co jsem si zatím vygoogloval, jedná se o nebezpečný rootkit příbo v boot sektoru disku
předem všem díky za rady
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Problém s virem na ext. HDd - .MBR
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Problém s virem na ext. HDd - .MBR
Zdravím, včera jsem byl upozorněn programem F-Secure na přítomnost viru v MBR (0x81), kterého se nemohu nijak zbavit. Když jsem si dal kontrolu i pevného disku v PC, byl tento problém taky nalezen ( ovšem nikoliv odstraněn). Na webu jsem si našel postup pomocí opravy skrze Opravu systému přímo od Microsft Windows. Čímž jsem se, alespoň dle F-Securu této havěti zbavil - neukazuje mi nic nalezeného. Nicméně u mého externího hdd pořád tento problém přetrvává a, jako úplný lajk, Vás proto žádám o radu, jak se tohoto 'svinstva' zbavit ?
co jsem si zatím vygoogloval, jedná se o nebezpečný rootkit příbo v boot sektoru disku
předem všem díky za rady
co jsem si zatím vygoogloval, jedná se o nebezpečný rootkit příbo v boot sektoru disku
předem všem díky za rady
Re: Problém s virem na ext. HDd - .MBR
Kód: Vybrat vše
MBRScan v1.1.1
OS : Windows 7 Service Pack 1 (64 bit)
PROCESSOR : AMD64 Family 15 Model 107 Stepping 2, AuthenticAMD
BOOT : Normal Boot
DATE : 2013/12/15 (ISO 8601) at 18:20:40
________________________________________________________________________________
DISK : Device\Harddisk0\DR0 __ST3500418AS (CC46)
BUS_TYPE : (0x03) P-ATA
USE_PIO : NO
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
DISK : Device\Harddisk1\DR2 __ADATA HDD CH94
BUS_TYPE : (0x07) USB
USE_PIO : NO
MAX_TRANSFER : 64 Kb
ALIGNMENT_MASK : byte aligned
________________________________________________________________________________
Device\Harddisk0\DR0 465.8 Go [Fixed] ==> 7 MBR Code
MBR_MD5 : A377B7256FA07C5BDE1928FFE58D8306
MBR_SHA1 : BA6CE199A364C48E3AB4D95F0942A2B9AA09EC31
Device\Harddisk0\Partition1 102.4 Mo 0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2 426.7 Go 0x07 NTFS / HPFS
Device\Harddisk0\Partition3 38.95 Go 0x07 NTFS / HPFS
________________________________________________________________________________
Device\Harddisk1\DR2 596.2 Go [Fixed] ==> Unknown MBR Code . ==> PARTITION TABLE FAKED !!
MBR_MD5 : 9822A54E581F3730AE61CD942FBCC597
MBR_SHA1 : B18B3DFF58BC4EA78CDF08D4AD457EF74C7BAACE
Device\Harddisk1\Partition1 596.2 Go 0x0C FAT32 [LBA] __ BOOTABLE __
________________________________________________________________________________
############################### Additional scan ################################
DRIVER : C:\Windows\system32\hal.dll => Invisible on the disk
ADDRESS : 0x02C07000
SIZE : 292.0 Ko
DRIVER : C:\Windows\system32\kdcom.dll => Invisible on the disk
ADDRESS : 0x00BA4000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\mcupdate_AuthenticAMD.dll => Invisible on the disk
ADDRESS : 0x00C53000
SIZE : 52.0 Ko
DRIVER : C:\Windows\system32\CLFS.SYS => Invisible on the disk
ADDRESS : 0x00C74000
SIZE : 376.0 Ko
DRIVER : C:\Windows\system32\CI.dll => Invisible on the disk
ADDRESS : 0x00CD2000
SIZE : 768.0 Ko
DRIVER : C:\Windows\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0x00E4F000
SIZE : 776.0 Ko
DRIVER : C:\Windows\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0x00F11000
SIZE : 64.0 Ko
DRIVER : C:\Windows\system32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0x00F21000
SIZE : 348.0 Ko
DRIVER : C:\Windows\system32\drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0x00F78000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0x00F81000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0x00F8B000
SIZE : 204.0 Ko
DRIVER : C:\Windows\system32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0x00FBE000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0x00FCB000
SIZE : 84.0 Ko
DRIVER : C:\Windows\system32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0x00FE0000
SIZE : 84.0 Ko
DRIVER : C:\Windows\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0x00D92000
SIZE : 368.0 Ko
DRIVER : C:\Windows\system32\drivers\pciide.sys => Invisible on the disk
ADDRESS : 0x00FF5000
SIZE : 28.0 Ko
DRIVER : C:\Windows\system32\drivers\PCIIDEX.SYS => Invisible on the disk
ADDRESS : 0x00E00000
SIZE : 64.0 Ko
DRIVER : C:\Windows\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0x00E10000
SIZE : 104.0 Ko
DRIVER : C:\Windows\system32\drivers\vmbus.sys => Invisible on the disk
ADDRESS : 0x00C00000
SIZE : 240.0 Ko
DRIVER : C:\Windows\system32\drivers\winhv.sys => Invisible on the disk
ADDRESS : 0x00E2A000
SIZE : 80.0 Ko
DRIVER : C:\Windows\system32\drivers\atapi.sys => Invisible on the disk
ADDRESS : 0x00E3E000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\drivers\ataport.SYS => Invisible on the disk
ADDRESS : 0x010E4000
SIZE : 168.0 Ko
DRIVER : C:\Windows\system32\drivers\amdxata.sys => Invisible on the disk
ADDRESS : 0x0110E000
SIZE : 44.0 Ko
DRIVER : C:\Windows\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0x01119000
SIZE : 304.0 Ko
DRIVER : C:\Windows\system32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0x01165000
SIZE : 80.0 Ko
DRIVER : C:\Windows\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0x0121E000
SIZE : 1.63 Mo
DRIVER : C:\Windows\System32\Drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0x01179000
SIZE : 376.0 Ko
DRIVER : C:\Windows\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0x013C0000
SIZE : 108.0 Ko
DRIVER : C:\Windows\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0x01000000
SIZE : 456.0 Ko
DRIVER : C:\Windows\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0x013DB000
SIZE : 68.0 Ko
DRIVER : C:\Windows\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0x013EC000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0x0148F000
SIZE : 968.0 Ko
DRIVER : C:\Windows\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0x01581000
SIZE : 384.0 Ko
DRIVER : C:\Windows\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0x01400000
SIZE : 172.0 Ko
DRIVER : C:\Windows\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0x01600000
SIZE : 2.00 Mo
DRIVER : C:\Windows\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0x0142B000
SIZE : 292.0 Ko
DRIVER : C:\Windows\system32\drivers\vmstorfl.sys => Invisible on the disk
ADDRESS : 0x01474000
SIZE : 64.0 Ko
DRIVER : C:\Windows\system32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0x01072000
SIZE : 304.0 Ko
DRIVER : C:\Windows\System32\Drivers\spldr.sys => Invisible on the disk
ADDRESS : 0x01484000
SIZE : 32.0 Ko
DRIVER : C:\Windows\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0x018FC000
SIZE : 232.0 Ko
DRIVER : C:\Windows\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0x01936000
SIZE : 72.0 Ko
DRIVER : C:\Windows\System32\drivers\hwpolicy.sys => Invisible on the disk
ADDRESS : 0x01948000
SIZE : 36.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0x01951000
SIZE : 232.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\disk.sys => Invisible on the disk
ADDRESS : 0x0199B000
SIZE : 88.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0x019B1000
SIZE : 192.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\dtsoftbus01.sys => Invisible on the disk
ADDRESS : 0x0181C000
SIZE : 292.0 Ko
DRIVER : C:\Windows\system32\drivers\cdrom.sys => Invisible on the disk
ADDRESS : 0x01865000
SIZE : 168.0 Ko
DRIVER : C:\Windows\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0x0188F000
SIZE : 36.0 Ko
DRIVER : C:\Windows\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0x01898000
SIZE : 28.0 Ko
DRIVER : C:\Windows\System32\drivers\vga.sys => Invisible on the disk
ADDRESS : 0x0189F000
SIZE : 56.0 Ko
DRIVER : C:\Windows\System32\drivers\VIDEOPRT.SYS => Invisible on the disk
ADDRESS : 0x018AD000
SIZE : 148.0 Ko
DRIVER : C:\Windows\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0x018D2000
SIZE : 64.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\RDPCDD.sys => Invisible on the disk
ADDRESS : 0x018E2000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\drivers\rdpencdd.sys => Invisible on the disk
ADDRESS : 0x018EB000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\drivers\rdprefmp.sys => Invisible on the disk
ADDRESS : 0x015E1000
SIZE : 36.0 Ko
DRIVER : C:\Windows\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0x015EA000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0x01200000
SIZE : 68.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0x010BE000
SIZE : 136.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0x01211000
SIZE : 52.0 Ko
DRIVER : C:\Windows\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0x02C17000
SIZE : 548.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0x02CA0000
SIZE : 276.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\wfplwf.sys => Invisible on the disk
ADDRESS : 0x02CE5000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0x02CEE000
SIZE : 152.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0x02D14000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\serial.sys => Invisible on the disk
ADDRESS : 0x02D23000
SIZE : 116.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\wanarp.sys => Invisible on the disk
ADDRESS : 0x02D40000
SIZE : 108.0 Ko
DRIVER : C:\Windows\system32\drivers\termdd.sys => Invisible on the disk
ADDRESS : 0x02D5B000
SIZE : 80.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0x02D6F000
SIZE : 324.0 Ko
DRIVER : C:\Windows\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0x02DC0000
SIZE : 48.0 Ko
DRIVER : C:\Windows\system32\drivers\mssmbios.sys => Invisible on the disk
ADDRESS : 0x02DCC000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\drivers\fsdfw.sys => Invisible on the disk
ADDRESS : 0x02DDF000
SIZE : 88.0 Ko
DRIVER : C:\Windows\System32\drivers\fses.sys => Invisible on the disk
ADDRESS : 0x02DF5000
SIZE : 40.0 Ko
DRIVER : C:\Windows\System32\drivers\discache.sys => Invisible on the disk
ADDRESS : 0x011D7000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\drivers\csc.sys => Invisible on the disk
ADDRESS : 0x0669B000
SIZE : 524.0 Ko
DRIVER : C:\Windows\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0x0671E000
SIZE : 120.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\blbdrive.sys => Invisible on the disk
ADDRESS : 0x0673C000
SIZE : 68.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0x0674D000
SIZE : 152.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\amdk8.sys => Invisible on the disk
ADDRESS : 0x06773000
SIZE : 92.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\fdc.sys => Invisible on the disk
ADDRESS : 0x0678A000
SIZE : 52.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\serenum.sys => Invisible on the disk
ADDRESS : 0x06797000
SIZE : 48.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\parport.sys => Invisible on the disk
ADDRESS : 0x067A3000
SIZE : 116.0 Ko
DRIVER : C:\Windows\system32\drivers\i8042prt.sys => Invisible on the disk
ADDRESS : 0x067C0000
SIZE : 120.0 Ko
DRIVER : C:\Windows\system32\drivers\mouclass.sys => Invisible on the disk
ADDRESS : 0x067DE000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\drivers\kbdclass.sys => Invisible on the disk
ADDRESS : 0x067ED000
SIZE : 60.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\usbohci.sys => Invisible on the disk
ADDRESS : 0x06600000
SIZE : 44.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\USBPORT.SYS => Invisible on the disk
ADDRESS : 0x0660B000
SIZE : 344.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\usbehci.sys => Invisible on the disk
ADDRESS : 0x06661000
SIZE : 68.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\nvm62x64.sys => Invisible on the disk
ADDRESS : 0x06A21000
SIZE : 400.0 Ko
DRIVER : C:\Windows\system32\drivers\HDAudBus.sys => Invisible on the disk
ADDRESS : 0x06A85000
SIZE : 144.0 Ko
DRIVER : C:\Windows\system32\drivers\1394ohci.sys => Invisible on the disk
ADDRESS : 0x06AA9000
SIZE : 248.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\atikmdag.sys => Invisible on the disk
ADDRESS : 0x07238000
SIZE : 6.09 Mo
DRIVER : C:\Windows\System32\drivers\dxgkrnl.sys => Invisible on the disk
ADDRESS : 0x0784F000
SIZE : 976.0 Ko
DRIVER : C:\Windows\System32\drivers\dxgmms1.sys => Invisible on the disk
ADDRESS : 0x07943000
SIZE : 280.0 Ko
DRIVER : C:\Windows\system32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0x07989000
SIZE : 64.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\AgileVpn.sys => Invisible on the disk
ADDRESS : 0x07999000
