x15b8  usbehci - ok
17:34:32.0009 0x15b8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:34:32.0025 0x15b8  usbhub - ok
17:34:32.0025 0x15b8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:34:32.0025 0x15b8  usbohci - ok
17:34:32.0025 0x15b8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:34:32.0040 0x15b8  usbprint - ok
17:34:32.0040 0x15b8  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
17:34:32.0056 0x15b8  usbscan - ok
17:34:32.0056 0x15b8  [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser          C:\Windows\system32\drivers\usbser.sys
17:34:32.0071 0x15b8  usbser - ok
17:34:32.0071 0x15b8  [ 8844CB19A37B65E27049D4A7786726A9, 4D772174A320F02E2F87BDF8C6EBBFDE04C9763D3C21FE9557DE938521508A59 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
17:34:32.0087 0x15b8  UsbserFilt - ok
17:34:32.0087 0x15b8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:34:32.0087 0x15b8  USBSTOR - ok
17:34:32.0087 0x15b8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:34:32.0103 0x15b8  usbuhci - ok
17:34:32.0103 0x15b8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
17:34:32.0134 0x15b8  UxSms - ok
17:34:32.0134 0x15b8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
17:34:32.0134 0x15b8  VaultSvc - ok
17:34:32.0149 0x15b8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:34:32.0149 0x15b8  vdrvroot - ok
17:34:32.0165 0x15b8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
17:34:32.0196 0x15b8  vds - ok
17:34:32.0196 0x15b8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:34:32.0212 0x15b8  vga - ok
17:34:32.0212 0x15b8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:34:32.0227 0x15b8  VgaSave - ok
17:34:32.0243 0x15b8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:34:32.0243 0x15b8  vhdmp - ok
17:34:32.0243 0x15b8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:34:32.0259 0x15b8  viaide - ok
17:34:32.0259 0x15b8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:34:32.0274 0x15b8  volmgr - ok
17:34:32.0274 0x15b8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:34:32.0290 0x15b8  volmgrx - ok
17:34:32.0290 0x15b8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:34:32.0305 0x15b8  volsnap - ok
17:34:32.0305 0x15b8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:34:32.0321 0x15b8  vsmraid - ok
17:34:32.0352 0x15b8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
17:34:32.0399 0x15b8  VSS - ok
17:34:32.0399 0x15b8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:34:32.0415 0x15b8  vwifibus - ok
17:34:32.0415 0x15b8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:34:32.0430 0x15b8  vwififlt - ok
17:34:32.0446 0x15b8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
17:34:32.0477 0x15b8  W32Time - ok
17:34:32.0477 0x15b8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:34:32.0493 0x15b8  WacomPen - ok
17:34:32.0493 0x15b8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:34:32.0508 0x15b8  WANARP - ok
17:34:32.0508 0x15b8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:34:32.0539 0x15b8  Wanarpv6 - ok
17:34:32.0555 0x15b8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:34:32.0586 0x15b8  WatAdminSvc - ok
17:34:32.0617 0x15b8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
17:34:32.0649 0x15b8  wbengine - ok
17:34:32.0664 0x15b8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:34:32.0680 0x15b8  WbioSrvc - ok
17:34:32.0680 0x15b8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:34:32.0711 0x15b8  wcncsvc - ok
17:34:32.0711 0x15b8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:34:32.0711 0x15b8  WcsPlugInService - ok
17:34:32.0727 0x15b8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
17:34:32.0727 0x15b8  Wd - ok
17:34:32.0742 0x15b8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:34:32.0758 0x15b8  Wdf01000 - ok
17:34:32.0773 0x15b8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:34:32.0773 0x15b8  WdiServiceHost - ok
17:34:32.0789 0x15b8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:34:32.0805 0x15b8  WdiSystemHost - ok
17:34:32.0805 0x15b8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
17:34:32.0820 0x15b8  WebClient - ok
17:34:32.0820 0x15b8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:34:32.0851 0x15b8  Wecsvc - ok
17:34:32.0851 0x15b8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:34:32.0883 0x15b8  wercplsupport - ok
17:34:32.0883 0x15b8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:34:32.0914 0x15b8  WerSvc - ok
17:34:32.0914 0x15b8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:34:32.0929 0x15b8  WfpLwf - ok
17:34:32.0945 0x15b8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:34:32.0945 0x15b8  WIMMount - ok
17:34:32.0945 0x15b8  WinDefend - ok
17:34:32.0945 0x15b8  WinHttpAutoProxySvc - ok
17:34:32.0961 0x15b8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:34:32.0992 0x15b8  Winmgmt - ok
17:34:33.0023 0x15b8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
17:34:33.0085 0x15b8  WinRM - ok
17:34:33.0085 0x15b8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:34:33.0101 0x15b8  WinUsb - ok
17:34:33.0117 0x15b8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:34:33.0148 0x15b8  Wlansvc - ok
17:34:33.0195 0x15b8  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:34:33.0241 0x15b8  wlidsvc - ok
17:34:33.0241 0x15b8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
17:34:33.0257 0x15b8  WmiAcpi - ok
17:34:33.0257 0x15b8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:34:33.0273 0x15b8  wmiApSrv - ok
17:34:33.0273 0x15b8  WMPNetworkSvc - ok
17:34:33.0319 0x15b8  [ 83B6CA03C846FCD47F9883D77D1EB27B, 1616DBBC95085B6618B7F884383507E2A54D561A41288E79FA6DC99218C02802 ] WMZuneComm      D:\Program Files (x86)\Zune\WMZuneComm.exe
17:34:33.0335 0x15b8  WMZuneComm - ok
17:34:33.0351 0x15b8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:34:33.0351 0x15b8  WPCSvc - ok
17:34:33.0366 0x15b8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:34:33.0366 0x15b8  WPDBusEnum - ok
17:34:33.0382 0x15b8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:34:33.0397 0x15b8  ws2ifsl - ok
17:34:33.0397 0x15b8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
17:34:33.0413 0x15b8  wscsvc - ok
17:34:33.0413 0x15b8  WSearch - ok
17:34:33.0460 0x15b8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:34:33.0507 0x15b8  wuauserv - ok
17:34:33.0507 0x15b8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:34:33.0522 0x15b8  WudfPf - ok
17:34:33.0522 0x15b8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:34:33.0538 0x15b8  WUDFRd - ok
17:34:33.0538 0x15b8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:34:33.0553 0x15b8  wudfsvc - ok
17:34:33.0569 0x15b8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:34:33.0569 0x15b8  WwanSvc - ok
17:34:33.0787 0x15b8  [ 67B787C34FB2888D01B130AE007042D8, E44878E53F265C89F271B08B81C129105E42D1C78C14467B2D96E28A9A428B1A ] ZuneNetworkSvc  D:\Program Files (x86)\Zune\ZuneNss.exe
17:34:33.0928 0x15b8  ZuneNetworkSvc - ok
17:34:33.0959 0x15b8  [ 4D89FC1C20CF655739EFAC5DA81A67BC, 788D0A5B9972ED6D80242C0C5E80AB0FAB44A708B896D5F724AC1559A291C8DD ] ZuneWlanCfgSvc  D:\Program Files (x86)\Zune\ZuneWlanCfgSvc.exe
17:34:33.0975 0x15b8  ZuneWlanCfgSvc - ok
17:34:33.0975 0x15b8  ================ Scan global ===============================
17:34:33.0975 0x15b8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:34:33.0990 0x15b8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:34:33.0990 0x15b8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:34:34.0006 0x15b8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:34:34.0006 0x15b8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:34:34.0021 0x15b8  [ Global ] - ok
17:34:34.0021 0x15b8  ================ Scan MBR ==================================
17:34:34.0021 0x15b8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
17:34:34.0099 0x15b8  \Device\Harddisk2\DR2 - ok
17:34:34.0115 0x15b8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:34:34.0209 0x15b8  \Device\Harddisk1\DR1 - ok
17:34:34.0224 0x15b8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:34:34.0287 0x15b8  \Device\Harddisk0\DR0 - ok
17:34:34.0287 0x15b8  ================ Scan VBR ==================================
17:34:34.0287 0x15b8  [ 80CFF23781F7C46A9C70059C78702680 ] \Device\Harddisk2\DR2\Partition1
17:34:34.0287 0x15b8  \Device\Harddisk2\DR2\Partition1 - ok
17:34:34.0287 0x15b8  [ 1601DB7499C149C5C0FD14E901B9F915 ] \Device\Harddisk2\DR2\Partition2
17:34:34.0302 0x15b8  \Device\Harddisk2\DR2\Partition2 - ok
17:34:34.0302 0x15b8  [ 42E8C5D1435C6852D2005FF694B6E36D ] \Device\Harddisk1\DR1\Partition1
17:34:34.0302 0x15b8  \Device\Harddisk1\DR1\Partition1 - ok
17:34:34.0302 0x15b8  [ B2C07F1EAE26F3BE942E6D557B12EB4A ] \Device\Harddisk1\DR1\Partition2
17:34:34.0302 0x15b8  \Device\Harddisk1\DR1\Partition2 - ok
17:34:34.0302 0x15b8  [ 70B49E1CAECD3FD250C22A6E65692FEC ] \Device\Harddisk1\DR1\Partition3
17:34:34.0302 0x15b8  \Device\Harddisk1\DR1\Partition3 - ok
17:34:34.0318 0x15b8  [ D1D538356BC33CA851B33A2F38277250 ] \Device\Harddisk0\DR0\Partition1
17:34:34.0349 0x15b8  \Device\Harddisk0\DR0\Partition1 - ok
17:34:34.0349 0x15b8  [ 31B19669CF9733523EDEC6C3C54EAD14 ] \Device\Harddisk0\DR0\Partition2
17:34:34.0349 0x15b8  \Device\Harddisk0\DR0\Partition2 - ok
17:34:34.0349 0x15b8  ================ Scan generic autorun ======================
17:34:34.0365 0x15b8  [ 3D32ABE481059E9F6CEEBE7E6EC87E06, 138CD874728A16FA7364B89E7CF7570F82FB62E8C4B89F349FE40B8B154AAF4A ] C:\Windows\system32\igfxtray.exe
17:34:34.0380 0x15b8  IgfxTray - ok
17:34:34.0380 0x15b8  [ 19E5456EC1CA8A92476217948D456BB8, A25AE243E52B4C008C188604A7D0A2B1FBBA99599DFED3B4A746D76F821ECD51 ] C:\Windows\system32\hkcmd.exe
17:34:34.0411 0x15b8  HotKeysCmds - ok
17:34:34.0411 0x15b8  [ 0B1B8AB2CD97ADAF6EFC8DBC6FC13A02, E2A097613C217FB08CD515A87519A34DE5CE187234D75E8ACA5BAC49B943E659 ] C:\Windows\system32\igfxpers.exe
17:34:34.0427 0x15b8  Persistence - ok
17:34:34.0474 0x15b8  [ DF72D700CC33611206675B8A2FD4D4F9, AB3AF6FD92140A1432FEAFFF2015CFAD5E9362F0018EA1D859A2DA349E95847D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
17:34:34.0505 0x15b8  EvtMgr6 - ok
17:34:34.0536 0x15b8  [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C, 6C6B186A2FC1DFD800041B160A7D71F5F1B3C70D62C7696B8DA89148A8D87D47 ] D:\Program Files (x86)\Zune\ZuneLauncher.exe
17:34:34.0552 0x15b8  Zune Launcher - ok
17:34:34.0552 0x15b8  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
17:34:34.0552 0x15b8  Logitech Download Assistant - ok
17:34:34.0567 0x15b8  CTXFIREG - ok
17:34:34.0567 0x15b8  [ 72860972F8196EBB3C896F53D2B95470, 95C046A66DD0089377867F073CADCE585B7C69CA23E724DCAD9D896BF01E023D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
17:34:34.0567 0x15b8  hpqSRMon - detected UnsignedFile.Multi.Generic ( 1 )
17:34:37.0344 0x15b8  Detect skipped due to KSN trusted
17:34:37.0344 0x15b8  hpqSRMon - ok
17:34:37.0344 0x15b8  [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:34:37.0360 0x15b8  HP Software Update - ok
17:34:37.0375 0x15b8  [ 38D198A2DD54A67120040566A38103BA, 01604BD91A5B2C0DDC7B52036511F8219952626716E75979D8464F2C56BA0114 ] D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:34:37.0391 0x15b8  GrooveMonitor - ok
17:34:37.0391 0x15b8  AsioThk32Reg - ok
17:34:37.0391 0x15b8  CTHelper - ok
17:34:37.0422 0x15b8  [ 35048D8E8A0BF7A797CD5757ACD7EED0, 890FCF24869614B3990B575A588ECB35C25A5B896F21BF9C66D43C93787FDD7A ] D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe
17:34:37.0438 0x15b8  CLMLServer - ok
17:34:37.0485 0x15b8  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] D:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint\MUITransfer\MUIStartMenu.exe
17:34:37.0500 0x15b8  UpdateLBPShortCut - ok
17:34:37.0547 0x15b8  [ D28328420109DAA5B19038364136DC45, 7AC8A4F53AE04C7F3043B23E577223967721C7302ABC2B7FDCC15322FEEA874F ] D:\PROGRA~2\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
17:34:37.0578 0x15b8  InstantBurn - ok
17:34:37.0609 0x15b8  [ 99ECAF298145F950B1326656167FBFDF, 77573FE19E2C16AB6D7DD3B689D5E926A86793491D6915E76999BA19A35265EA ] D:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
17:34:37.0609 0x15b8  RemoteControl10 - ok
17:34:37.0609 0x15b8  [ C252C2303FE79F201E64F269FEFF0DDB, AD305DA8B4CDE8C578424AB42AE5079901285C130F04F534E0CF86E13F1335C4 ] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
17:34:37.0625 0x15b8  BDRegion - ok
17:34:37.0703 0x15b8  [ 7D9D685235B13830E24BD9A16AAE1EBC, CC1ED51A945AEE11CD1D42ED1368AB5DE19602F195C9A90E633E04D2C98EE586 ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
17:34:37.0781 0x15b8  XFastUSB - ok
17:34:37.0812 0x15b8  [ 7C73B5C50CAEDB1771A049142026906B, A4992339D71A9297963C70616C4124BD701E46AEE439E09C392C2B2EBAE624E6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:34:37.0828 0x15b8  StartCCC - ok
17:34:37.0890 0x15b8  [ 5CA0EB9538C6ACEBDC3593FC53527B9D, 35AC60899254C7414FF42BCDA4165FB58F6369BD5EDCAC24EBB1B5A095664CAC ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
17:34:37.0953 0x15b8  AvastUI.exe - ok
17:34:37.0968 0x15b8  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:34:37.0999 0x15b8  Adobe ARM - ok
17:34:37.0999 0x15b8  [ F381E01B43A9135AA11E330B4663DDBE, F4C01AB114C5B6C58BDE0EB1111A196F8D057B5BE46D62ABCD2D841B8B65B766 ] C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe
17:34:38.0015 0x15b8  VolPanel - detected UnsignedFile.Multi.Generic ( 1 )
17:34:40.0963 0x15b8  Detect skipped due to KSN trusted
17:34:40.0963 0x15b8  VolPanel - ok
17:34:40.0979 0x15b8  CTxfiHlp - ok
17:34:40.0979 0x15b8  [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:34:41.0010 0x15b8  SunJavaUpdateSched - ok
17:34:41.0041 0x15b8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:34:41.0073 0x15b8  Sidebar - ok
17:34:41.0073 0x15b8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:34:41.0088 0x15b8  mctadmin - ok
17:34:41.0104 0x15b8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:34:41.0135 0x15b8  Sidebar - ok
17:34:41.0135 0x15b8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:34:41.0151 0x15b8  mctadmin - ok
17:34:41.0182 0x15b8  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:34:41.0213 0x15b8  Sidebar - ok
17:34:41.0213 0x15b8  Power2GoExpress - ok
17:34:41.0213 0x15b8  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:34:41.0229 0x15b8  Google Update - ok
17:34:41.0244 0x15b8  SB Audigy 2 Startup Menu - ok
17:34:41.0260 0x15b8  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:34:41.0307 0x15b8  Sidebar - ok
17:34:41.0307 0x15b8  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:34:41.0307 0x15b8  Google Update - ok
17:34:41.0307 0x15b8  Power2GoExpress - ok
17:34:41.0322 0x15b8  [ A8D72B3C7E20F2BB67CC60BCAD4E9138, 05630A6053652D7528572A662FD9C422EB0CAD2D91508CF85748AFE6802C027C ] C:\Windows\CTRegRun.EXE
17:34:41.0322 0x15b8  CTRegRun - detected UnsignedFile.Multi.Generic ( 1 )
17:34:44.0239 0x15b8  Detect skipped due to KSN trusted
17:34:44.0239 0x15b8  CTRegRun - ok
17:34:44.0239 0x15b8  CTPostBootSequencer - ok
17:34:44.0239 0x15b8  Waiting for KSN requests completion. In queue: 7
17:34:45.0253 0x15b8  Waiting for KSN requests completion. In queue: 7
17:34:46.0267 0x15b8  Waiting for KSN requests completion. In queue: 7
17:34:47.0297 0x15b8  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
17:34:47.0297 0x15b8  Win FW state via NFP2: enabled
17:34:50.0074 0x15b8  ============================================================
17:34:50.0074 0x15b8  Scan finished
17:34:50.0074 0x15b8  ============================================================
17:34:50.0074 0x153c  Detected object count: 0
17:34:50.0074 0x153c  Actual detected object count: 0
17:35:00.0027 0x1a88  Deinitialize success
         

