| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojaner durch directpay24-Spam-Mail mit .zip-Anhang?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
05.06.2016, 14:22
| #1 |
 |  tdss killer Hallo Jürgen, vielen lieben Dank für die Hilfe!! Hier einmal das log vom TDSSkiller: Code:
ATTFilter 15:15:47.0143 0x0474 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
15:15:52.0120 0x0474 ============================================================
15:15:52.0120 0x0474 Current date / time: 2016/06/05 15:15:52.0120
15:15:52.0120 0x0474 SystemInfo:
15:15:52.0120 0x0474
15:15:52.0120 0x0474 OS Version: 6.1.7601 ServicePack: 1.0
15:15:52.0120 0x0474 Product type: Workstation
15:15:52.0120 0x0474 ComputerName: JANASPC
15:15:52.0120 0x0474 UserName: Jana
15:15:52.0120 0x0474 Windows directory: C:\Windows
15:15:52.0120 0x0474 System windows directory: C:\Windows
15:15:52.0120 0x0474 Running under WOW64
15:15:52.0120 0x0474 Processor architecture: Intel x64
15:15:52.0120 0x0474 Number of processors: 2
15:15:52.0120 0x0474 Page size: 0x1000
15:15:52.0120 0x0474 Boot type: Normal boot
15:15:52.0120 0x0474 ============================================================
15:15:52.0925 0x0474 KLMD registered as C:\Windows\system32\drivers\47550595.sys
15:15:53.0581 0x0474 System UUID: {B95943BC-F8A3-2CFD-C498-6D2073881853}
15:15:54.0977 0x0474 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:15:54.0977 0x0474 Drive \Device\Harddisk1\DR1 - Size: 0x2BAA1475000 ( 2794.52 Gb ), SectorSize: 0x1000, Cylinders: 0xB220, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:15:55.0214 0x0474 ============================================================
15:15:55.0214 0x0474 \Device\Harddisk0\DR0:
15:15:55.0214 0x0474 MBR partitions:
15:15:55.0214 0x0474 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2711676, BlocksNum 0x950A408
15:15:55.0245 0x0474 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xBC1C800, BlocksNum 0x19811800
15:15:55.0245 0x0474 \Device\Harddisk1\DR1:
15:15:55.0245 0x0474 MBR partitions:
15:15:55.0245 0x0474 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2BAA0800
15:15:55.0245 0x0474 ============================================================
15:15:55.0277 0x0474 C: <-> \Device\Harddisk0\DR0\Partition1
15:15:55.0323 0x0474 D: <-> \Device\Harddisk0\DR0\Partition2
15:15:55.0339 0x0474 F: <-> \Device\Harddisk1\DR1\Partition1
15:15:55.0339 0x0474 ============================================================
15:15:55.0339 0x0474 Initialize success
15:15:55.0339 0x0474 ============================================================
15:17:37.0735 0x1f3c ============================================================
15:17:37.0735 0x1f3c Scan started
15:17:37.0735 0x1f3c Mode: Manual; SigCheck; TDLFS;
15:17:37.0735 0x1f3c ============================================================
15:17:37.0735 0x1f3c KSN ping started
15:17:40.0188 0x1f3c KSN ping finished: true
15:17:44.0018 0x1f3c ================ Scan system memory ========================
15:17:44.0018 0x1f3c System memory - ok
15:17:44.0018 0x1f3c ================ Scan services =============================
15:17:44.0207 0x1f3c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:17:44.0675 0x1f3c 1394ohci - ok
15:17:44.0753 0x1f3c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:17:44.0831 0x1f3c ACPI - ok
15:17:44.0878 0x1f3c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:17:45.0018 0x1f3c AcpiPmi - ok
15:17:45.0083 0x1f3c [ D0B11E40EA74A98A5E133DF1F5276240, BAD5885CD8CC271D59DFA95159EFC3AC36D2BA11B6DA593AAED0C45F1C2F280F ] acsock C:\Windows\system32\DRIVERS\acsock64.sys
15:17:45.0364 0x1f3c acsock - ok
15:17:45.0504 0x1f3c [ 36114214BF8D7C464D1E92E4EB6B2DD3, 8E7CB266D4ABCDF332A3D4D341753811D51B72985E36F24A7E757DCA11A65A2A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:17:45.0567 0x1f3c AdobeARMservice - ok
15:17:45.0707 0x1f3c [ 561E13867AEA0E9755CEB1EEC9D0EC76, 1AC222449569272D3A07F90F55071661AAFE303EAA34202104E2944BC1413CB1 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:17:45.0770 0x1f3c AdobeFlashPlayerUpdateSvc - ok
15:17:45.0832 0x1f3c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:17:45.0957 0x1f3c adp94xx - ok
15:17:46.0004 0x1f3c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:17:46.0089 0x1f3c adpahci - ok
15:17:46.0120 0x1f3c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:17:46.0167 0x1f3c adpu320 - ok
15:17:46.0245 0x1f3c [ C0BF554D2277F7A4C735D475ADE2E3B2, 58ED620CD73239A6AB8F993492494AB0F09705B25E671A842D5163B13F452B15 ] ADSMService C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
15:17:46.0339 0x1f3c ADSMService - detected UnsignedFile.Multi.Generic ( 1 )
15:17:48.0898 0x1f3c Detect skipped due to KSN trusted
15:17:48.0898 0x1f3c ADSMService - ok
15:17:49.0007 0x1f3c [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:17:49.0114 0x1f3c AeLookupSvc - ok
15:17:49.0163 0x1f3c [ FB2BE0BAE9B3F248080CDBF91EF16C7F, 1ED963A18E4D0531FA42832E40B038BB4B9D8EB04DA4D4FE69A4C284958A2CDD ] AFBAgent C:\Windows\system32\FBAgent.exe
15:17:49.0413 0x1f3c AFBAgent - ok
15:17:49.0491 0x1f3c [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
15:17:49.0648 0x1f3c AFD - ok
15:17:49.0695 0x1f3c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
15:17:49.0726 0x1f3c agp440 - ok
15:17:49.0992 0x1f3c [ C17171E63E84F5711DF23B8F1E7A100E, C2AFDDA0A1A502FAE6B51BD00FF5884F46A74D9AEC76856B32E82D244D14FA97 ] AGSService C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
15:17:50.0165 0x1f3c AGSService - ok
15:17:50.0227 0x1f3c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
15:17:50.0321 0x1f3c ALG - ok
15:17:50.0367 0x1f3c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
15:17:50.0400 0x1f3c aliide - ok
15:17:50.0415 0x1f3c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
15:17:50.0446 0x1f3c amdide - ok
15:17:50.0493 0x1f3c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:17:50.0602 0x1f3c AmdK8 - ok
15:17:50.0627 0x1f3c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:17:50.0680 0x1f3c AmdPPM - ok
15:17:50.0727 0x1f3c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:17:50.0789 0x1f3c amdsata - ok
15:17:50.0805 0x1f3c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:17:50.0867 0x1f3c amdsbs - ok
15:17:50.0883 0x1f3c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:17:50.0929 0x1f3c amdxata - ok
15:17:50.0976 0x1f3c [ 9C7F164B49CADC658D1B3C575782F346, 7C5FD203735041B6AEB2E551A63CE5F46DB41044BC72E7E77A72F316197C80DA ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
15:17:51.0039 0x1f3c AmUStor - ok
15:17:51.0181 0x1f3c [ 157DA3885AA4F03C80C10DAEB0949CAA, 69EA1C9F904FBDFE904A3BC52CB0E188AF18A93EA87A119E5E6234C6F5D4742E ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
15:17:51.0291 0x1f3c AntiVirMailService - ok
15:17:51.0419 0x1f3c [ BD65021AB0EC790AECC503C394E61BA4, 51AD9C6F1192A3604902AE4F3B4B791DF1D58EA0B39B12AE4FA38F59E02F6D68 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:17:51.0453 0x1f3c AntiVirSchedulerService - ok
15:17:51.0546 0x1f3c [ BD65021AB0EC790AECC503C394E61BA4, 51AD9C6F1192A3604902AE4F3B4B791DF1D58EA0B39B12AE4FA38F59E02F6D68 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:17:51.0593 0x1f3c AntiVirService - ok
15:17:51.0712 0x1f3c [ B667AB46FA82FC246F9069D81BB1065C, CC3ADE01E745B6A4F425E41C5C380BF0D06121B3823BDF0A8DF2973DA59F86EA ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
15:17:51.0821 0x1f3c AntiVirWebService - ok
15:17:51.0884 0x1f3c [ 6474F8823C7188D2DA579F01FB6CED6B, 81D4E9D026CA60FB8840D520D151B8C2F4745A75DF90A4D6C80641F1A23AB605 ] AppID C:\Windows\system32\drivers\appid.sys
15:17:52.0024 0x1f3c AppID - ok
15:17:52.0071 0x1f3c [ 8F58BA1F7772D6D7CE45F03309608001, CDB109E0DD241042C058F7D81A1BDEBC34435CB2DC4A7A7A3692193DD5806097 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:17:52.0133 0x1f3c AppIDSvc - ok
15:17:52.0182 0x1f3c [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
15:17:52.0275 0x1f3c Appinfo - ok
15:17:52.0369 0x1f3c [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:17:52.0400 0x1f3c Apple Mobile Device - ok
15:17:52.0447 0x1f3c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
15:17:52.0494 0x1f3c arc - ok
15:17:52.0525 0x1f3c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:17:52.0572 0x1f3c arcsas - ok
15:17:52.0603 0x1f3c [ 88FBC8BEBFD38566235EAA5E4DBC4E05, E714D913BA9786BD536F9D99E3510C489CA32F646044718394CEE65247941288 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
15:17:52.0634 0x1f3c AsDsm - ok
15:17:52.0698 0x1f3c [ 18E5C2F937F9DEB8C282DF66A3761925, 30294C381F8C7DCB45EF9BCF572F410FF47630E12D5AA02259C6C80F07BEF495 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
15:17:52.0729 0x1f3c ASLDRService - ok