SIZE : 88.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rasl2tp.sys => Invisible on the disk
ADDRESS : 0x079AF000
SIZE : 144.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\ndistapi.sys => Invisible on the disk
ADDRESS : 0x079D3000
SIZE : 48.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\ndiswan.sys => Invisible on the disk
ADDRESS : 0x07200000
SIZE : 188.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\raspppoe.sys => Invisible on the disk
ADDRESS : 0x079DF000
SIZE : 108.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\raspptp.sys => Invisible on the disk
ADDRESS : 0x06AE7000
SIZE : 132.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rassstp.sys => Invisible on the disk
ADDRESS : 0x06B08000
SIZE : 104.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rdpbus.sys => Invisible on the disk
ADDRESS : 0x06B22000
SIZE : 44.0 Ko
DRIVER : C:\Windows\system32\drivers\swenum.sys => Invisible on the disk
ADDRESS : 0x079FA000
SIZE : 8.0 Ko
DRIVER : C:\Windows\system32\drivers\ks.sys => Invisible on the disk
ADDRESS : 0x06B2D000
SIZE : 268.0 Ko
DRIVER : C:\Windows\system32\drivers\umbus.sys => Invisible on the disk
ADDRESS : 0x06B70000
SIZE : 72.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\flpydisk.sys => Invisible on the disk
ADDRESS : 0x06B82000
SIZE : 44.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\usbhub.sys => Invisible on the disk
ADDRESS : 0x06B8D000
SIZE : 360.0 Ko
DRIVER : C:\Windows\System32\Drivers\NDProxy.SYS => Invisible on the disk
ADDRESS : 0x06BE7000
SIZE : 84.0 Ko
DRIVER : C:\Windows\system32\drivers\HdAudio.sys => Invisible on the disk
ADDRESS : 0x07A68000
SIZE : 368.0 Ko
DRIVER : C:\Windows\system32\drivers\portcls.sys => Invisible on the disk
ADDRESS : 0x07AC4000
SIZE : 244.0 Ko
DRIVER : C:\Windows\system32\drivers\drmk.sys => Invisible on the disk
ADDRESS : 0x07B01000
SIZE : 136.0 Ko
DRIVER : C:\Windows\system32\drivers\ksthunk.sys => Invisible on the disk
ADDRESS : 0x07B23000
SIZE : 24.0 Ko
DRIVER : C:\Windows\system32\drivers\AtihdW76.sys => Invisible on the disk
ADDRESS : 0x07B29000
SIZE : 112.0 Ko
DRIVER : C:\Windows\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x00040000
SIZE : 3.09 Mo
DRIVER : C:\Windows\System32\drivers\Dxapi.sys => Invisible on the disk
ADDRESS : 0x07B45000
SIZE : 48.0 Ko
DRIVER : C:\Windows\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0x07B51000
SIZE : 56.0 Ko
DRIVER : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x07B5F000
SIZE : 48.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\usbccgp.sys => Invisible on the disk
ADDRESS : 0x07B87000
SIZE : 116.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\USBD.SYS => Invisible on the disk
ADDRESS : 0x07BA4000
SIZE : 8.0 Ko
DRIVER : C:\Windows\system32\drivers\hidusb.sys => Invisible on the disk
ADDRESS : 0x07BA6000
SIZE : 56.0 Ko
DRIVER : C:\Windows\system32\drivers\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0x07BB4000
SIZE : 100.0 Ko
DRIVER : C:\Windows\system32\drivers\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0x07BCD000
SIZE : 36.0 Ko
DRIVER : C:\Windows\system32\drivers\kbdhid.sys => Invisible on the disk
ADDRESS : 0x07BD6000
SIZE : 56.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mouhid.sys => Invisible on the disk
ADDRESS : 0x07BE4000
SIZE : 52.0 Ko
DRIVER : C:\Windows\System32\Drivers\usbvideo.sys => Invisible on the disk
ADDRESS : 0x07A00000
SIZE : 184.0 Ko
DRIVER : C:\Windows\system32\drivers\usbaudio.sys => Invisible on the disk
ADDRESS : 0x07A2E000
SIZE : 108.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\monitor.sys => Invisible on the disk
ADDRESS : 0x07A49000
SIZE : 56.0 Ko
DRIVER : C:\Windows\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x00430000
SIZE : 40.0 Ko
DRIVER : C:\Windows\System32\cdd.dll => Invisible on the disk
ADDRESS : 0x007B0000
SIZE : 156.0 Ko
DRIVER : C:\Windows\system32\drivers\luafv.sys => Invisible on the disk
ADDRESS : 0x06672000
SIZE : 140.0 Ko
DRIVER : C:\Windows\system32\drivers\mbam.sys => Invisible on the disk
ADDRESS : 0x07A57000
SIZE : 40.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\lltdio.sys => Invisible on the disk
ADDRESS : 0x06A00000
SIZE : 84.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\rspndr.sys => Invisible on the disk
ADDRESS : 0x019E1000
SIZE : 96.0 Ko
DRIVER : C:\Windows\system32\drivers\HTTP.sys => Invisible on the disk
ADDRESS : 0x028F6000
SIZE : 804.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0x029BF000
SIZE : 120.0 Ko
DRIVER : C:\Windows\System32\drivers\mpsdrv.sys => Invisible on the disk
ADDRESS : 0x029DD000
SIZE : 96.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0x02800000
SIZE : 180.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0x0282D000
SIZE : 312.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0x0287B000
SIZE : 144.0 Ko
DRIVER : C:\Windows\system32\drivers\peauth.sys => Invisible on the disk
ADDRESS : 0x08C96000
SIZE : 664.0 Ko
DRIVER : C:\Windows\System32\Drivers\secdrv.SYS => Invisible on the disk
ADDRESS : 0x08D3C000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\srvnet.sys => Invisible on the disk
ADDRESS : 0x08D47000
SIZE : 196.0 Ko
DRIVER : C:\Windows\System32\drivers\tcpipreg.sys => Invisible on the disk
ADDRESS : 0x08D78000
SIZE : 72.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\srv2.sys => Invisible on the disk
ADDRESS : 0x08D8A000
SIZE : 420.0 Ko
DRIVER : C:\Windows\System32\DRIVERS\srv.sys => Invisible on the disk
ADDRESS : 0x094A7000
SIZE : 608.0 Ko
DRIVER : C:\Windows\System32\Drivers\fastfat.SYS => Invisible on the disk
ADDRESS : 0x09574000
SIZE : 216.0 Ko
DRIVER : C:\Windows\system32\DRIVERS\USBSTOR.SYS => Invisible on the disk
ADDRESS : 0x09471000
SIZE : 108.0 Ko
DRIVER : C:\Windows\System32\smss.exe => Invisible on the disk
ADDRESS : 0x476D0000
SIZE : 128.0 Ko
SystemStartOptions : NOEXECUTE=OPTIN
________________________________________________________________________________
_______MBR \Device\Harddisk0\DR0
0x00000000 33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00 3À.м.|.À.ؾ.|¿.
0x00000010 06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00 .¹..üó¤Ph..Ëû¹..
0x00000020 BD BE 07 80 7E 00 00 7C 0B 0F 85 0E 01 83 C5 10 ½¾..~..|......Å.
0x00000030 E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00 âñÍ..V.UÆF..ÆF..
0x00000040 B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09 ´A»ªUÍ.]r..ûUªu.
0x00000050 F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74 ÷Á..t.þF.f`.~..t
0x00000060 26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00 &fh....f.v.h..h.
0x00000070 7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13 |h..h..´B.V..ôÍ.
0x00000080 9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00 ..Ä..ë.¸..».|.V.
0x00000090 8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1C FE .v..N..n.Í.fas.þ
0x000000A0 4E 11 75 0C 80 7E 00 80 0F 84 8A 00 B2 80 EB 84 N.u..~......².ë.
0x000000B0 55 32 E4 8A 56 00 CD 13 5D EB 9E 81 3E FE 7D 55 U2ä.V.Í.]ë..>þ}U
0x000000C0 AA 75 6E FF 76 00 E8 8D 00 75 17 FA B0 D1 E6 64 ªun.v.è..u.ú°Ñæd
0x000000D0 E8 83 00 B0 DF E6 60 E8 7C 00 B0 FF E6 64 E8 75 è..°ßæ`è|.°.ædèu
0x000000E0 00 FB B8 00 BB CD 1A 66 23 C0 75 3B 66 81 FB 54 .û¸.»Í.f#Àu;f.ûT
0x000000F0 43 50 41 75 32 81 F9 02 01 72 2C 66 68 07 BB 00 CPAu2.ù..r,fh.».
0x00000100 00 66 68 00 02 00 00 66 68 08 00 00 00 66 53 66 .fh....fh....fSf
0x00000110 53 66 55 66 68 00 00 00 00 66 68 00 7C 00 00 66 SfUfh....fh.|..f
0x00000120 61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00 00 CD ah...Í.Z2öê.|..Í
0x00000130 18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07 32 E4 ..·.ë..¶.ë..µ.2ä
0x00000140 05 00 07 8B F0 AC 3C 00 74 09 BB 07 00 B4 0E CD ....ð¬<.t.»..´.Í
0x00000150 10 EB F2 F4 EB FD 2B C9 E4 64 EB 00 24 02 E0 F8 .ëòôëý+Éädë.$.àø
0x00000160 24 02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69 $.ÃInvalid parti
0x00000170 74 69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72 tion table.Error
0x00000180 20 6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 loading operati
0x00000190 6E 67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E ng system.Missin
0x000001A0 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 g operating syst
0x000001B0 65 6D 00 00 00 63 7B 9A 15 10 5E 05 00 00 80 20 em...c{...^....
0x000001C0 21 00 07 EF 3F 0D 00 08 00 00 E0 32 03 00 00 00 !..ï?.....à2....
0x000001D0 01 0E 0F EF FF FF E0 3A 03 00 B0 8A DE 04 00 EF ...ï..à:..°.Þ..ï
0x000001E0 FF FF 07 EF FF FF 00 00 E2 04 F0 45 56 35 00 00 ...ï....â.ðEV5..
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__________________________16_BIT_ASM_CODE
0x0000 33c0 XOR AX, AX
0x0002 8ed0 MOV SS, AX
0x0004 bc 007c MOV SP, 0x7c00
0x0007 8ec0 MOV ES, AX
0x0009 8ed8 MOV DS, AX
0x000B be 007c MOV SI, 0x7c00
0x000E bf 0006 MOV DI, 0x600
0x0011 b9 0002 MOV CX, 0x200
0x0014 fc CLD
0x0015 f3 a4 REP MOVSB
0x0017 50 PUSH AX
0x0018 68 1c06 PUSH 0x61c
0x001B cb RETF
0x001C fb STI
0x001D b9 0400 MOV CX, 0x4
0x0020 bd be07 MOV BP, 0x7be
0x0023 807e 00 00 CMP BYTE [BP+0x0], 0x0
0x0027 7c 0b JL 0x34
0x0029 0f85 0e01 JNZ 0x13b
0x002D 83c5 10 ADD BP, 0x10
0x0030 e2 f1 LOOP 0x23
0x0032 cd 18 INT 0x18
0x0034 8856 00 MOV [BP+0x0], DL
0x0037 55 PUSH BP
0x0038 c646 11 05 MOV BYTE [BP+0x11], 0x5
0x003C c646 10 00 MOV BYTE [BP+0x10], 0x0
0x0040 b4 41 MOV AH, 0x41
0x0042 bb aa55 MOV BX, 0x55aa
0x0045 cd 13 INT 0x13
0x0047 5d POP BP
0x0048 72 0f JB 0x59
0x004A 81fb 55aa CMP BX, 0xaa55
0x004E 75 09 JNZ 0x59
0x0050 f7c1 0100 TEST CX, 0x1
0x0054 74 03 JZ 0x59
0x0056 fe46 10 INC BYTE [BP+0x10]
0x0059 66 60 PUSHAD
0x005B 807e 10 00 CMP BYTE [BP+0x10], 0x0
0x005F 74 26 JZ 0x87
0x0061 66 68 00000000 PUSH 0x0
0x0067 66 ff76 08 PUSH DWORD [BP+0x8]
0x006B 68 0000 PUSH 0x0
0x006E 68 007c PUSH 0x7c00
0x0071 68 0100 PUSH 0x1
0x0074 68 1000 PUSH 0x10
0x0077 b4 42 MOV AH, 0x42
0x0079 8a56 00 MOV DL, [BP+0x0]
0x007C 8bf4 MOV SI, SP
0x007E cd 13 INT 0x13
0x0080 9f LAHF
0x0081 83c4 10 ADD SP, 0x10
0x0084 9e SAHF
0x0085 eb 14 JMP 0x9b
0x0087 b8 0102 MOV AX, 0x201
0x008A bb 007c MOV BX, 0x7c00
0x008D 8a56 00 MOV DL, [BP+0x0]
0x0090 8a76 01 MOV DH, [BP+0x1]
0x0093 8a4e 02 MOV CL, [BP+0x2]
0x0096 8a6e 03 MOV CH, [BP+0x3]
0x0099 cd 13 INT 0x13
0x009B 66 61 POPAD
0x009D 73 1c JAE 0xbb
0x009F fe4e 11 DEC BYTE [BP+0x11]
0x00A2 75 0c JNZ 0xb0
0x00A4 807e 00 80 CMP BYTE [BP+0x0], 0x80
0x00A8 0f84 8a00 JZ 0x136
0x00AC b2 80 MOV DL, 0x80
0x00AE eb 84 JMP 0x34
0x00B0 55 PUSH BP
0x00B1 32e4 XOR AH, AH
0x00B3 8a56 00 MOV DL, [BP+0x0]
0x00B6 cd 13 INT 0x13
0x00B8 5d POP BP
0x00B9 eb 9e JMP 0x59
0x00BB 813e fe7d 55aa CMP WORD [0x7dfe], 0xaa55
0x00C1 75 6e JNZ 0x131
0x00C3 ff76 00 PUSH WORD [BP+0x0]
0x00C6 e8 8d00 CALL 0x156
0x00C9 75 17 JNZ 0xe2
0x00CB fa CLI
0x00CC b0 d1 MOV AL, 0xd1
0x00CE e6 64 OUT 0x64, AL
0x00D0 e8 8300 CALL 0x156
0x00D3 b0 df MOV AL, 0xdf
0x00D5 e6 60 OUT 0x60, AL
0x00D7 e8 7c00 CALL 0x156
0x00DA b0 ff MOV AL, 0xff
0x00DC e6 64 OUT 0x64, AL
0x00DE e8 7500 CALL 0x156
0x00E1 fb STI
0x00E2 b8 00bb MOV AX, 0xbb00
0x00E5 cd 1a INT 0x1a
0x00E7 66 23c0 AND EAX, EAX
0x00EA 75 3b JNZ 0x127
0x00EC 66 81fb 54435041CMP EBX, 0x41504354
0x00F3 75 32 JNZ 0x127
0x00F5 81f9 0201 CMP CX, 0x102
0x00F9 72 2c JB 0x127
0x00FB 66 68 07bb0000 PUSH 0xbb07
0x0101 66 68 00020000 PUSH 0x200
0x0107 66 68 08000000 PUSH 0x8
0x010D 66 53 PUSH EBX
0x010F 66 53 PUSH EBX
0x0111 66 55 PUSH EBP
0x0113 66 68 00000000 PUSH 0x0
0x0119 66 68 007c0000 PUSH 0x7c00
0x011F 66 61 POPAD
0x0121 68 0000 PUSH 0x0
0x0124 07 POP ES
0x0125 cd 1a INT 0x1a
0x0127 5a POP DX
0x0128 32f6 XOR DH, DH
0x012A ea 007c 0000 JMP FAR 0x0:0x7c00
0x012F cd 18 INT 0x18
0x0131 a0 b707 MOV AL, [0x7b7]
0x0134 eb 08 JMP 0x13e
0x0136 a0 b607 MOV AL, [0x7b6]
0x0139 eb 03 JMP 0x13e
0x013B a0 b507 MOV AL, [0x7b5]
0x013E 32e4 XOR AH, AH
0x0140 05 0007 ADD AX, 0x700
0x0143 8bf0 MOV SI, AX
0x0145 ac LODSB
0x0146 3c 00 CMP AL, 0x0
0x0148 74 09 JZ 0x153
0x014A bb 0700 MOV BX, 0x7
0x014D b4 0e MOV AH, 0xe
0x014F cd 10 INT 0x10
0x0151 eb f2 JMP 0x145
0x0153 f4 HLT
0x0154 eb fd JMP 0x153
0x0156 2bc9 SUB CX, CX
0x0158 e4 64 IN AL, 0x64
0x015A eb 00 JMP 0x15c
0x015C 24 02 AND AL, 0x2
0x015E e0 f8 LOOPNZ 0x158
0x0160 24 02 AND AL, 0x2
0x0162 c3 RET
0x0163 49 DEC CX
0x0164 6e OUTSB
0x0165 76 61 JBE 0x1c8
0x0167 6c INSB
0x0168 6964 20 7061 IMUL SP, [SI+0x20], 0x6170
0x016D 72 74 JB 0x1e3
0x016F 6974 69 6f6e IMUL SI, [SI+0x69], 0x6e6f
0x0174 2074 61 AND [SI+0x61], DH
0x0177 626c 65 BOUND BP, [SI+0x65]