Keines der beiden Programme hat etwas gefunden

Geändert von Zecka (18.06.2014 um 15:12 Uhr)

Alt 18.06.2014, 16:51   #11
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Und jetzt mit Minecraft

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.06.18.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16844
Zecka :: BIGBLUE [administrator]

18.06.2014 17:40:05
mbar-log-2014-06-18 (17-40-05).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 324263
Time elapsed: 5 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Code:
ATTFilter
17:46:14.0092 0x1af4  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
17:46:17.0101 0x1af4  ============================================================
17:46:17.0101 0x1af4  Current date / time: 2014/06/18 17:46:17.0101
17:46:17.0101 0x1af4  SystemInfo:
17:46:17.0101 0x1af4  
17:46:17.0101 0x1af4  OS Version: 6.1.7601 ServicePack: 1.0
17:46:17.0101 0x1af4  Product type: Workstation
17:46:17.0101 0x1af4  ComputerName: BIGBLUE
17:46:17.0101 0x1af4  UserName: Zecka
17:46:17.0101 0x1af4  Windows directory: C:\Windows
17:46:17.0101 0x1af4  System windows directory: C:\Windows
17:46:17.0101 0x1af4  Running under WOW64
17:46:17.0101 0x1af4  Processor architecture: Intel x64
17:46:17.0101 0x1af4  Number of processors: 8
17:46:17.0101 0x1af4  Page size: 0x1000
17:46:17.0101 0x1af4  Boot type: Normal boot
17:46:17.0101 0x1af4  ============================================================
17:46:17.0154 0x1af4  KLMD registered as C:\Windows\system32\drivers\56770821.sys
17:46:17.0227 0x1af4  System UUID: {86E11EC7-E533-0560-C787-DDE2F20AF30A}
17:46:17.0496 0x1af4  Drive \Device\Harddisk2\DR2 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:17.0501 0x1af4  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:17.0508 0x1af4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:46:17.0515 0x1af4  ============================================================
17:46:17.0515 0x1af4  \Device\Harddisk2\DR2:
17:46:17.0515 0x1af4  MBR partitions:
17:46:17.0515 0x1af4  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xBBC30
17:46:17.0515 0x1af4  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xBC800, BlocksNum 0xDED83B0
17:46:17.0515 0x1af4  \Device\Harddisk1\DR1:
17:46:17.0515 0x1af4  MBR partitions:
17:46:17.0515 0x1af4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x639C000
17:46:17.0515 0x1af4  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x639C800, BlocksNum 0x27AC4000
17:46:17.0515 0x1af4  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2DE60800, BlocksNum 0xC524800
17:46:17.0515 0x1af4  \Device\Harddisk0\DR0:
17:46:17.0516 0x1af4  MBR partitions:
17:46:17.0516 0x1af4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3D090000
17:46:17.0516 0x1af4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3D090800, BlocksNum 0x37675000
17:46:17.0516 0x1af4  ============================================================
17:46:17.0517 0x1af4  C: <-> \Device\Harddisk2\DR2\Partition2
17:46:17.0533 0x1af4  D: <-> \Device\Harddisk0\DR0\Partition1
17:46:17.0564 0x1af4  E: <-> \Device\Harddisk0\DR0\Partition2
17:46:17.0605 0x1af4  Z: <-> \Device\Harddisk1\DR1\Partition3
17:46:17.0627 0x1af4  X: <-> \Device\Harddisk1\DR1\Partition1
17:46:17.0650 0x1af4  Y: <-> \Device\Harddisk1\DR1\Partition2
17:46:17.0650 0x1af4  ============================================================
17:46:17.0650 0x1af4  Initialize success
17:46:17.0650 0x1af4  ============================================================
17:46:24.0092 0x0810  ============================================================
17:46:24.0092 0x0810  Scan started
17:46:24.0092 0x0810  Mode: Manual; SigCheck; TDLFS; 
17:46:24.0092 0x0810  ============================================================
17:46:24.0092 0x0810  KSN ping started
17:46:26.0878 0x0810  KSN ping finished: true
17:46:27.0224 0x0810  ================ Scan system memory ========================
17:46:27.0224 0x0810  System memory - ok
17:46:27.0224 0x0810  ================ Scan services =============================
17:46:27.0255 0x0810  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
17:46:27.0297 0x0810  1394ohci - ok
17:46:27.0308 0x0810  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:46:27.0321 0x0810  ACPI - ok
17:46:27.0324 0x0810  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:46:27.0338 0x0810  AcpiPmi - ok
17:46:27.0343 0x0810  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:46:27.0351 0x0810  AdobeARMservice - ok
17:46:27.0361 0x0810  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
17:46:27.0377 0x0810  adp94xx - ok
17:46:27.0385 0x0810  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
17:46:27.0398 0x0810  adpahci - ok
17:46:27.0403 0x0810  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
17:46:27.0413 0x0810  adpu320 - ok
17:46:27.0418 0x0810  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:46:27.0461 0x0810  AeLookupSvc - ok
17:46:27.0472 0x0810  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
17:46:27.0491 0x0810  AFD - ok
17:46:27.0495 0x0810  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
17:46:27.0503 0x0810  agp440 - ok
17:46:27.0506 0x0810  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
17:46:27.0518 0x0810  ALG - ok
17:46:27.0521 0x0810  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:46:27.0528 0x0810  aliide - ok
17:46:27.0534 0x0810  [ 310F86335B0505DDC6D2DD48E66EF06B, 936273CA046B3AE0944E6C1557CECB2A0C61D034977BBB9FACBE062617CF3A2C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:46:27.0558 0x0810  AMD External Events Utility - ok
17:46:27.0560 0x0810  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:46:27.0568 0x0810  amdide - ok
17:46:27.0575 0x0810  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
17:46:27.0585 0x0810  AmdK8 - ok
17:46:27.0780 0x0810  [ 79CC9BE187E3144E1B58A54B842475E7, 89DD3177B5CE649AC0093603CE13FBFD93AC24F8E16C52672549110141106F4A ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:46:28.0039 0x0810  amdkmdag - ok
17:46:28.0061 0x0810  [ 07561D3B7FD99F6E186C49C2D0628E38, D2D72EB45EAD29A3099C040E99A4F1F4902D3BDC0466800C63ECD33343DC1224 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
17:46:28.0086 0x0810  amdkmdap - ok
17:46:28.0089 0x0810  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
17:46:28.0100 0x0810  AmdPPM - ok
17:46:28.0103 0x0810  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:46:28.0112 0x0810  amdsata - ok
17:46:28.0118 0x0810  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
17:46:28.0128 0x0810  amdsbs - ok
17:46:28.0131 0x0810  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:46:28.0138 0x0810  amdxata - ok
17:46:28.0141 0x0810  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
17:46:28.0185 0x0810  AppID - ok
17:46:28.0188 0x0810  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:46:28.0211 0x0810  AppIDSvc - ok
17:46:28.0215 0x0810  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
17:46:28.0225 0x0810  Appinfo - ok
17:46:28.0229 0x0810  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
17:46:28.0237 0x0810  arc - ok
17:46:28.0241 0x0810  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:46:28.0249 0x0810  arcsas - ok
17:46:28.0254 0x0810  [ 6FE3237C1177E66437E7AD0E8AC1A6E5, 3223D4E57150DE8F768BC1BE0E6DCFFC6CA5B09DC7D7ADF283C90929100B0B7B ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
17:46:28.0270 0x0810  asmthub3 - ok
17:46:28.0279 0x0810  [ C4043E39A2ABBC56581CA25DF161E9F7, 1B53A8BEE4823EA842A00F5304428F0B4D14078045CF84ED20D8DF0FB8826040 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
17:46:28.0297 0x0810  asmtxhci - ok
17:46:28.0308 0x0810  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:46:28.0317 0x0810  aspnet_state - ok
17:46:28.0320 0x0810  [ EDC0C73FA41DF1C8B1FEA3852AED2848, A3FE7EE1AB15ED603403479CFD011DF9B506C1FE95730C0980F1410810C2F736 ] AsrHidFilter    C:\Windows\system32\DRIVERS\AsrHidFilter.sys
17:46:28.0327 0x0810  AsrHidFilter - ok
17:46:28.0330 0x0810  [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
17:46:28.0338 0x0810  aswHwid - ok
17:46:28.0342 0x0810  [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
17:46:28.0350 0x0810  aswMonFlt - ok
17:46:28.0354 0x0810  [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
17:46:28.0362 0x0810  aswRdr - ok
17:46:28.0367 0x0810  [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
17:46:28.0374 0x0810  aswRvrt - ok
17:46:28.0394 0x0810  [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
17:46:28.0420 0x0810  aswSnx - ok
17:46:28.0431 0x0810  [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
17:46:28.0445 0x0810  aswSP - ok
17:46:28.0450 0x0810  [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
17:46:28.0457 0x0810  aswStm - ok
17:46:28.0463 0x0810  [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
17:46:28.0473 0x0810  aswVmm - ok
17:46:28.0476 0x0810  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:46:28.0499 0x0810  AsyncMac - ok
17:46:28.0502 0x0810  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
17:46:28.0508 0x0810  atapi - ok
17:46:28.0512 0x0810  [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
17:46:28.0523 0x0810  AtiHDAudioService - ok
17:46:28.0536 0x0810  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:46:28.0573 0x0810  AudioEndpointBuilder - ok
17:46:28.0586 0x0810  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:46:28.0621 0x0810  AudioSrv - ok
17:46:28.0628 0x0810  [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:46:28.0635 0x0810  avast! Antivirus - ok
17:46:28.0639 0x0810  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:46:28.0657 0x0810  AxInstSV - ok
17:46:28.0667 0x0810  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
17:46:28.0686 0x0810  b06bdrv - ok
17:46:28.0693 0x0810  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:46:28.0708 0x0810  b57nd60a - ok
17:46:28.0713 0x0810  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:46:28.0724 0x0810  BDESVC - ok
17:46:28.0726 0x0810  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:46:28.0750 0x0810  Beep - ok
17:46:28.0764 0x0810  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
17:46:28.0788 0x0810  BFE - ok
17:46:28.0805 0x0810  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
17:46:28.0848 0x0810  BITS - ok
17:46:28.0851 0x0810  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:46:28.0861 0x0810  blbdrive - ok
17:46:28.0864 0x0810  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:46:28.0875 0x0810  bowser - ok
17:46:28.0877 0x0810  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
17:46:28.0888 0x0810  BrFiltLo - ok
17:46:28.0890 0x0810  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
17:46:28.0901 0x0810  BrFiltUp - ok
17:46:28.0905 0x0810  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
17:46:28.0916 0x0810  Browser - ok
17:46:28.0924 0x0810  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:46:28.0940 0x0810  Brserid - ok
17:46:28.0943 0x0810  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:46:28.0954 0x0810  BrSerWdm - ok
17:46:28.0956 0x0810  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:46:28.0966 0x0810  BrUsbMdm - ok
17:46:28.0969 0x0810  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:46:28.0977 0x0810  BrUsbSer - ok
17:46:28.0981 0x0810  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:46:28.0993 0x0810  BTHMODEM - ok
17:46:28.0997 0x0810  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
17:46:29.0022 0x0810  bthserv - ok
17:46:29.0025 0x0810  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:46:29.0050 0x0810  cdfs - ok
17:46:29.0053 0x0810  cdrbsdrv - ok
17:46:29.0057 0x0810  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:46:29.0067 0x0810  cdrom - ok
17:46:29.0071 0x0810  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