15:17:52.0792 0x1f3c [ 2DB34EDD17D3A8DA7105A19C95A3DD68, 5F76C140118B181427969237E364FD70B14FA36533061FD4D8EB2F4751706739 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
15:17:52.0823 0x1f3c ASMMAP64 - ok
15:17:52.0948 0x1f3c [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:17:53.0119 0x1f3c aspnet_state - ok
15:17:53.0162 0x1f3c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:17:53.0322 0x1f3c AsyncMac - ok
15:17:53.0369 0x1f3c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
15:17:53.0400 0x1f3c atapi - ok
15:17:53.0541 0x1f3c [ 0ACC06FCF46F64ED4F11E57EE461C1F4, F2AB7198C7F7D36AB1D6D03C1FEFD929ED402002AC835B909FC14938BC0EE24B ] athr C:\Windows\system32\DRIVERS\athrx.sys
15:17:53.0809 0x1f3c athr - ok
15:17:53.0856 0x1f3c [ 7C157574A181B19B9DCF5F339E25337E, 7CA78363CD420BFE4BFE9A38683CA9E31023AC573D9092666CDAEE6AF4998B60 ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
15:17:53.0950 0x1f3c ATKGFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
15:17:56.0342 0x1f3c Detect skipped due to KSN trusted
15:17:56.0342 0x1f3c ATKGFNEXSrv - ok
15:17:56.0466 0x1f3c [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:17:56.0654 0x1f3c AudioEndpointBuilder - ok
15:17:56.0707 0x1f3c [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:17:56.0779 0x1f3c AudioSrv - ok
15:17:56.0857 0x1f3c [ 742D578C28F6F58B8B576F91A1D8EB4E, 6C49EC198E67CE40728F0C19CB2BDCB59310BA59324F58E4D456DA2C8CC28BA6 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:17:56.0935 0x1f3c avgntflt - ok
15:17:56.0982 0x1f3c [ C9BED3BDC39FBCAA77A88308355B237E, AFC74D4BF86FB695D7D31534C174D926C8ED57E7D8E98339CE3ED060AC3BB6D0 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:17:57.0028 0x1f3c avipbb - ok
15:17:57.0122 0x1f3c [ 8E6214E8C6100222BEB6A14F9B908A7E, 268279AE0D87E4B1CC227355DF12B7E8113F8355B1D20447AA723830D706021A ] Avira.OE.ServiceHost C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
15:17:57.0200 0x1f3c Avira.OE.ServiceHost - ok
15:17:57.0280 0x1f3c [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:17:57.0358 0x1f3c avkmgr - ok
15:17:57.0436 0x1f3c [ 138A53D17B040F5A3A307D44A89D0905, AD212E430F2DE43F037BECF6A46FCD53270A5EE11427030C7D5CBC3EAAAAA029 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
15:17:57.0483 0x1f3c avnetflt - ok
15:17:57.0546 0x1f3c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:17:57.0780 0x1f3c AxInstSV - ok
15:17:57.0874 0x1f3c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:17:58.0030 0x1f3c b06bdrv - ok
15:17:58.0123 0x1f3c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:17:58.0217 0x1f3c b57nd60a - ok
15:17:58.0281 0x1f3c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
15:17:58.0374 0x1f3c BDESVC - ok
15:17:58.0405 0x1f3c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
15:17:58.0500 0x1f3c Beep - ok
15:17:58.0594 0x1f3c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
15:17:58.0748 0x1f3c BFE - ok
15:17:58.0811 0x1f3c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
15:17:59.0375 0x1f3c BITS - ok
15:17:59.0422 0x1f3c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:17:59.0485 0x1f3c blbdrive - ok
15:17:59.0578 0x1f3c [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:17:59.0625 0x1f3c Bonjour Service - ok
15:17:59.0656 0x1f3c [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:17:59.0734 0x1f3c bowser - ok
15:17:59.0767 0x1f3c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:17:59.0892 0x1f3c BrFiltLo - ok
15:17:59.0907 0x1f3c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:17:59.0970 0x1f3c BrFiltUp - ok
15:18:00.0001 0x1f3c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
15:18:00.0094 0x1f3c Browser - ok
15:18:00.0141 0x1f3c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:18:00.0313 0x1f3c Brserid - ok
15:18:00.0344 0x1f3c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:18:00.0407 0x1f3c BrSerWdm - ok
15:18:00.0438 0x1f3c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:18:00.0500 0x1f3c BrUsbMdm - ok
15:18:00.0516 0x1f3c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:18:00.0547 0x1f3c BrUsbSer - ok
15:18:00.0578 0x1f3c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:18:00.0625 0x1f3c BTHMODEM - ok
15:18:00.0672 0x1f3c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
15:18:00.0771 0x1f3c bthserv - ok
15:18:00.0986 0x1f3c [ C8D931D734FC0097478CE2583A75C4DF, 60C5F97D7E5A8B81A7123A5DB333577B0C7B9302C1D1C98D47BA96C0A3FB7417 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
15:18:01.0142 0x1f3c c2cautoupdatesvc - ok
15:18:01.0283 0x1f3c [ 8E1CC0517DE17DF83CF80BFCE9F0C000, 13F7929D531914FA2ED1223977E15A7F45E3FF3DA1392ECC4B15F5619B37B754 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
15:18:01.0424 0x1f3c c2cpnrsvc - ok
15:18:01.0470 0x1f3c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:18:01.0564 0x1f3c cdfs - ok
15:18:01.0611 0x1f3c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
15:18:01.0673 0x1f3c cdrom - ok
15:18:01.0720 0x1f3c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
15:18:01.0799 0x1f3c CertPropSvc - ok
15:18:01.0846 0x1f3c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:18:02.0033 0x1f3c circlass - ok
15:18:02.0096 0x1f3c [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
15:18:02.0158 0x1f3c CLFS - ok
15:18:02.0252 0x1f3c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:18:02.0408 0x1f3c clr_optimization_v2.0.50727_32 - ok
15:18:02.0487 0x1f3c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:18:02.0581 0x1f3c clr_optimization_v2.0.50727_64 - ok
15:18:02.0674 0x1f3c [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:18:02.0956 0x1f3c clr_optimization_v4.0.30319_32 - ok
15:18:03.0018 0x1f3c [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:18:03.0127 0x1f3c clr_optimization_v4.0.30319_64 - ok
15:18:03.0190 0x1f3c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:18:03.0236 0x1f3c CmBatt - ok
15:18:03.0283 0x1f3c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:18:03.0332 0x1f3c cmdide - ok
15:18:03.0442 0x1f3c [ CA3FB5A6B626D8A00A89E049CF95954E, CD5E3E40972513195108BA46CEC1D0AEA6B09A67EEBDD17EB759BD1729B07C06 ] CNG C:\Windows\system32\Drivers\cng.sys
15:18:03.0520 0x1f3c CNG - ok
15:18:03.0566 0x1f3c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:18:03.0598 0x1f3c Compbatt - ok
15:18:03.0613 0x1f3c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:18:03.0660 0x1f3c CompositeBus - ok
15:18:03.0676 0x1f3c COMSysApp - ok
15:18:03.0707 0x1f3c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:18:03.0738 0x1f3c crcdisk - ok
15:18:03.0808 0x1f3c [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:18:03.0914 0x1f3c CryptSvc - ok
15:18:04.0148 0x1f3c [ 7AC269A7B20ABDD6B17505C68C594BFD, 000499E9A4620E7AD0AAC9459A8E5781B5FF968D5E4D61C18B37477C3E2ECDD2 ] CTService C:\Program Files\Cold Turkey\CTService.exe
15:18:04.0195 0x1f3c CTService - detected UnsignedFile.Multi.Generic ( 1 )
15:18:06.0628 0x1f3c Detect skipped due to KSN trusted
15:18:06.0628 0x1f3c CTService - ok
15:18:06.0800 0x1f3c [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
15:18:06.0914 0x1f3c cvhsvc - ok
15:18:06.0960 0x1f3c [ 44BDDEB03C84A1C993C992FFB5700357, 29080E9A434BB2A932783B0B5104BC9E3C514A0FFB387123B75F4F4045E353BC ] CVirtA C:\Windows\system32\DRIVERS\CVirtA64.sys
15:18:06.0992 0x1f3c CVirtA - ok
15:18:07.0101 0x1f3c [ 66257CB4E4FB69887CDDC71663741435, A072C2868EC3CB773F1C512C9E07D152920794969E302199E8265CFFFD3EFC2D ] CVPND C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
15:18:07.0250 0x1f3c CVPND - ok
15:18:07.0313 0x1f3c [ CC8E52DAA9826064BA464DBE531F2BB5, 28150B5DDB4DB42839EBB4F3672EB575373046B1676938111904290DFF6DEC8E ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
15:18:07.0367 0x1f3c CVPNDRVA - ok
15:18:07.0450 0x1f3c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
15:18:07.0591 0x1f3c DcomLaunch - ok
15:18:07.0644 0x1f3c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
15:18:07.0768 0x1f3c defragsvc - ok
15:18:07.0805 0x1f3c [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:18:07.0930 0x1f3c DfsC - ok
15:18:07.0985 0x1f3c [ 955FFE2B1D74A9E0E3E0E558E6A17F3B, C046C2EF86ED847954931E714A82A0F65ECB6B64068F4EB6F69C2A26CD5B848B ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
15:18:08.0040 0x1f3c dg_ssudbus - ok
15:18:08.0105 0x1f3c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:18:08.0218 0x1f3c Dhcp - ok
15:18:08.0399 0x1f3c [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
15:18:08.0601 0x1f3c DiagTrack - ok
15:18:08.0633 0x1f3c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
15:18:08.0742 0x1f3c discache - ok
15:18:08.0789 0x1f3c [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
15:18:08.0835 0x1f3c Disk - ok
15:18:08.0885 0x1f3c [ 05CB5910B3CA6019FC3CCA815EE06FFB, 8FA532ED500BB1F08E8034A6125BDD53B74D5E6AB0A83A6185B07AAFCD90AA82 ] DNE C:\Windows\system32\DRIVERS\dne64x.sys