0x017A 0045 72 ADD [DI+0x72], AL
0x017D 72 6f JB 0x1ee
0x017F 72 20 JB 0x1a1
0x0181 6c INSB
0x0182 6f OUTSW
0x0183 61 POPA
0x0184 64 696e 67 206f IMUL BP, FS:[BP+0x67], 0x6f20
0x018A 70 65 JO 0x1f1
0x018C 72 61 JB 0x1ef
0x018E 74 69 JZ 0x1f9
0x0190 6e OUTSB
0x0191 67 2073 79 AND [EBX+0x79], DH
0x0195 73 74 JAE 0x20b
0x0197 65 6d INS WORD GS:[DI], DX
0x0199 004d 69 ADD [DI+0x69], CL
0x019C 73 73 JAE 0x211
0x019E 696e 67 206f IMUL BP, [BP+0x67], 0x6f20
0x01A3 70 65 JO 0x20a
0x01A5 72 61 JB 0x208
0x01A7 74 69 JZ 0x212
0x01A9 6e OUTSB
0x01AA 67 2073 79 AND [EBX+0x79], DH
0x01AE 73 74 JAE 0x224
0x01B0 65 6d INS WORD GS:[DI], DX
0x01B2 0000 ADD [BX+SI], AL
0x01B4 0063 7b ADD [BP+DI+0x7b], AH
0x01B7 9a 1510 5e05 CALL FAR 0x55e:0x1015
0x01BC 0000 ADD [BX+SI], AL
0x01BE 8020 21 AND BYTE [BX+SI], 0x21
0x01C1 0007 ADD [BX], AL
0x01C3 ef OUT DX, AX
0x01C4 3f AAS
0x01C5 0d 0008 OR AX, 0x800
0x01C8 0000 ADD [BX+SI], AL
0x01CA e0 32 LOOPNZ 0x1fe
0x01CC 0300 ADD AX, [BX+SI]
0x01CE 0000 ADD [BX+SI], AL
0x01D0 010e 0fef ADD [0xef0f], CX
0x01D4 ff DB 0xff
0x01D5 ffe0 JMP AX
0x01D7 3a03 CMP AL, [BP+DI]
0x01D9 00b0 8ade ADD [BX+SI-0x2176], DH
0x01DD 04 00 ADD AL, 0x0
0x01DF ef OUT DX, AX
0x01E0 ff DB 0xff
0x01E1 ff07 INC WORD [BX]
0x01E3 ef OUT DX, AX
0x01E4 ff DB 0xff
0x01E5 ff00 INC WORD [BX+SI]
0x01E7 00e2 ADD DL, AH
0x01E9 04 f0 ADD AL, 0xf0
0x01EB 45 INC BP
0x01EC 56 PUSH SI
0x01ED 35 0000 XOR AX, 0x0
0x01F0 0000 ADD [BX+SI], AL
0x01F2 0000 ADD [BX+SI], AL
0x01F4 0000 ADD [BX+SI], AL
0x01F6 0000 ADD [BX+SI], AL
0x01F8 0000 ADD [BX+SI], AL
0x01FA 0000 ADD [BX+SI], AL
0x01FC 0000 ADD [BX+SI], AL
0x01FE 55 PUSH BP
0x01FF aa STOSB
_____FAKED \Device\Harddisk1\DR2
0x00000000 EB 5A 90 4D 53 57 49 4E 34 2E 31 00 02 40 20 00 ëZ.MSWIN4.1..@ .
0x00000010 02 00 00 00 00 F8 00 00 3F 00 FF 00 3F 00 00 00 .....ø..?...?...
0x00000020 82 6E 85 4A 07 54 02 00 00 00 00 00 02 00 00 00 .n.J.T..........
0x00000030 01 00 06 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000040 80 00 29 33 10 DF 13 4E 4F 20 4E 41 4D 45 20 20 ..)3.ß.NO NAME
0x00000050 20 20 46 41 54 33 32 20 20 20 00 00 00 00 00 00 FAT32 ......
0x00000060 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000070 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000080 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000090 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000000A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000000B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000000C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000000D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000000E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000000F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000100 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000110 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000120 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000130 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000140 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000150 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000160 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000170 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000180 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000190 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001B0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001C0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__ORIGINAL \Device\Harddisk1\DR2
0x00000000 33 C0 8E D8 8E C0 8E D0 BC 00 7C BE 1A 7C BF 00 3À.Ø.À.м.|¾.|¿.
0x00000010 06 B9 E6 01 50 57 FC F3 A4 CB BE A4 07 B1 04 90 .¹æ.PWüó¤Ë¾¤.±..
0x00000020 80 3C 80 74 0D 38 2C 0F 85 C0 00 83 C6 10 E2 F0 .<.t.8,..À..Æ.âð
0x00000030 CD 18 66 8B 44 08 8B 14 89 E3 B9 01 00 E8 64 00 Í.f.D....ã¹..èd.
0x00000040 73 0C 8B 4C 02 B8 01 02 CD 13 0F 82 B8 00 B9 55 s..L.¸..Í...¸.¹U
0x00000050 AA 2B 0E FE 7D 0F 85 CF 00 66 B8 00 00 00 00 66 ª+.þ}..Ï.f¸....f
0x00000060 39 44 08 72 08 66 8B 44 08 66 03 44 0C 83 C6 10 9D.r.f.D.f.D..Æ.
0x00000070 81 FE E4 07 72 E9 66 09 C0 74 1E B9 09 00 81 C3 .þä.réf.Àt.¹...Ã
0x00000080 00 02 E8 1F 00 72 12 89 DE 81 C6 0C 02 8D 54 F4 ..è..r..Þ.Æ...Tô
0x00000090 66 81 3C 75 2F F3 A4 74 05 EA 00 7C 00 00 89 DE f.<u/ó¤t.ê.|...Þ
0x000000A0 FF D2 EB F5 66 60 B2 80 BB AA 55 B4 41 CD 13 73 .Òëõf`².»ªU´AÍ.s
0x000000B0 04 F9 66 61 C3 81 FB 55 AA 75 F6 F6 C1 01 74 F1 .ùfaÃ.ûUªuööÁ.tñ
0x000000C0 66 61 66 60 6A 00 6A 00 66 50 06 53 51 6A 10 B4 faf`j.j.fP.SQj.´
0x000000D0 42 89 E6 CD 13 61 66 61 C3 5E AC 08 C0 74 FC 56 B.æÍ.afaÃ^¬.ÀtüV
0x000000E0 1E BB 07 00 B4 0E CD 10 1F EB EE E8 EB FF 49 6E .»..´.Í..ëîèë.In
0x000000F0 76 61 6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 valid partition
0x00000100 74 61 62 6C 65 00 E8 D0 FF 45 72 72 6F 72 20 6C table.èÐ.Error l
0x00000110 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 oading operating
0x00000120 20 73 79 73 74 65 6D 00 E8 AE FF 4D 69 73 73 69 system.è®.Missi
0x00000130 6E 67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 ng operating sys
0x00000140 74 65 6D 00 00 00 00 00 00 00 00 00 00 00 00 00 tem.............
0x00000150 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000160 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000170 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000180 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000190 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001B0 00 00 00 00 00 2C 44 63 3C 77 0E 9F 00 00 80 01 .....,Dc<w......
0x000001C0 01 00 0C FE FF FF 3F 00 00 00 82 6E 85 4A 00 00 ...þ..?....n.J..
0x000001D0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__________________________16_BIT_ASM_CODE
0x0000 eb 5a JMP 0x5c
0x0002 90 NOP
0x0003 4d DEC BP
0x0004 53 PUSH BX
0x0005 57 PUSH DI
0x0006 49 DEC CX
0x0007 4e DEC SI
0x0008 34 2e XOR AL, 0x2e
0x000A 3100 XOR [BX+SI], AX
0x000C 0240 20 ADD AL, [BX+SI+0x20]
0x000F 0002 ADD [BP+SI], AL
0x0011 0000 ADD [BX+SI], AL
0x0013 0000 ADD [BX+SI], AL
0x0015 f8 CLC
0x0016 0000 ADD [BX+SI], AL
0x0018 3f AAS
0x0019 00ff ADD BH, BH
0x001B 003f ADD [BX], BH
0x001D 0000 ADD [BX+SI], AL
0x001F 0082 6e85 ADD [BP+SI-0x7a92], AL
0x0023 4a DEC DX
0x0024 07 POP ES
0x0025 54 PUSH SP
0x0026 0200 ADD AL, [BX+SI]
0x0028 0000 ADD [BX+SI], AL
0x002A 0000 ADD [BX+SI], AL
0x002C 0200 ADD AL, [BX+SI]
0x002E 0000 ADD [BX+SI], AL
0x0030 0100 ADD [BX+SI], AX
0x0032 06 PUSH ES
0x0033 0000 ADD [BX+SI], AL
0x0035 0000 ADD [BX+SI], AL
0x0037 0000 ADD [BX+SI], AL
0x0039 0000 ADD [BX+SI], AL
0x003B 0000 ADD [BX+SI], AL
0x003D 0000 ADD [BX+SI], AL
0x003F 0080 0029 ADD [BX+SI+0x2900], AL
0x0043 3310 XOR DX, [BX+SI]
0x0045 df13 FIST WORD [BP+DI]
0x0047 4e DEC SI
0x0048 4f DEC DI
0x0049 204e 41 AND [BP+0x41], CL
0x004C 4d DEC BP
0x004D 45 INC BP
0x004E 2020 AND [BX+SI], AH
0x0050 2020 AND [BX+SI], AH
0x0052 46 INC SI
0x0053 41 INC CX
0x0054 54 PUSH SP
0x0055 3332 XOR SI, [BP+SI]
0x0057 2020 AND [BX+SI], AH
0x0059 2000 AND [BX+SI], AL
0x005B 0000 ADD [BX+SI], AL
0x005D 0000 ADD [BX+SI], AL
0x005F 0000 ADD [BX+SI], AL
0x0061 0000 ADD [BX+SI], AL
0x0063 0000 ADD [BX+SI], AL
0x0065 0000 ADD [BX+SI], AL
0x0067 0000 ADD [BX+SI], AL
0x0069 0000 ADD [BX+SI], AL
0x006B 0000 ADD [BX+SI], AL
0x006D 0000 ADD [BX+SI], AL
0x006F 0000 ADD [BX+SI], AL
0x0071 0000 ADD [BX+SI], AL
0x0073 0000 ADD [BX+SI], AL
0x0075 0000 ADD [BX+SI], AL
0x0077 0000 ADD [BX+SI], AL
0x0079 0000 ADD [BX+SI], AL
0x007B 0000 ADD [BX+SI], AL
0x007D 0000 ADD [BX+SI], AL
0x007F 0000 ADD [BX+SI], AL
0x0081 0000 ADD [BX+SI], AL
0x0083 0000 ADD [BX+SI], AL
0x0085 0000 ADD [BX+SI], AL
0x0087 0000 ADD [BX+SI], AL
0x0089 0000 ADD [BX+SI], AL
0x008B 0000 ADD [BX+SI], AL
0x008D 0000 ADD [BX+SI], AL
0x008F 0000 ADD [BX+SI], AL
0x0091 0000 ADD [BX+SI], AL
0x0093 0000 ADD [BX+SI], AL
0x0095 0000 ADD [BX+SI], AL
0x0097 0000 ADD [BX+SI], AL
0x0099 0000 ADD [BX+SI], AL
0x009B 0000 ADD [BX+SI], AL
0x009D 0000 ADD [BX+SI], AL
0x009F 0000 ADD [BX+SI], AL
0x00A1 0000 ADD [BX+SI], AL
0x00A3 0000 ADD [BX+SI], AL
0x00A5 0000 ADD [BX+SI], AL
0x00A7 0000 ADD [BX+SI], AL
0x00A9 0000 ADD [BX+SI], AL
0x00AB 0000 ADD [BX+SI], AL
0x00AD 0000 ADD [BX+SI], AL
0x00AF 0000 ADD [BX+SI], AL
0x00B1 0000 ADD [BX+SI], AL
0x00B3 0000 ADD [BX+SI], AL
0x00B5 0000 ADD [BX+SI], AL
0x00B7 0000 ADD [BX+SI], AL
0x00B9 0000 ADD [BX+SI], AL
0x00BB 0000 ADD [BX+SI], AL
0x00BD 0000 ADD [BX+SI], AL
0x00BF 0000 ADD [BX+SI], AL
0x00C1 0000 ADD [BX+SI], AL
0x00C3 0000 ADD [BX+SI], AL
0x00C5 0000 ADD [BX+SI], AL
0x00C7 0000 ADD [BX+SI], AL
0x00C9 0000 ADD [BX+SI], AL
0x00CB 0000 ADD [BX+SI], AL
0x00CD 0000 ADD [BX+SI], AL
0x00CF 0000 ADD [BX+SI], AL
0x00D1 0000 ADD [BX+SI], AL
0x00D3 0000 ADD [BX+SI], AL
0x00D5 0000 ADD [BX+SI], AL
0x00D7 0000 ADD [BX+SI], AL
0x00D9 0000 ADD [BX+SI], AL
0x00DB 0000 ADD [BX+SI], AL
0x00DD 0000 ADD [BX+SI], AL
0x00DF 0000 ADD [BX+SI], AL
0x00E1 0000 ADD [BX+SI], AL
0x00E3 0000 ADD [BX+SI], AL
0x00E5 0000 ADD [BX+SI], AL
0x00E7 0000 ADD [BX+SI], AL
0x00E9 0000 ADD [BX+SI], AL
0x00EB 0000 ADD [BX+SI], AL
0x00ED 0000 ADD [BX+SI], AL
0x00EF 0000 ADD [BX+SI], AL
0x00F1 0000 ADD [BX+SI], AL
0x00F3 0000 ADD [BX+SI], AL
0x00F5 0000 ADD [BX+SI], AL
0x00F7 0000 ADD [BX+SI], AL
0x00F9 0000 ADD [BX+SI], AL
0x00FB 0000 ADD [BX+SI], AL
0x00FD 0000 ADD [BX+SI], AL
0x00FF 0000 ADD [BX+SI], AL
0x0101 0000 ADD [BX+SI], AL
0x0103 0000 ADD [BX+SI], AL
0x0105 0000 ADD [BX+SI], AL
0x0107 0000 ADD [BX+SI], AL
0x0109 0000 ADD [BX+SI], AL
0x010B 0000 ADD [BX+SI], AL
0x010D 0000 ADD [BX+SI], AL
0x010F 0000 ADD [BX+SI], AL
0x0111 0000 ADD [BX+SI], AL
0x0113 0000 ADD [BX+SI], AL
0x0115 0000 ADD [BX+SI], AL
0x0117 0000 ADD [BX+SI], AL
0x0119 0000 ADD [BX+SI], AL
0x011B 0000 ADD [BX+SI], AL
0x011D 0000 ADD [BX+SI], AL
0x011F 0000 ADD [BX+SI], AL
0x0121 0000 ADD [BX+SI], AL
0x0123 0000 ADD [BX+SI], AL
0x0125 0000 ADD [BX+SI], AL
0x0127 0000 ADD [BX+SI], AL
0x0129 0000 ADD [BX+SI], AL
0x012B 0000 ADD [BX+SI], AL
0x012D 0000 ADD [BX+SI], AL
0x012F 0000 ADD [BX+SI], AL
0x0131 0000 ADD [BX+SI], AL
0x0133 0000 ADD [BX+SI], AL
0x0135 0000 ADD [BX+SI], AL
0x0137 0000 ADD [BX+SI], AL
0x0139 0000 ADD [BX+SI], AL
0x013B 0000 ADD [BX+SI], AL
0x013D 0000 ADD [BX+SI], AL
0x013F 0000 ADD [BX+SI], AL
0x0141 0000 ADD [BX+SI], AL
0x0143 0000 ADD [BX+SI], AL
0x0145 0000 ADD [BX+SI], AL
0x0147 0000 ADD [BX+SI], AL
0x0149 0000 ADD [BX+SI], AL
0x014B 0000 ADD [BX+SI], AL
0x014D 0000 ADD [BX+SI], AL
0x014F 0000 ADD [BX+SI], AL
0x0151 0000 ADD [BX+SI], AL
0x0153 0000 ADD [BX+SI], AL
0x0155 0000 ADD [BX+SI], AL
0x0157 0000 ADD [BX+SI], AL
0x0159 0000 ADD [BX+SI], AL
0x015B 0000 ADD [BX+SI], AL
0x015D 0000 ADD [BX+SI], AL
0x015F 0000 ADD [BX+SI], AL
0x0161 0000 ADD [BX+SI], AL
0x0163 0000 ADD [BX+SI], AL
0x0165 0000 ADD [BX+SI], AL
0x0167 0000 ADD [BX+SI], AL
0x0169 0000 ADD [BX+SI], AL
0x016B 0000 ADD [BX+SI], AL
0x016D 0000 ADD [BX+SI], AL
0x016F 0000 ADD [BX+SI], AL
0x0171 0000 ADD [BX+SI], AL
0x0173 0000 ADD [BX+SI], AL
0x0175 0000 ADD [BX+SI], AL
0x0177 0000 ADD [BX+SI], AL
0x0179 0000 ADD [BX+SI], AL
0x017B 0000 ADD [BX+SI], AL
0x017D 0000 ADD [BX+SI], AL
0x017F 0000 ADD [BX+SI], AL
0x0181 0000 ADD [BX+SI], AL
0x0183 0000 ADD [BX+SI], AL
0x0185 0000 ADD [BX+SI], AL
0x0187 0000 ADD [BX+SI], AL
0x0189 0000 ADD [BX+SI], AL
0x018B 0000 ADD [BX+SI], AL
0x018D 0000 ADD [BX+SI], AL
0x018F 0000 ADD [BX+SI], AL
0x0191 0000 ADD [BX+SI], AL
0x0193 0000 ADD [BX+SI], AL
0x0195 0000 ADD [BX+SI], AL
0x0197 0000 ADD [BX+SI], AL
0x0199 0000 ADD [BX+SI], AL
0x019B 0000 ADD [BX+SI], AL
0x019D 0000 ADD [BX+SI], AL
0x019F 0000 ADD [BX+SI], AL
0x01A1 0000 ADD [BX+SI], AL
0x01A3 0000 ADD [BX+SI], AL
0x01A5 0000 ADD [BX+SI], AL
0x01A7 0000 ADD [BX+SI], AL
0x01A9 0000 ADD [BX+SI], AL
0x01AB 0000 ADD [BX+SI], AL
0x01AD 0000 ADD [BX+SI], AL
0x01AF 0000 ADD [BX+SI], AL
0x01B1 0000 ADD [BX+SI], AL
0x01B3 0000 ADD [BX+SI], AL
0x01B5 0000 ADD [BX+SI], AL
0x01B7 0000 ADD [BX+SI], AL
0x01B9 0000 ADD [BX+SI], AL
0x01BB 0000 ADD [BX+SI], AL
0x01BD 0000 ADD [BX+SI], AL
0x01BF 0000 ADD [BX+SI], AL
0x01C1 0000 ADD [BX+SI], AL
0x01C3 0000 ADD [BX+SI], AL
0x01C5 0000 ADD [BX+SI], AL
0x01C7 0000 ADD [BX+SI], AL
0x01C9 0000 ADD [BX+SI], AL
0x01CB 0000 ADD [BX+SI], AL
0x01CD 0000 ADD [BX+SI], AL
0x01CF 0000 ADD [BX+SI], AL
0x01D1 0000 ADD [BX+SI], AL
0x01D3 0000 ADD [BX+SI], AL
0x01D5 0000 ADD [BX+SI], AL
0x01D7 0000 ADD [BX+SI], AL
0x01D9 0000 ADD [BX+SI], AL
0x01DB 0000 ADD [BX+SI], AL
0x01DD 0000 ADD [BX+SI], AL
0x01DF 0000 ADD [BX+SI], AL