17:46:29.0095 0x0810  CertPropSvc - ok
17:46:29.0098 0x0810  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
17:46:29.0110 0x0810  circlass - ok
17:46:29.0113 0x0810  [ 2B6B01F0B1DE1B9A0285F9CF36FD6B22, 2D93CE3AABA5DE94FA1724AAE272CAAA95AE9416F4A51E73E126344DD938968B ] CLBStor         C:\Windows\system32\drivers\CLBStor.sys
17:46:29.0119 0x0810  CLBStor - ok
17:46:29.0121 0x0810  CLBUDFbk - ok
17:46:29.0129 0x0810  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
17:46:29.0143 0x0810  CLFS - ok
17:46:29.0210 0x0810  [ 524DC3807CB1746225F9D26ADD19C319, DC23392E8C542B02860BA1F57F03AD08A58B256D155CC6B81A48691A79D3A3F6 ] CLKMSVC10_58664B3D D:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
17:46:29.0221 0x0810  CLKMSVC10_58664B3D - ok
17:46:29.0226 0x0810  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:46:29.0234 0x0810  clr_optimization_v2.0.50727_32 - ok
17:46:29.0239 0x0810  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:46:29.0247 0x0810  clr_optimization_v2.0.50727_64 - ok
17:46:29.0256 0x0810  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:46:29.0266 0x0810  clr_optimization_v4.0.30319_32 - ok
17:46:29.0271 0x0810  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:46:29.0281 0x0810  clr_optimization_v4.0.30319_64 - ok
17:46:29.0284 0x0810  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
17:46:29.0293 0x0810  CmBatt - ok
17:46:29.0296 0x0810  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:46:29.0303 0x0810  cmdide - ok
17:46:29.0313 0x0810  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
17:46:29.0334 0x0810  CNG - ok
17:46:29.0339 0x0810  [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX        C:\Windows\system32\drivers\COMMONFX.SYS
17:46:29.0347 0x0810  COMMONFX - ok
17:46:29.0350 0x0810  COMMONFX.DLL - ok
17:46:29.0354 0x0810  [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX.SYS    C:\Windows\System32\drivers\COMMONFX.SYS
17:46:29.0362 0x0810  COMMONFX.SYS - ok
17:46:29.0364 0x0810  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
17:46:29.0371 0x0810  Compbatt - ok
17:46:29.0374 0x0810  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
17:46:29.0386 0x0810  CompositeBus - ok
17:46:29.0388 0x0810  COMSysApp - ok
17:46:29.0391 0x0810  [ C08063F052308B6F5882482615387F30, 523D1D43E896077F32CD9ACAA8E85B513BFB7B013A625E56F0D4E9675D9822BA ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
17:46:29.0397 0x0810  cpuz135 - ok
17:46:29.0400 0x0810  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
17:46:29.0407 0x0810  crcdisk - ok
17:46:29.0411 0x0810  [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:46:29.0416 0x0810  Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
17:46:32.0125 0x0810  Detect skipped due to KSN trusted
17:46:32.0125 0x0810  Creative ALchemy AL6 Licensing Service - ok
17:46:32.0131 0x0810  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:46:32.0144 0x0810  CryptSvc - ok
17:46:32.0150 0x0810  [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT         C:\Windows\system32\drivers\CT20XUT.SYS
17:46:32.0160 0x0810  CT20XUT - ok
17:46:32.0163 0x0810  CT20XUT.DLL - ok
17:46:32.0169 0x0810  [ D7F36860B025F19FAF8C7172F84BA01C, F06313886779214CACC5A11CA91A5FB8ECE37905AAD3738BFE376D57BF506890 ] CT20XUT.SYS     C:\Windows\System32\drivers\CT20XUT.SYS
17:46:32.0178 0x0810  CT20XUT.SYS - ok
17:46:32.0190 0x0810  [ F5964C14C10497317901E6776CCDA2CA, 30995316CC8265B813BE8EEA3214648C62E90EED3CC170807AF5CA4566295FFE ] ctac32k         C:\Windows\system32\drivers\ctac32k.sys
17:46:32.0206 0x0810  ctac32k - ok
17:46:32.0221 0x0810  [ D778E18645602CC567B055A30C6A35B4, BDE6A6ADFCE8A193E48B9DAE58CD9F2A02C3D769F6ECC8779C6B5C2D15F69A44 ] ctaud2k         C:\Windows\system32\drivers\ctaud2k.sys
17:46:32.0240 0x0810  ctaud2k - ok
17:46:32.0243 0x0810  CTAUDFX - ok
17:46:32.0244 0x0810  CTAUDFX.DLL - ok
17:46:32.0246 0x0810  CTAUDFX.SYS - ok
17:46:32.0256 0x0810  [ 7D564A71907B389C62191E7D7B9069D8, 3590C38A65BCE379374C979328BC560DA21A687630CB1524DDFA4C6124001F93 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:46:32.0266 0x0810  CTAudSvcService - detected UnsignedFile.Multi.Generic ( 1 )
17:46:35.0163 0x0810  Detect skipped due to KSN trusted
17:46:35.0163 0x0810  CTAudSvcService - ok
17:46:35.0165 0x0810  CTEAPSFX.DLL - ok
17:46:35.0168 0x0810  CTEDSPFX.DLL - ok
17:46:35.0170 0x0810  CTEDSPIO.DLL - ok
17:46:35.0173 0x0810  CTEDSPSY.DLL - ok
17:46:35.0174 0x0810  CTERFXFX - ok
17:46:35.0176 0x0810  CTERFXFX.DLL - ok
17:46:35.0178 0x0810  CTERFXFX.SYS - ok
17:46:35.0204 0x0810  [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX        C:\Windows\system32\drivers\CTEXFIFX.SYS
17:46:35.0237 0x0810  CTEXFIFX - ok
17:46:35.0240 0x0810  CTEXFIFX.DLL - ok
17:46:35.0266 0x0810  [ CD77E1DDABD5FE8CF9F41147437C11E3, 5137E558742CE7094D7344362A4C846512797A9895C3E3DD96CB72264B24676D ] CTEXFIFX.SYS    C:\Windows\System32\drivers\CTEXFIFX.SYS
17:46:35.0295 0x0810  CTEXFIFX.SYS - ok
17:46:35.0301 0x0810  [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT         C:\Windows\system32\drivers\CTHWIUT.SYS
17:46:35.0308 0x0810  CTHWIUT - ok
17:46:35.0310 0x0810  CTHWIUT.DLL - ok
17:46:35.0313 0x0810  [ B786E3F9970231D3203C8D7D9FB31074, 1B4AF6F6BFEDB3DABB7115FE78DFDCE96D856D2CE2A93E74A50F746D34E6660F ] CTHWIUT.SYS     C:\Windows\System32\drivers\CTHWIUT.SYS
17:46:35.0320 0x0810  CTHWIUT.SYS - ok
17:46:35.0323 0x0810  [ 133C4C45E1B68F49A9CEBA88973F60E2, 1B79F8C7650568C6C951262C0CF0FA890047E3D148580A3C38695F7C35BDA69B ] ctprxy2k        C:\Windows\system32\drivers\ctprxy2k.sys
17:46:35.0328 0x0810  ctprxy2k - ok
17:46:35.0331 0x0810  CTSBLFX - ok
17:46:35.0333 0x0810  CTSBLFX.DLL - ok
17:46:35.0335 0x0810  CTSBLFX.SYS - ok
17:46:35.0340 0x0810  [ 9B670F98B9D35274C13ACC36F341C070, D3EB5421E6105278E87603012170F74CF4D9173242BBFB676CF6F6B304D16199 ] ctsfm2k         C:\Windows\system32\drivers\ctsfm2k.sys
17:46:35.0350 0x0810  ctsfm2k - ok
17:46:35.0361 0x0810  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:46:35.0398 0x0810  DcomLaunch - ok
17:46:35.0405 0x0810  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
17:46:35.0435 0x0810  defragsvc - ok
17:46:35.0439 0x0810  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:46:35.0465 0x0810  DfsC - ok
17:46:35.0472 0x0810  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:46:35.0489 0x0810  Dhcp - ok
17:46:35.0492 0x0810  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
17:46:35.0516 0x0810  discache - ok
17:46:35.0520 0x0810  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
17:46:35.0528 0x0810  Disk - ok
17:46:35.0533 0x0810  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:46:35.0547 0x0810  Dnscache - ok
17:46:35.0553 0x0810  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:46:35.0582 0x0810  dot3svc - ok
17:46:35.0587 0x0810  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
17:46:35.0601 0x0810  Dot4 - ok
17:46:35.0603 0x0810  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
17:46:35.0614 0x0810  Dot4Print - ok
17:46:35.0617 0x0810  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
17:46:35.0628 0x0810  dot4usb - ok
17:46:35.0634 0x0810  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
17:46:35.0660 0x0810  DPS - ok
17:46:35.0663 0x0810  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:46:35.0672 0x0810  drmkaud - ok
17:46:35.0691 0x0810  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:46:35.0715 0x0810  DXGKrnl - ok
17:46:35.0720 0x0810  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
17:46:35.0746 0x0810  EapHost - ok
17:46:35.0803 0x0810  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
17:46:35.0883 0x0810  ebdrv - ok
17:46:35.0888 0x0810  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
17:46:35.0898 0x0810  EFS - ok
17:46:35.0912 0x0810  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:46:35.0938 0x0810  ehRecvr - ok
17:46:35.0942 0x0810  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
17:46:35.0954 0x0810  ehSched - ok
17:46:35.0965 0x0810  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
17:46:35.0982 0x0810  elxstor - ok
17:46:35.0986 0x0810  [ 5AF6DE61E2CB029C2C9BE268D69F2BB8, 40DD35CC37AA57D6B6324B45C4D050DA539112F10E619AD2B827C600DA524793 ] emupia          C:\Windows\system32\drivers\emupia2k.sys
17:46:35.0994 0x0810  emupia - ok
17:46:35.0997 0x0810  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:46:36.0006 0x0810  ErrDev - ok
17:46:36.0017 0x0810  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
17:46:36.0050 0x0810  EventSystem - ok
17:46:36.0055 0x0810  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
17:46:36.0082 0x0810  exfat - ok
17:46:36.0088 0x0810  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:46:36.0115 0x0810  fastfat - ok
17:46:36.0129 0x0810  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
17:46:36.0153 0x0810  Fax - ok
17:46:36.0156 0x0810  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
17:46:36.0166 0x0810  fdc - ok
17:46:36.0169 0x0810  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
17:46:36.0193 0x0810  fdPHost - ok
17:46:36.0196 0x0810  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:46:36.0220 0x0810  FDResPub - ok
17:46:36.0224 0x0810  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:46:36.0232 0x0810  FileInfo - ok
17:46:36.0235 0x0810  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:46:36.0258 0x0810  Filetrace - ok
17:46:36.0260 0x0810  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
17:46:36.0270 0x0810  flpydisk - ok
17:46:36.0276 0x0810  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:46:36.0288 0x0810  FltMgr - ok
17:46:36.0292 0x0810  [ 508401A63E6B1CBF0B9C9A011498731F, F636B0A9C0EB6AE7EC04E5C5FD8A0578AEB76A1B0D974F355BCE6B6091901725 ] FNETTBOH_305    C:\Windows\system32\drivers\FNETTBOH_305.SYS
17:46:36.0298 0x0810  FNETTBOH_305 - ok
17:46:36.0301 0x0810  [ 7C3C4B4C951EC1BDFD4F769D05E2CC68, 7B9DA195D3CF0E7BE6BB532CC5D058BC6658B7538B5C5CF09B1A4ABEF1ECACB4 ] FNETURPX        C:\Windows\system32\drivers\FNETURPX.SYS
17:46:36.0307 0x0810  FNETURPX - ok
17:46:36.0328 0x0810  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
17:46:36.0363 0x0810  FontCache - ok
17:46:36.0367 0x0810  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:46:36.0373 0x0810  FontCache3.0.0.0 - ok
17:46:36.0376 0x0810  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:46:36.0384 0x0810  FsDepends - ok
17:46:36.0387 0x0810  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:46:36.0393 0x0810  Fs_Rec - ok
17:46:36.0398 0x0810  [ 79B4CDE2B69ED8BA4011859780A66A4D, D2572B737232F8FDD46A811FF69D8DAE4AAD4D2FA47507D78C0C54BF01C4CC4A ] Futuremark SystemInfo Service C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
17:46:36.0406 0x0810  Futuremark SystemInfo Service - ok
17:46:36.0411 0x0810  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:46:36.0424 0x0810  fvevol - ok
17:46:36.0428 0x0810  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:46:36.0436 0x0810  gagp30kx - ok
17:46:36.0451 0x0810  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
17:46:36.0491 0x0810  gpsvc - ok
17:46:36.0497 0x0810  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:46:36.0505 0x0810  gupdate - ok
17:46:36.0508 0x0810  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:46:36.0515 0x0810  gupdatem - ok
17:46:36.0540 0x0810  [ 82B68F585110AE8500A6D23623AE1F74, 1ADCFA2D77E3BB9BDCDD15DC21E7F6707823788A1CFB31ED959BC470595EE89B ] ha10kx2k        C:\Windows\system32\drivers\ha10kx2k.sys
17:46:36.0571 0x0810  ha10kx2k - ok
17:46:36.0601 0x0810  [ EC2D3B3E6C27A7E9E93DC194C1FF13A5, 1390880D74F97550E8803B43FA590F0613024D7670D025FBD4DA20ED59F07CC3 ] ha20x22k        C:\Windows\system32\drivers\ha20x22k.sys
17:46:36.0636 0x0810  ha20x22k - ok