15:18:08.0916 0x1f3c DNE - ok
15:18:08.0963 0x1f3c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:18:09.0056 0x1f3c Dnscache - ok
15:18:09.0103 0x1f3c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
15:18:09.0228 0x1f3c dot3svc - ok
15:18:09.0306 0x1f3c [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
15:18:09.0367 0x1f3c Dot4 - ok
15:18:09.0398 0x1f3c [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
15:18:09.0445 0x1f3c Dot4Print - ok
15:18:09.0460 0x1f3c [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
15:18:09.0538 0x1f3c dot4usb - ok
15:18:09.0569 0x1f3c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
15:18:09.0679 0x1f3c DPS - ok
15:18:09.0725 0x1f3c [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:18:09.0788 0x1f3c drmkaud - ok
15:18:09.0879 0x1f3c [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:18:09.0975 0x1f3c DXGKrnl - ok
15:18:10.0022 0x1f3c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
15:18:10.0178 0x1f3c EapHost - ok
15:18:10.0399 0x1f3c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:18:10.0742 0x1f3c ebdrv - ok
15:18:10.0789 0x1f3c [ 54C0E3156872881F6AB017210278E27E, 8C3C71535FAC3897E1AE5505302387D7EC7C93D9DB6CA8AD6C1E1B26FE33D367 ] EFS C:\Windows\System32\lsass.exe
15:18:10.0887 0x1f3c EFS - ok
15:18:10.0978 0x1f3c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:18:11.0134 0x1f3c ehRecvr - ok
15:18:11.0165 0x1f3c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
15:18:11.0243 0x1f3c ehSched - ok
15:18:11.0336 0x1f3c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:18:11.0416 0x1f3c elxstor - ok
15:18:11.0447 0x1f3c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:18:11.0494 0x1f3c ErrDev - ok
15:18:11.0541 0x1f3c [ 1299D1EA00B7A4BF69C5869DCA31E0F6, 55071BAD9FCE2529E1BC2D7CBF689047CE4A83878DAEE1209DEE0DA3DEBBABFF ] ETD C:\Windows\system32\DRIVERS\ETD.sys
15:18:11.0619 0x1f3c ETD - ok
15:18:11.0681 0x1f3c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
15:18:11.0806 0x1f3c EventSystem - ok
15:18:11.0853 0x1f3c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
15:18:11.0946 0x1f3c exfat - ok
15:18:11.0977 0x1f3c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:18:12.0086 0x1f3c fastfat - ok
15:18:12.0164 0x1f3c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
15:18:12.0273 0x1f3c Fax - ok
15:18:12.0304 0x1f3c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:18:12.0367 0x1f3c fdc - ok
15:18:12.0409 0x1f3c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
15:18:12.0510 0x1f3c fdPHost - ok
15:18:12.0556 0x1f3c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
15:18:12.0666 0x1f3c FDResPub - ok
15:18:12.0697 0x1f3c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:18:12.0728 0x1f3c FileInfo - ok
15:18:12.0759 0x1f3c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:18:12.0837 0x1f3c Filetrace - ok
15:18:12.0868 0x1f3c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:18:12.0917 0x1f3c flpydisk - ok
15:18:12.0963 0x1f3c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:18:13.0026 0x1f3c FltMgr - ok
15:18:13.0135 0x1f3c [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
15:18:13.0307 0x1f3c FontCache - ok
15:18:13.0369 0x1f3c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:18:13.0404 0x1f3c FontCache3.0.0.0 - ok
15:18:13.0432 0x1f3c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:18:13.0463 0x1f3c FsDepends - ok
15:18:13.0525 0x1f3c [ C2E475625F2C6F7DCDE4E920523A0573, C316D2223008BD5EA022AFB79CC21B841939FA8D511729455E787E59A27A0DE6 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:18:13.0572 0x1f3c fssfltr - ok
15:18:13.0759 0x1f3c [ 812E1BA5C52A78F13EA6AA10DF708B1D, CF1C4D8E072CF0D66C977DFA4C852E5CE757843BEAF5D29454D26A9AC5766E61 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:18:13.0967 0x1f3c fsssvc - ok
15:18:14.0013 0x1f3c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:18:14.0060 0x1f3c Fs_Rec - ok
15:18:14.0123 0x1f3c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:18:14.0185 0x1f3c fvevol - ok
15:18:14.0216 0x1f3c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:18:14.0263 0x1f3c gagp30kx - ok
15:18:14.0325 0x1f3c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:18:14.0372 0x1f3c GEARAspiWDM - ok
15:18:14.0463 0x1f3c [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
15:18:14.0635 0x1f3c gpsvc - ok
15:18:14.0682 0x1f3c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:18:14.0775 0x1f3c hcw85cir - ok
15:18:14.0853 0x1f3c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:18:14.0945 0x1f3c HdAudAddService - ok
15:18:14.0980 0x1f3c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:18:15.0043 0x1f3c HDAudBus - ok
15:18:15.0074 0x1f3c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:18:15.0136 0x1f3c HidBatt - ok
15:18:15.0152 0x1f3c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:18:15.0230 0x1f3c HidBth - ok
15:18:15.0261 0x1f3c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:18:15.0308 0x1f3c HidIr - ok
15:18:15.0355 0x1f3c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
15:18:15.0449 0x1f3c hidserv - ok
15:18:15.0496 0x1f3c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:18:15.0559 0x1f3c HidUsb - ok
15:18:15.0590 0x1f3c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:18:15.0684 0x1f3c hkmsvc - ok
15:18:15.0746 0x1f3c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:18:15.0840 0x1f3c HomeGroupListener - ok
15:18:15.0887 0x1f3c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:18:15.0996 0x1f3c HomeGroupProvider - ok
15:18:16.0137 0x1f3c [ 97AAC45A375168C6A2297BEEB9692E31, 9C7285988D0C5DE8E3608F4E9F50A5C9398FFD0DA0F4C965C953859001FC76C8 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
15:18:16.0261 0x1f3c hpqcxs08 - ok
15:18:16.0293 0x1f3c [ 19A4FB67B1C97EA18EDFF44340973CD9, F1B6A7C1E450FF9A1D10F315F17D42DFE8390E88FF1AED4DE35237C4B81FC81D ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
15:18:16.0339 0x1f3c hpqddsvc - ok
15:18:16.0386 0x1f3c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:18:16.0433 0x1f3c HpSAMD - ok
15:18:16.0530 0x1f3c [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
15:18:16.0670 0x1f3c HPSLPSVC - detected UnsignedFile.Multi.Generic ( 1 )
15:18:19.0139 0x1f3c Detect skipped due to KSN trusted
15:18:19.0139 0x1f3c HPSLPSVC - ok
15:18:19.0217 0x1f3c [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:18:19.0373 0x1f3c HTTP - ok
15:18:19.0404 0x1f3c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:18:19.0436 0x1f3c hwpolicy - ok
15:18:19.0482 0x1f3c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:18:19.0516 0x1f3c i8042prt - ok
15:18:19.0578 0x1f3c [ BBB3B6DF1ABB0FE35802EDE85CC1C011, 6E1FA8519A7D417969244E807D2863B39656169A925966045036A989A5EB611D ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
15:18:19.0625 0x1f3c iaStor - ok
15:18:19.0734 0x1f3c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:18:19.0812 0x1f3c iaStorV - ok
15:18:19.0922 0x1f3c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:18:20.0031 0x1f3c idsvc - ok
15:18:20.0062 0x1f3c IEEtwCollectorService - ok
15:18:20.0532 0x1f3c [ DFEAF0A1D98D397035012C8E28D1520F, 72C869B61E973E874D4F126AB4401E3B844B03D9AB91E44A23A0250B80DC99F9 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:18:21.0344 0x1f3c igfx - ok
15:18:21.0407 0x1f3c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:18:21.0454 0x1f3c iirsp - ok
15:18:21.0532 0x1f3c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
15:18:21.0641 0x1f3c IKEEXT - ok
15:18:21.0813 0x1f3c [ E200F72882C1E4E45FA2C4B66F19F7FB, DD0B14905DF8DBD521843DFA0F3CD3CF50F0C8D87376109ADC4AB046C6B26A63 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:18:22.0080 0x1f3c IntcAzAudAddService - ok
15:18:22.0096 0x1f3c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
15:18:22.0143 0x1f3c intelide - ok
15:18:22.0174 0x1f3c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:18:22.0221 0x1f3c intelppm - ok
15:18:22.0252 0x1f3c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:18:22.0361 0x1f3c IPBusEnum - ok
15:18:22.0392 0x1f3c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:18:22.0486 0x1f3c IpFilterDriver - ok
15:18:22.0550 0x1f3c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:18:22.0675 0x1f3c iphlpsvc - ok
15:18:22.0706 0x1f3c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:18:22.0768 0x1f3c IPMIDRV - ok
15:18:22.0799 0x1f3c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:18:22.0893 0x1f3c IPNAT - ok
15:18:22.0987 0x1f3c [ 6E50CFA46527B39015B750AAD161C5CC, 93F99EF7771C56EBE41FBC0C668F686644FBDF94E31456D3F5A9A8AE2F70EAB6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:18:23.0095 0x1f3c iPod Service - ok