0x01E1 0000 ADD [BX+SI], AL
0x01E3 0000 ADD [BX+SI], AL
0x01E5 0000 ADD [BX+SI], AL
0x01E7 0000 ADD [BX+SI], AL
0x01E9 0000 ADD [BX+SI], AL
0x01EB 0000 ADD [BX+SI], AL
0x01ED 0000 ADD [BX+SI], AL
0x01EF 0000 ADD [BX+SI], AL
0x01F1 0000 ADD [BX+SI], AL
0x01F3 0000 ADD [BX+SI], AL
0x01F5 0000 ADD [BX+SI], AL
0x01F7 0000 ADD [BX+SI], AL
0x01F9 0000 ADD [BX+SI], AL
0x01FB 0000 ADD [BX+SI], AL
0x01FD 0055 aa ADD [DI-0x56], DL
Edit:
otestováno a virustotal našel nějakou havět
zde výsledek :
Antivirus Result Update
Ad-Aware Rootkit.MBR.Mebroot.B (Boot image) 20131211
Agnitum 20131214
AhnLab-V3 20131215
AntiVir 20131215
Antiy-AVL 20131210
Avast Win32:MBRoot-J [Trj] 20131215
AVG 20131215
Baidu-International 20131213
BitDefender Rootkit.MBR.Mebroot.B (Boot image) 20131211
Bkav 20131214
ByteHero 20130613
CAT-QuickHeal BootKit.Wistler 20131215
ClamAV 20131215
CMC 20131213
Commtouch MBRoot.C 20131215
Comodo 20131215
DrWeb BackDoor.MaosBoot.1963 20131215
Emsisoft 20131215
ESET-NOD32 Win32/Mebroot.FX 20131215
F-Prot MBRoot.C 20131215
F-Secure Rootkit.MBR.Mebroot.B (Boot image) 20131214
Fortinet 20131215
GData Rootkit.MBR.Mebroot.B 20131215
Ikarus Trojan.DOS.Sinowal 20131215
Jiangmin 20131215
K7AntiVirus Backdoor ( 003800501 ) 20131213
K7GW Backdoor ( 003800501 ) 20131213
Kaspersky Rootkit.Boot.Sinowal.b 20131215
Kingsoft 20130829
Malwarebytes 20131215
McAfee BackDoor-DWL!mbr 20131215
McAfee-GW-Edition BackDoor-DWL!mbr 20131215
Microsoft Trojan:DOS/Sinowal.R 20131215
MicroWorld-eScan Rootkit.MBR.Mebroot.B (Boot image) 20131215
NANO-Antivirus Virus.Boot.Boot.bbjiqt 20131215
Norman SinowalMBR.H 20131215
nProtect 20131215
Panda 20131215
Rising BOOT:RootKit.Win32.Sinowal.a!1611056 20131210
Sophos 20131215
SUPERAntiSpyware 20131215
Symantec 20131215
TheHacker 20131215
TotalDefense Sinowal.A 20131214
TrendMicro BOOT_SINOWAL.SMW 20131215
TrendMicro-HouseCall BOOT_SINOWAL.SMW 20131215
VBA32 20131213
VIPRE Trojan.Boot.Sinowal.Gen (v) 20131215
ViRobot 20131215
Re: Problém s virem na ext. HDd - .MBR
No tak záleží. Řekněme normální uživatel Dle Vašich instrukcí nemám problém něco fixnout
Dle Vašich instrukcí nemám problém něco fixnout Re: Problém s virem na ext. HDd - .MBR
Tak já myslím, že by neměl být problém s tou úpravou sektorů atd.. ačkoliv sem to nikdy nedělal 
:D
nicméně report zde :
18:40:07.0942 0x1580 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
18:40:10.0789 0x1580 ============================================================
18:40:10.0790 0x1580 Current date / time: 2013/12/15 18:40:10.0789
18:40:10.0790 0x1580 SystemInfo:
18:40:10.0790 0x1580
18:40:10.0790 0x1580 OS Version: 6.1.7601 ServicePack: 1.0
18:40:10.0790 0x1580 Product type: Workstation
18:40:10.0790 0x1580 ComputerName: SHORTY-PC
18:40:10.0791 0x1580 UserName: Shorty
18:40:10.0791 0x1580 Windows directory: C:\Windows
18:40:10.0791 0x1580 System windows directory: C:\Windows
18:40:10.0791 0x1580 Running under WOW64
18:40:10.0791 0x1580 Processor architecture: Intel x64
18:40:10.0791 0x1580 Number of processors: 2
18:40:10.0791 0x1580 Page size: 0x1000
18:40:10.0791 0x1580 Boot type: Normal boot
18:40:10.0791 0x1580 ============================================================
18:40:12.0027 0x1580 KLMD registered as C:\Windows\system32\drivers\23036752.sys
18:40:12.0284 0x1580 System UUID: {F2DEC32E-9CF1-5AFC-E749-EB35B319CCBB}
18:40:13.0067 0x1580 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
18:40:13.0074 0x1580 Drive \Device\Harddisk1\DR2 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:40:14.0471 0x1580 ============================================================
18:40:14.0471 0x1580 \Device\Harddisk0\DR0:
18:40:14.0471 0x1580 MBR partitions:
18:40:14.0472 0x1580 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x332E0
18:40:14.0477 0x1580 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x33B1F, BlocksNum 0x4DE8A71
18:40:14.0477 0x1580 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4E20000, BlocksNum 0x355645F0
18:40:14.0477 0x1580 \Device\Harddisk1\DR2:
18:40:14.0487 0x1580 MBR partitions:
18:40:14.0487 0x1580 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x4A856E82
18:40:14.0487 0x1580 ============================================================
18:40:14.0499 0x1580 C: <-> \Device\Harddisk0\DR0\Partition2
18:40:14.0536 0x1580 D: <-> \Device\Harddisk0\DR0\Partition3
18:40:14.0537 0x1580 ============================================================
18:40:14.0537 0x1580 Initialize success
18:40:14.0537 0x1580 ============================================================
18:40:29.0067 0x14f0 ============================================================
18:40:29.0067 0x14f0 Scan started
18:40:29.0067 0x14f0 Mode: Manual; SigCheck; TDLFS;
18:40:29.0067 0x14f0 ============================================================
18:40:29.0067 0x14f0 KSN ping started
18:40:44.0103 0x14f0 KSN ping finished: true
18:40:44.0669 0x14f0 ================ Scan system memory ========================
18:40:44.0670 0x14f0 System memory - ok
18:40:44.0671 0x14f0 ================ Scan services =============================
18:40:44.0831 0x14f0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:40:44.0947 0x14f0 1394ohci - ok
18:40:44.0975 0x14f0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:40:45.0051 0x14f0 ACPI - ok
18:40:45.0075 0x14f0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:40:45.0168 0x14f0 AcpiPmi - ok
18:40:45.0226 0x14f0 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:45.0270 0x14f0 AdobeARMservice - ok
18:40:45.0309 0x14f0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:40:45.0388 0x14f0 adp94xx - ok
18:40:45.0403 0x14f0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:40:45.0505 0x14f0 adpahci - ok
18:40:45.0528 0x14f0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:40:45.0561 0x14f0 adpu320 - ok
18:40:45.0584 0x14f0 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:40:45.0651 0x14f0 AeLookupSvc - ok
18:40:45.0728 0x14f0 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
18:40:45.0883 0x14f0 AFD - ok
18:40:45.0923 0x14f0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
18:40:45.0959 0x14f0 agp440 - ok
18:40:45.0978 0x14f0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:40:46.0034 0x14f0 ALG - ok
18:40:46.0068 0x14f0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:40:46.0101 0x14f0 aliide - ok
18:40:46.0127 0x14f0 [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:40:46.0178 0x14f0 AMD External Events Utility - ok
18:40:46.0232 0x14f0 AMD FUEL Service - ok
18:40:46.0250 0x14f0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:40:46.0284 0x14f0 amdide - ok
18:40:46.0317 0x14f0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:40:46.0363 0x14f0 AmdK8 - ok
18:40:46.0386 0x14f0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:40:46.0434 0x14f0 AmdPPM - ok
18:40:46.0473 0x14f0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:40:46.0514 0x14f0 amdsata - ok
18:40:46.0537 0x14f0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:40:46.0569 0x14f0 amdsbs - ok
18:40:46.0588 0x14f0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:40:46.0620 0x14f0 amdxata - ok
18:40:46.0682 0x14f0 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
18:40:46.0791 0x14f0 AppID - ok
18:40:46.0814 0x14f0 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:40:46.0897 0x14f0 AppIDSvc - ok
18:40:46.0927 0x14f0 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
18:40:46.0980 0x14f0 Appinfo - ok
18:40:47.0010 0x14f0 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
18:40:47.0069 0x14f0 AppMgmt - ok
18:40:47.0115 0x14f0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
18:40:47.0143 0x14f0 arc - ok
18:40:47.0160 0x14f0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:40:47.0192 0x14f0 arcsas - ok
18:40:47.0218 0x14f0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:47.0281 0x14f0 AsyncMac - ok
18:40:47.0309 0x14f0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:40:47.0346 0x14f0 atapi - ok
18:40:47.0404 0x14f0 [ 37CB595C0AB20ECBFA5170D3185690DB, 23CA3DC63C35649021AAFF0721BA8A7DF546B5CD1530A35AAAC3E742A787A7D2 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:40:47.0491 0x14f0 AtiHDAudioService - ok
18:40:47.0686 0x14f0 [ 52BD95CAA9CAE8977FE043E9AD6D2D0E, E96DD29A2FCE1403340CB29D34F657DF17F483F62A2E8E24890F9BC4812B2971 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:40:48.0058 0x14f0 atikmdag - ok
18:40:48.0133 0x14f0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:40:48.0269 0x14f0 AudioEndpointBuilder - ok
18:40:48.0290 0x14f0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:40:48.0417 0x14f0 AudioSrv - ok
18:40:48.0471 0x14f0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:40:48.0573 0x14f0 AxInstSV - ok
18:40:48.0628 0x14f0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:40:48.0746 0x14f0 b06bdrv - ok
18:40:48.0779 0x14f0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:48.0841 0x14f0 b57nd60a - ok
18:40:48.0874 0x14f0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:40:48.0912 0x14f0 BDESVC - ok
18:40:48.0941 0x14f0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:40:49.0100 0x14f0 Beep - ok
18:40:49.0150 0x14f0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
18:40:49.0303 0x14f0 BFE - ok
18:40:49.0344 0x14f0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
18:40:49.0576 0x14f0 BITS - ok
18:40:49.0604 0x14f0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:49.0655 0x14f0 blbdrive - ok
18:40:49.0699 0x14f0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:40:49.0740 0x14f0 bowser - ok
18:40:49.0758 0x14f0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:40:49.0815 0x14f0 BrFiltLo - ok
18:40:49.0821 0x14f0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:40:49.0863 0x14f0 BrFiltUp - ok
18:40:49.0896 0x14f0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:40:49.0935 0x14f0 Browser - ok
18:40:49.0969 0x14f0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:40:50.0028 0x14f0 Brserid - ok
18:40:50.0037 0x14f0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:50.0091 0x14f0 BrSerWdm - ok
18:40:50.0096 0x14f0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:50.0132 0x14f0 BrUsbMdm - ok
18:40:50.0138 0x14f0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:50.0179 0x14f0 BrUsbSer - ok
18:40:50.0185 0x14f0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:40:50.0241 0x14f0 BTHMODEM - ok
18:40:50.0267 0x14f0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:40:50.0317 0x14f0 bthserv - ok
18:40:50.0338 0x14f0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:40:50.0427 0x14f0 cdfs - ok
18:40:50.0470 0x14f0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:40:50.0521 0x14f0 cdrom - ok
18:40:50.0557 0x14f0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
18:40:50.0620 0x14f0 CertPropSvc - ok
18:40:50.0645 0x14f0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:40:50.0690 0x14f0 circlass - ok
18:40:50.0726 0x14f0 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
18:40:50.0830 0x14f0 CLFS - ok
18:40:50.0900 0x14f0 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:50.0974 0x14f0 clr_optimization_v2.0.50727_32 - ok
18:40:51.0008 0x14f0 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:51.0044 0x14f0 clr_optimization_v2.0.50727_64 - ok
18:40:51.0108 0x14f0 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:51.0149 0x14f0 clr_optimization_v4.0.30319_32 - ok
18:40:51.0189 0x14f0 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:51.0232 0x14f0 clr_optimization_v4.0.30319_64 - ok
18:40:51.0255 0x14f0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:40:51.0289 0x14f0 CmBatt - ok
18:40:51.0311 0x14f0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:40:51.0336 0x14f0 cmdide - ok
18:40:51.0372 0x14f0 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
18:40:51.0480 0x14f0 CNG - ok
18:40:51.0511 0x14f0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:40:51.0564 0x14f0 Compbatt - ok
18:40:51.0595 0x14f0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:40:51.0656 0x14f0 CompositeBus - ok
18:40:51.0667 0x14f0 COMSysApp - ok
18:40:51.0679 0x14f0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:40:51.0718 0x14f0 crcdisk - ok
18:40:51.0753 0x14f0 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:40:51.0799 0x14f0 CryptSvc - ok
18:40:51.0833 0x14f0 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