17:46:36.0666 0x0810  [ 1B04A2F6CD01468B5DAF4699E203C3E2, A8FBC1F32EDDDC478CDACA13C656E81E8E2F2FD4AC3987BEFAA42D4222ACD85F ] ha20x2k         C:\Windows\system32\drivers\ha20x2k.sys
17:46:36.0700 0x0810  ha20x2k - ok
17:46:36.0708 0x0810  [ 83F647F9ACE9192556F758E528024F68, 1007C2E3C8FDB3CB5FB3C336F9904AD076DC31BB263E633EF17E3813B9ED6EF6 ] hap16v2k        C:\Windows\system32\drivers\hap16v2k.sys
17:46:36.0719 0x0810  hap16v2k - ok
17:46:36.0725 0x0810  [ E815D29361DE89D24C8DBE3E5A7006C9, 2B9075CC6A2425D06E6C3CB77E0755727F8B0920575C660CF261981464D190F0 ] hap17v2k        C:\Windows\system32\drivers\hap17v2k.sys
17:46:36.0736 0x0810  hap17v2k - ok
17:46:36.0739 0x0810  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:46:36.0749 0x0810  hcw85cir - ok
17:46:36.0757 0x0810  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:46:36.0775 0x0810  HdAudAddService - ok
17:46:36.0779 0x0810  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:46:36.0793 0x0810  HDAudBus - ok
17:46:36.0795 0x0810  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
17:46:36.0805 0x0810  HidBatt - ok
17:46:36.0808 0x0810  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:46:36.0821 0x0810  HidBth - ok
17:46:36.0824 0x0810  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
17:46:36.0835 0x0810  HidIr - ok
17:46:36.0838 0x0810  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
17:46:36.0863 0x0810  hidserv - ok
17:46:36.0866 0x0810  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:46:36.0875 0x0810  HidUsb - ok
17:46:36.0879 0x0810  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:46:36.0904 0x0810  hkmsvc - ok
17:46:36.0910 0x0810  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:46:36.0925 0x0810  HomeGroupListener - ok
17:46:36.0931 0x0810  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:46:36.0945 0x0810  HomeGroupProvider - ok
17:46:36.0955 0x0810  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:46:36.0964 0x0810  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
17:46:39.0658 0x0810  Detect skipped due to KSN trusted
17:46:39.0658 0x0810  hpqcxs08 - ok
17:46:39.0663 0x0810  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:46:39.0670 0x0810  hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:46:42.0438 0x0810  Detect skipped due to KSN trusted
17:46:42.0438 0x0810  hpqddsvc - ok
17:46:42.0442 0x0810  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:46:42.0450 0x0810  HpSAMD - ok
17:46:42.0471 0x0810  [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:46:42.0498 0x0810  HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
17:46:45.0199 0x0810  Detect skipped due to KSN trusted
17:46:45.0200 0x0810  HPSLPSVC - ok
17:46:45.0214 0x0810  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:46:45.0253 0x0810  HTTP - ok
17:46:45.0256 0x0810  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:46:45.0262 0x0810  hwpolicy - ok
17:46:45.0267 0x0810  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:46:45.0277 0x0810  i8042prt - ok
17:46:45.0288 0x0810  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:46:45.0302 0x0810  iaStorV - ok
17:46:45.0319 0x0810  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:46:45.0340 0x0810  idsvc - ok
17:46:45.0543 0x0810  [ 174BCAC474DE13B2650E444CF124828E, 42410700408873D890AA0EA1A885086B0DF6D1196957E3CD8A8323C46139E2C6 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
17:46:45.0816 0x0810  igfx - ok
17:46:45.0828 0x0810  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
17:46:45.0836 0x0810  iirsp - ok
17:46:45.0852 0x0810  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
17:46:45.0880 0x0810  IKEEXT - ok
17:46:45.0934 0x0810  [ C7124DA48E557D8F88D0D7F1254557F4, 300BC8ACB5CCB15F80ECAEAD27F12925EE94C84FE8110143A3E0F30E19DDA87B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:46:45.0993 0x0810  IntcAzAudAddService - ok
17:46:46.0009 0x0810  [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
17:46:46.0025 0x0810  Intel(R) Capability Licensing Service Interface - ok
17:46:46.0028 0x0810  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:46:46.0035 0x0810  intelide - ok
17:46:46.0038 0x0810  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:46:46.0049 0x0810  intelppm - ok
17:46:46.0053 0x0810  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:46:46.0079 0x0810  IPBusEnum - ok
17:46:46.0083 0x0810  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:46:46.0108 0x0810  IpFilterDriver - ok
17:46:46.0119 0x0810  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:46:46.0142 0x0810  iphlpsvc - ok
17:46:46.0146 0x0810  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:46:46.0156 0x0810  IPMIDRV - ok
17:46:46.0161 0x0810  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:46:46.0187 0x0810  IPNAT - ok
17:46:46.0190 0x0810  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:46:46.0202 0x0810  IRENUM - ok
17:46:46.0205 0x0810  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:46:46.0211 0x0810  isapnp - ok
17:46:46.0218 0x0810  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:46:46.0231 0x0810  iScsiPrt - ok
17:46:46.0238 0x0810  [ 5C9B001D8970C2DA36254A916F3DA8F7, 625AC5C3DFAE52BD34EC3F93742D1D2C229785E4F0F3484CFB7B8728A1C830DF ] iumsvc          C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
17:46:46.0247 0x0810  iumsvc - ok
17:46:46.0252 0x0810  [ 54C6B346D6FF1944A6E7587EB4942589, 618FA57637277AA08D726B911E7BAF85373807D466CBDBEC4212F1065E6105DC ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
17:46:46.0261 0x0810  jhi_service - ok
17:46:46.0264 0x0810  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:46:46.0272 0x0810  kbdclass - ok
17:46:46.0275 0x0810  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:46:46.0285 0x0810  kbdhid - ok
17:46:46.0287 0x0810  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
17:46:46.0297 0x0810  KeyIso - ok
17:46:46.0301 0x0810  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:46:46.0309 0x0810  KSecDD - ok
17:46:46.0314 0x0810  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:46:46.0323 0x0810  KSecPkg - ok
17:46:46.0326 0x0810  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:46:46.0350 0x0810  ksthunk - ok
17:46:46.0359 0x0810  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:46:46.0391 0x0810  KtmRm - ok
17:46:46.0397 0x0810  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:46:46.0427 0x0810  LanmanServer - ok
17:46:46.0431 0x0810  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:46:46.0458 0x0810  LanmanWorkstation - ok
17:46:46.0467 0x0810  [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:46:46.0480 0x0810  LBTServ - ok
17:46:46.0485 0x0810  [ ED7EC050CD6C20E1A93A4DAFB7EFD14D, 9B3B9FA23788680D13E3DC2EEA2F127591A368578AEAB70F03AC379BA7379184 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
17:46:46.0492 0x0810  LEqdUsb - ok
17:46:46.0494 0x0810  [ 3267BC698E29474A8381E68904EB0390, A653ED6364D4B7E02FB7087D364E33D029B15A92E0FAAB176877DE5F93B36B65 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
17:46:46.0501 0x0810  LHidEqd - ok
17:46:46.0504 0x0810  [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:46:46.0511 0x0810  LHidFilt - ok
17:46:46.0515 0x0810  [ FCBDCC6F1801E32244235608E1277752, 8CC8E22E412645F4A534C51FB550AB22410AE90FA266D75498827EB922E8191E ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:46:46.0520 0x0810  LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
17:46:49.0290 0x0810  Detect skipped due to KSN trusted
17:46:49.0290 0x0810  LightScribeService - ok
17:46:49.0294 0x0810  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:46:49.0319 0x0810  lltdio - ok
17:46:49.0326 0x0810  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:46:49.0356 0x0810  lltdsvc - ok
17:46:49.0358 0x0810  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:46:49.0383 0x0810  lmhosts - ok
17:46:49.0386 0x0810  [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:46:49.0393 0x0810  LMouFilt - ok
17:46:49.0400 0x0810  [ 4BE94D758691FAA00181F799CF528088, 81D1E6794EBEFA32643975359B7E89781E428B11F592AC67147D0D8C5E4D0056 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:46:49.0410 0x0810  LMS - ok
17:46:49.0416 0x0810  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:46:49.0425 0x0810  LSI_FC - ok
17:46:49.0429 0x0810  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
17:46:49.0437 0x0810  LSI_SAS - ok
17:46:49.0440 0x0810  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
17:46:49.0449 0x0810  LSI_SAS2 - ok
17:46:49.0453 0x0810  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:46:49.0461 0x0810  LSI_SCSI - ok
17:46:49.0466 0x0810  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
17:46:49.0492 0x0810  luafv - ok
17:46:49.0494 0x0810  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
17:46:49.0501 0x0810  MBfilt - ok
17:46:49.0506 0x0810  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:46:49.0517 0x0810  Mcx2Svc - ok
17:46:49.0520 0x0810  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
17:46:49.0527 0x0810  megasas - ok
17:46:49.0534 0x0810  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
17:46:49.0546 0x0810  MegaSR - ok
17:46:49.0549 0x0810  [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
17:46:49.0556 0x0810  MEIx64 - ok
17:46:49.0595 0x0810  [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service D:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:46:49.0602 0x0810  Microsoft Office Groove Audit Service - ok
17:46:49.0606 0x0810  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
17:46:49.0632 0x0810  MMCSS - ok
17:46:49.0635 0x0810  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
17:46:49.0658 0x0810  Modem - ok
17:46:49.0661 0x0810  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:46:49.0672 0x0810  monitor - ok
17:46:49.0675 0x0810  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:46:49.0683 0x0810  mouclass - ok
17:46:49.0686 0x0810  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:46:49.0696 0x0810  mouhid - ok
17:46:49.0699 0x0810  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:46:49.0708 0x0810  mountmgr - ok
17:46:49.0713 0x0810  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:46:49.0723 0x0810  mpio - ok
17:46:49.0727 0x0810  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:46:49.0751 0x0810  mpsdrv - ok
17:46:49.0767 0x0810  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:46:49.0809 0x0810  MpsSvc - ok
17:46:49.0814 0x0810  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:46:49.0826 0x0810  MRxDAV - ok
17:46:49.0831 0x0810  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:46:49.0843 0x0810  mrxsmb - ok
17:46:49.0851 0x0810  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:46:49.0865 0x0810  mrxsmb10 - ok
17:46:49.0870 0x0810  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:46:49.0880 0x0810  mrxsmb20 - ok
17:46:49.0883 0x0810  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:46:49.0890 0x0810  msahci - ok
17:46:49.0895 0x0810  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:46:49.0904 0x0810  msdsm - ok
17:46:49.0908 0x0810  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
17:46:49.0922 0x0810  MSDTC - ok
17:46:49.0926 0x0810  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:46:49.0950 0x0810  Msfs - ok
17:46:49.0953 0x0810  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:46:49.0976 0x0810  mshidkmdf - ok
17:46:49.0978 0x0810  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:46:49.0986 0x0810  msisadrv - ok
17:46:49.0990 0x0810  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:46:50.0018 0x0810  MSiSCSI - ok
17:46:50.0020 0x0810  msiserver - ok
17:46:50.0023 0x0810  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:46:50.0047 0x0810  MSKSSRV - ok
17:46:50.0049 0x0810  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:46:50.0073 0x0810  MSPCLOCK - ok
