Windows 7 - Verdacht auf Botnet/Sinkhole Kontakt Zitat:
Zitat von
M-K-D-B Warum nicht? Welches Program ergab sich?
Als ich das Programm laden wollte, wurde ich auf die Homepage von Kaspersky weitergeleitet, dort war der Hinweis zu finden, dass folgender Link zur Zeit nicht verfügbar sei.
Zitat:
Zitat von
M-K-D-B TDSS-Killer erneut ausführen, wähle bei dem FundCure/Delete (je nachem, was angeboten wird). Dein Rechner muss neu gestartet werden, poste die neue Logdatei von TDSS-Killer.
Meinen Rechner sollte ich nicht neustarten, allerdings tat ich dies wie angewiesen trotzdem.
Logfile Nr. 1:
Code:
Alles auswählen Aufklappen ATTFilter
05:04:31.0161 0x079c TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
05:04:33.0360 0x079c ============================================================
05:04:33.0360 0x079c Current date / time: 2015/01/04 05:04:33.0360
05:04:33.0360 0x079c SystemInfo:
05:04:33.0360 0x079c
05:04:33.0360 0x079c OS Version: 6.1.7601 ServicePack: 1.0
05:04:33.0360 0x079c Product type: Workstation
05:04:33.0360 0x079c ComputerName: DENIZPC
05:04:33.0360 0x079c UserName: Deniz
05:04:33.0360 0x079c Windows directory: C:\Windows
05:04:33.0360 0x079c System windows directory: C:\Windows
05:04:33.0360 0x079c Running under WOW64
05:04:33.0360 0x079c Processor architecture: Intel x64
05:04:33.0360 0x079c Number of processors: 4
05:04:33.0360 0x079c Page size: 0x1000
05:04:33.0360 0x079c Boot type: Normal boot
05:04:33.0360 0x079c ============================================================
05:04:34.0343 0x079c KLMD registered as C:\Windows\system32\drivers\61896924.sys
05:04:35.0747 0x079c System UUID: {1BD0E1B2-03D3-31BE-6C24-65164357FBF6}
05:04:36.0278 0x079c Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0x38080, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
05:04:36.0980 0x079c ============================================================
05:04:36.0980 0x079c \Device\Harddisk0\DR0:
05:04:36.0995 0x079c MBR partitions:
05:04:36.0995 0x079c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
05:04:36.0995 0x079c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1866E000
05:04:36.0995 0x079c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x186A0800, BlocksNum 0x21CE4000
05:04:36.0995 0x079c ============================================================
05:04:37.0011 0x079c C: <-> \Device\Harddisk0\DR0\Partition2
05:04:37.0058 0x079c D: <-> \Device\Harddisk0\DR0\Partition3
05:04:37.0073 0x079c G: <-> \Device\Harddisk0\DR0\Partition1
05:04:37.0073 0x079c ============================================================
05:04:37.0073 0x079c Initialize success
05:04:37.0073 0x079c ============================================================
05:04:42.0658 0x1408 ============================================================
05:04:42.0658 0x1408 Scan started
05:04:42.0658 0x1408 Mode: Manual; SigCheck; TDLFS;
05:04:42.0658 0x1408 ============================================================
05:04:42.0658 0x1408 KSN ping started
05:04:56.0402 0x1408 KSN ping finished: true
05:04:57.0400 0x1408 ================ Scan system memory ========================
05:04:57.0400 0x1408 System memory - ok
05:04:57.0400 0x1408 ================ Scan services =============================
05:04:57.0556 0x1408 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
05:04:57.0619 0x1408 1394ohci - ok
05:04:57.0650 0x1408 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
05:04:57.0665 0x1408 ACPI - ok
05:04:57.0681 0x1408 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
05:04:57.0697 0x1408 AcpiPmi - ok
05:04:57.0790 0x1408 [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
05:04:57.0806 0x1408 AdobeARMservice - ok
05:04:57.0931 0x1408 [ 4E48A7DF7ECACB38C686B2BEBAA687A3, D4DEE6BD464855B24A6D40BC6A9279B2041099615C6A319D869DA113AD896EA3 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
05:04:57.0946 0x1408 AdobeFlashPlayerUpdateSvc - ok
05:04:57.0993 0x1408 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
05:04:58.0024 0x1408 adp94xx - ok
05:04:58.0055 0x1408 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
05:04:58.0071 0x1408 adpahci - ok
05:04:58.0102 0x1408 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
05:04:58.0118 0x1408 adpu320 - ok
05:04:58.0133 0x1408 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
05:04:58.0165 0x1408 AeLookupSvc - ok
05:04:58.0227 0x1408 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
05:04:58.0243 0x1408 AFD - ok
05:04:58.0289 0x1408 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
05:04:58.0305 0x1408 agp440 - ok
05:04:58.0321 0x1408 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
05:04:58.0336 0x1408 ALG - ok
05:04:58.0352 0x1408 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
05:04:58.0367 0x1408 aliide - ok
05:04:58.0383 0x1408 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
05:04:58.0399 0x1408 amdide - ok
05:04:58.0430 0x1408 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
05:04:58.0445 0x1408 AmdK8 - ok
05:04:58.0461 0x1408 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
05:04:58.0477 0x1408 AmdPPM - ok
05:04:58.0492 0x1408 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
05:04:58.0508 0x1408 amdsata - ok
05:04:58.0523 0x1408 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
05:04:58.0539 0x1408 amdsbs - ok
05:04:58.0555 0x1408 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
05:04:58.0555 0x1408 amdxata - ok
05:04:58.0601 0x1408 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
05:04:58.0648 0x1408 AppID - ok
05:04:58.0664 0x1408 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
05:04:58.0695 0x1408 AppIDSvc - ok
05:04:58.0757 0x1408 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
05:04:58.0773 0x1408 Appinfo - ok
05:04:58.0851 0x1408 [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:04:58.0851 0x1408 Apple Mobile Device - ok
05:04:58.0882 0x1408 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
05:04:58.0898 0x1408 AppMgmt - ok
05:04:58.0929 0x1408 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
05:04:58.0945 0x1408 arc - ok
05:04:58.0945 0x1408 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
05:04:58.0960 0x1408 arcsas - ok
05:04:59.0085 0x1408 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
05:04:59.0101 0x1408 aspnet_state - ok
05:04:59.0116 0x1408 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
05:04:59.0147 0x1408 AsyncMac - ok
05:04:59.0163 0x1408 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
05:04:59.0179 0x1408 atapi - ok
05:04:59.0241 0x1408 [ FC0E8778C000291CAF60EB88C011E931, 09BCCA3DE01021AEF76DFB46F01D21BA6FF409E816FA7547E5C3DFBF3A615ED2 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
05:04:59.0257 0x1408 atksgt - ok
05:04:59.0303 0x1408 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
05:04:59.0335 0x1408 AudioEndpointBuilder - ok
05:04:59.0366 0x1408 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
05:04:59.0397 0x1408 AudioSrv - ok
05:04:59.0428 0x1408 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
05:04:59.0444 0x1408 AxInstSV - ok
05:04:59.0491 0x1408 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
05:04:59.0506 0x1408 b06bdrv - ok
05:04:59.0537 0x1408 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