18:40:51.0931 0x14f0 CSC - ok
18:40:51.0989 0x14f0 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
18:40:52.0108 0x14f0 CscService - ok
18:40:52.0169 0x14f0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:40:52.0305 0x14f0 DcomLaunch - ok
18:40:52.0336 0x14f0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:40:52.0405 0x14f0 defragsvc - ok
18:40:52.0432 0x14f0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:40:52.0489 0x14f0 DfsC - ok
18:40:52.0528 0x14f0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:40:52.0583 0x14f0 Dhcp - ok
18:40:52.0613 0x14f0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
18:40:52.0671 0x14f0 discache - ok
18:40:52.0696 0x14f0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:40:52.0726 0x14f0 Disk - ok
18:40:52.0784 0x14f0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:40:52.0873 0x14f0 Dnscache - ok
18:40:52.0908 0x14f0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
18:40:52.0987 0x14f0 dot3svc - ok
18:40:53.0035 0x14f0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:40:53.0128 0x14f0 DPS - ok
18:40:53.0182 0x14f0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:40:53.0215 0x14f0 drmkaud - ok
18:40:53.0255 0x14f0 [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:40:53.0302 0x14f0 dtsoftbus01 - ok
18:40:53.0347 0x14f0 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:40:53.0415 0x14f0 DXGKrnl - ok
18:40:53.0442 0x14f0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:40:53.0504 0x14f0 EapHost - ok
18:40:53.0668 0x14f0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:40:53.0899 0x14f0 ebdrv - ok
18:40:53.0933 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
18:40:53.0972 0x14f0 EFS - ok
18:40:54.0017 0x14f0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:40:54.0180 0x14f0 ehRecvr - ok
18:40:54.0217 0x14f0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:40:54.0258 0x14f0 ehSched - ok
18:40:54.0309 0x14f0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:40:54.0400 0x14f0 elxstor - ok
18:40:54.0423 0x14f0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:40:54.0467 0x14f0 ErrDev - ok
18:40:54.0573 0x14f0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:40:54.0727 0x14f0 EventSystem - ok
18:40:54.0761 0x14f0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
18:40:54.0848 0x14f0 exfat - ok
18:40:54.0957 0x14f0 [ 872A4DE096F1B4B5D0CDFA369ABF9388, D3F03DD7E01BC8A77CA315D534728F86DF5E49AAF83AA5E9ACA56989A2CFD67E ] F-Secure Filter D:\Program Files_K\F-Secure\Anti-Virus\Win2K\FSfilter.sys
18:40:54.0991 0x14f0 F-Secure Filter - ok
18:40:55.0017 0x14f0 [ 36A1B6F894F6B3638B12EB8AB4431271, 0ECE89B392FF20C8DA236005AE9740D27FCD7FA56B8D8473657F8E514448714E ] F-Secure Gatekeeper D:\Program Files_K\F-Secure\Anti-Virus\minifilter\fsgk.sys
18:40:55.0058 0x14f0 F-Secure Gatekeeper - ok
18:40:55.0101 0x14f0 [ A081425C6A0286AFFCCBE1F7EE1F9F23, 12DC608721588A461392C4FE35E3959E47FDB18DE7FF0B5D39629CE4D267B3F9 ] F-Secure Gatekeeper Handler Starter D:\Program Files_K\F-Secure\Anti-Virus\fsgk32st.exe
18:40:55.0156 0x14f0 F-Secure Gatekeeper Handler Starter - ok
18:40:55.0184 0x14f0 [ 1C8AB0D7D5451C58962940539F913473, 356D2FE11A49B68BF8E4CD9477CB9F5ECEBCD539200F17D464653D31C721D419 ] F-Secure HIPS D:\Program Files_K\F-Secure\HIPS\drivers\fshs.sys
18:40:55.0212 0x14f0 F-Secure HIPS - ok
18:40:55.0240 0x14f0 [ 504F83BE6D94346E5288FC5881A38A9B, 6D746EE077547E210044FA20FF6A9D74B0636B68BCF415E6ADCA269B2E43C171 ] F-Secure Recognizer D:\Program Files_K\F-Secure\Anti-Virus\Win2K\FSrec.sys
18:40:55.0272 0x14f0 F-Secure Recognizer - ok
18:40:55.0288 0x14f0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:40:55.0357 0x14f0 fastfat - ok
18:40:55.0419 0x14f0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:40:55.0538 0x14f0 Fax - ok
18:40:55.0562 0x14f0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:40:55.0593 0x14f0 fdc - ok
18:40:55.0628 0x14f0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:40:55.0691 0x14f0 fdPHost - ok
18:40:55.0714 0x14f0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:40:55.0775 0x14f0 FDResPub - ok
18:40:55.0794 0x14f0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:40:55.0828 0x14f0 FileInfo - ok
18:40:55.0847 0x14f0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:40:55.0908 0x14f0 Filetrace - ok
18:40:55.0920 0x14f0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:40:55.0948 0x14f0 flpydisk - ok
18:40:55.0997 0x14f0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:40:56.0038 0x14f0 FltMgr - ok
18:40:56.0153 0x14f0 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
18:40:56.0327 0x14f0 FontCache - ok
18:40:56.0379 0x14f0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:56.0416 0x14f0 FontCache3.0.0.0 - ok
18:40:56.0453 0x14f0 [ F59F2C574AA5D84477EB89F87C938F16, 0F3905D56440F9216911F7338061CFB8BEF243DDF9DC1E5D57254874EBBFA629 ] fsbts C:\Windows\system32\Drivers\fsbts.sys
18:40:56.0482 0x14f0 fsbts - ok
18:40:56.0510 0x14f0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:40:56.0537 0x14f0 FsDepends - ok
18:40:56.0627 0x14f0 [ 4FB994AA29BE9D11F17E579CF9941093, E643EFEF19A0C2B6CB01CD27A81412A163512870FA47D48B06915D35737C8F8E ] FSDFWD D:\Program Files_K\F-Secure\FWES\Program\fsdfwd.exe
18:40:56.0717 0x14f0 FSDFWD - ok
18:40:56.0747 0x14f0 [ 81491719AD2F5BB3563334F87C82F734, 1A2628BD459B0BECC0FB842E83B265D1E6D6263E66EAB321ED697D23C500062A ] FSES C:\Windows\system32\drivers\fses.sys
18:40:56.0773 0x14f0 FSES - ok
18:40:56.0794 0x14f0 [ B5B3D6EB4F40ABFC4F28BE0E5B5538E5, 6C84AEFEA5F4A3956B613ABEB477D3D9A29A686482C22B4926921DE674288D19 ] FSFW C:\Windows\system32\drivers\fsdfw.sys
18:40:56.0845 0x14f0 FSFW - ok
18:40:56.0904 0x14f0 [ 7F0C12D9C38A51319687132C41A36468, 174034ACF350292C520DF6F56AE3792865B1D6A967909066C8B97C775EC38869 ] FSMA D:\Program Files_K\F-Secure\Common\FSMA32.EXE
18:40:56.0955 0x14f0 FSMA - ok
18:40:57.0009 0x14f0 [ 45303CDBC1FD8F8D371E726BF126F771, AEBAD185AD6DA8648900C840DE64C2D83E94515EC0E08586C52BF64C8C2E4B6F ] FSORSPClient D:\Program Files_K\F-Secure\ORSP Client\fsorsp.exe
18:40:57.0101 0x14f0 FSORSPClient - ok
18:40:57.0121 0x14f0 [ 8A920E6CFF3163C843C06E14CF787BD8, C07E99BD6784561C4DD6AE8CC3DD1603841DC5BB9198FB841C1335CC57F992CE ] fsvista D:\Program Files_K\F-Secure\Anti-Virus\minifilter\fsvista.sys
18:40:57.0147 0x14f0 fsvista - ok
18:40:57.0174 0x14f0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:40:57.0201 0x14f0 Fs_Rec - ok
18:40:57.0249 0x14f0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:40:57.0292 0x14f0 fvevol - ok
18:40:57.0319 0x14f0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:40:57.0347 0x14f0 gagp30kx - ok
18:40:57.0395 0x14f0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
18:40:57.0540 0x14f0 gpsvc - ok
18:40:57.0569 0x14f0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:40:57.0617 0x14f0 hcw85cir - ok
18:40:57.0676 0x14f0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:40:57.0767 0x14f0 HdAudAddService - ok
18:40:57.0787 0x14f0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:40:57.0824 0x14f0 HDAudBus - ok
18:40:57.0839 0x14f0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:40:57.0885 0x14f0 HidBatt - ok
18:40:57.0907 0x14f0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:40:57.0948 0x14f0 HidBth - ok
18:40:57.0954 0x14f0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:40:57.0991 0x14f0 HidIr - ok
18:40:58.0016 0x14f0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
18:40:58.0068 0x14f0 hidserv - ok
18:40:58.0121 0x14f0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:40:58.0147 0x14f0 HidUsb - ok
18:40:58.0181 0x14f0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:40:58.0239 0x14f0 hkmsvc - ok
18:40:58.0276 0x14f0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:40:58.0333 0x14f0 HomeGroupListener - ok
18:40:58.0366 0x14f0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:40:58.0411 0x14f0 HomeGroupProvider - ok
18:40:58.0450 0x14f0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:40:58.0479 0x14f0 HpSAMD - ok
18:40:58.0542 0x14f0 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:40:58.0672 0x14f0 HTTP - ok
18:40:58.0696 0x14f0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:40:58.0721 0x14f0 hwpolicy - ok
18:40:58.0740 0x14f0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:40:58.0776 0x14f0 i8042prt - ok
18:40:58.0802 0x14f0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:40:58.0905 0x14f0 iaStorV - ok
18:40:59.0003 0x14f0 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:40:59.0077 0x14f0 idsvc - ok
18:40:59.0090 0x14f0 IEEtwCollectorService - ok
18:40:59.0112 0x14f0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:40:59.0138 0x14f0 iirsp - ok
18:40:59.0192 0x14f0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
18:40:59.0260 0x14f0 IKEEXT - ok
18:40:59.0279 0x14f0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:40:59.0324 0x14f0 intelide - ok
18:40:59.0350 0x14f0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:40:59.0405 0x14f0 intelppm - ok
18:40:59.0432 0x14f0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:40:59.0486 0x14f0 IPBusEnum - ok
18:40:59.0507 0x14f0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:40:59.0566 0x14f0 IpFilterDriver - ok
18:40:59.0597 0x14f0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:40:59.0688 0x14f0 iphlpsvc - ok
18:40:59.0714 0x14f0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:40:59.0754 0x14f0 IPMIDRV - ok
18:40:59.0778 0x14f0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:40:59.0838 0x14f0 IPNAT - ok
18:40:59.0873 0x14f0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:40:59.0964 0x14f0 IRENUM - ok
18:40:59.0984 0x14f0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:41:00.0018 0x14f0 isapnp - ok
18:41:00.0045 0x14f0 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:41:00.0085 0x14f0 iScsiPrt - ok
18:41:00.0099 0x14f0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:41:00.0127 0x14f0 kbdclass - ok
18:41:00.0165 0x14f0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:41:00.0205 0x14f0 kbdhid - ok
18:41:00.0218 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
18:41:00.0248 0x14f0 KeyIso - ok
18:41:00.0279 0x14f0 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:41:00.0309 0x14f0 KSecDD - ok
18:41:00.0330 0x14f0 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:41:00.0362 0x14f0 KSecPkg - ok
18:41:00.0386 0x14f0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:41:00.0447 0x14f0 ksthunk - ok
18:41:00.0475 0x14f0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:41:00.0596 0x14f0 KtmRm - ok
18:41:00.0650 0x14f0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:41:00.0773 0x14f0 LanmanServer - ok
18:41:00.0808 0x14f0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:41:00.0888 0x14f0 LanmanWorkstation - ok
18:41:00.0923 0x14f0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:41:00.0981 0x14f0 lltdio - ok
18:41:01.0011 0x14f0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:41:01.0111 0x14f0 lltdsvc - ok
18:41:01.0122 0x14f0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:41:01.0185 0x14f0 lmhosts - ok
18:41:01.0207 0x14f0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:41:01.0236 0x14f0 LSI_FC - ok
18:41:01.0254 0x14f0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:41:01.0282 0x14f0 LSI_SAS - ok
18:41:01.0301 0x14f0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:41:01.0329 0x14f0 LSI_SAS2 - ok
18:41:01.0337 0x14f0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:41:01.0368 0x14f0 LSI_SCSI - ok
18:41:01.0388 0x14f0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
18:41:01.0453 0x14f0 luafv - ok
18:41:01.0490 0x14f0 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:41:01.0528 0x14f0 MBAMProtector - ok
18:41:01.0575 0x14f0 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:41:01.0686 0x14f0 MBAMScheduler - ok
18:41:01.0726 0x14f0 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:41:01.0901 0x14f0 MBAMService - ok
18:41:01.0931 0x14f0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:41:01.0971 0x14f0 Mcx2Svc - ok
18:41:01.0999 0x14f0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:41:02.0025 0x14f0 megasas - ok
18:41:02.0058 0x14f0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:41:02.0094 0x14f0 MegaSR - ok
18:41:02.0148 0x14f0 [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