17:46:50.0075 0x0810  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:46:50.0099 0x0810  MSPQM - ok
17:46:50.0107 0x0810  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:46:50.0120 0x0810  MsRPC - ok
17:46:50.0124 0x0810  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:46:50.0131 0x0810  mssmbios - ok
17:46:50.0134 0x0810  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:46:50.0157 0x0810  MSTEE - ok
17:46:50.0159 0x0810  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
17:46:50.0169 0x0810  MTConfig - ok
17:46:50.0172 0x0810  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
17:46:50.0180 0x0810  Mup - ok
17:46:50.0191 0x0810  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
17:46:50.0225 0x0810  napagent - ok
17:46:50.0232 0x0810  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:46:50.0251 0x0810  NativeWifiP - ok
17:46:50.0269 0x0810  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:46:50.0294 0x0810  NDIS - ok
17:46:50.0298 0x0810  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:46:50.0321 0x0810  NdisCap - ok
17:46:50.0324 0x0810  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:46:50.0348 0x0810  NdisTapi - ok
17:46:50.0351 0x0810  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:46:50.0375 0x0810  Ndisuio - ok
17:46:50.0380 0x0810  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:46:50.0406 0x0810  NdisWan - ok
17:46:50.0409 0x0810  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:46:50.0432 0x0810  NDProxy - ok
17:46:50.0436 0x0810  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:46:50.0442 0x0810  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:46:53.0210 0x0810  Detect skipped due to KSN trusted
17:46:53.0210 0x0810  Net Driver HPZ12 - ok
17:46:53.0214 0x0810  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:46:53.0238 0x0810  NetBIOS - ok
17:46:53.0245 0x0810  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:46:53.0272 0x0810  NetBT - ok
17:46:53.0275 0x0810  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
17:46:53.0285 0x0810  Netlogon - ok
17:46:53.0293 0x0810  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
17:46:53.0326 0x0810  Netman - ok
17:46:53.0330 0x0810  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0341 0x0810  NetMsmqActivator - ok
17:46:53.0345 0x0810  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0354 0x0810  NetPipeActivator - ok
17:46:53.0364 0x0810  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
17:46:53.0399 0x0810  netprofm - ok
17:46:53.0416 0x0810  [ 618C55B392238B9467F9113E13525C49, 304A77EF3E1E7A1738E5A4F6A911B4DF736CEF4867C6F07CA71E227048E90370 ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
17:46:53.0445 0x0810  netr28ux - ok
17:46:53.0450 0x0810  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0459 0x0810  NetTcpActivator - ok
17:46:53.0463 0x0810  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:46:53.0473 0x0810  NetTcpPortSharing - ok
17:46:53.0476 0x0810  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
17:46:53.0484 0x0810  nfrd960 - ok
17:46:53.0491 0x0810  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:46:53.0507 0x0810  NlaSvc - ok
17:46:53.0510 0x0810  [ 907B5E1E4A592E5EDC5E4CCBDE4863C2, 7A3FA5B779CBBED46CA81328951B71352E4FC60153A91965877834EC7C6F0074 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
17:46:53.0526 0x0810  nmwcd - ok
17:46:53.0529 0x0810  [ 41C1AC1F3613435EB32D67BCB80A5FA5, 93A313BC4A7FA2FC3372CFBF2D76F417007B4A82455092724D3B0B6FA5A88F23 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
17:46:53.0545 0x0810  nmwcdc - ok
17:46:53.0548 0x0810  [ A962BE6433EF016E0DFB52ECA15A5378, 765D47BCA040034E565CA139120B94562834984EB78DA11807C054BDD5313496 ] nmwcdnsucx64    C:\Windows\system32\drivers\nmwcdnsucx64.sys
17:46:53.0563 0x0810  nmwcdnsucx64 - ok
17:46:53.0568 0x0810  [ 9573223E205907247AE6D948E3453770, 35D32A415F74863D7408229508F134D53CA0FA7EDD8B0E5FEEFC9DE588D0607B ] nmwcdnsux64     C:\Windows\system32\drivers\nmwcdnsux64.sys
17:46:53.0587 0x0810  nmwcdnsux64 - ok
17:46:53.0590 0x0810  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:46:53.0614 0x0810  Npfs - ok
17:46:53.0617 0x0810  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
17:46:53.0642 0x0810  nsi - ok
17:46:53.0645 0x0810  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:46:53.0670 0x0810  nsiproxy - ok
17:46:53.0701 0x0810  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:46:53.0735 0x0810  Ntfs - ok
17:46:53.0738 0x0810  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
17:46:53.0762 0x0810  Null - ok
17:46:53.0768 0x0810  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:46:53.0778 0x0810  nvraid - ok
17:46:53.0783 0x0810  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:46:53.0792 0x0810  nvstor - ok
17:46:53.0796 0x0810  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:46:53.0805 0x0810  nv_agp - ok
17:46:53.0816 0x0810  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:46:53.0830 0x0810  odserv - ok
17:46:53.0833 0x0810  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:46:53.0843 0x0810  ohci1394 - ok
17:46:53.0848 0x0810  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:46:53.0856 0x0810  ose - ok
17:46:53.0861 0x0810  [ 61B16C288D2E96353323717442E08AFC, 24BF4523D0C29145866DFD4D1428E076793A69C5F005C49E647987C31D1A87F7 ] ossrv           C:\Windows\system32\drivers\ctoss2k.sys
17:46:53.0870 0x0810  ossrv - ok
17:46:53.0879 0x0810  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:46:53.0896 0x0810  p2pimsvc - ok
17:46:53.0906 0x0810  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
17:46:53.0925 0x0810  p2psvc - ok
17:46:53.0929 0x0810  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
17:46:53.0940 0x0810  Parport - ok
17:46:53.0944 0x0810  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:46:53.0952 0x0810  partmgr - ok
17:46:53.0957 0x0810  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:46:53.0974 0x0810  PcaSvc - ok
17:46:53.0978 0x0810  [ BC0018C2D29F655188A0ED3FA94FDB24, BCF7F2CA5E30F569AEB69049BA3C196982C72EA7264CFBA59D7123041BA96E5A ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
17:46:53.0987 0x0810  pccsmcfd - ok
17:46:53.0992 0x0810  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
17:46:54.0002 0x0810  pci - ok
17:46:54.0005 0x0810  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:46:54.0012 0x0810  pciide - ok
17:46:54.0018 0x0810  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:46:54.0028 0x0810  pcmcia - ok
17:46:54.0032 0x0810  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:46:54.0039 0x0810  pcw - ok
17:46:54.0051 0x0810  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:46:54.0088 0x0810  PEAUTH - ok
17:46:54.0108 0x0810  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:46:54.0119 0x0810  PerfHost - ok
17:46:54.0147 0x0810  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
17:46:54.0200 0x0810  pla - ok
17:46:54.0210 0x0810  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:46:54.0229 0x0810  PlugPlay - ok
17:46:54.0233 0x0810  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:46:54.0239 0x0810  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
17:46:57.0012 0x0810  Detect skipped due to KSN trusted
17:46:57.0012 0x0810  Pml Driver HPZ12 - ok
17:46:57.0017 0x0810  [ 0BEE791C7C7ACE453C134E73633C497D, 82B30461DBF40AC15FCE6A83B9BAD2EBD05B27DEA1B784EAA096422FE8927B7B ] pmxdrv          C:\Windows\system32\drivers\pmxdrv.sys
17:46:57.0023 0x0810  pmxdrv - ok
17:46:57.0026 0x0810  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:46:57.0037 0x0810  PNRPAutoReg - ok
17:46:57.0044 0x0810  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:46:57.0060 0x0810  PNRPsvc - ok
17:46:57.0071 0x0810  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:46:57.0105 0x0810  PolicyAgent - ok
17:46:57.0111 0x0810  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
17:46:57.0139 0x0810  Power - ok
17:46:57.0143 0x0810  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:46:57.0168 0x0810  PptpMiniport - ok
17:46:57.0171 0x0810  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
17:46:57.0182 0x0810  Processor - ok
17:46:57.0188 0x0810  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:46:57.0203 0x0810  ProfSvc - ok
17:46:57.0206 0x0810  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:46:57.0215 0x0810  ProtectedStorage - ok
17:46:57.0221 0x0810  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:46:57.0247 0x0810  Psched - ok
17:46:57.0274 0x0810  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:46:57.0309 0x0810  ql2300 - ok
17:46:57.0314 0x0810  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:46:57.0323 0x0810  ql40xx - ok
17:46:57.0330 0x0810  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
17:46:57.0348 0x0810  QWAVE - ok
17:46:57.0351 0x0810  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:46:57.0364 0x0810  QWAVEdrv - ok
17:46:57.0367 0x0810  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:46:57.0391 0x0810  RasAcd - ok
17:46:57.0394 0x0810  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:46:57.0418 0x0810  RasAgileVpn - ok
17:46:57.0422 0x0810  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
17:46:57.0449 0x0810  RasAuto - ok
17:46:57.0453 0x0810  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:46:57.0478 0x0810  Rasl2tp - ok
17:46:57.0486 0x0810  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
17:46:57.0517 0x0810  RasMan - ok
17:46:57.0521 0x0810  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:46:57.0546 0x0810  RasPppoe - ok
17:46:57.0550 0x0810  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:46:57.0574 0x0810  RasSstp - ok
17:46:57.0581 0x0810  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:46:57.0610 0x0810  rdbss - ok
17:46:57.0614 0x0810  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
17:46:57.0625 0x0810  rdpbus - ok
17:46:57.0627 0x0810  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:46:57.0650 0x0810  RDPCDD - ok
17:46:57.0654 0x0810  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:46:57.0678 0x0810  RDPENCDD - ok
17:46:57.0681 0x0810  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:46:57.0704 0x0810  RDPREFMP - ok
17:46:57.0708 0x0810  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:46:57.0717 0x0810  RdpVideoMiniport - ok
17:46:57.0723 0x0810  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:46:57.0736 0x0810  RDPWD - ok
17:46:57.0742 0x0810  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:46:57.0753 0x0810  rdyboost - ok
17:46:57.0757 0x0810  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:46:57.0783 0x0810  RemoteAccess - ok
17:46:57.0788 0x0810  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:46:57.0816 0x0810  RemoteRegistry - ok
17:46:57.0820 0x0810  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:46:57.0846 0x0810  RpcEptMapper - ok
17:46:57.0849 0x0810  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
17:46:57.0859 0x0810  RpcLocator - ok
17:46:57.0870 0x0810  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
17:46:57.0904 0x0810  RpcSs - ok
17:46:57.0907 0x0810  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:46:57.0932 0x0810  rspndr - ok
17:46:57.0942 0x0810  [ F4C374B1C46DE294B573BB43723AC3F6, 9B8A40BF54262A1949661596CB753D0B591E94577470ED44D498042BD3EA7C10 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:46:57.0957 0x0810  RTL8167 - ok
17:46:57.0960 0x0810  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
17:46:57.0970 0x0810  SamSs - ok
17:46:57.0978 0x0810  SANDRA - ok
17:46:57.0982 0x0810  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
17:46:57.0991 0x0810  sbp2port - ok
17:46:57.0996 0x0810  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:46:58.0024 0x0810  SCardSvr - ok