05:04:59.0569 0x1408 b57nd60a - ok
05:04:59.0600 0x1408 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
05:04:59.0615 0x1408 BDESVC - ok
05:04:59.0647 0x1408 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
05:04:59.0678 0x1408 Beep - ok
05:04:59.0756 0x1408 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
05:04:59.0787 0x1408 BFE - ok
05:04:59.0834 0x1408 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
05:04:59.0896 0x1408 BITS - ok
05:04:59.0912 0x1408 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
05:04:59.0927 0x1408 blbdrive - ok
05:05:00.0005 0x1408 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
05:05:00.0021 0x1408 Bonjour Service - ok
05:05:00.0037 0x1408 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
05:05:00.0052 0x1408 bowser - ok
05:05:00.0115 0x1408 BRDriver64 - ok
05:05:00.0130 0x1408 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
05:05:00.0146 0x1408 BrFiltLo - ok
05:05:00.0161 0x1408 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
05:05:00.0177 0x1408 BrFiltUp - ok
05:05:00.0177 0x1408 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
05:05:00.0193 0x1408 Browser - ok
05:05:00.0224 0x1408 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
05:05:00.0255 0x1408 Brserid - ok
05:05:00.0271 0x1408 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
05:05:00.0286 0x1408 BrSerWdm - ok
05:05:00.0333 0x1408 [ 78561B78811A147B99CB47EBBD2D2847, 4EF1ED64CAF0549B43A660FF70D5035DFD59CCD22E7353150E8A13944C936520 ] BRSptSvc C:\ProgramData\BitRaider\BRSptSvc.exe
05:05:00.0364 0x1408 BRSptSvc - ok
05:05:00.0364 0x1408 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
05:05:00.0380 0x1408 BrUsbMdm - ok
05:05:00.0395 0x1408 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
05:05:00.0411 0x1408 BrUsbSer - ok
05:05:00.0442 0x1408 [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc C:\Program Files (x86)\Browny02\BrYNSvc.exe
05:05:00.0458 0x1408 BrYNSvc - detected UnsignedFile.Multi.Generic ( 1 )
05:05:02.0923 0x1408 Detect skipped due to KSN trusted
05:05:02.0923 0x1408 BrYNSvc - ok
05:05:02.0923 0x1408 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
05:05:02.0954 0x1408 BTHMODEM - ok
05:05:02.0969 0x1408 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
05:05:03.0016 0x1408 bthserv - ok
05:05:03.0047 0x1408 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
05:05:03.0079 0x1408 cdfs - ok
05:05:03.0110 0x1408 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
05:05:03.0125 0x1408 cdrom - ok
05:05:03.0157 0x1408 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
05:05:03.0188 0x1408 CertPropSvc - ok
05:05:03.0219 0x1408 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
05:05:03.0235 0x1408 circlass - ok
05:05:03.0266 0x1408 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
05:05:03.0297 0x1408 CLFS - ok
05:05:03.0344 0x1408 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:05:03.0359 0x1408 clr_optimization_v2.0.50727_32 - ok
05:05:03.0406 0x1408 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
05:05:03.0422 0x1408 clr_optimization_v2.0.50727_64 - ok
05:05:03.0484 0x1408 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:05:03.0500 0x1408 clr_optimization_v4.0.30319_32 - ok
05:05:03.0531 0x1408 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:05:03.0547 0x1408 clr_optimization_v4.0.30319_64 - ok
05:05:03.0578 0x1408 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
05:05:03.0593 0x1408 CmBatt - ok
05:05:03.0609 0x1408 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
05:05:03.0625 0x1408 cmdide - ok
05:05:03.0687 0x1408 [ 2835BF2A864CDE9184C80CF4E6A485F9, 62E0549D22E2C7142AC1F7DF9E34C5E2D3E3AA89C45E953260D7EAA10F36821D ] cmuda3 C:\Windows\system32\drivers\cmudax3.sys
05:05:03.0812 0x1408 cmuda3 - ok
05:05:03.0859 0x1408 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
05:05:03.0890 0x1408 CNG - ok
05:05:03.0905 0x1408 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
05:05:03.0921 0x1408 Compbatt - ok
05:05:03.0937 0x1408 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
05:05:03.0952 0x1408 CompositeBus - ok
05:05:03.0968 0x1408 COMSysApp - ok
05:05:03.0983 0x1408 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
05:05:03.0999 0x1408 crcdisk - ok
05:05:04.0030 0x1408 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
05:05:04.0046 0x1408 CryptSvc - ok
05:05:04.0077 0x1408 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
05:05:04.0108 0x1408 CSC - ok
05:05:04.0155 0x1408 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
05:05:04.0186 0x1408 CscService - ok
05:05:04.0217 0x1408 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
05:05:04.0264 0x1408 DcomLaunch - ok
05:05:04.0311 0x1408 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
05:05:04.0405 0x1408 defragsvc - ok
05:05:04.0420 0x1408 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
05:05:04.0451 0x1408 DfsC - ok
05:05:04.0483 0x1408 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
05:05:04.0514 0x1408 Dhcp - ok
05:05:04.0529 0x1408 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
05:05:04.0561 0x1408 discache - ok
05:05:04.0576 0x1408 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
05:05:04.0592 0x1408 Disk - ok
05:05:04.0623 0x1408 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
05:05:04.0639 0x1408 Dnscache - ok
05:05:04.0670 0x1408 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
05:05:04.0717 0x1408 dot3svc - ok
05:05:04.0732 0x1408 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
05:05:04.0763 0x1408 DPS - ok
05:05:04.0810 0x1408 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
05:05:04.0810 0x1408 drmkaud - ok
05:05:04.0857 0x1408 [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
05:05:04.0873 0x1408 dtsoftbus01 - ok
05:05:04.0951 0x1408 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
05:05:04.0982 0x1408 DXGKrnl - ok
05:05:05.0013 0x1408 EagleX64 - ok
05:05:05.0044 0x1408 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
05:05:05.0075 0x1408 EapHost - ok
05:05:05.0216 0x1408 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
05:05:05.0309 0x1408 ebdrv - ok
05:05:05.0356 0x1408 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
05:05:05.0372 0x1408 EFS - ok
05:05:05.0419 0x1408 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
05:05:05.0450 0x1408 ehRecvr - ok
05:05:05.0481 0x1408 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
05:05:05.0497 0x1408 ehSched - ok
05:05:05.0528 0x1408 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
05:05:05.0559 0x1408 elxstor - ok
05:05:05.0575 0x1408 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
05:05:05.0590 0x1408 ErrDev - ok
05:05:05.0746 0x1408 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
05:05:05.0793 0x1408 EventSystem - ok
05:05:05.0809 0x1408 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
05:05:05.0855 0x1408 exfat - ok
05:05:05.0887 0x1408 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
05:05:05.0918 0x1408 fastfat - ok
05:05:05.0980 0x1408 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
05:05:06.0011 0x1408 Fax - ok
05:05:06.0027 0x1408 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
05:05:06.0043 0x1408 fdc - ok
05:05:06.0058 0x1408 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