18:41:02.0191 0x14f0 Microsoft Office Groove Audit Service - ok
18:41:02.0217 0x14f0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:41:02.0280 0x14f0 MMCSS - ok
18:41:02.0293 0x14f0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
18:41:02.0351 0x14f0 Modem - ok
18:41:02.0389 0x14f0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:41:02.0430 0x14f0 monitor - ok
18:41:02.0450 0x14f0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
18:41:02.0478 0x14f0 mouclass - ok
18:41:02.0498 0x14f0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:41:02.0534 0x14f0 mouhid - ok
18:41:02.0558 0x14f0 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:41:02.0599 0x14f0 mountmgr - ok
18:41:02.0663 0x14f0 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:41:02.0756 0x14f0 MozillaMaintenance - ok
18:41:02.0785 0x14f0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
18:41:02.0826 0x14f0 mpio - ok
18:41:02.0848 0x14f0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:41:02.0898 0x14f0 mpsdrv - ok
18:41:02.0947 0x14f0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:41:03.0077 0x14f0 MpsSvc - ok
18:41:03.0112 0x14f0 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:41:03.0150 0x14f0 MRxDAV - ok
18:41:03.0178 0x14f0 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:41:03.0223 0x14f0 mrxsmb - ok
18:41:03.0243 0x14f0 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:41:03.0318 0x14f0 mrxsmb10 - ok
18:41:03.0360 0x14f0 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:41:03.0446 0x14f0 mrxsmb20 - ok
18:41:03.0460 0x14f0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:41:03.0525 0x14f0 msahci - ok
18:41:03.0564 0x14f0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:41:03.0601 0x14f0 msdsm - ok
18:41:03.0623 0x14f0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:41:03.0671 0x14f0 MSDTC - ok
18:41:03.0698 0x14f0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:41:03.0746 0x14f0 Msfs - ok
18:41:03.0761 0x14f0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:41:03.0809 0x14f0 mshidkmdf - ok
18:41:03.0824 0x14f0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:41:03.0848 0x14f0 msisadrv - ok
18:41:03.0878 0x14f0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:41:03.0938 0x14f0 MSiSCSI - ok
18:41:03.0943 0x14f0 msiserver - ok
18:41:03.0965 0x14f0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:41:04.0018 0x14f0 MSKSSRV - ok
18:41:04.0028 0x14f0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:41:04.0097 0x14f0 MSPCLOCK - ok
18:41:04.0106 0x14f0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:41:04.0233 0x14f0 MSPQM - ok
18:41:04.0278 0x14f0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:41:04.0363 0x14f0 MsRPC - ok
18:41:04.0398 0x14f0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:41:04.0448 0x14f0 mssmbios - ok
18:41:04.0467 0x14f0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:41:04.0529 0x14f0 MSTEE - ok
18:41:04.0534 0x14f0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:41:04.0569 0x14f0 MTConfig - ok
18:41:04.0597 0x14f0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:41:04.0651 0x14f0 Mup - ok
18:41:04.0701 0x14f0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:41:04.0802 0x14f0 napagent - ok
18:41:04.0839 0x14f0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:41:04.0888 0x14f0 NativeWifiP - ok
18:41:04.0996 0x14f0 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
18:41:05.0226 0x14f0 NDIS - ok
18:41:05.0258 0x14f0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:41:05.0315 0x14f0 NdisCap - ok
18:41:05.0345 0x14f0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:41:05.0403 0x14f0 NdisTapi - ok
18:41:05.0432 0x14f0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:41:05.0490 0x14f0 Ndisuio - ok
18:41:05.0523 0x14f0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:41:05.0587 0x14f0 NdisWan - ok
18:41:05.0612 0x14f0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:41:05.0661 0x14f0 NDProxy - ok
18:41:05.0689 0x14f0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:41:05.0750 0x14f0 NetBIOS - ok
18:41:05.0779 0x14f0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:41:05.0849 0x14f0 NetBT - ok
18:41:05.0862 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
18:41:05.0889 0x14f0 Netlogon - ok
18:41:05.0927 0x14f0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:41:06.0021 0x14f0 Netman - ok
18:41:06.0051 0x14f0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:41:06.0142 0x14f0 netprofm - ok
18:41:06.0171 0x14f0 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:41:06.0204 0x14f0 NetTcpPortSharing - ok
18:41:06.0228 0x14f0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:41:06.0255 0x14f0 nfrd960 - ok
18:41:06.0291 0x14f0 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:41:06.0339 0x14f0 NlaSvc - ok
18:41:06.0345 0x14f0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:41:06.0414 0x14f0 Npfs - ok
18:41:06.0439 0x14f0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
18:41:06.0496 0x14f0 nsi - ok
18:41:06.0510 0x14f0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:41:06.0557 0x14f0 nsiproxy - ok
18:41:06.0672 0x14f0 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:41:06.0900 0x14f0 Ntfs - ok
18:41:06.0917 0x14f0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:41:06.0977 0x14f0 Null - ok
18:41:07.0012 0x14f0 [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
18:41:07.0071 0x14f0 NVENETFD - ok
18:41:07.0119 0x14f0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:41:07.0177 0x14f0 nvraid - ok
18:41:07.0197 0x14f0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:41:07.0229 0x14f0 nvstor - ok
18:41:07.0254 0x14f0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:41:07.0286 0x14f0 nv_agp - ok
18:41:07.0330 0x14f0 [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:41:07.0407 0x14f0 odserv - ok
18:41:07.0432 0x14f0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:41:07.0466 0x14f0 ohci1394 - ok
18:41:07.0486 0x14f0 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:41:07.0555 0x14f0 ose - ok
18:41:07.0612 0x14f0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:41:07.0691 0x14f0 p2pimsvc - ok
18:41:07.0720 0x14f0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
18:41:07.0797 0x14f0 p2psvc - ok
18:41:07.0832 0x14f0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:41:07.0902 0x14f0 Parport - ok
18:41:07.0936 0x14f0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:41:07.0979 0x14f0 partmgr - ok
18:41:07.0992 0x14f0 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
18:41:08.0048 0x14f0 PcaSvc - ok
18:41:08.0071 0x14f0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
18:41:08.0107 0x14f0 pci - ok
18:41:08.0137 0x14f0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:41:08.0161 0x14f0 pciide - ok
18:41:08.0190 0x14f0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:41:08.0242 0x14f0 pcmcia - ok
18:41:08.0263 0x14f0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:41:08.0292 0x14f0 pcw - ok
18:41:08.0329 0x14f0 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:41:08.0466 0x14f0 PEAUTH - ok
18:41:08.0562 0x14f0 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:41:08.0690 0x14f0 PeerDistSvc - ok
18:41:08.0743 0x14f0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:41:08.0782 0x14f0 PerfHost - ok
18:41:08.0853 0x14f0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
18:41:09.0004 0x14f0 pla - ok
18:41:09.0110 0x14f0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:41:09.0216 0x14f0 PlugPlay - ok
18:41:09.0249 0x14f0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:41:09.0287 0x14f0 PNRPAutoReg - ok
18:41:09.0312 0x14f0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:41:09.0381 0x14f0 PNRPsvc - ok
18:41:09.0422 0x14f0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:41:09.0518 0x14f0 PolicyAgent - ok
18:41:09.0544 0x14f0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
18:41:09.0609 0x14f0 Power - ok
18:41:09.0646 0x14f0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:41:09.0711 0x14f0 PptpMiniport - ok
18:41:09.0733 0x14f0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:41:09.0771 0x14f0 Processor - ok
18:41:09.0805 0x14f0 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
18:41:09.0841 0x14f0 ProfSvc - ok
18:41:09.0858 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:41:09.0885 0x14f0 ProtectedStorage - ok
18:41:09.0927 0x14f0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:41:09.0991 0x14f0 Psched - ok
18:41:10.0025 0x14f0 [ 543A4EF0923BF70D126625B034EF25AF, 9CC82C5221F11850419A796D48D5452B3DEE0C8E8E85A818F4AAA869673F9740 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
18:41:10.0075 0x14f0 PSI_SVC_2 - ok
18:41:10.0130 0x14f0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:41:10.0270 0x14f0 ql2300 - ok
18:41:10.0288 0x14f0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:41:10.0317 0x14f0 ql40xx - ok
18:41:10.0351 0x14f0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:41:10.0391 0x14f0 QWAVE - ok
18:41:10.0399 0x14f0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:41:10.0437 0x14f0 QWAVEdrv - ok
18:41:10.0449 0x14f0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:41:10.0500 0x14f0 RasAcd - ok
18:41:10.0522 0x14f0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:41:10.0573 0x14f0 RasAgileVpn - ok
18:41:10.0589 0x14f0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:41:10.0668 0x14f0 RasAuto - ok
18:41:10.0702 0x14f0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:41:10.0765 0x14f0 Rasl2tp - ok
18:41:10.0785 0x14f0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
18:41:10.0869 0x14f0 RasMan - ok
18:41:10.0890 0x14f0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:41:10.0949 0x14f0 RasPppoe - ok
18:41:10.0972 0x14f0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:41:11.0032 0x14f0 RasSstp - ok
18:41:11.0066 0x14f0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:41:11.0131 0x14f0 rdbss - ok
18:41:11.0152 0x14f0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:41:11.0195 0x14f0 rdpbus - ok
18:41:11.0226 0x14f0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:41:11.0306 0x14f0 RDPCDD - ok
18:41:11.0341 0x14f0 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:41:11.0377 0x14f0 RDPDR - ok
18:41:11.0410 0x14f0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:41:11.0456 0x14f0 RDPENCDD - ok
18:41:11.0480 0x14f0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:41:11.0546 0x14f0 RDPREFMP - ok
18:41:11.0594 0x14f0 [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:41:11.0644 0x14f0 RdpVideoMiniport - ok
18:41:11.0676 0x14f0 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:41:11.0740 0x14f0 RDPWD - ok
18:41:11.0769 0x14f0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:41:11.0824 0x14f0 rdyboost - ok
18:41:11.0850 0x14f0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:41:11.0926 0x14f0 RemoteAccess - ok
18:41:11.0953 0x14f0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:41:12.0008 0x14f0 RemoteRegistry - ok
18:41:12.0035 0x14f0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:41:12.0092 0x14f0 RpcEptMapper - ok
18:41:12.0109 0x14f0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:41:12.0155 0x14f0 RpcLocator - ok
18:41:12.0196 0x14f0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
18:41:12.0292 0x14f0 RpcSs - ok
18:41:12.0329 0x14f0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:41:12.0391 0x14f0 rspndr - ok
18:41:12.0419 0x14f0 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:41:12.0510 0x14f0 s3cap - ok
18:41:12.0540 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
18:41:12.0602 0x14f0 SamSs - ok
18:41:12.0621 0x14f0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:41:12.0655 0x14f0 sbp2port - ok
18:41:12.0682 0x14f0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:41:12.0742 0x14f0 SCardSvr - ok
18:41:12.0769 0x14f0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:41:12.0818 0x14f0 scfilter - ok
18:41:12.0877 0x14f0 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
18:41:13.0049 0x14f0 Schedule - ok
18:41:13.0076 0x14f0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:41:13.0123 0x14f0 SCPolicySvc - ok
18:41:13.0158 0x14f0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:41:13.0191 0x14f0 SDRSVC - ok