15:18:23.0142 0x1f3c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:18:23.0251 0x1f3c IRENUM - ok
15:18:23.0282 0x1f3c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:18:23.0314 0x1f3c isapnp - ok
15:18:23.0376 0x1f3c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:18:23.0438 0x1f3c iScsiPrt - ok
15:18:23.0454 0x1f3c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
15:18:23.0485 0x1f3c kbdclass - ok
15:18:23.0532 0x1f3c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:18:23.0576 0x1f3c kbdhid - ok
15:18:23.0607 0x1f3c [ E63EF8C3271D014F14E2469CE75FECB4, 3A8DFA4B446AFDC35F01FD5218D0BEBC510A1E3DE9976210F00D19767D0F9069 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
15:18:23.0638 0x1f3c kbfiltr - ok
15:18:23.0654 0x1f3c [ 54C0E3156872881F6AB017210278E27E, 8C3C71535FAC3897E1AE5505302387D7EC7C93D9DB6CA8AD6C1E1B26FE33D367 ] KeyIso C:\Windows\system32\lsass.exe
15:18:23.0700 0x1f3c KeyIso - ok
15:18:23.0747 0x1f3c [ 0878723427BA190E5ABA5AA0112FA4D4, E332C83D3F4DF71761AA3DAC2C721FC2029F71ECC88A66E175BA56510855C4D4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:18:23.0778 0x1f3c KSecDD - ok
15:18:23.0810 0x1f3c [ C08CCCE2BE68D04E6C142614736959DA, AEC0AFC5C28DDC14DD6918BB6E236FA1C85CC30D69DA9AE40F9962D88248040F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:18:23.0856 0x1f3c KSecPkg - ok
15:18:23.0888 0x1f3c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:18:23.0981 0x1f3c ksthunk - ok
15:18:24.0028 0x1f3c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
15:18:24.0161 0x1f3c KtmRm - ok
15:18:24.0223 0x1f3c [ 2377EC4CC3E356655B996F39B43486B6, 1934013BAC20D857C9060229AC847B5628FB17042057E8B1CB8E3E0F9F26D53F ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
15:18:24.0301 0x1f3c L1C - ok
15:18:24.0364 0x1f3c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:18:24.0535 0x1f3c LanmanServer - ok
15:18:24.0598 0x1f3c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:18:24.0785 0x1f3c LanmanWorkstation - ok
15:18:24.0848 0x1f3c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:18:24.0957 0x1f3c lltdio - ok
15:18:25.0019 0x1f3c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:18:25.0185 0x1f3c lltdsvc - ok
15:18:25.0216 0x1f3c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:18:25.0310 0x1f3c lmhosts - ok
15:18:25.0388 0x1f3c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:18:25.0434 0x1f3c LSI_FC - ok
15:18:25.0481 0x1f3c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:18:25.0528 0x1f3c LSI_SAS - ok
15:18:25.0559 0x1f3c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:18:25.0614 0x1f3c LSI_SAS2 - ok
15:18:25.0645 0x1f3c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:18:25.0708 0x1f3c LSI_SCSI - ok
15:18:25.0739 0x1f3c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
15:18:25.0848 0x1f3c luafv - ok
15:18:25.0910 0x1f3c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:18:25.0957 0x1f3c Mcx2Svc - ok
15:18:25.0988 0x1f3c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:18:26.0035 0x1f3c megasas - ok
15:18:26.0102 0x1f3c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:18:26.0178 0x1f3c MegaSR - ok
15:18:26.0194 0x1f3c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
15:18:26.0303 0x1f3c MMCSS - ok
15:18:26.0334 0x1f3c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
15:18:26.0428 0x1f3c Modem - ok
15:18:26.0459 0x1f3c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:18:26.0521 0x1f3c monitor - ok
15:18:26.0568 0x1f3c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
15:18:26.0604 0x1f3c mouclass - ok
15:18:26.0617 0x1f3c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:18:26.0664 0x1f3c mouhid - ok
15:18:26.0695 0x1f3c [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:18:26.0742 0x1f3c mountmgr - ok
15:18:26.0820 0x1f3c [ FC9A9C09B35A93F76A03D5E355FA862C, B7ED57B9D39D547BA2927FC5F02C2475BF131FDB8AD40FFDE72C966506756B56 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:18:26.0867 0x1f3c MozillaMaintenance - ok
15:18:26.0914 0x1f3c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
15:18:26.0945 0x1f3c mpio - ok
15:18:26.0992 0x1f3c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:18:27.0085 0x1f3c mpsdrv - ok
15:18:27.0162 0x1f3c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:18:27.0320 0x1f3c MpsSvc - ok
15:18:27.0370 0x1f3c [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:18:27.0441 0x1f3c MRxDAV - ok
15:18:27.0487 0x1f3c [ 035C0A9A63DF3F3A52B90D8F6BF0F166, F409C8A31156E31A6D16D2B34EEE3098CE0D76A4DB7B49810EDDA2E2E19B2E26 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:18:27.0570 0x1f3c mrxsmb - ok
15:18:27.0612 0x1f3c [ 8308FC2E9147D7632221E3279BB14660, 3051FF91493FD03B7EDD4EDB23B2DE8DD7E03D46E231BC5925502BE98E78B1CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:18:27.0676 0x1f3c mrxsmb10 - ok
15:18:27.0704 0x1f3c [ 1F8DA4ECAEA7E2BCD97E738795817431, FBEF64C7067F5AFF864EF7E220C8A47AC43EB0BFD9A4E4C908F9D9D159AC5139 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:18:27.0745 0x1f3c mrxsmb20 - ok
15:18:27.0791 0x1f3c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
15:18:27.0821 0x1f3c msahci - ok
15:18:27.0869 0x1f3c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:18:27.0915 0x1f3c msdsm - ok
15:18:27.0951 0x1f3c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
15:18:28.0017 0x1f3c MSDTC - ok
15:18:28.0062 0x1f3c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:18:28.0151 0x1f3c Msfs - ok
15:18:28.0168 0x1f3c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:18:28.0285 0x1f3c mshidkmdf - ok
15:18:28.0323 0x1f3c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:18:28.0354 0x1f3c msisadrv - ok
15:18:28.0388 0x1f3c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:18:28.0528 0x1f3c MSiSCSI - ok
15:18:28.0544 0x1f3c msiserver - ok
15:18:28.0608 0x1f3c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:18:28.0693 0x1f3c MSKSSRV - ok
15:18:28.0709 0x1f3c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:18:28.0802 0x1f3c MSPCLOCK - ok
15:18:28.0818 0x1f3c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:18:28.0927 0x1f3c MSPQM - ok
15:18:29.0005 0x1f3c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:18:29.0067 0x1f3c MsRPC - ok
15:18:29.0124 0x1f3c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:18:29.0148 0x1f3c mssmbios - ok
15:18:29.0179 0x1f3c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:18:29.0257 0x1f3c MSTEE - ok
15:18:29.0273 0x1f3c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:18:29.0319 0x1f3c MTConfig - ok
15:18:29.0366 0x1f3c [ 032D35C996F21D19A205A7C8F0B76F3C, 1A1C5BD7204BB937A05E201BCC0840B2C8E4B273D8E1D6D9407264FB4C57F014 ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
15:18:29.0397 0x1f3c MTsensor - ok
15:18:29.0429 0x1f3c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
15:18:29.0460 0x1f3c Mup - ok
15:18:29.0522 0x1f3c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
15:18:29.0680 0x1f3c napagent - ok
15:18:29.0726 0x1f3c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:18:29.0820 0x1f3c NativeWifiP - ok
15:18:29.0898 0x1f3c [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:18:30.0007 0x1f3c NDIS - ok
15:18:30.0023 0x1f3c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:18:30.0120 0x1f3c NdisCap - ok
15:18:30.0148 0x1f3c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:18:30.0242 0x1f3c NdisTapi - ok
15:18:30.0273 0x1f3c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:18:30.0351 0x1f3c Ndisuio - ok
15:18:30.0398 0x1f3c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:18:30.0491 0x1f3c NdisWan - ok
15:18:30.0522 0x1f3c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:18:30.0600 0x1f3c NDProxy - ok
15:18:30.0648 0x1f3c [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:18:30.0679 0x1f3c Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:18:33.0181 0x1f3c Detect skipped due to KSN trusted
15:18:33.0181 0x1f3c Net Driver HPZ12 - ok
15:18:33.0275 0x1f3c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:18:33.0368 0x1f3c NetBIOS - ok
15:18:33.0415 0x1f3c [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:18:33.0524 0x1f3c NetBT - ok
15:18:33.0540 0x1f3c [ 54C0E3156872881F6AB017210278E27E, 8C3C71535FAC3897E1AE5505302387D7EC7C93D9DB6CA8AD6C1E1B26FE33D367 ] Netlogon C:\Windows\system32\lsass.exe
15:18:33.0571 0x1f3c Netlogon - ok
15:18:33.0634 0x1f3c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
15:18:33.0759 0x1f3c Netman - ok
15:18:33.0821 0x1f3c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:18:33.0884 0x1f3c NetMsmqActivator - ok
15:18:33.0899 0x1f3c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:18:33.0946 0x1f3c NetPipeActivator - ok
15:18:34.0008 0x1f3c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
15:18:34.0164 0x1f3c netprofm - ok