05:05:06.0089 0x1408 fdPHost - ok
05:05:06.0105 0x1408 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
05:05:06.0136 0x1408 FDResPub - ok
05:05:06.0152 0x1408 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
05:05:06.0167 0x1408 FileInfo - ok
05:05:06.0167 0x1408 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
05:05:06.0214 0x1408 Filetrace - ok
05:05:06.0230 0x1408 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
05:05:06.0245 0x1408 flpydisk - ok
05:05:06.0277 0x1408 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
05:05:06.0292 0x1408 FltMgr - ok
05:05:06.0355 0x1408 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
05:05:06.0401 0x1408 FontCache - ok
05:05:06.0448 0x1408 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:05:06.0448 0x1408 FontCache3.0.0.0 - ok
05:05:06.0464 0x1408 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
05:05:06.0479 0x1408 FsDepends - ok
05:05:06.0495 0x1408 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
05:05:06.0511 0x1408 Fs_Rec - ok
05:05:06.0542 0x1408 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
05:05:06.0557 0x1408 fvevol - ok
05:05:06.0573 0x1408 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
05:05:06.0589 0x1408 gagp30kx - ok
05:05:06.0620 0x1408 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
05:05:06.0620 0x1408 GEARAspiWDM - ok
05:05:06.0713 0x1408 [ 34E75903D327D9D02AA5F92F87C808EF, D43C5085C1D265DA7516EFE893002CE02CAA515AA9B5C2A080F75C78048688C1 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
05:05:06.0791 0x1408 GfExperienceService - ok
05:05:06.0838 0x1408 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
05:05:06.0901 0x1408 gpsvc - ok
05:05:06.0947 0x1408 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:05:06.0963 0x1408 gupdate - ok
05:05:06.0979 0x1408 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:05:06.0979 0x1408 gupdatem - ok
05:05:06.0994 0x1408 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
05:05:07.0010 0x1408 hcw85cir - ok
05:05:07.0041 0x1408 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
05:05:07.0057 0x1408 HdAudAddService - ok
05:05:07.0088 0x1408 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
05:05:07.0119 0x1408 HDAudBus - ok
05:05:07.0135 0x1408 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
05:05:07.0150 0x1408 HidBatt - ok
05:05:07.0150 0x1408 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
05:05:07.0166 0x1408 HidBth - ok
05:05:07.0166 0x1408 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
05:05:07.0181 0x1408 HidIr - ok
05:05:07.0213 0x1408 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
05:05:07.0244 0x1408 hidserv - ok
05:05:07.0291 0x1408 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
05:05:07.0306 0x1408 HidUsb - ok
05:05:07.0337 0x1408 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
05:05:07.0369 0x1408 hkmsvc - ok
05:05:07.0400 0x1408 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
05:05:07.0415 0x1408 HomeGroupListener - ok
05:05:07.0431 0x1408 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
05:05:07.0462 0x1408 HomeGroupProvider - ok
05:05:07.0478 0x1408 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
05:05:07.0493 0x1408 HpSAMD - ok
05:05:07.0509 0x1408 [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
05:05:07.0540 0x1408 HTCAND64 - detected UnsignedFile.Multi.Generic ( 1 )
05:05:10.0005 0x1408 Detect skipped due to KSN trusted
05:05:10.0005 0x1408 HTCAND64 - ok
05:05:10.0036 0x1408 [ 7C7C986776D00E575BFBDE5DCBDC615D, 4CF12851A5A45917C3A9139B19D79434F2038611B617F83A714506CC7A1A6C61 ] HtcVCom32 C:\Windows\system32\DRIVERS\HtcVComV64.sys
05:05:10.0067 0x1408 HtcVCom32 - detected UnsignedFile.Multi.Generic ( 1 )
05:05:13.0858 0x1408 Detect skipped due to KSN trusted
05:05:13.0858 0x1408 HtcVCom32 - ok
05:05:13.0905 0x1408 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
05:05:13.0952 0x1408 HTTP - ok
05:05:13.0983 0x1408 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
05:05:13.0983 0x1408 hwpolicy - ok
05:05:14.0030 0x1408 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
05:05:14.0045 0x1408 i8042prt - ok
05:05:14.0077 0x1408 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
05:05:14.0092 0x1408 iaStorV - ok
05:05:14.0170 0x1408 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
05:05:14.0170 0x1408 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
05:05:16.0651 0x1408 Detect skipped due to KSN trusted
05:05:16.0651 0x1408 IDriverT - ok
05:05:16.0713 0x1408 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
05:05:16.0744 0x1408 idsvc - ok
05:05:16.0744 0x1408 IEEtwCollectorService - ok
05:05:16.0775 0x1408 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
05:05:16.0775 0x1408 iirsp - ok
05:05:16.0838 0x1408 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
05:05:16.0869 0x1408 IKEEXT - ok
05:05:16.0900 0x1408 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
05:05:16.0900 0x1408 intelide - ok
05:05:16.0931 0x1408 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
05:05:16.0947 0x1408 intelppm - ok
05:05:16.0963 0x1408 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
05:05:17.0009 0x1408 IPBusEnum - ok
05:05:17.0025 0x1408 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:05:17.0056 0x1408 IpFilterDriver - ok
05:05:17.0103 0x1408 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
05:05:17.0119 0x1408 iphlpsvc - ok
05:05:17.0150 0x1408 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
05:05:17.0165 0x1408 IPMIDRV - ok
05:05:17.0197 0x1408 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
05:05:17.0228 0x1408 IPNAT - ok
05:05:17.0290 0x1408 [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
05:05:17.0306 0x1408 iPod Service - ok
05:05:17.0321 0x1408 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
05:05:17.0353 0x1408 IRENUM - ok
05:05:17.0368 0x1408 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
05:05:17.0368 0x1408 isapnp - ok
05:05:17.0415 0x1408 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
05:05:17.0431 0x1408 iScsiPrt - ok
05:05:17.0446 0x1408 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
05:05:17.0462 0x1408 kbdclass - ok
05:05:17.0477 0x1408 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
05:05:17.0493 0x1408 kbdhid - ok
05:05:17.0509 0x1408 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
05:05:17.0524 0x1408 KeyIso - ok
05:05:17.0524 0x1408 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
05:05:17.0540 0x1408 KSecDD - ok
05:05:17.0571 0x1408 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
05:05:17.0587 0x1408 KSecPkg - ok
05:05:17.0602 0x1408 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
05:05:17.0649 0x1408 ksthunk - ok
05:05:17.0680 0x1408 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
05:05:17.0711 0x1408 KtmRm - ok
05:05:17.0758 0x1408 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
05:05:17.0789 0x1408 LanmanServer - ok
05:05:17.0821 0x1408 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
05:05:17.0852 0x1408 LanmanWorkstation - ok
05:05:17.0883 0x1408 [ 156AB2E56DC3CA0B582E3362E07CDED7, 7B03929273861690DC42E4C686E655BE5A1C60136AE5E739D7E62306AFD4AB9A ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