17:46:58.0027 0x0810  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:46:58.0051 0x0810  scfilter - ok
17:46:58.0071 0x0810  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:46:58.0119 0x0810  Schedule - ok
17:46:58.0123 0x0810  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:46:58.0147 0x0810  SCPolicySvc - ok
17:46:58.0152 0x0810  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:46:58.0167 0x0810  SDRSVC - ok
17:46:58.0169 0x0810  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:46:58.0193 0x0810  secdrv - ok
17:46:58.0196 0x0810  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
17:46:58.0221 0x0810  seclogon - ok
17:46:58.0224 0x0810  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
17:46:58.0251 0x0810  SENS - ok
17:46:58.0254 0x0810  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:46:58.0265 0x0810  SensrSvc - ok
17:46:58.0268 0x0810  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:46:58.0277 0x0810  Serenum - ok
17:46:58.0281 0x0810  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:46:58.0291 0x0810  Serial - ok
17:46:58.0294 0x0810  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:46:58.0304 0x0810  sermouse - ok
17:46:58.0319 0x0810  [ 668043F192AB9659761A349A4703600D, 44443E477A38913C6973817C06C25A776574F2C0F9F52609F070BAFA836EBE2E ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
17:46:58.0338 0x0810  ServiceLayer - ok
17:46:58.0346 0x0810  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
17:46:58.0372 0x0810  SessionEnv - ok
17:46:58.0375 0x0810  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:46:58.0386 0x0810  sffdisk - ok
17:46:58.0388 0x0810  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:46:58.0399 0x0810  sffp_mmc - ok
17:46:58.0402 0x0810  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:46:58.0412 0x0810  sffp_sd - ok
17:46:58.0414 0x0810  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
17:46:58.0424 0x0810  sfloppy - ok
17:46:58.0432 0x0810  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:46:58.0464 0x0810  SharedAccess - ok
17:46:58.0472 0x0810  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:46:58.0505 0x0810  ShellHWDetection - ok
17:46:58.0508 0x0810  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
17:46:58.0516 0x0810  SiSRaid2 - ok
17:46:58.0519 0x0810  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:46:58.0528 0x0810  SiSRaid4 - ok
17:46:58.0532 0x0810  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:46:58.0556 0x0810  Smb - ok
17:46:58.0561 0x0810  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:46:58.0572 0x0810  SNMPTRAP - ok
17:46:58.0574 0x0810  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:46:58.0581 0x0810  spldr - ok
17:46:58.0592 0x0810  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
17:46:58.0628 0x0810  Spooler - ok
17:46:58.0689 0x0810  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
17:46:58.0791 0x0810  sppsvc - ok
17:46:58.0797 0x0810  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:46:58.0823 0x0810  sppuinotify - ok
17:46:58.0834 0x0810  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:46:58.0853 0x0810  srv - ok
17:46:58.0862 0x0810  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:46:58.0878 0x0810  srv2 - ok
17:46:58.0884 0x0810  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:46:58.0895 0x0810  srvnet - ok
17:46:58.0901 0x0810  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:46:58.0929 0x0810  SSDPSRV - ok
17:46:58.0933 0x0810  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:46:58.0959 0x0810  SstpSvc - ok
17:46:58.0961 0x0810  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
17:46:58.0969 0x0810  stexstor - ok
17:46:58.0981 0x0810  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
17:46:59.0007 0x0810  stisvc - ok
17:46:59.0010 0x0810  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:46:59.0017 0x0810  swenum - ok
17:46:59.0027 0x0810  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
17:46:59.0063 0x0810  swprv - ok
17:46:59.0095 0x0810  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
17:46:59.0147 0x0810  SysMain - ok
17:46:59.0152 0x0810  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:46:59.0168 0x0810  TabletInputService - ok
17:46:59.0175 0x0810  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:46:59.0205 0x0810  TapiSrv - ok
17:46:59.0208 0x0810  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
17:46:59.0234 0x0810  TBS - ok
17:46:59.0268 0x0810  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:46:59.0311 0x0810  Tcpip - ok
17:46:59.0346 0x0810  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:46:59.0384 0x0810  TCPIP6 - ok
17:46:59.0390 0x0810  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:46:59.0399 0x0810  tcpipreg - ok
17:46:59.0403 0x0810  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:46:59.0412 0x0810  TDPIPE - ok
17:46:59.0415 0x0810  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:46:59.0424 0x0810  TDTCP - ok
17:46:59.0428 0x0810  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:46:59.0452 0x0810  tdx - ok
17:46:59.0455 0x0810  TEAM - ok
17:46:59.0458 0x0810  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:46:59.0466 0x0810  TermDD - ok
17:46:59.0480 0x0810  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
17:46:59.0516 0x0810  TermService - ok
17:46:59.0519 0x0810  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
17:46:59.0534 0x0810  Themes - ok
17:46:59.0537 0x0810  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
17:46:59.0562 0x0810  THREADORDER - ok
17:46:59.0566 0x0810  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
17:46:59.0594 0x0810  TrkWks - ok
17:46:59.0600 0x0810  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:46:59.0626 0x0810  TrustedInstaller - ok
17:46:59.0631 0x0810  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:46:59.0641 0x0810  tssecsrv - ok
17:46:59.0645 0x0810  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:46:59.0654 0x0810  TsUsbFlt - ok
17:46:59.0657 0x0810  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
17:46:59.0667 0x0810  TsUsbGD - ok
17:46:59.0672 0x0810  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:46:59.0698 0x0810  tunnel - ok
17:46:59.0701 0x0810  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:46:59.0709 0x0810  uagp35 - ok
17:46:59.0717 0x0810  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:46:59.0748 0x0810  udfs - ok
17:46:59.0753 0x0810  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:46:59.0765 0x0810  UI0Detect - ok
17:46:59.0769 0x0810  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:46:59.0776 0x0810  uliagpkx - ok
17:46:59.0780 0x0810  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:46:59.0790 0x0810  umbus - ok
17:46:59.0793 0x0810  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
17:46:59.0802 0x0810  UmPass - ok
17:46:59.0812 0x0810  [ C3F2CA25E371DA2EB0AE13DDF9484FDE, 0F66F597C2EE1CE780ED9AD679D33AD52046C98C6F69672EEDD3EDEB45822B0E ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:46:59.0823 0x0810  UNS - ok
17:46:59.0832 0x0810  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
17:46:59.0864 0x0810  upnphost - ok
17:46:59.0867 0x0810  [ 4E93C8496359E97830C75AC36393654D, D0482257B019512D77484D92E4DEFEFE4FED53CB440ACB7AA879D6FD0574FA9A ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
17:46:59.0882 0x0810  upperdev - ok
17:46:59.0886 0x0810  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:46:59.0898 0x0810  usbccgp - ok
17:46:59.0902 0x0810  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:46:59.0913 0x0810  usbcir - ok
17:46:59.0916 0x0810  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:46:59.0926 0x0810  usbehci - ok
17:46:59.0935 0x0810  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:46:59.0951 0x0810  usbhub - ok
17:46:59.0954 0x0810  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:46:59.0963 0x0810  usbohci - ok
17:46:59.0966 0x0810  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:46:59.0977 0x0810  usbprint - ok
17:46:59.0980 0x0810  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
17:46:59.0990 0x0810  usbscan - ok
17:46:59.0993 0x0810  [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser          C:\Windows\system32\drivers\usbser.sys
17:47:00.0003 0x0810  usbser - ok
17:47:00.0006 0x0810  [ 8844CB19A37B65E27049D4A7786726A9, 4D772174A320F02E2F87BDF8C6EBBFDE04C9763D3C21FE9557DE938521508A59 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
17:47:00.0021 0x0810  UsbserFilt - ok
17:47:00.0024 0x0810  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:47:00.0036 0x0810  USBSTOR - ok
17:47:00.0039 0x0810  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:47:00.0048 0x0810  usbuhci - ok
17:47:00.0051 0x0810  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
17:47:00.0077 0x0810  UxSms - ok
17:47:00.0080 0x0810  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
17:47:00.0090 0x0810  VaultSvc - ok
17:47:00.0092 0x0810  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:47:00.0100 0x0810  vdrvroot - ok
17:47:00.0111 0x0810  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
17:47:00.0147 0x0810  vds - ok
17:47:00.0150 0x0810  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:47:00.0162 0x0810  vga - ok
17:47:00.0164 0x0810  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:47:00.0188 0x0810  VgaSave - ok
17:47:00.0194 0x0810  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:47:00.0205 0x0810  vhdmp - ok
17:47:00.0207 0x0810  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:47:00.0214 0x0810  viaide - ok
17:47:00.0218 0x0810  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:47:00.0226 0x0810  volmgr - ok
17:47:00.0234 0x0810  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:47:00.0248 0x0810  volmgrx - ok
17:47:00.0255 0x0810  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:47:00.0268 0x0810  volsnap - ok
17:47:00.0273 0x0810  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:47:00.0284 0x0810  vsmraid - ok
17:47:00.0313 0x0810  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
17:47:00.0371 0x0810  VSS - ok
17:47:00.0375 0x0810  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:47:00.0386 0x0810  vwifibus - ok
17:47:00.0390 0x0810  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:47:00.0403 0x0810  vwififlt - ok
17:47:00.0412 0x0810  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
17:47:00.0444 0x0810  W32Time - ok
17:47:00.0448 0x0810  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:47:00.0458 0x0810  WacomPen - ok
17:47:00.0462 0x0810  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:47:00.0487 0x0810  WANARP - ok
17:47:00.0490 0x0810  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:47:00.0514 0x0810  Wanarpv6 - ok
17:47:00.0537 0x0810  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:47:00.0568 0x0810  WatAdminSvc - ok
17:47:00.0597 0x0810  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
17:47:00.0640 0x0810  wbengine - ok
17:47:00.0647 0x0810  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:47:00.0664 0x0810  WbioSrvc - ok
17:47:00.0673 0x0810  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:47:00.0695 0x0810  wcncsvc - ok
17:47:00.0698 0x0810  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:47:00.0710 0x0810  WcsPlugInService - ok
17:47:00.0713 0x0810  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
17:47:00.0720 0x0810  Wd - ok
17:47:00.0736 0x0810  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:47:00.0759 0x0810  Wdf01000 - ok
17:47:00.0764 0x0810  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:47:00.0789 0x0810  WdiServiceHost - ok
17:47:00.0792 0x0810  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:47:00.0807 0x0810  WdiSystemHost - ok