15:18:34.0196 0x1f3c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:18:34.0233 0x1f3c NetTcpActivator - ok
15:18:34.0248 0x1f3c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:18:34.0279 0x1f3c NetTcpPortSharing - ok
15:18:34.0311 0x1f3c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:18:34.0357 0x1f3c nfrd960 - ok
15:18:34.0420 0x1f3c [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
15:18:34.0498 0x1f3c NlaSvc - ok
15:18:34.0513 0x1f3c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:18:34.0607 0x1f3c Npfs - ok
15:18:34.0654 0x1f3c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
15:18:34.0750 0x1f3c nsi - ok
15:18:34.0765 0x1f3c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:18:34.0843 0x1f3c nsiproxy - ok
15:18:34.0984 0x1f3c [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:18:35.0155 0x1f3c Ntfs - ok
15:18:35.0199 0x1f3c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
15:18:35.0308 0x1f3c Null - ok
15:18:35.0339 0x1f3c [ 6E41A4DF26340A07A489B721F9721EC1, C4CF1F9A9B51897FA91113FE41C214D7869D8C3053E8C6C5CC1A8BF3D3452EF0 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
15:18:35.0417 0x1f3c NVHDA - ok
15:18:36.0209 0x1f3c [ 5A9A416F77E98686079E4D7F90A55498, 80A76559166F82E4F153183F5A4A32723235D8224D5DD1761AAAB4A27CEAF145 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:18:37.0278 0x1f3c nvlddmkm - ok
15:18:37.0371 0x1f3c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:18:37.0449 0x1f3c nvraid - ok
15:18:37.0481 0x1f3c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:18:37.0559 0x1f3c nvstor - ok
15:18:37.0621 0x1f3c [ 72545FE7BD0410E72D00B0029DAE3700, 8E0FCF1B0BF9E236A3CDB9DF49A0D12083248563E7F5BC64DAE4907DE7AB202A ] nvsvc C:\Windows\system32\nvvsvc.exe
15:18:37.0684 0x1f3c nvsvc - ok
15:18:37.0716 0x1f3c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:18:37.0763 0x1f3c nv_agp - ok
15:18:37.0841 0x1f3c [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:18:37.0903 0x1f3c odserv - ok
15:18:37.0919 0x1f3c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:18:37.0966 0x1f3c ohci1394 - ok
15:18:38.0012 0x1f3c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:18:38.0059 0x1f3c ose - ok
15:18:38.0373 0x1f3c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:18:38.0748 0x1f3c osppsvc - ok
15:18:38.0826 0x1f3c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:18:38.0936 0x1f3c p2pimsvc - ok
15:18:38.0982 0x1f3c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
15:18:39.0092 0x1f3c p2psvc - ok
15:18:39.0123 0x1f3c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:18:39.0170 0x1f3c Parport - ok
15:18:39.0216 0x1f3c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:18:39.0251 0x1f3c partmgr - ok
15:18:39.0298 0x1f3c [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:18:39.0376 0x1f3c PcaSvc - ok
15:18:39.0407 0x1f3c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
15:18:39.0454 0x1f3c pci - ok
15:18:39.0485 0x1f3c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
15:18:39.0516 0x1f3c pciide - ok
15:18:39.0563 0x1f3c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:18:39.0641 0x1f3c pcmcia - ok
15:18:39.0657 0x1f3c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
15:18:39.0688 0x1f3c pcw - ok
15:18:39.0827 0x1f3c [ A1688A4FB2EC49D040C027EF6DC7A87B, E5F5768D189B590F4D8D20C13FC0F7FF5AC7C4729848F38A93D653AB0B740696 ] PDF Architect Helper Service C:\Program Files (x86)\PDF Architect\HelperService.exe
15:18:40.0014 0x1f3c PDF Architect Helper Service - ok
15:18:40.0092 0x1f3c [ E23FF9B2F8EEAB2BDDA681C21C48E843, 2D0072C2EFFD5278D0211438FA9A29CF394F01857273A53B09A629977C024B30 ] PDF Architect Service C:\Program Files (x86)\PDF Architect\ConversionService.exe
15:18:40.0185 0x1f3c PDF Architect Service - ok
15:18:40.0264 0x1f3c [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:18:40.0357 0x1f3c PEAUTH - ok
15:18:40.0435 0x1f3c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:18:40.0498 0x1f3c PerfHost - ok
15:18:40.0623 0x1f3c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
15:18:40.0812 0x1f3c pla - ok
15:18:40.0875 0x1f3c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:18:40.0968 0x1f3c PlugPlay - ok
15:18:41.0046 0x1f3c [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:18:41.0062 0x1f3c Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
15:18:51.0256 0x1f3c Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
15:18:51.0256 0x1f3c Force sending object to P2P due to detect: Pml Driver HPZ12
15:18:55.0670 0x1f3c Object send P2P result: true
15:18:58.0184 0x1f3c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:18:58.0246 0x1f3c PNRPAutoReg - ok
15:18:58.0293 0x1f3c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:18:58.0356 0x1f3c PNRPsvc - ok
15:18:58.0402 0x1f3c [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:18:58.0534 0x1f3c PolicyAgent - ok
15:18:58.0580 0x1f3c [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
15:18:58.0705 0x1f3c Power - ok
15:18:58.0768 0x1f3c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:18:58.0861 0x1f3c PptpMiniport - ok
15:18:58.0924 0x1f3c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:18:58.0986 0x1f3c Processor - ok
15:18:59.0046 0x1f3c [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
15:18:59.0139 0x1f3c ProfSvc - ok
15:18:59.0186 0x1f3c [ 54C0E3156872881F6AB017210278E27E, 8C3C71535FAC3897E1AE5505302387D7EC7C93D9DB6CA8AD6C1E1B26FE33D367 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:18:59.0217 0x1f3c ProtectedStorage - ok
15:18:59.0280 0x1f3c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:18:59.0389 0x1f3c Psched - ok
15:18:59.0518 0x1f3c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:18:59.0717 0x1f3c ql2300 - ok
15:18:59.0764 0x1f3c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:18:59.0811 0x1f3c ql40xx - ok
15:18:59.0873 0x1f3c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
15:18:59.0967 0x1f3c QWAVE - ok
15:18:59.0998 0x1f3c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:19:00.0110 0x1f3c QWAVEdrv - ok
15:19:00.0156 0x1f3c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:19:00.0250 0x1f3c RasAcd - ok
15:19:00.0297 0x1f3c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:19:00.0422 0x1f3c RasAgileVpn - ok
15:19:00.0500 0x1f3c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
15:19:00.0628 0x1f3c RasAuto - ok
15:19:00.0659 0x1f3c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:19:00.0753 0x1f3c Rasl2tp - ok
15:19:00.0815 0x1f3c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
15:19:00.0924 0x1f3c RasMan - ok
15:19:00.0971 0x1f3c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:19:01.0048 0x1f3c RasPppoe - ok
15:19:01.0079 0x1f3c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:19:01.0172 0x1f3c RasSstp - ok
15:19:01.0219 0x1f3c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:19:01.0328 0x1f3c rdbss - ok
15:19:01.0360 0x1f3c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:19:01.0422 0x1f3c rdpbus - ok
15:19:01.0453 0x1f3c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:19:01.0548 0x1f3c RDPCDD - ok
15:19:01.0567 0x1f3c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:19:01.0645 0x1f3c RDPENCDD - ok
15:19:01.0676 0x1f3c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:19:01.0770 0x1f3c RDPREFMP - ok
15:19:01.0816 0x1f3c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:19:01.0894 0x1f3c RDPWD - ok
15:19:01.0957 0x1f3c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:19:01.0988 0x1f3c rdyboost - ok
15:19:02.0019 0x1f3c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:19:02.0115 0x1f3c RemoteAccess - ok
15:19:02.0146 0x1f3c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:19:02.0287 0x1f3c RemoteRegistry - ok
15:19:02.0318 0x1f3c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:19:02.0412 0x1f3c RpcEptMapper - ok
15:19:02.0427 0x1f3c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
15:19:02.0474 0x1f3c RpcLocator - ok
15:19:02.0521 0x1f3c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
15:19:02.0596 0x1f3c RpcSs - ok
15:19:02.0658 0x1f3c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:19:02.0752 0x1f3c rspndr - ok
15:19:02.0767 0x1f3c [ 54C0E3156872881F6AB017210278E27E, 8C3C71535FAC3897E1AE5505302387D7EC7C93D9DB6CA8AD6C1E1B26FE33D367 ] SamSs C:\Windows\system32\lsass.exe
15:19:02.0814 0x1f3c SamSs - ok
15:19:02.0830 0x1f3c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:19:02.0876 0x1f3c sbp2port - ok
15:19:02.0923 0x1f3c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:19:03.0032 0x1f3c SCardSvr - ok
15:19:03.0075 0x1f3c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:19:03.0149 0x1f3c scfilter - ok
15:19:03.0258 0x1f3c [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