05:05:17.0899 0x1408 lirsgt - ok
05:05:17.0914 0x1408 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
05:05:17.0945 0x1408 lltdio - ok
05:05:17.0992 0x1408 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
05:05:18.0023 0x1408 lltdsvc - ok
05:05:18.0039 0x1408 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
05:05:18.0086 0x1408 lmhosts - ok
05:05:18.0101 0x1408 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
05:05:18.0117 0x1408 LSI_FC - ok
05:05:18.0148 0x1408 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
05:05:18.0148 0x1408 LSI_SAS - ok
05:05:18.0164 0x1408 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
05:05:18.0179 0x1408 LSI_SAS2 - ok
05:05:18.0195 0x1408 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
05:05:18.0211 0x1408 LSI_SCSI - ok
05:05:18.0242 0x1408 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
05:05:18.0273 0x1408 luafv - ok
05:05:18.0304 0x1408 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
05:05:18.0320 0x1408 Mcx2Svc - ok
05:05:18.0320 0x1408 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
05:05:18.0335 0x1408 megasas - ok
05:05:18.0351 0x1408 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
05:05:18.0367 0x1408 MegaSR - ok
05:05:18.0429 0x1408 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
05:05:18.0445 0x1408 Microsoft Office Groove Audit Service - ok
05:05:18.0460 0x1408 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
05:05:18.0507 0x1408 MMCSS - ok
05:05:18.0523 0x1408 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
05:05:18.0554 0x1408 Modem - ok
05:05:18.0569 0x1408 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
05:05:18.0585 0x1408 monitor - ok
05:05:18.0601 0x1408 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
05:05:18.0616 0x1408 mouclass - ok
05:05:18.0632 0x1408 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
05:05:18.0647 0x1408 mouhid - ok
05:05:18.0663 0x1408 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
05:05:18.0679 0x1408 mountmgr - ok
05:05:18.0725 0x1408 [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
05:05:18.0741 0x1408 MozillaMaintenance - ok
05:05:18.0803 0x1408 [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
05:05:18.0835 0x1408 MpFilter - ok
05:05:18.0850 0x1408 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
05:05:18.0866 0x1408 mpio - ok
05:05:18.0881 0x1408 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
05:05:18.0913 0x1408 mpsdrv - ok
05:05:18.0959 0x1408 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
05:05:19.0022 0x1408 MpsSvc - ok
05:05:19.0053 0x1408 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
05:05:19.0069 0x1408 MRxDAV - ok
05:05:19.0084 0x1408 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
05:05:19.0100 0x1408 mrxsmb - ok
05:05:19.0115 0x1408 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:05:19.0147 0x1408 mrxsmb10 - ok
05:05:19.0147 0x1408 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:05:19.0162 0x1408 mrxsmb20 - ok
05:05:19.0178 0x1408 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
05:05:19.0193 0x1408 msahci - ok
05:05:19.0209 0x1408 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
05:05:19.0225 0x1408 msdsm - ok
05:05:19.0240 0x1408 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
05:05:19.0271 0x1408 MSDTC - ok
05:05:19.0287 0x1408 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
05:05:19.0318 0x1408 Msfs - ok
05:05:19.0334 0x1408 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
05:05:19.0365 0x1408 mshidkmdf - ok
05:05:19.0381 0x1408 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
05:05:19.0381 0x1408 msisadrv - ok
05:05:19.0427 0x1408 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
05:05:19.0459 0x1408 MSiSCSI - ok
05:05:19.0459 0x1408 msiserver - ok
05:05:19.0490 0x1408 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
05:05:19.0521 0x1408 MSKSSRV - ok
05:05:19.0583 0x1408 [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
05:05:19.0599 0x1408 MsMpSvc - ok
05:05:19.0615 0x1408 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
05:05:19.0646 0x1408 MSPCLOCK - ok
05:05:19.0646 0x1408 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
05:05:19.0677 0x1408 MSPQM - ok
05:05:19.0708 0x1408 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
05:05:19.0724 0x1408 MsRPC - ok
05:05:19.0755 0x1408 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
05:05:19.0771 0x1408 mssmbios - ok
05:05:19.0786 0x1408 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
05:05:19.0817 0x1408 MSTEE - ok
05:05:19.0817 0x1408 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
05:05:19.0833 0x1408 MTConfig - ok
05:05:19.0849 0x1408 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
05:05:19.0864 0x1408 Mup - ok
05:05:19.0895 0x1408 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
05:05:19.0942 0x1408 napagent - ok
05:05:19.0973 0x1408 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
05:05:20.0005 0x1408 NativeWifiP - ok
05:05:20.0051 0x1408 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
05:05:20.0083 0x1408 NDIS - ok
05:05:20.0098 0x1408 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
05:05:20.0129 0x1408 NdisCap - ok
05:05:20.0161 0x1408 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
05:05:20.0192 0x1408 NdisTapi - ok
05:05:20.0207 0x1408 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
05:05:20.0239 0x1408 Ndisuio - ok
05:05:20.0254 0x1408 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
05:05:20.0301 0x1408 NdisWan - ok
05:05:20.0317 0x1408 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
05:05:20.0348 0x1408 NDProxy - ok
05:05:20.0379 0x1408 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
05:05:20.0410 0x1408 NetBIOS - ok
05:05:20.0441 0x1408 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
05:05:20.0473 0x1408 NetBT - ok
05:05:20.0488 0x1408 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
05:05:20.0504 0x1408 Netlogon - ok
05:05:20.0535 0x1408 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
05:05:20.0566 0x1408 Netman - ok
05:05:20.0613 0x1408 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:05:20.0629 0x1408 NetMsmqActivator - ok
05:05:20.0644 0x1408 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:05:20.0660 0x1408 NetPipeActivator - ok
05:05:20.0675 0x1408 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
05:05:20.0722 0x1408 netprofm - ok
05:05:20.0738 0x1408 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:05:20.0753 0x1408 NetTcpActivator - ok
05:05:20.0769 0x1408 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
05:05:20.0785 0x1408 NetTcpPortSharing - ok
05:05:20.0816 0x1408 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
05:05:20.0816 0x1408 nfrd960 - ok
05:05:20.0863 0x1408 [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
05:05:20.0878 0x1408 NisDrv - ok
05:05:20.0925 0x1408 [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
05:05:20.0941 0x1408 NisSrv - ok
05:05:20.0956 0x1408 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
05:05:20.0987 0x1408 NlaSvc - ok
05:05:21.0003 0x1408 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
05:05:21.0034 0x1408 Npfs - ok
05:05:21.0050 0x1408 npggsvc - ok
05:05:21.0065 0x1408 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