18:41:13.0226 0x14f0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:41:13.0290 0x14f0 secdrv - ok
18:41:13.0307 0x14f0 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
18:41:13.0362 0x14f0 seclogon - ok
18:41:13.0383 0x14f0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
18:41:13.0441 0x14f0 SENS - ok
18:41:13.0455 0x14f0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:41:13.0485 0x14f0 SensrSvc - ok
18:41:13.0511 0x14f0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:41:13.0547 0x14f0 Serenum - ok
18:41:13.0580 0x14f0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:41:13.0639 0x14f0 Serial - ok
18:41:13.0663 0x14f0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:41:13.0700 0x14f0 sermouse - ok
18:41:13.0740 0x14f0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
18:41:13.0801 0x14f0 SessionEnv - ok
18:41:13.0827 0x14f0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:41:13.0865 0x14f0 sffdisk - ok
18:41:13.0883 0x14f0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:41:13.0922 0x14f0 sffp_mmc - ok
18:41:13.0941 0x14f0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:41:13.0982 0x14f0 sffp_sd - ok
18:41:14.0006 0x14f0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:41:14.0044 0x14f0 sfloppy - ok
18:41:14.0075 0x14f0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:41:14.0228 0x14f0 SharedAccess - ok
18:41:14.0279 0x14f0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:41:14.0399 0x14f0 ShellHWDetection - ok
18:41:14.0428 0x14f0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:41:14.0521 0x14f0 SiSRaid2 - ok
18:41:14.0527 0x14f0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:41:14.0612 0x14f0 SiSRaid4 - ok
18:41:14.0651 0x14f0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:41:14.0712 0x14f0 Smb - ok
18:41:14.0752 0x14f0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:41:14.0832 0x14f0 SNMPTRAP - ok
18:41:14.0882 0x14f0 [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
18:41:14.0945 0x14f0 Sony PC Companion - ok
18:41:14.0961 0x14f0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:41:14.0987 0x14f0 spldr - ok
18:41:15.0034 0x14f0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
18:41:15.0128 0x14f0 Spooler - ok
18:41:15.0247 0x14f0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
18:41:15.0572 0x14f0 sppsvc - ok
18:41:15.0625 0x14f0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:41:15.0685 0x14f0 sppuinotify - ok
18:41:15.0726 0x14f0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:41:15.0829 0x14f0 srv - ok
18:41:15.0858 0x14f0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:41:15.0948 0x14f0 srv2 - ok
18:41:15.0969 0x14f0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:41:16.0015 0x14f0 srvnet - ok
18:41:16.0046 0x14f0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:41:16.0107 0x14f0 SSDPSRV - ok
18:41:16.0127 0x14f0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:41:16.0176 0x14f0 SstpSvc - ok
18:41:16.0208 0x14f0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:41:16.0233 0x14f0 stexstor - ok
18:41:16.0283 0x14f0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:41:16.0374 0x14f0 stisvc - ok
18:41:16.0400 0x14f0 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:41:16.0448 0x14f0 storflt - ok
18:41:16.0469 0x14f0 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:41:16.0543 0x14f0 storvsc - ok
18:41:16.0560 0x14f0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
18:41:16.0587 0x14f0 swenum - ok
18:41:16.0625 0x14f0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
18:41:16.0727 0x14f0 swprv - ok
18:41:16.0739 0x14f0 Synth3dVsc - ok
18:41:16.0817 0x14f0 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
18:41:17.0003 0x14f0 SysMain - ok
18:41:17.0054 0x14f0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:41:17.0098 0x14f0 TabletInputService - ok
18:41:17.0128 0x14f0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
18:41:17.0222 0x14f0 TapiSrv - ok
18:41:17.0248 0x14f0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:41:17.0297 0x14f0 TBS - ok
18:41:17.0379 0x14f0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:41:17.0673 0x14f0 Tcpip - ok
18:41:17.0769 0x14f0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:41:17.0943 0x14f0 TCPIP6 - ok
18:41:17.0969 0x14f0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:41:18.0006 0x14f0 tcpipreg - ok
18:41:18.0036 0x14f0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:41:18.0072 0x14f0 TDPIPE - ok
18:41:18.0096 0x14f0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:41:18.0127 0x14f0 TDTCP - ok
18:41:18.0154 0x14f0 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:41:18.0207 0x14f0 tdx - ok
18:41:18.0448 0x14f0 [ F67C21CC4195F6AFC447418FE163E156, 01D245952C1AF2B365DBA6C36AFE0FFB2332480B6A1D7D4B43A0DE4FB7535B0B ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
18:41:19.0133 0x14f0 TeamViewer8 - ok
18:41:19.0158 0x14f0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
18:41:19.0185 0x14f0 TermDD - ok
18:41:19.0235 0x14f0 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
18:41:19.0349 0x14f0 TermService - ok
18:41:19.0389 0x14f0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:41:19.0525 0x14f0 Themes - ok
18:41:19.0541 0x14f0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:41:19.0601 0x14f0 THREADORDER - ok
18:41:19.0624 0x14f0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:41:19.0697 0x14f0 TrkWks - ok
18:41:19.0748 0x14f0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:41:19.0803 0x14f0 TrustedInstaller - ok
18:41:19.0819 0x14f0 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:41:19.0858 0x14f0 tssecsrv - ok
18:41:19.0885 0x14f0 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:41:19.0924 0x14f0 TsUsbFlt - ok
18:41:19.0929 0x14f0 tsusbhub - ok
18:41:19.0973 0x14f0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:41:20.0089 0x14f0 tunnel - ok
18:41:20.0116 0x14f0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:41:20.0147 0x14f0 uagp35 - ok
18:41:20.0179 0x14f0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:41:20.0277 0x14f0 udfs - ok
18:41:20.0304 0x14f0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:41:20.0358 0x14f0 UI0Detect - ok
18:41:20.0382 0x14f0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:41:20.0411 0x14f0 uliagpkx - ok
18:41:20.0439 0x14f0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
18:41:20.0476 0x14f0 umbus - ok
18:41:20.0489 0x14f0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:41:20.0514 0x14f0 UmPass - ok
18:41:20.0549 0x14f0 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
18:41:20.0585 0x14f0 UmRdpService - ok
18:41:20.0609 0x14f0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:41:20.0704 0x14f0 upnphost - ok
18:41:20.0734 0x14f0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:41:20.0775 0x14f0 usbaudio - ok
18:41:20.0803 0x14f0 [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:41:20.0833 0x14f0 usbccgp - ok
18:41:20.0863 0x14f0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:41:20.0902 0x14f0 usbcir - ok
18:41:20.0918 0x14f0 [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:41:20.0944 0x14f0 usbehci - ok
18:41:20.0981 0x14f0 [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:41:21.0055 0x14f0 usbhub - ok
18:41:21.0069 0x14f0 [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:41:21.0104 0x14f0 usbohci - ok
18:41:21.0137 0x14f0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:41:21.0206 0x14f0 usbprint - ok
18:41:21.0236 0x14f0 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:41:21.0294 0x14f0 USBSTOR - ok
18:41:21.0311 0x14f0 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:41:21.0354 0x14f0 usbuhci - ok
18:41:21.0398 0x14f0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:41:21.0432 0x14f0 usbvideo - ok
18:41:21.0456 0x14f0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
18:41:21.0514 0x14f0 UxSms - ok
18:41:21.0530 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
18:41:21.0561 0x14f0 VaultSvc - ok
18:41:21.0588 0x14f0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:41:21.0614 0x14f0 vdrvroot - ok
18:41:21.0651 0x14f0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
18:41:21.0750 0x14f0 vds - ok
18:41:21.0782 0x14f0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:41:21.0811 0x14f0 vga - ok
18:41:21.0831 0x14f0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:41:21.0898 0x14f0 VgaSave - ok
18:41:21.0909 0x14f0 VGPU - ok
18:41:21.0942 0x14f0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:41:21.0994 0x14f0 vhdmp - ok
18:41:22.0021 0x14f0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:41:22.0046 0x14f0 viaide - ok
18:41:22.0069 0x14f0 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:41:22.0105 0x14f0 vmbus - ok
18:41:22.0129 0x14f0 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:41:22.0165 0x14f0 VMBusHID - ok
18:41:22.0179 0x14f0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:41:22.0226 0x14f0 volmgr - ok
18:41:22.0258 0x14f0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:41:22.0353 0x14f0 volmgrx - ok
18:41:22.0399 0x14f0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:41:22.0481 0x14f0 volsnap - ok
18:41:22.0509 0x14f0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:41:22.0541 0x14f0 vsmraid - ok
18:41:22.0615 0x14f0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
18:41:22.0808 0x14f0 VSS - ok
18:41:22.0833 0x14f0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:41:22.0869 0x14f0 vwifibus - ok
18:41:22.0904 0x14f0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
18:41:23.0001 0x14f0 W32Time - ok
18:41:23.0035 0x14f0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:41:23.0080 0x14f0 WacomPen - ok
18:41:23.0118 0x14f0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:41:23.0169 0x14f0 WANARP - ok
18:41:23.0193 0x14f0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:41:23.0243 0x14f0 Wanarpv6 - ok
18:41:23.0330 0x14f0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:41:23.0505 0x14f0 WatAdminSvc - ok
18:41:23.0604 0x14f0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
18:41:23.0720 0x14f0 wbengine - ok
18:41:23.0755 0x14f0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:41:23.0795 0x14f0 WbioSrvc - ok
18:41:23.0832 0x14f0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:41:23.0915 0x14f0 wcncsvc - ok
18:41:23.0931 0x14f0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:41:23.0966 0x14f0 WcsPlugInService - ok
18:41:24.0000 0x14f0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:41:24.0027 0x14f0 Wd - ok
18:41:24.0077 0x14f0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:41:24.0193 0x14f0 Wdf01000 - ok
18:41:24.0228 0x14f0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:41:24.0290 0x14f0 WdiServiceHost - ok
18:41:24.0297 0x14f0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:41:24.0339 0x14f0 WdiSystemHost - ok
18:41:24.0360 0x14f0 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
18:41:24.0408 0x14f0 WebClient - ok
18:41:24.0435 0x14f0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:41:24.0503 0x14f0 Wecsvc - ok
18:41:24.0519 0x14f0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:41:24.0584 0x14f0 wercplsupport - ok
18:41:24.0619 0x14f0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:41:24.0685 0x14f0 WerSvc - ok
18:41:24.0717 0x14f0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:41:24.0764 0x14f0 WfpLwf - ok
18:41:24.0783 0x14f0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:41:24.0809 0x14f0 WIMMount - ok
18:41:24.0832 0x14f0 WinDefend - ok
18:41:24.0842 0x14f0 WinHttpAutoProxySvc - ok
18:41:24.0879 0x14f0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:41:24.0960 0x14f0 Winmgmt - ok
18:41:25.0042 0x14f0 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
18:41:25.0236 0x14f0 WinRM - ok
18:41:25.0304 0x14f0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:41:25.0360 0x14f0 WinUsb - ok
18:41:25.0412 0x14f0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:41:25.0540 0x14f0 Wlansvc - ok
18:41:25.0560 0x14f0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:41:25.0595 0x14f0 WmiAcpi - ok
18:41:25.0626 0x14f0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:41:25.0671 0x14f0 wmiApSrv - ok
18:41:25.0699 0x14f0 WMPNetworkSvc - ok