15:19:03.0445 0x1f3c Schedule - ok
15:19:03.0492 0x1f3c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:19:03.0580 0x1f3c SCPolicySvc - ok
15:19:03.0611 0x1f3c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:19:03.0736 0x1f3c SDRSVC - ok
15:19:03.0768 0x1f3c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:19:03.0846 0x1f3c secdrv - ok
15:19:03.0878 0x1f3c [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
15:19:03.0924 0x1f3c seclogon - ok
15:19:03.0956 0x1f3c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
15:19:04.0065 0x1f3c SENS - ok
15:19:04.0093 0x1f3c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:19:04.0151 0x1f3c SensrSvc - ok
15:19:04.0182 0x1f3c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:19:04.0229 0x1f3c Serenum - ok
15:19:04.0260 0x1f3c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:19:04.0323 0x1f3c Serial - ok
15:19:04.0354 0x1f3c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:19:04.0401 0x1f3c sermouse - ok
15:19:04.0526 0x1f3c [ E802089FEC30A95FDFD218995308F9B3, A340D22E7E1D8EC7AE324C05D995AD34797B2D899DFD902A822B38109FAC6437 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
15:19:04.0613 0x1f3c ServiceLayer - ok
15:19:04.0675 0x1f3c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
15:19:04.0769 0x1f3c SessionEnv - ok
15:19:04.0800 0x1f3c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:19:04.0847 0x1f3c sffdisk - ok
15:19:04.0878 0x1f3c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:19:04.0925 0x1f3c sffp_mmc - ok
15:19:04.0925 0x1f3c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:19:04.0971 0x1f3c sffp_sd - ok
15:19:04.0987 0x1f3c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:19:05.0034 0x1f3c sfloppy - ok
15:19:05.0144 0x1f3c [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
15:19:05.0269 0x1f3c Sftfs - ok
15:19:05.0363 0x1f3c [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
15:19:05.0456 0x1f3c sftlist - ok
15:19:05.0519 0x1f3c [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
15:19:05.0597 0x1f3c Sftplay - ok
15:19:05.0654 0x1f3c [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
15:19:05.0686 0x1f3c Sftredir - ok
15:19:05.0701 0x1f3c [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
15:19:05.0732 0x1f3c Sftvol - ok
15:19:05.0779 0x1f3c [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
15:19:05.0810 0x1f3c sftvsa - ok
15:19:05.0873 0x1f3c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:19:06.0029 0x1f3c SharedAccess - ok
15:19:06.0076 0x1f3c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:19:06.0235 0x1f3c ShellHWDetection - ok
15:19:06.0282 0x1f3c [ 1BC348CF6BAA90EC8E533EF6E6A69933, 2B26F6EB701F48E092DED6A7B888F24736F2899EE81D54DD4B1E9DF7CFD36E7A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
15:19:06.0328 0x1f3c SiSGbeLH - ok
15:19:06.0360 0x1f3c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:19:06.0406 0x1f3c SiSRaid2 - ok
15:19:06.0438 0x1f3c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:19:06.0484 0x1f3c SiSRaid4 - ok
15:19:06.0609 0x1f3c [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:19:06.0701 0x1f3c SkypeUpdate - ok
15:19:06.0732 0x1f3c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:19:06.0832 0x1f3c Smb - ok
15:19:06.0863 0x1f3c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:19:06.0926 0x1f3c SNMPTRAP - ok
15:19:07.0066 0x1f3c [ A415C67B40DFB903ACCC1D40FBEE3269, 23FBA0321D9D08C576225C850E3720E20D955C41F8447A616CC521F432840082 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
15:19:07.0310 0x1f3c SNP2UVC - ok
15:19:07.0365 0x1f3c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
15:19:07.0397 0x1f3c spldr - ok
15:19:07.0457 0x1f3c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
15:19:07.0581 0x1f3c Spooler - ok
15:19:07.0813 0x1f3c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
15:19:08.0132 0x1f3c sppsvc - ok
15:19:08.0176 0x1f3c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:19:08.0285 0x1f3c sppuinotify - ok
15:19:08.0336 0x1f3c [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:19:08.0429 0x1f3c srv - ok
15:19:08.0475 0x1f3c [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:19:08.0553 0x1f3c srv2 - ok
15:19:08.0585 0x1f3c [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:19:08.0647 0x1f3c srvnet - ok
15:19:08.0679 0x1f3c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:19:08.0788 0x1f3c SSDPSRV - ok
15:19:08.0803 0x1f3c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:19:08.0913 0x1f3c SstpSvc - ok
15:19:08.0975 0x1f3c [ BB94A5E2CEE5FD83BA5A72A37AECADDF, 2A94AFAF671F11CD496A41687C48B3FF2870B6CA12184E2E29FDCA73544C2B2A ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
15:19:09.0037 0x1f3c ssudmdm - ok
15:19:09.0069 0x1f3c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:19:09.0115 0x1f3c stexstor - ok
15:19:09.0195 0x1f3c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
15:19:09.0320 0x1f3c stisvc - ok
15:19:09.0351 0x1f3c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
15:19:09.0398 0x1f3c swenum - ok
15:19:09.0444 0x1f3c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
15:19:09.0600 0x1f3c swprv - ok
15:19:09.0772 0x1f3c [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
15:19:09.0944 0x1f3c SysMain - ok
15:19:09.0991 0x1f3c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:19:10.0053 0x1f3c TabletInputService - ok
15:19:10.0100 0x1f3c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
15:19:10.0227 0x1f3c TapiSrv - ok
15:19:10.0414 0x1f3c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:19:10.0602 0x1f3c Tcpip - ok
15:19:10.0807 0x1f3c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:19:10.0994 0x1f3c TCPIP6 - ok
15:19:11.0057 0x1f3c [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:19:11.0150 0x1f3c tcpipreg - ok
15:19:11.0196 0x1f3c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:19:11.0305 0x1f3c TDPIPE - ok
15:19:11.0336 0x1f3c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:19:11.0398 0x1f3c TDTCP - ok
15:19:11.0461 0x1f3c [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:19:11.0508 0x1f3c tdx - ok
15:19:11.0554 0x1f3c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
15:19:11.0601 0x1f3c TermDD - ok
15:19:11.0717 0x1f3c [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
15:19:11.0810 0x1f3c TermService - ok
15:19:11.0842 0x1f3c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
15:19:11.0904 0x1f3c Themes - ok
15:19:11.0920 0x1f3c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
15:19:12.0013 0x1f3c THREADORDER - ok
15:19:12.0091 0x1f3c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
15:19:12.0227 0x1f3c TrkWks - ok
15:19:12.0289 0x1f3c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:19:12.0461 0x1f3c TrustedInstaller - ok
15:19:12.0508 0x1f3c [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:19:12.0555 0x1f3c tssecsrv - ok
15:19:12.0617 0x1f3c [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:19:12.0707 0x1f3c TsUsbFlt - ok
15:19:12.0760 0x1f3c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:19:12.0869 0x1f3c tunnel - ok
15:19:12.0900 0x1f3c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:19:12.0947 0x1f3c uagp35 - ok
15:19:13.0025 0x1f3c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:19:13.0197 0x1f3c udfs - ok
15:19:13.0260 0x1f3c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:19:13.0313 0x1f3c UI0Detect - ok
15:19:13.0344 0x1f3c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:19:13.0406 0x1f3c uliagpkx - ok
15:19:13.0469 0x1f3c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
15:19:13.0515 0x1f3c umbus - ok
15:19:13.0547 0x1f3c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:19:13.0609 0x1f3c UmPass - ok
15:19:13.0687 0x1f3c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
15:19:13.0827 0x1f3c upnphost - ok
15:19:13.0874 0x1f3c [ AF1B9474D67897D0C2CFF58E0ACEACCC, 5ED9836EC7BEEB6706C327EF199E9B674863ED8C83890DDE5E5A6554C2DA5288 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:19:13.0967 0x1f3c USBAAPL64 - ok
15:19:13.0998 0x1f3c [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:19:14.0061 0x1f3c usbccgp - ok
15:19:14.0092 0x1f3c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:19:14.0170 0x1f3c usbcir - ok
15:19:14.0201 0x1f3c [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:19:14.0248 0x1f3c usbehci - ok
15:19:14.0312 0x1f3c [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:19:14.0374 0x1f3c usbhub - ok
15:19:14.0405 0x1f3c [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:19:14.0468 0x1f3c usbohci - ok
15:19:14.0499 0x1f3c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:19:14.0546 0x1f3c usbprint - ok
15:19:14.0593 0x1f3c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