05:05:21.0097 0x1408 nsi - ok
05:05:21.0112 0x1408 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
05:05:21.0143 0x1408 nsiproxy - ok
05:05:21.0221 0x1408 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
05:05:21.0284 0x1408 Ntfs - ok
05:05:21.0299 0x1408 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
05:05:21.0331 0x1408 Null - ok
05:05:21.0377 0x1408 [ C87B11EB78428853F9E8495C47E53C10, FAE479DB0812967B3FF968773BA998591B4F50BE4329B8349BCA7E6EAB1B0474 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
05:05:21.0393 0x1408 NVHDA - ok
05:05:21.0830 0x1408 [ FDB03499693DEFD0B6754264C187F967, 7A011832868A685E37DFA7815AABABD7BE14D7E4F05FE1F5349E5BC96AA1DE82 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
05:05:22.0157 0x1408 nvlddmkm - ok
05:05:22.0298 0x1408 [ 9EA1D43D68AAAE216CDA9C89CEF24D9E, 6554DD56EA804BC69EA5B50FA5F7CCCE790B5CC650F17DF5C474BEF7E5C99990 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
05:05:23.0125 0x1408 NvNetworkService - ok
05:05:23.0171 0x1408 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
05:05:23.0187 0x1408 nvraid - ok
05:05:23.0218 0x1408 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
05:05:23.0218 0x1408 nvstor - ok
05:05:23.0265 0x1408 [ 63734B0FBD8E6DAF841AD3DD47DEFFFB, 8D458301C8349591C5649E53D7DA6C67D71FF3C82B2ADF426231DE208ECF85ED ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
05:05:23.0296 0x1408 NvStreamKms - ok
05:05:23.0998 0x1408 [ 8EB877DD871935DF1074BFF18CB301AB, 44B94840E24BF83D445C516756F78DAF4CF9C665B74A318AF3A6C5648DF8C45D ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
05:05:25.0948 0x1408 NvStreamSvc - ok
05:05:26.0042 0x1408 [ 103C5A4A296D7958B2E150A15884B240, D57DCDD668CAE26AC4EDD30BF415421B8F63071245538FC8D940CD430A169445 ] nvsvc C:\Windows\system32\nvvsvc.exe
05:05:26.0135 0x1408 nvsvc - ok
05:05:26.0182 0x1408 [ 1FE5C1F4CCA8EAEA75C90FB2A85D9CC3, 4C3C36ADC9EC0FDED3E3FFC7918680B643652AD39458FAA8525392DAD0ABD845 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
05:05:26.0198 0x1408 nvvad_WaveExtensible - ok
05:05:26.0229 0x1408 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
05:05:26.0245 0x1408 nv_agp - ok
05:05:26.0291 0x1408 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
05:05:26.0307 0x1408 odserv - ok
05:05:26.0338 0x1408 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
05:05:26.0354 0x1408 ohci1394 - ok
05:05:26.0463 0x1408 [ EF8DA126239D08B7B4734256417AE702, 4BBA0577C20E851F5B30D0D0F19382AB32AF57EFF7AA5B394E0FF6358A7AB287 ] Origin Client Service D:\Origin\OriginClientService.exe
05:05:26.0541 0x1408 Origin Client Service - ok
05:05:26.0588 0x1408 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
05:05:26.0603 0x1408 ose - ok
05:05:26.0650 0x1408 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
05:05:26.0666 0x1408 p2pimsvc - ok
05:05:26.0681 0x1408 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
05:05:26.0713 0x1408 p2psvc - ok
05:05:26.0744 0x1408 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
05:05:26.0759 0x1408 Parport - ok
05:05:26.0775 0x1408 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
05:05:26.0791 0x1408 partmgr - ok
05:05:26.0806 0x1408 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
05:05:26.0822 0x1408 PcaSvc - ok
05:05:26.0853 0x1408 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
05:05:26.0869 0x1408 pci - ok
05:05:26.0884 0x1408 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
05:05:26.0900 0x1408 pciide - ok
05:05:26.0915 0x1408 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
05:05:26.0931 0x1408 pcmcia - ok
05:05:26.0947 0x1408 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
05:05:26.0962 0x1408 pcw - ok
05:05:26.0993 0x1408 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
05:05:27.0056 0x1408 PEAUTH - ok
05:05:27.0118 0x1408 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
05:05:27.0165 0x1408 PeerDistSvc - ok
05:05:27.0259 0x1408 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
05:05:27.0274 0x1408 PerfHost - ok
05:05:27.0337 0x1408 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
05:05:27.0415 0x1408 pla - ok
05:05:27.0446 0x1408 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
05:05:27.0477 0x1408 PlugPlay - ok
05:05:27.0477 0x1408 PnkBstrA - ok
05:05:27.0508 0x1408 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
05:05:27.0508 0x1408 PNRPAutoReg - ok
05:05:27.0539 0x1408 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
05:05:27.0555 0x1408 PNRPsvc - ok
05:05:27.0586 0x1408 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
05:05:27.0633 0x1408 PolicyAgent - ok
05:05:27.0649 0x1408 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
05:05:27.0695 0x1408 Power - ok
05:05:27.0727 0x1408 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
05:05:27.0758 0x1408 PptpMiniport - ok
05:05:27.0773 0x1408 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
05:05:27.0789 0x1408 Processor - ok
05:05:27.0836 0x1408 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
05:05:27.0851 0x1408 ProfSvc - ok
05:05:27.0851 0x1408 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
05:05:27.0867 0x1408 ProtectedStorage - ok
05:05:27.0898 0x1408 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
05:05:27.0929 0x1408 Psched - ok
05:05:27.0976 0x1408 [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
05:05:27.0976 0x1408 PSI - ok
05:05:28.0054 0x1408 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
05:05:28.0101 0x1408 ql2300 - ok
05:05:28.0117 0x1408 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
05:05:28.0132 0x1408 ql40xx - ok
05:05:28.0148 0x1408 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
05:05:28.0179 0x1408 QWAVE - ok
05:05:28.0195 0x1408 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
05:05:28.0210 0x1408 QWAVEdrv - ok
05:05:28.0226 0x1408 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
05:05:28.0257 0x1408 RasAcd - ok
05:05:28.0273 0x1408 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
05:05:28.0319 0x1408 RasAgileVpn - ok
05:05:28.0319 0x1408 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
05:05:28.0366 0x1408 RasAuto - ok
05:05:28.0382 0x1408 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
05:05:28.0413 0x1408 Rasl2tp - ok
05:05:28.0444 0x1408 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
05:05:28.0475 0x1408 RasMan - ok
05:05:28.0507 0x1408 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
05:05:28.0538 0x1408 RasPppoe - ok
05:05:28.0553 0x1408 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
05:05:28.0585 0x1408 RasSstp - ok
05:05:28.0616 0x1408 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
05:05:28.0663 0x1408 rdbss - ok
05:05:28.0663 0x1408 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
05:05:28.0678 0x1408 rdpbus - ok
05:05:28.0694 0x1408 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
05:05:28.0725 0x1408 RDPCDD - ok
05:05:28.0756 0x1408 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
05:05:28.0772 0x1408 RDPDR - ok
05:05:28.0803 0x1408 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
05:05:28.0834 0x1408 RDPENCDD - ok
05:05:28.0834 0x1408 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
05:05:28.0865 0x1408 RDPREFMP - ok