17:47:00.0814 0x0810  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
17:47:00.0830 0x0810  WebClient - ok
17:47:00.0836 0x0810  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:47:00.0867 0x0810  Wecsvc - ok
17:47:00.0871 0x0810  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:47:00.0898 0x0810  wercplsupport - ok
17:47:00.0902 0x0810  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:47:00.0928 0x0810  WerSvc - ok
17:47:00.0931 0x0810  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:47:00.0954 0x0810  WfpLwf - ok
17:47:00.0957 0x0810  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:47:00.0964 0x0810  WIMMount - ok
17:47:00.0966 0x0810  WinDefend - ok
17:47:00.0970 0x0810  WinHttpAutoProxySvc - ok
17:47:00.0980 0x0810  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:47:01.0009 0x0810  Winmgmt - ok
17:47:01.0045 0x0810  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
17:47:01.0113 0x0810  WinRM - ok
17:47:01.0121 0x0810  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:47:01.0132 0x0810  WinUsb - ok
17:47:01.0149 0x0810  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:47:01.0183 0x0810  Wlansvc - ok
17:47:01.0224 0x0810  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:47:01.0268 0x0810  wlidsvc - ok
17:47:01.0273 0x0810  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
17:47:01.0282 0x0810  WmiAcpi - ok
17:47:01.0289 0x0810  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:47:01.0302 0x0810  wmiApSrv - ok
17:47:01.0305 0x0810  WMPNetworkSvc - ok
17:47:01.0349 0x0810  [ 83B6CA03C846FCD47F9883D77D1EB27B, 1616DBBC95085B6618B7F884383507E2A54D561A41288E79FA6DC99218C02802 ] WMZuneComm      D:\Program Files (x86)\Zune\WMZuneComm.exe
17:47:01.0362 0x0810  WMZuneComm - ok
17:47:01.0365 0x0810  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:47:01.0376 0x0810  WPCSvc - ok
17:47:01.0381 0x0810  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:47:01.0397 0x0810  WPDBusEnum - ok
17:47:01.0400 0x0810  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:47:01.0424 0x0810  ws2ifsl - ok
17:47:01.0427 0x0810  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
17:47:01.0443 0x0810  wscsvc - ok
17:47:01.0446 0x0810  WSearch - ok
17:47:01.0491 0x0810  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:47:01.0544 0x0810  wuauserv - ok
17:47:01.0550 0x0810  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:47:01.0561 0x0810  WudfPf - ok
17:47:01.0566 0x0810  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:47:01.0580 0x0810  WUDFRd - ok
17:47:01.0584 0x0810  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:47:01.0596 0x0810  wudfsvc - ok
17:47:01.0602 0x0810  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:47:01.0618 0x0810  WwanSvc - ok
17:47:01.0813 0x0810  [ 67B787C34FB2888D01B130AE007042D8, E44878E53F265C89F271B08B81C129105E42D1C78C14467B2D96E28A9A428B1A ] ZuneNetworkSvc  D:\Program Files (x86)\Zune\ZuneNss.exe
17:47:01.0958 0x0810  ZuneNetworkSvc - ok
17:47:01.0996 0x0810  [ 4D89FC1C20CF655739EFAC5DA81A67BC, 788D0A5B9972ED6D80242C0C5E80AB0FAB44A708B896D5F724AC1559A291C8DD ] ZuneWlanCfgSvc  D:\Program Files (x86)\Zune\ZuneWlanCfgSvc.exe
17:47:02.0012 0x0810  ZuneWlanCfgSvc - ok
17:47:02.0016 0x0810  ================ Scan global ===============================
17:47:02.0019 0x0810  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:47:02.0026 0x0810  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:47:02.0036 0x0810  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:47:02.0043 0x0810  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:47:02.0052 0x0810  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:47:02.0059 0x0810  [ Global ] - ok
17:47:02.0059 0x0810  ================ Scan MBR ==================================
17:47:02.0060 0x0810  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
17:47:02.0142 0x0810  \Device\Harddisk2\DR2 - ok
17:47:02.0157 0x0810  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:47:02.0246 0x0810  \Device\Harddisk1\DR1 - ok
17:47:02.0255 0x0810  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:47:02.0324 0x0810  \Device\Harddisk0\DR0 - ok
17:47:02.0324 0x0810  ================ Scan VBR ==================================
17:47:02.0326 0x0810  [ 80CFF23781F7C46A9C70059C78702680 ] \Device\Harddisk2\DR2\Partition1
17:47:02.0327 0x0810  \Device\Harddisk2\DR2\Partition1 - ok
17:47:02.0328 0x0810  [ 1601DB7499C149C5C0FD14E901B9F915 ] \Device\Harddisk2\DR2\Partition2
17:47:02.0330 0x0810  \Device\Harddisk2\DR2\Partition2 - ok
17:47:02.0331 0x0810  [ 42E8C5D1435C6852D2005FF694B6E36D ] \Device\Harddisk1\DR1\Partition1
17:47:02.0332 0x0810  \Device\Harddisk1\DR1\Partition1 - ok
17:47:02.0334 0x0810  [ B2C07F1EAE26F3BE942E6D557B12EB4A ] \Device\Harddisk1\DR1\Partition2
17:47:02.0335 0x0810  \Device\Harddisk1\DR1\Partition2 - ok
17:47:02.0336 0x0810  [ 70B49E1CAECD3FD250C22A6E65692FEC ] \Device\Harddisk1\DR1\Partition3
17:47:02.0337 0x0810  \Device\Harddisk1\DR1\Partition3 - ok
17:47:02.0338 0x0810  [ D1D538356BC33CA851B33A2F38277250 ] \Device\Harddisk0\DR0\Partition1
17:47:02.0375 0x0810  \Device\Harddisk0\DR0\Partition1 - ok
17:47:02.0377 0x0810  [ 31B19669CF9733523EDEC6C3C54EAD14 ] \Device\Harddisk0\DR0\Partition2
17:47:02.0378 0x0810  \Device\Harddisk0\DR0\Partition2 - ok
17:47:02.0378 0x0810  ================ Scan generic autorun ======================
17:47:02.0382 0x0810  [ 3D32ABE481059E9F6CEEBE7E6EC87E06, 138CD874728A16FA7364B89E7CF7570F82FB62E8C4B89F349FE40B8B154AAF4A ] C:\Windows\system32\igfxtray.exe
17:47:02.0392 0x0810  IgfxTray - ok
17:47:02.0400 0x0810  [ 19E5456EC1CA8A92476217948D456BB8, A25AE243E52B4C008C188604A7D0A2B1FBBA99599DFED3B4A746D76F821ECD51 ] C:\Windows\system32\hkcmd.exe
17:47:02.0413 0x0810  HotKeysCmds - ok
17:47:02.0422 0x0810  [ 0B1B8AB2CD97ADAF6EFC8DBC6FC13A02, E2A097613C217FB08CD515A87519A34DE5CE187234D75E8ACA5BAC49B943E659 ] C:\Windows\system32\igfxpers.exe
17:47:02.0436 0x0810  Persistence - ok
17:47:02.0470 0x0810  [ DF72D700CC33611206675B8A2FD4D4F9, AB3AF6FD92140A1432FEAFFF2015CFAD5E9362F0018EA1D859A2DA349E95847D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
17:47:02.0505 0x0810  EvtMgr6 - ok
17:47:02.0530 0x0810  [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C, 6C6B186A2FC1DFD800041B160A7D71F5F1B3C70D62C7696B8DA89148A8D87D47 ] D:\Program Files (x86)\Zune\ZuneLauncher.exe
17:47:02.0539 0x0810  Zune Launcher - ok
17:47:02.0543 0x0810  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
17:47:02.0554 0x0810  Logitech Download Assistant - ok
17:47:02.0556 0x0810  CTXFIREG - ok
17:47:02.0564 0x0810  [ 72860972F8196EBB3C896F53D2B95470, 95C046A66DD0089377867F073CADCE585B7C69CA23E724DCAD9D896BF01E023D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
17:47:02.0571 0x0810  hpqSRMon - detected UnsignedFile.Multi.Generic ( 1 )
17:47:05.0340 0x0810  Detect skipped due to KSN trusted
17:47:05.0340 0x0810  hpqSRMon - ok
17:47:05.0343 0x0810  [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:47:05.0350 0x0810  HP Software Update - ok
17:47:05.0360 0x0810  [ 38D198A2DD54A67120040566A38103BA, 01604BD91A5B2C0DDC7B52036511F8219952626716E75979D8464F2C56BA0114 ] D:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:47:05.0367 0x0810  GrooveMonitor - ok
17:47:05.0369 0x0810  AsioThk32Reg - ok
17:47:05.0370 0x0810  CTHelper - ok
17:47:05.0403 0x0810  [ 35048D8E8A0BF7A797CD5757ACD7EED0, 890FCF24869614B3990B575A588ECB35C25A5B896F21BF9C66D43C93787FDD7A ] D:\Program Files (x86)\CyberLink\Power2Go\Power2Go\CLMLSvc.exe
17:47:05.0410 0x0810  CLMLServer - ok
17:47:05.0449 0x0810  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] D:\Program Files (x86)\CyberLink\LabelPrint\LabelPrint\MUITransfer\MUIStartMenu.exe
17:47:05.0459 0x0810  UpdateLBPShortCut - ok
17:47:05.0494 0x0810  [ D28328420109DAA5B19038364136DC45, 7AC8A4F53AE04C7F3043B23E577223967721C7302ABC2B7FDCC15322FEEA874F ] D:\PROGRA~2\CYBERL~1\INSTAN~1\Win2K\IBurn.exe
17:47:05.0513 0x0810  InstantBurn - ok
17:47:05.0537 0x0810  [ 99ECAF298145F950B1326656167FBFDF, 77573FE19E2C16AB6D7DD3B689D5E926A86793491D6915E76999BA19A35265EA ] D:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
17:47:05.0543 0x0810  RemoteControl10 - ok
17:47:05.0547 0x0810  [ C252C2303FE79F201E64F269FEFF0DDB, AD305DA8B4CDE8C578424AB42AE5079901285C130F04F534E0CF86E13F1335C4 ] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
17:47:05.0553 0x0810  BDRegion - ok
17:47:05.0639 0x0810  [ 7D9D685235B13830E24BD9A16AAE1EBC, CC1ED51A945AEE11CD1D42ED1368AB5DE19602F195C9A90E633E04D2C98EE586 ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
17:47:05.0726 0x0810  XFastUSB - ok
17:47:05.0747 0x0810  [ 7C73B5C50CAEDB1771A049142026906B, A4992339D71A9297963C70616C4124BD701E46AEE439E09C392C2B2EBAE624E6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:47:05.0765 0x0810  StartCCC - ok
17:47:05.0835 0x0810  [ 5CA0EB9538C6ACEBDC3593FC53527B9D, 35AC60899254C7414FF42BCDA4165FB58F6369BD5EDCAC24EBB1B5A095664CAC ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
17:47:05.0908 0x0810  AvastUI.exe - ok
17:47:05.0929 0x0810  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:47:05.0953 0x0810  Adobe ARM - ok
17:47:05.0959 0x0810  [ F381E01B43A9135AA11E330B4663DDBE, F4C01AB114C5B6C58BDE0EB1111A196F8D057B5BE46D62ABCD2D841B8B65B766 ] C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe
17:47:05.0968 0x0810  VolPanel - detected UnsignedFile.Multi.Generic ( 1 )
17:47:08.0738 0x0810  Detect skipped due to KSN trusted
17:47:08.0738 0x0810  VolPanel - ok
17:47:08.0740 0x0810  CTxfiHlp - ok
17:47:08.0746 0x0810  [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:47:08.0755 0x0810  SunJavaUpdateSched - ok
17:47:08.0777 0x0810  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:47:08.0813 0x0810  Sidebar - ok
17:47:08.0817 0x0810  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:47:08.0832 0x0810  mctadmin - ok
17:47:08.0853 0x0810  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:47:08.0884 0x0810  Sidebar - ok
17:47:08.0888 0x0810  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:47:08.0902 0x0810  mctadmin - ok
17:47:08.0929 0x0810  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:47:08.0969 0x0810  Sidebar - ok
17:47:08.0971 0x0810  Power2GoExpress - ok
17:47:08.0978 0x0810  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:47:08.0985 0x0810  Google Update - ok
17:47:09.0003 0x0810  SB Audigy 2 Startup Menu - ok
17:47:09.0029 0x0810  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
17:47:09.0066 0x0810  Sidebar - ok
17:47:09.0071 0x0810  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\Zecka\AppData\Local\Google\Update\GoogleUpdate.exe
17:47:09.0079 0x0810  Google Update - ok
17:47:09.0080 0x0810  Power2GoExpress - ok
17:47:09.0083 0x0810  [ A8D72B3C7E20F2BB67CC60BCAD4E9138, 05630A6053652D7528572A662FD9C422EB0CAD2D91508CF85748AFE6802C027C ] C:\Windows\CTRegRun.EXE
17:47:09.0087 0x0810  CTRegRun - detected UnsignedFile.Multi.Generic ( 1 )
17:47:11.0860 0x0810  Detect skipped due to KSN trusted
17:47:11.0860 0x0810  CTRegRun - ok
17:47:11.0871 0x0810  CTPostBootSequencer - ok
17:47:11.0871 0x0810  Waiting for KSN requests completion. In queue: 18
17:47:12.0871 0x0810  Waiting for KSN requests completion. In queue: 18
17:47:13.0871 0x0810  Waiting for KSN requests completion. In queue: 18
17:47:14.0882 0x0810  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
17:47:14.0885 0x0810  Win FW state via NFP2: enabled
17:47:17.0578 0x0810  ============================================================
17:47:17.0578 0x0810  Scan finished
17:47:17.0578 0x0810  ============================================================
17:47:17.0582 0x12c4  Detected object count: 0
17:47:17.0582 0x12c4  Actual detected object count: 0
17:48:36.0606 0x19e8  Deinitialize success
         