15:19:14.0702 0x1f3c usbscan - ok
15:19:14.0764 0x1f3c [ 4ACEE387FA8FD39F83564FCD2FC234F2, 3D62DE27027B8C032D15EB74F97A14B4EC24E67052C1163862740D6312B2569B ] usbser C:\Windows\system32\drivers\usbser.sys
15:19:14.0845 0x1f3c usbser - ok
15:19:14.0876 0x1f3c [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:19:14.0923 0x1f3c USBSTOR - ok
15:19:14.0938 0x1f3c [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:19:14.0985 0x1f3c usbuhci - ok
15:19:15.0032 0x1f3c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
15:19:15.0094 0x1f3c usbvideo - ok
15:19:15.0141 0x1f3c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
15:19:15.0266 0x1f3c UxSms - ok
15:19:15.0291 0x1f3c [ 54C0E3156872881F6AB017210278E27E, 8C3C71535FAC3897E1AE5505302387D7EC7C93D9DB6CA8AD6C1E1B26FE33D367 ] VaultSvc C:\Windows\system32\lsass.exe
15:19:15.0333 0x1f3c VaultSvc - ok
15:19:15.0395 0x1f3c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:19:15.0427 0x1f3c vdrvroot - ok
15:19:15.0520 0x1f3c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
15:19:15.0661 0x1f3c vds - ok
15:19:15.0692 0x1f3c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:19:15.0739 0x1f3c vga - ok
15:19:15.0754 0x1f3c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:19:15.0859 0x1f3c VgaSave - ok
15:19:15.0905 0x1f3c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:19:15.0952 0x1f3c vhdmp - ok
15:19:15.0999 0x1f3c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
15:19:16.0046 0x1f3c viaide - ok
15:19:16.0077 0x1f3c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:19:16.0124 0x1f3c volmgr - ok
15:19:16.0186 0x1f3c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:19:16.0264 0x1f3c volmgrx - ok
15:19:16.0339 0x1f3c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:19:16.0390 0x1f3c volsnap - ok
15:19:16.0546 0x1f3c [ F4942012BCE3A4ED9F43ED0F1BE5F81B, C1013931AF042F733F1427596EDBE0A9635D03B72DA1F77D8612DF6AF202E271 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
15:19:16.0655 0x1f3c vpnagent - ok
15:19:16.0764 0x1f3c [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\Windows\system32\DRIVERS\vpnva64-6.sys
15:19:16.0818 0x1f3c vpnva - ok
15:19:16.0865 0x1f3c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:19:17.0021 0x1f3c vsmraid - ok
15:19:17.0146 0x1f3c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
15:19:17.0390 0x1f3c VSS - ok
15:19:17.0421 0x1f3c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:19:17.0468 0x1f3c vwifibus - ok
15:19:17.0484 0x1f3c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:19:17.0531 0x1f3c vwififlt - ok
15:19:17.0593 0x1f3c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
15:19:17.0718 0x1f3c W32Time - ok
15:19:17.0780 0x1f3c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:19:17.0843 0x1f3c WacomPen - ok
15:19:17.0911 0x1f3c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:19:18.0055 0x1f3c WANARP - ok
15:19:18.0071 0x1f3c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:19:18.0180 0x1f3c Wanarpv6 - ok
15:19:18.0320 0x1f3c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:19:18.0432 0x1f3c WatAdminSvc - ok
15:19:18.0573 0x1f3c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
15:19:18.0807 0x1f3c wbengine - ok
15:19:18.0955 0x1f3c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:19:19.0116 0x1f3c WbioSrvc - ok
15:19:19.0178 0x1f3c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:19:19.0288 0x1f3c wcncsvc - ok
15:19:19.0334 0x1f3c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:19:19.0443 0x1f3c WcsPlugInService - ok
15:19:19.0490 0x1f3c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:19:19.0537 0x1f3c Wd - ok
15:19:19.0630 0x1f3c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:19:19.0724 0x1f3c Wdf01000 - ok
15:19:19.0817 0x1f3c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:19:20.0059 0x1f3c WdiServiceHost - ok
15:19:20.0106 0x1f3c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:19:20.0152 0x1f3c WdiSystemHost - ok
15:19:20.0199 0x1f3c [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
15:19:20.0293 0x1f3c WebClient - ok
15:19:20.0324 0x1f3c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:19:20.0462 0x1f3c Wecsvc - ok
15:19:20.0477 0x1f3c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:19:20.0602 0x1f3c wercplsupport - ok
15:19:20.0633 0x1f3c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
15:19:20.0743 0x1f3c WerSvc - ok
15:19:20.0774 0x1f3c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:19:20.0867 0x1f3c WfpLwf - ok
15:19:20.0899 0x1f3c [ 52DED146E4797E6CCF94799E8E22BB2A, 57A29260D81AA3AD3F8C29E9CFA7CE3970D7A8BF673ADD9B256EE76C7DEC080E ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
15:19:20.0962 0x1f3c WimFltr - ok
15:19:20.0963 0x1f3c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:19:21.0010 0x1f3c WIMMount - ok
15:19:21.0041 0x1f3c WinDefend - ok
15:19:21.0057 0x1f3c WinHttpAutoProxySvc - ok
15:19:21.0151 0x1f3c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:19:21.0307 0x1f3c Winmgmt - ok
15:19:21.0463 0x1f3c [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
15:19:21.0697 0x1f3c WinRM - ok
15:19:21.0775 0x1f3c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:19:21.0822 0x1f3c WinUsb - ok
15:19:21.0900 0x1f3c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:19:22.0027 0x1f3c Wlansvc - ok
15:19:22.0245 0x1f3c [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:19:22.0448 0x1f3c wlidsvc - ok
15:19:22.0500 0x1f3c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:19:22.0547 0x1f3c WmiAcpi - ok
15:19:22.0578 0x1f3c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:19:22.0641 0x1f3c wmiApSrv - ok
15:19:22.0672 0x1f3c WMPNetworkSvc - ok
15:19:22.0688 0x1f3c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:19:22.0750 0x1f3c WPCSvc - ok
15:19:22.0781 0x1f3c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:19:22.0875 0x1f3c WPDBusEnum - ok
15:19:22.0906 0x1f3c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:19:22.0995 0x1f3c ws2ifsl - ok
15:19:23.0043 0x1f3c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
15:19:23.0121 0x1f3c wscsvc - ok
15:19:23.0121 0x1f3c WSearch - ok
15:19:23.0324 0x1f3c [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
15:19:23.0559 0x1f3c wuauserv - ok
15:19:23.0621 0x1f3c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:19:23.0699 0x1f3c WudfPf - ok
15:19:23.0731 0x1f3c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:19:23.0777 0x1f3c WUDFRd - ok
15:19:23.0824 0x1f3c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:19:23.0871 0x1f3c wudfsvc - ok
15:19:23.0933 0x1f3c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
15:19:24.0012 0x1f3c WwanSvc - ok
15:19:24.0059 0x1f3c ================ Scan global ===============================
15:19:24.0105 0x1f3c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
15:19:24.0168 0x1f3c [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
15:19:24.0230 0x1f3c [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
15:19:24.0293 0x1f3c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:19:24.0339 0x1f3c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
15:19:24.0371 0x1f3c [ Global ] - ok
15:19:24.0386 0x1f3c ================ Scan MBR ==================================
15:19:24.0386 0x1f3c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:19:24.0794 0x1f3c \Device\Harddisk0\DR0 - ok
15:19:25.0029 0x1f3c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
15:19:25.0185 0x1f3c \Device\Harddisk1\DR1 - ok
15:19:25.0185 0x1f3c ================ Scan VBR ==================================
15:19:25.0185 0x1f3c [ 6843C3B4617AC31A23823F1D34B36C06 ] \Device\Harddisk0\DR0\Partition1
15:19:25.0200 0x1f3c \Device\Harddisk0\DR0\Partition1 - ok
15:19:25.0247 0x1f3c [ 3F7DD72E5095EC2F0DC47F10D07C8DB1 ] \Device\Harddisk0\DR0\Partition2
15:19:25.0247 0x1f3c \Device\Harddisk0\DR0\Partition2 - ok
15:19:25.0263 0x1f3c [ 56DA8D2E4C93544654C72952028B0299 ] \Device\Harddisk1\DR1\Partition1
15:19:25.0325 0x1f3c \Device\Harddisk1\DR1\Partition1 - ok
15:19:25.0325 0x1f3c ================ Scan generic autorun ======================
15:19:25.0497 0x1f3c [ 9DEA654E4D9820958D6B4D1EBAF2F31E, 526599AE6A3949AC43EAFA3A5F881A50BBC6549F3F3A0F00E2309E210ABFF40C ] C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
15:19:25.0638 0x1f3c ASUS WebStorage - ok
15:19:25.0685 0x1f3c [ 3B82612754BB7C257A9730DC49F9F34D, 8D9A4A4977A1BC6F8986AF56C8A41A450802D0D021E2C22EF4518E2E382BCD1C ] C:\Windows\system32\igfxtray.exe
15:19:25.0716 0x1f3c IgfxTray - ok
15:19:25.0748 0x1f3c [ AEE5726184D82F065AEAC8BD5C58C688, DFAE3E84D24479B5A3CDCB3BC7F9933450701D0C443A04BD2EB9BDA908F5DB1E ] C:\Windows\system32\igfxpers.exe
15:19:25.0810 0x1f3c Persistence - ok
15:19:25.0810 0x1f3c NvCplDaemon - ok