05:05:28.0928 0x1408 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
05:05:28.0943 0x1408 RdpVideoMiniport - ok
05:05:28.0975 0x1408 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
05:05:28.0990 0x1408 RDPWD - ok
05:05:29.0006 0x1408 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
05:05:29.0037 0x1408 rdyboost - ok
05:05:29.0053 0x1408 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
05:05:29.0084 0x1408 RemoteAccess - ok
05:05:29.0115 0x1408 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
05:05:29.0146 0x1408 RemoteRegistry - ok
05:05:29.0177 0x1408 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
05:05:29.0209 0x1408 RpcEptMapper - ok
05:05:29.0224 0x1408 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
05:05:29.0240 0x1408 RpcLocator - ok
05:05:29.0271 0x1408 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
05:05:29.0318 0x1408 RpcSs - ok
05:05:29.0349 0x1408 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
05:05:29.0380 0x1408 rspndr - ok
05:05:29.0427 0x1408 [ EF91E0806C01806C3CF62AF006901127, 1F49D57B6598EF0923DF70FD31B755B29D5ED4D38840D7619D3399B759FD579F ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
05:05:29.0458 0x1408 RTL8167 - ok
05:05:29.0474 0x1408 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
05:05:29.0489 0x1408 s3cap - ok
05:05:29.0505 0x1408 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
05:05:29.0521 0x1408 SamSs - ok
05:05:29.0536 0x1408 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
05:05:29.0552 0x1408 sbp2port - ok
05:05:29.0567 0x1408 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
05:05:29.0614 0x1408 SCardSvr - ok
05:05:29.0630 0x1408 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
05:05:29.0661 0x1408 scfilter - ok
05:05:29.0723 0x1408 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
05:05:29.0786 0x1408 Schedule - ok
05:05:29.0801 0x1408 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
05:05:29.0848 0x1408 SCPolicySvc - ok
05:05:29.0864 0x1408 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
05:05:29.0895 0x1408 SDRSVC - ok
05:05:29.0911 0x1408 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
05:05:29.0942 0x1408 secdrv - ok
05:05:29.0957 0x1408 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
05:05:29.0989 0x1408 seclogon - ok
05:05:30.0067 0x1408 [ E43C0D32FF2D9A72F2D975B83B916964, 48EA724E1131DF080EFA54708EDC6C1F351FC741611B0E7AA6AE71A689E95D53 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
05:05:30.0098 0x1408 Secunia PSI Agent - ok
05:05:30.0145 0x1408 [ CB2D183E27D1443F7D4CF10665B2BDED, 90D55D22BC224DE9C193D98AC6C7C73799F73933E77F874D83EA7CEA2F38B891 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
05:05:30.0176 0x1408 Secunia Update Agent - ok
05:05:30.0191 0x1408 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
05:05:30.0238 0x1408 SENS - ok
05:05:30.0254 0x1408 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
05:05:30.0254 0x1408 SensrSvc - ok
05:05:30.0269 0x1408 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
05:05:30.0285 0x1408 Serenum - ok
05:05:30.0301 0x1408 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
05:05:30.0316 0x1408 Serial - ok
05:05:30.0347 0x1408 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
05:05:30.0363 0x1408 sermouse - ok
05:05:30.0394 0x1408 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
05:05:30.0425 0x1408 SessionEnv - ok
05:05:30.0441 0x1408 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
05:05:30.0457 0x1408 sffdisk - ok
05:05:30.0457 0x1408 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
05:05:30.0472 0x1408 sffp_mmc - ok
05:05:30.0488 0x1408 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
05:05:30.0503 0x1408 sffp_sd - ok
05:05:30.0519 0x1408 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
05:05:30.0535 0x1408 sfloppy - ok
05:05:30.0566 0x1408 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
05:05:30.0613 0x1408 SharedAccess - ok
05:05:30.0628 0x1408 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
05:05:30.0675 0x1408 ShellHWDetection - ok
05:05:30.0691 0x1408 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
05:05:30.0706 0x1408 SiSRaid2 - ok
05:05:30.0722 0x1408 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
05:05:30.0737 0x1408 SiSRaid4 - ok
05:05:30.0769 0x1408 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
05:05:30.0800 0x1408 Smb - ok
05:05:30.0831 0x1408 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
05:05:30.0847 0x1408 SNMPTRAP - ok
05:05:30.0862 0x1408 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
05:05:30.0862 0x1408 spldr - ok
05:05:30.0909 0x1408 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
05:05:30.0940 0x1408 Spooler - ok
05:05:31.0065 0x1408 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
05:05:31.0190 0x1408 sppsvc - ok
05:05:31.0205 0x1408 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
05:05:31.0252 0x1408 sppuinotify - ok
05:05:31.0283 0x1408 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
05:05:31.0299 0x1408 srv - ok
05:05:31.0330 0x1408 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
05:05:31.0346 0x1408 srv2 - ok
05:05:31.0377 0x1408 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
05:05:31.0393 0x1408 srvnet - ok
05:05:31.0408 0x1408 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
05:05:31.0455 0x1408 SSDPSRV - ok
05:05:31.0455 0x1408 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
05:05:31.0502 0x1408 SstpSvc - ok
05:05:31.0580 0x1408 [ CC7ED069C2FC82B5B1555C2044C765CC, CE43363544A3EE2C5133CD0D47BF34AFAFA4EAD6AC9EB9A772EE55E89D4D89D4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
05:05:31.0985 0x1408 Steam Client Service - ok
05:05:32.0032 0x1408 [ 9ADA53D2178EFA0C21FDD1F6002145C5, BC363BFF88DA893C7E72B2085D9784A89950A4C07352F8F20EB0840D67D4F6B6 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
05:05:32.0063 0x1408 Stereo Service - ok
05:05:32.0079 0x1408 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
05:05:32.0095 0x1408 stexstor - ok
05:05:32.0126 0x1408 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
05:05:32.0126 0x1408 StillCam - ok
05:05:32.0173 0x1408 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
05:05:32.0204 0x1408 stisvc - ok
05:05:32.0235 0x1408 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
05:05:32.0251 0x1408 storflt - ok
05:05:32.0266 0x1408 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
05:05:32.0282 0x1408 storvsc - ok
05:05:32.0297 0x1408 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
05:05:32.0313 0x1408 swenum - ok
05:05:32.0344 0x1408 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
05:05:32.0391 0x1408 swprv - ok
05:05:32.0407 0x1408 Synth3dVsc - ok
05:05:32.0485 0x1408 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
05:05:32.0563 0x1408 SysMain - ok
05:05:32.0578 0x1408 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
05:05:32.0609 0x1408 TabletInputService - ok
05:05:32.0625 0x1408 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
05:05:32.0672 0x1408 TapiSrv - ok
05:05:32.0687 0x1408 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
05:05:32.0734 0x1408 TBS - ok
05:05:32.0828 0x1408 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
05:05:32.0875 0x1408 Tcpip - ok