Alt 19.06.2014, 13:22   #12
schrauber
/// the machine
/// TB-Ausbilder
 

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Kontaktiere mal den Avast Support, ich denke da an einen Fehlalarm.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 19.06.2014, 19:35   #13
Zecka
 
Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



Danke für deine Hilfe

Da alle anderen Programme nichts melden, denke ich auch an einen Fehlalarm.

Ich werde den Avast Supportteam mal mein Problem schildern, und warten was die dazu sagen


Lg Zecka

Alt 20.06.2014, 18:54   #14
schrauber
/// the machine
/// TB-Ausbilder
 

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Standard

Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft



ok
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft
avast, falschmeldung, festplatte, festplatten, free, installier, kaspersky, kaspersky rescue disk, melde, meldet, neu, platte, platten, prozess, rescue, speicher, spring, springt, troja, trojaner, verhalten, w32, win, win32, wirklich



Ähnliche Themen: Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft


  1. Avast free meldet Funde Win32:downloadguide-b
    Log-Analyse und Auswertung - 30.09.2015 (5)
  2. Avast! meldet Win32:Evo-gen[Susp] ORT: FirewallAPI.dll, Prozess: unterschiedlich
    Plagegeister aller Art und deren Bekämpfung - 19.11.2014 (28)
  3. Avast meldet eine Bedrohung : Win32:Evo-gen
    Plagegeister aller Art und deren Bekämpfung - 09.11.2014 (12)
  4. Avast meldet ununterbrochen Bedrohung durch win32:BrowseFox-C[PUP]
    Plagegeister aller Art und deren Bekämpfung - 17.08.2014 (7)
  5. Win32:Evo-gen (Susp) wenn ich ein bestimmtes Programm öffne meldet sich Avast
    Log-Analyse und Auswertung - 24.07.2014 (7)
  6. Avast meldet beim Hochfahren Win32:Evo-gen
    Plagegeister aller Art und deren Bekämpfung - 03.07.2014 (4)
  7. WIN7: AVAST meldet Win32:Bprotect-D /-F /-H und weitere, Rechner läuft
    Log-Analyse und Auswertung - 05.06.2014 (12)
  8. Avast meldet win32:Maleware-gen
    Plagegeister aller Art und deren Bekämpfung - 04.02.2014 (6)
  9. Avast meldet win32:Maleware-gen
    Plagegeister aller Art und deren Bekämpfung - 18.01.2014 (6)
  10. Avast Free Antivirus 2014 meldet Win32:Evo-gen [Susp] Programm GeForce Experience
    Plagegeister aller Art und deren Bekämpfung - 20.10.2013 (14)
  11. Avast meldet infizierte Datei: Win32:Kryptik-JUW [Trj]
    Log-Analyse und Auswertung - 05.08.2013 (8)
  12. avast! Mail-Schutz meldet Win32:Evo-gen [Susp]
    Plagegeister aller Art und deren Bekämpfung - 21.07.2013 (3)
  13. Avast meldet A0090918.exe ist infiziert von Win32:Malware-gen!
    Log-Analyse und Auswertung - 17.04.2013 (6)
  14. Avast meldet Win32:Trojan-gen
    Log-Analyse und Auswertung - 12.02.2012 (7)
  15. avast! meldet Bedrohung: Win32:rootkit-gen [Rtk]
    Log-Analyse und Auswertung - 03.12.2010 (3)
  16. KIS 2010 meldet Win32.Banker.ajgn und Win32.OnLineGame.uaoe
    Log-Analyse und Auswertung - 04.03.2010 (8)
  17. avast meldet Win32:Obfuscated-DH
    Log-Analyse und Auswertung - 15.04.2007 (5)

Zum Thema Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft - Hallo Wenn Minecraft läuft meldet avast free in 2 Speicherblöcken die dem Prozess javaw.exe zugeornet sind den Trojaner Win32:Banker-KDL. Auf den Festplatten jedoch nichts. Beende ich Minekraft findet er auch - Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft...
Archiv
Du betrachtest: Avast meldet Win32:Banker-KDL im Speicher wenn Minekraft läuft auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.