15:19:25.0872 0x1f3c [ DFAC78508DEFE8841DA4CDD1FA472C1A, A9055BD9C27E53F89E847C66FF73E090419CFDBFB51CA59645800E426476097E ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
15:19:25.0935 0x1f3c AmIcoSinglun64 - detected UnsignedFile.Multi.Generic ( 1 )
15:19:28.0315 0x1f3c Detect skipped due to KSN trusted
15:19:28.0315 0x1f3c AmIcoSinglun64 - ok
15:19:28.0428 0x1f3c [ 39A6923A594227BD43B2735747499B48, FE0E0740EA9B53F09E97BDF420CFD1D72DE95171BD38E7711324A2CF71F810CC ] C:\Program Files\Elantech\ETDCtrl.exe
15:19:28.0538 0x1f3c ETDWare - ok
15:19:28.0672 0x1f3c [ 20C08CA080F650B730B1E3FDEA9AD532, 1D2B0914412378E0B5834A95BDD86F8927B6A8D37F4E044C904CE381F1C19A75 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
15:19:28.0766 0x1f3c AdobeAAMUpdater-1.0 - ok
15:19:28.0844 0x1f3c [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
15:19:28.0891 0x1f3c UpdateLBPShortCut - ok
15:19:28.0922 0x1f3c [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
15:19:29.0000 0x1f3c UpdateP2GoShortCut - ok
15:19:29.0060 0x1f3c [ 5AEBF6FA9805C9101220AA4FB4FA17E7, A9B2FC41380211A6C44E839A95676A5BA868CEEBB56D83A780230434C2A20836 ] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
15:19:29.0095 0x1f3c HControlUser - ok
15:19:29.0555 0x1f3c [ 32F43BE36AAC4E10C88EC24B34770C0D, 068DA52F6AE5676E238CB7FE4A7DF14757B8406BFB58EC157150193877F300C9 ] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
15:19:30.0046 0x1f3c ATKOSD2 - ok
15:19:30.0144 0x1f3c [ 5666955DC9FD455A003D86A21E0483A9, 359E2B5857269EDCE395D6171642EAC8B23170AA5266932B2BAE1E5955E8FE77 ] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe
15:19:30.0175 0x1f3c ATKMEDIA - ok
15:19:30.0253 0x1f3c [ 5516C26A6AF8EB4E2CAB48EC98A74398, 2BF161DE944090B3B3792AE8F5985FCB09744B3EE626E8253A3861D86284652D ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
15:19:30.0284 0x1f3c HP Software Update - ok
15:19:30.0409 0x1f3c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:19:30.0591 0x1f3c Sidebar - ok
15:19:30.0622 0x1f3c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:19:30.0685 0x1f3c mctadmin - ok
15:19:30.0763 0x1f3c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:19:30.0934 0x1f3c Sidebar - ok
15:19:30.0966 0x1f3c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:19:31.0044 0x1f3c mctadmin - ok
15:19:31.0221 0x1f3c [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
15:19:31.0408 0x1f3c Sidebar - ok
15:19:31.0501 0x1f3c [ AC43952EA7D028BD35099391DB2FF599, 1D688F98C3158D91F873421663B7BD60DA3A35DCF793792B9D398D5DFC9050F0 ] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe
15:19:31.0590 0x1f3c Syncables - ok
15:19:31.0724 0x1f3c [ DF552350CDC2AA39C01CE40612DF82A8, 17B90AFC0837712EBC781FAC912B288125A900370B09B32320EB874704CACCE2 ] C:\Program Files (x86)\Samsung\Kies\Kies.exe
15:19:31.0943 0x1f3c KiesPreload - ok
15:19:31.0943 0x1f3c KiesAirMessage - ok
15:19:31.0989 0x1f3c [ B22CB67919EBAD88B0E8BB9CDA446010, 2F744FEAC48EDE7D6B6D2727F7DDFA80B26D9E3B0009741B00992B19AD85E128 ] C:\Windows\System32\StikyNot.exe
15:19:32.0099 0x1f3c RESTART_STICKY_NOTES - ok
15:19:32.0099 0x1f3c Web Companion - ok
15:19:32.0628 0x1f3c [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] C:\Program Files\CCleaner\CCleaner64.exe
15:19:33.0410 0x1f3c CCleaner Monitoring - ok
15:19:33.0441 0x1f3c Waiting for KSN requests completion. In queue: 17
15:19:34.0442 0x1f3c Waiting for KSN requests completion. In queue: 17
15:19:35.0443 0x1f3c Waiting for KSN requests completion. In queue: 17
15:19:36.0484 0x1f3c AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.17.264 ), 0x41000 ( enabled : updated )
15:19:36.0547 0x1f3c Win FW state via NFP2: enabled ( trusted )
15:19:38.0960 0x1f3c ============================================================
15:19:38.0960 0x1f3c Scan finished
15:19:38.0960 0x1f3c ============================================================
15:19:38.0976 0x1c38 Detected object count: 1
15:19:38.0976 0x1c38 Actual detected object count: 1
15:20:18.0191 0x1c38 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
15:20:18.0191 0x1c38 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
05.06.2016, 14:43
| #2 |
| /// TB-Ausbilder /// Anleitungs-Guru  | Trojaner durch directpay24-Spam-Mail mit .zip-Anhang? Schritt 1
__________________Bitte deinstalliere folgende Programme: SaveByClick Versuche es bei Windows 7  zunächst über Systemsteuerung/Programme deinstallieren. Sollte das nicht gehen, lade Dir bitte Revo Uninstaller  hier herunter. Entpacke die zip-Datei auf den Desktop. Anleitung
Wenn Du ein Programm nicht deinstallieren kannst, mach mit dem nächsten weiter. Auch wenn am Ende noch Programme übrig geblieben sind, führe den nächsten Schritt aus: Schritt 2 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 3  
Schritt 4   Bitte starte FRST erneut, markiere auch die checkbox  und drücke auf Untersuchen. Bitte poste mir den Inhalt der beiden Logs die erstellt werden.
__________________ |
|
05.06.2016, 16:33
| #3 |
| | Schritte Hallo Jürgen,
__________________SaveByClick habe ich deinstalliert. Hier die Logdatei von AdwCleaner: Code:
ATTFilter # AdwCleaner v5.119 - Bericht erstellt am 05/06/2016 um 16:00:04
# Aktualisiert am 30/05/2016 von Xplode
# Datenbank : 2016-06-03.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : Jana - JANASPC
# Gestartet von : C:\Users\Jana\Desktop\AdwCleaner_5.119.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht : C:\ProgramData\ytd video downloader
[-] Ordner gelöscht : C:\ProgramData\YoTuberADsREmov
[#] Ordner gelöscht : C:\ProgramData\Application Data\ytd video downloader
[#] Ordner gelöscht : C:\ProgramData\Application Data\YoTuberADsREmov
[-] Ordner gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
[-] Ordner gelöscht : C:\Users\Jana\AppData\Roaming\RPEng
***** [ Dateien ] *****
[-] Datei gelöscht : C:\Windows\SysWOW64\lavasofttcpservice.dll
[-] Datei gelöscht : C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
[-] Datei gelöscht : C:\Windows\SysNative\LavasoftTcpService64.dll
[-] Datei gelöscht : C:\Windows\SysNative\LavasoftTcpServiceOff.ini
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{40C3CC16-7269-4B32-9531-17F2950FB06F}
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{40C3CC16-7269-4B32-9531-17F2950FB06F}
[-] Wert gelöscht : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
[-] Wert gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{21FA44EF-376D-4D53-9B0F-8A89D3229068}]
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Lavasoft\Web Companion
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{650C05DC-4DB3-64C6-F062-902F50E14BB6}
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\APN
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\Ask.com
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\AskToolbar
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\Conduit
[-] Schlüssel gelöscht : HKU\.DEFAULT\Software\AppDataLow\Software\winload
[-] Schlüssel gelöscht : HKU\S-1-5-19\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel gelöscht : HKU\S-1-5-20\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B}
[-] Schlüssel gelöscht : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Schlüssel gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
[-] Wert gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
[#] Wert gelöscht : HKU\S-1-5-21-3680165228-2986155125-1793551889-1000\Software\Microsoft\Windows\CurrentVersion\Run [Web Companion]
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [3627 Bytes] - [05/06/2016 16:00:04]
C:\AdwCleaner\AdwCleaner[R0].txt - [13657 Bytes] - [02/03/2014 12:20:27]
C:\AdwCleaner\AdwCleaner[R1].txt - [6435 Bytes] - [24/12/2014 03:01:50]
C:\AdwCleaner\AdwCleaner[S0].txt - [12520 Bytes] - [02/03/2014 12:22:29]
C:\AdwCleaner\AdwCleaner[S1].txt - [10219 Bytes] - [24/12/2014 03:11:52]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3995 Bytes] ##########
Die Logdatei von Malwarebytes: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 05.06.2016 Suchlaufzeit: 16:13 Protokolldatei: logmalwarebytes.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.06.05.03 Rootkit-Datenbank: v2016.05.27.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Jana Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 386273 Abgelaufene Zeit: 1 Std., 5 Min., 58 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Aktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) |
|
| Themen zu Trojaner durch directpay24-Spam-Mail mit .zip-Anhang? |
| aktion, appdata, canon, community, default, directpay 24, dnsapi.dll, eingefangen, enthält, ereignisse, erhalte, folge, folgendes, gefangen, gen, google, grund, liebe, local, malware, muster, namen, quarantine, sorge, troja, trojaner, users, verschoben |
dann auf 
und dann auf 
.
Hybrid-Darstellung