05:05:32.0984 0x1408 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
05:05:33.0031 0x1408 TCPIP6 - ok
05:05:33.0062 0x1408 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
05:05:33.0077 0x1408 tcpipreg - ok
05:05:33.0093 0x1408 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
05:05:33.0109 0x1408 TDPIPE - ok
05:05:33.0124 0x1408 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
05:05:33.0140 0x1408 TDTCP - ok
05:05:33.0171 0x1408 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
05:05:33.0187 0x1408 tdx - ok
05:05:33.0202 0x1408 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
05:05:33.0218 0x1408 TermDD - ok
05:05:33.0265 0x1408 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
05:05:33.0296 0x1408 TermService - ok
05:05:33.0327 0x1408 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
05:05:33.0343 0x1408 Themes - ok
05:05:33.0358 0x1408 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
05:05:33.0389 0x1408 THREADORDER - ok
05:05:33.0405 0x1408 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
05:05:33.0452 0x1408 TrkWks - ok
05:05:33.0499 0x1408 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
05:05:33.0530 0x1408 TrustedInstaller - ok
05:05:33.0561 0x1408 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
05:05:33.0577 0x1408 tssecsrv - ok
05:05:33.0592 0x1408 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
05:05:33.0608 0x1408 TsUsbFlt - ok
05:05:33.0608 0x1408 tsusbhub - ok
05:05:33.0639 0x1408 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
05:05:33.0670 0x1408 tunnel - ok
05:05:33.0701 0x1408 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
05:05:33.0717 0x1408 uagp35 - ok
05:05:33.0748 0x1408 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
05:05:33.0795 0x1408 udfs - ok
05:05:33.0811 0x1408 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
05:05:33.0826 0x1408 UI0Detect - ok
05:05:33.0842 0x1408 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
05:05:33.0857 0x1408 uliagpkx - ok
05:05:33.0889 0x1408 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
05:05:33.0904 0x1408 umbus - ok
05:05:33.0904 0x1408 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
05:05:33.0920 0x1408 UmPass - ok
05:05:33.0951 0x1408 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
05:05:33.0967 0x1408 UmRdpService - ok
05:05:33.0998 0x1408 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
05:05:34.0045 0x1408 upnphost - ok
05:05:34.0060 0x1408 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
05:05:34.0076 0x1408 USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
05:05:36.0556 0x1408 Detect skipped due to KSN trusted
05:05:36.0556 0x1408 USBAAPL64 - ok
05:05:36.0572 0x1408 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
05:05:36.0587 0x1408 usbccgp - ok
05:05:36.0619 0x1408 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
05:05:36.0634 0x1408 usbcir - ok
05:05:36.0665 0x1408 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
05:05:36.0681 0x1408 usbehci - ok
05:05:36.0712 0x1408 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
05:05:36.0743 0x1408 usbhub - ok
05:05:36.0759 0x1408 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
05:05:36.0775 0x1408 usbohci - ok
05:05:36.0806 0x1408 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
05:05:36.0821 0x1408 usbprint - ok
05:05:36.0837 0x1408 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
05:05:36.0853 0x1408 USBSTOR - ok
05:05:36.0868 0x1408 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
05:05:36.0884 0x1408 usbuhci - ok
05:05:36.0915 0x1408 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
05:05:36.0946 0x1408 UxSms - ok
05:05:36.0946 0x1408 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
05:05:36.0962 0x1408 VaultSvc - ok
05:05:36.0993 0x1408 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
05:05:37.0009 0x1408 vdrvroot - ok
05:05:37.0055 0x1408 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
05:05:37.0102 0x1408 vds - ok
05:05:37.0118 0x1408 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
05:05:37.0149 0x1408 vga - ok
05:05:37.0149 0x1408 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
05:05:37.0180 0x1408 VgaSave - ok
05:05:37.0196 0x1408 VGPU - ok
05:05:37.0211 0x1408 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
05:05:37.0227 0x1408 vhdmp - ok
05:05:37.0243 0x1408 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
05:05:37.0258 0x1408 viaide - ok
05:05:37.0274 0x1408 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
05:05:37.0289 0x1408 vmbus - ok
05:05:37.0305 0x1408 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
05:05:37.0321 0x1408 VMBusHID - ok
05:05:37.0336 0x1408 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
05:05:37.0352 0x1408 volmgr - ok
05:05:37.0383 0x1408 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
05:05:37.0399 0x1408 volmgrx - ok
05:05:37.0414 0x1408 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
05:05:37.0445 0x1408 volsnap - ok
05:05:37.0461 0x1408 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
05:05:37.0477 0x1408 vsmraid - ok
05:05:37.0539 0x1408 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
05:05:37.0617 0x1408 VSS - ok
05:05:37.0633 0x1408 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
05:05:37.0648 0x1408 vwifibus - ok
05:05:37.0679 0x1408 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
05:05:37.0726 0x1408 W32Time - ok
05:05:37.0742 0x1408 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
05:05:37.0757 0x1408 WacomPen - ok
05:05:37.0789 0x1408 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
05:05:37.0820 0x1408 WANARP - ok
05:05:37.0835 0x1408 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
05:05:37.0882 0x1408 Wanarpv6 - ok
05:05:37.0945 0x1408 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
05:05:37.0991 0x1408 wbengine - ok
05:05:38.0023 0x1408 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
05:05:38.0038 0x1408 WbioSrvc - ok
05:05:38.0085 0x1408 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
05:05:38.0116 0x1408 wcncsvc - ok
05:05:38.0116 0x1408 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
05:05:38.0132 0x1408 WcsPlugInService - ok
05:05:38.0163 0x1408 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
05:05:38.0179 0x1408 Wd - ok
05:05:38.0225 0x1408 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
05:05:38.0257 0x1408 Wdf01000 - ok
05:05:38.0272 0x1408 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
05:05:38.0288 0x1408 WdiServiceHost - ok
05:05:38.0303 0x1408 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
05:05:38.0319 0x1408 WdiSystemHost - ok
05:05:38.0350 0x1408 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
05:05:38.0381 0x1408 WebClient - ok
05:05:38.0397 0x1408 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
05:05:38.0444 0x1408 Wecsvc - ok
05:05:38.0459 0x1408 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
05:05:38.0491 0x1408 wercplsupport - ok
05:05:38.0522 0x1408 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
05:05:38.0553 0x1408 WerSvc - ok
05:05:38.0584 0x1408 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
05:05:38.0631 0x1408 WfpLwf - ok
05:05:38.0631 0x1408 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
05:05:38.0647 0x1408 WIMMount - ok
05:05:38.0662 0x1408 WinDefend - ok
05:05:38.0678 0x1408 WinHttpAutoProxySvc - ok
05:05:38.0725 0x1408 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
05:05:38.0756 0x1408 Winmgmt - ok
05:05:38.0849 0x1408 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
05:05:38.0927 0x1408 WinRM - ok
05:05:38.0974 0x1408 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
05:05:38.0990 0x1408 WinUsb - ok
05:05:39.0037 0x1408 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
05:05:39.0083 0x1408 Wlansvc - ok
05:05:39.0208 0x1408 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
05:05:39.0271 0x1408 wlidsvc - ok
05:05:39.0286 0x1408 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
05:05:39.0302 0x1408 WmiAcpi - ok
05:05:39.0333 0x1408 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
05:05:39.0349 0x1408 wmiApSrv - ok
05:05:39.0380 0x1408 WMPNetworkSvc - ok
05:05:39.0395 0x1408 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
05:05:39.0411 0x1408 WPCSvc - ok
05:05:39.0427 0x1408 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
05:05:39.0458 0x1408 WPDBusEnum - ok
05:05:39.0473 0x1408 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
05:05:39.0505 0x1408 ws2ifsl - ok
05:05:39.0520 0x1408 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
05:05:39.0551 0x1408 wscsvc - ok
05:05:39.0551 0x1408 WSearch - ok
05:05:39.0676 0x1408 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
05:05:39.0739 0x1408 wuauserv - ok
05:05:39.0770 0x1408 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
05:05:39.0785 0x1408 WudfPf - ok
05:05:39.0817 0x1408 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
05:05:39.0832 0x1408 WUDFRd - ok
05:05:39.0848 0x1408 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
05:05:39.0863 0x1408 wudfsvc - ok
05:05:39.0895 0x1408 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
05:05:39.0910 0x1408 WwanSvc - ok
05:05:39.0973 0x1408 [ 4A5CE13408945E525503B5F73D29B9C5, D58BB31AF17752508EA67931BF170CE46877DC204FC5DA7EED5A078AEB0CA0FD ] xnacc C:\Windows\system32\DRIVERS\xnacc.sys
05:05:40.0004 0x1408 xnacc - ok
05:05:40.0035 0x1408 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
05:05:40.0051 0x1408 xusb21 - ok
05:05:40.0051 0x1408 ================ Scan global ===============================
05:05:40.0066 0x1408 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
05:05:40.0097 0x1408 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
05:05:40.0113 0x1408 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
05:05:40.0144 0x1408 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
05:05:40.0160 0x1408 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
05:05:40.0160 0x1408 [ Global ] - ok
05:05:40.0160 0x1408 ================ Scan MBR ==================================
05:05:40.0175 0x1408 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
05:05:40.0409 0x1408 \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
05:05:40.0409 0x1408 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
05:05:42.0827 0x1408 ================ Scan VBR ==================================
05:05:42.0827 0x1408 [ 79C74978E7E411525F7721128A0D7848 ] \Device\Harddisk0\DR0\Partition1
05:05:42.0827 0x1408 \Device\Harddisk0\DR0\Partition1 - ok
05:05:42.0827 0x1408 [ 8DE2FBBD9E8FAD7B75958D3E8775F89D ] \Device\Harddisk0\DR0\Partition2
05:05:42.0827 0x1408 \Device\Harddisk0\DR0\Partition2 - ok
05:05:42.0827 0x1408 [ FC1D2DA4EBF6FD1774F615EA630E6DA0 ] \Device\Harddisk0\DR0\Partition3
05:05:42.0827 0x1408 \Device\Harddisk0\DR0\Partition3 - ok
05:05:42.0827 0x1408 ================ Scan generic autorun ======================
05:05:42.0921 0x1408 [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
05:05:42.0968 0x1408 MSC - ok
05:05:43.0061 0x1408 [ 90AC42BBCDF908DD576853CB5CACA761, DACDE2E100970229CA219D2640B483E955A22C45F34BC494BDF92F974C6DB611 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
05:05:43.0186 0x1408 NvBackend - ok
05:05:43.0217 0x1408 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
05:05:43.0233 0x1408 ShadowPlay - ok
05:05:43.0280 0x1408 [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
05:05:43.0280 0x1408 GrooveMonitor - ok
05:05:43.0311 0x1408 [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
05:05:43.0358 0x1408 ControlCenter4 - detected UnsignedFile.Multi.Generic ( 1 )
05:05:45.0823 0x1408 Detect skipped due to KSN trusted
05:05:45.0823 0x1408 ControlCenter4 - ok
05:05:45.0963 0x1408 [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
05:05:46.0057 0x1408 BrStsMon00 - detected UnsignedFile.Multi.Generic ( 1 )
05:05:48.0490 0x14c4 Object required for P2P: [ 9ADA53D2178EFA0C21FDD1F6002145C5 ] Stereo Service
05:05:48.0521 0x1408 Detect skipped due to KSN trusted
05:05:48.0521 0x1408 BrStsMon00 - ok
05:05:48.0584 0x1408 [ 14D6542607ACD4B2D1DDB1A36E0D8813, 3A270600549E8E7988D5AF3486C0F504269B9573393D87BF87BDB2287BF007B2 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
05:05:48.0599 0x1408 SunJavaUpdateSched - ok
05:05:48.0677 0x1408 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
05:05:48.0755 0x1408 Sidebar - ok
05:05:48.0771 0x1408 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
05:05:48.0802 0x1408 mctadmin - ok
05:05:48.0849 0x1408 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
05:05:48.0880 0x1408 Sidebar - ok
05:05:48.0896 0x1408 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
05:05:48.0927 0x1408 mctadmin - ok
05:05:49.0177 0x1408 [ 18EE6C694976C4D205AF24D6CCE3B660, 262F8B929CBBC8BFDD465826A27625ED9508A7C325C45F1964A4EFAC36D60056 ] C:\Program Files\CCleaner\CCleaner64.exe
05:05:49.0348 0x1408 CCleaner Monitoring - ok
05:05:49.0348 0x1408 Waiting for KSN requests completion. In queue: 103
05:05:50.0362 0x1408 Waiting for KSN requests completion. In queue: 103
05:05:50.0986 0x14c4 Object send P2P result: true
05:05:51.0376 0x1408 Waiting for KSN requests completion. In queue: 6
05:05:52.0390 0x1408 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
05:05:52.0406 0x1408 Win FW state via NFP2: enabled
05:05:54.0808 0x1408 ============================================================
05:05:54.0808 0x1408 Scan finished
05:05:54.0808 0x1408 ============================================================
05:05:54.0808 0x154c Detected object count: 1
05:05:54.0808 0x154c Actual detected object count: 1
05:06:36.0806 0x154c \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
05:06:36.0827 0x154c \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
05:06:36.0874 0x154c \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
05:06:36.0937 0x154c \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
05:06:37.0310 0x154c \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
05:06:37.0341 0x154c \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
05:06:38.0722 0x154c \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
05:06:38.0785 0x154c \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
05:06:38.0832 0x154c \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
05:06:38.0980 0x154c \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
05:06:38.0995 0x154c \Device\Harddisk0\DR0\TDLFS - deleted
05:06:38.0995 0x154c \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
__________________ 
03.01.2015, 19:38
Hybrid-Darstellung