18:41:25.0719 0x14f0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:41:25.0746 0x14f0 WPCSvc - ok
18:41:25.0778 0x14f0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:41:25.0812 0x14f0 WPDBusEnum - ok
18:41:25.0840 0x14f0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:41:25.0955 0x14f0 ws2ifsl - ok
18:41:25.0978 0x14f0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
18:41:26.0035 0x14f0 wscsvc - ok
18:41:26.0040 0x14f0 WSearch - ok
18:41:26.0140 0x14f0 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
18:41:26.0266 0x14f0 wuauserv - ok
18:41:26.0303 0x14f0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:41:26.0338 0x14f0 WudfPf - ok
18:41:26.0375 0x14f0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:41:26.0415 0x14f0 WUDFRd - ok
18:41:26.0435 0x14f0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:41:26.0479 0x14f0 wudfsvc - ok
18:41:26.0511 0x14f0 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:41:26.0548 0x14f0 WwanSvc - ok
18:41:26.0553 0x14f0 ================ Scan global ===============================
18:41:26.0574 0x14f0 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
18:41:26.0604 0x14f0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:41:26.0618 0x14f0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:41:26.0640 0x14f0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
18:41:26.0689 0x14f0 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
18:41:26.0699 0x14f0 [ Global ] - ok
18:41:26.0699 0x14f0 ================ Scan MBR ==================================
18:41:26.0710 0x14f0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:41:27.0267 0x14f0 \Device\Harddisk0\DR0 - ok
18:41:27.0657 0x14f0 [ 9ECD6A6563309C153732EB5F8CCDAAE9 ] \Device\Harddisk1\DR2
18:41:27.0660 0x14f0 \Device\Harddisk1\DR2 - detected Rootkit.Boot.Sinowal.b ( 0 )
18:41:27.0660 0x14f0 \Device\Harddisk1\DR2 ( Rootkit.Boot.Sinowal.b ) - infected
18:41:30.0542 0x14f0 ================ Scan VBR ==================================
18:41:30.0546 0x14f0 [ 067A749DD45E967EB61594027ABFA6B4 ] \Device\Harddisk0\DR0\Partition1
18:41:30.0549 0x14f0 \Device\Harddisk0\DR0\Partition1 - ok
18:41:30.0557 0x14f0 [ 7BB488D6369EEF849034AA244134E3F4 ] \Device\Harddisk0\DR0\Partition2
18:41:30.0560 0x14f0 \Device\Harddisk0\DR0\Partition2 - ok
18:41:30.0580 0x14f0 [ AD1B7B80F63F50B8D5ECB26419358F38 ] \Device\Harddisk0\DR0\Partition3
18:41:30.0582 0x14f0 \Device\Harddisk0\DR0\Partition3 - ok
18:41:30.0587 0x14f0 [ B503700CC1FE84F9CBA5AAA8A638BD06 ] \Device\Harddisk1\DR2\Partition1
18:41:30.0588 0x14f0 \Device\Harddisk1\DR2\Partition1 - ok
18:41:30.0589 0x14f0 Waiting for KSN requests completion. In queue: 70
18:41:31.0589 0x14f0 Waiting for KSN requests completion. In queue: 70
18:41:32.0656 0x14f0 AV detected via SS2: F-Secure Anti-Virus 2011 10.51, D:\Program Files_K\F-Secure\Anti-Virus\fsavwsch.exe ( 9.10.15260.0 ), 0x41000 ( enabled : updated )
18:41:32.0664 0x14f0 Win FW state via NFP2: enabled
18:41:35.0354 0x14f0 ============================================================
18:41:35.0354 0x14f0 Scan finished
18:41:35.0354 0x14f0 ============================================================
18:41:35.0363 0x049c Detected object count: 1
18:41:35.0363 0x049c Actual detected object count: 1
18:41:54.0531 0x049c \Device\Harddisk1\DR2 ( Rootkit.Boot.Sinowal.b ) - skipped by user
18:41:54.0532 0x049c \Device\Harddisk1\DR2 ( Rootkit.Boot.Sinowal.b ) - User select action: Skip
:Dnicméně report zde :
18:40:07.0942 0x1580 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
18:40:10.0789 0x1580 ============================================================
18:40:10.0790 0x1580 Current date / time: 2013/12/15 18:40:10.0789
18:40:10.0790 0x1580 SystemInfo:
18:40:10.0790 0x1580
18:40:10.0790 0x1580 OS Version: 6.1.7601 ServicePack: 1.0
18:40:10.0790 0x1580 Product type: Workstation
18:40:10.0790 0x1580 ComputerName: SHORTY-PC
18:40:10.0791 0x1580 UserName: Shorty
18:40:10.0791 0x1580 Windows directory: C:\Windows
18:40:10.0791 0x1580 System windows directory: C:\Windows
18:40:10.0791 0x1580 Running under WOW64
18:40:10.0791 0x1580 Processor architecture: Intel x64
18:40:10.0791 0x1580 Number of processors: 2
18:40:10.0791 0x1580 Page size: 0x1000
18:40:10.0791 0x1580 Boot type: Normal boot
18:40:10.0791 0x1580 ============================================================
18:40:12.0027 0x1580 KLMD registered as C:\Windows\system32\drivers\23036752.sys
18:40:12.0284 0x1580 System UUID: {F2DEC32E-9CF1-5AFC-E749-EB35B319CCBB}
18:40:13.0067 0x1580 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
18:40:13.0074 0x1580 Drive \Device\Harddisk1\DR2 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:40:14.0471 0x1580 ============================================================
18:40:14.0471 0x1580 \Device\Harddisk0\DR0:
18:40:14.0471 0x1580 MBR partitions:
18:40:14.0472 0x1580 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x332E0
18:40:14.0477 0x1580 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x33B1F, BlocksNum 0x4DE8A71
18:40:14.0477 0x1580 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4E20000, BlocksNum 0x355645F0
18:40:14.0477 0x1580 \Device\Harddisk1\DR2:
18:40:14.0487 0x1580 MBR partitions:
18:40:14.0487 0x1580 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x4A856E82
18:40:14.0487 0x1580 ============================================================
18:40:14.0499 0x1580 C: <-> \Device\Harddisk0\DR0\Partition2
18:40:14.0536 0x1580 D: <-> \Device\Harddisk0\DR0\Partition3
18:40:14.0537 0x1580 ============================================================
18:40:14.0537 0x1580 Initialize success
18:40:14.0537 0x1580 ============================================================
18:40:29.0067 0x14f0 ============================================================
18:40:29.0067 0x14f0 Scan started
18:40:29.0067 0x14f0 Mode: Manual; SigCheck; TDLFS;
18:40:29.0067 0x14f0 ============================================================
18:40:29.0067 0x14f0 KSN ping started
18:40:44.0103 0x14f0 KSN ping finished: true
18:40:44.0669 0x14f0 ================ Scan system memory ========================
18:40:44.0670 0x14f0 System memory - ok
18:40:44.0671 0x14f0 ================ Scan services =============================
18:40:44.0831 0x14f0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:40:44.0947 0x14f0 1394ohci - ok
18:40:44.0975 0x14f0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:40:45.0051 0x14f0 ACPI - ok
18:40:45.0075 0x14f0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:40:45.0168 0x14f0 AcpiPmi - ok
18:40:45.0226 0x14f0 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:40:45.0270 0x14f0 AdobeARMservice - ok
18:40:45.0309 0x14f0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:40:45.0388 0x14f0 adp94xx - ok
18:40:45.0403 0x14f0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:40:45.0505 0x14f0 adpahci - ok
18:40:45.0528 0x14f0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:40:45.0561 0x14f0 adpu320 - ok
18:40:45.0584 0x14f0 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:40:45.0651 0x14f0 AeLookupSvc - ok
18:40:45.0728 0x14f0 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD C:\Windows\system32\drivers\afd.sys
18:40:45.0883 0x14f0 AFD - ok
18:40:45.0923 0x14f0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
18:40:45.0959 0x14f0 agp440 - ok
18:40:45.0978 0x14f0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:40:46.0034 0x14f0 ALG - ok
18:40:46.0068 0x14f0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:40:46.0101 0x14f0 aliide - ok
18:40:46.0127 0x14f0 [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:40:46.0178 0x14f0 AMD External Events Utility - ok
18:40:46.0232 0x14f0 AMD FUEL Service - ok
18:40:46.0250 0x14f0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:40:46.0284 0x14f0 amdide - ok
18:40:46.0317 0x14f0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:40:46.0363 0x14f0 AmdK8 - ok
18:40:46.0386 0x14f0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:40:46.0434 0x14f0 AmdPPM - ok
18:40:46.0473 0x14f0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:40:46.0514 0x14f0 amdsata - ok
18:40:46.0537 0x14f0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:40:46.0569 0x14f0 amdsbs - ok
18:40:46.0588 0x14f0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:40:46.0620 0x14f0 amdxata - ok
18:40:46.0682 0x14f0 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys
18:40:46.0791 0x14f0 AppID - ok
18:40:46.0814 0x14f0 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:40:46.0897 0x14f0 AppIDSvc - ok
18:40:46.0927 0x14f0 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
18:40:46.0980 0x14f0 Appinfo - ok
18:40:47.0010 0x14f0 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
18:40:47.0069 0x14f0 AppMgmt - ok
18:40:47.0115 0x14f0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
18:40:47.0143 0x14f0 arc - ok
18:40:47.0160 0x14f0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:40:47.0192 0x14f0 arcsas - ok
18:40:47.0218 0x14f0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:40:47.0281 0x14f0 AsyncMac - ok
18:40:47.0309 0x14f0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:40:47.0346 0x14f0 atapi - ok
18:40:47.0404 0x14f0 [ 37CB595C0AB20ECBFA5170D3185690DB, 23CA3DC63C35649021AAFF0721BA8A7DF546B5CD1530A35AAAC3E742A787A7D2 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
18:40:47.0491 0x14f0 AtiHDAudioService - ok
18:40:47.0686 0x14f0 [ 52BD95CAA9CAE8977FE043E9AD6D2D0E, E96DD29A2FCE1403340CB29D34F657DF17F483F62A2E8E24890F9BC4812B2971 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:40:48.0058 0x14f0 atikmdag - ok
18:40:48.0133 0x14f0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:40:48.0269 0x14f0 AudioEndpointBuilder - ok
18:40:48.0290 0x14f0 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:40:48.0417 0x14f0 AudioSrv - ok
18:40:48.0471 0x14f0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:40:48.0573 0x14f0 AxInstSV - ok
18:40:48.0628 0x14f0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:40:48.0746 0x14f0 b06bdrv - ok
18:40:48.0779 0x14f0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:40:48.0841 0x14f0 b57nd60a - ok
18:40:48.0874 0x14f0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:40:48.0912 0x14f0 BDESVC - ok
18:40:48.0941 0x14f0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:40:49.0100 0x14f0 Beep - ok
18:40:49.0150 0x14f0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
18:40:49.0303 0x14f0 BFE - ok
18:40:49.0344 0x14f0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
18:40:49.0576 0x14f0 BITS - ok
18:40:49.0604 0x14f0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:40:49.0655 0x14f0 blbdrive - ok
18:40:49.0699 0x14f0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:40:49.0740 0x14f0 bowser - ok
18:40:49.0758 0x14f0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:40:49.0815 0x14f0 BrFiltLo - ok
18:40:49.0821 0x14f0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:40:49.0863 0x14f0 BrFiltUp - ok
18:40:49.0896 0x14f0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:40:49.0935 0x14f0 Browser - ok
18:40:49.0969 0x14f0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:40:50.0028 0x14f0 Brserid - ok
18:40:50.0037 0x14f0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:40:50.0091 0x14f0 BrSerWdm - ok
18:40:50.0096 0x14f0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:40:50.0132 0x14f0 BrUsbMdm - ok
18:40:50.0138 0x14f0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:40:50.0179 0x14f0 BrUsbSer - ok
18:40:50.0185 0x14f0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:40:50.0241 0x14f0 BTHMODEM - ok
18:40:50.0267 0x14f0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:40:50.0317 0x14f0 bthserv - ok
18:40:50.0338 0x14f0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:40:50.0427 0x14f0 cdfs - ok
18:40:50.0470 0x14f0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:40:50.0521 0x14f0 cdrom - ok
18:40:50.0557 0x14f0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
18:40:50.0620 0x14f0 CertPropSvc - ok
18:40:50.0645 0x14f0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:40:50.0690 0x14f0 circlass - ok
18:40:50.0726 0x14f0 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
18:40:50.0830 0x14f0 CLFS - ok
18:40:50.0900 0x14f0 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:40:50.0974 0x14f0 clr_optimization_v2.0.50727_32 - ok
18:40:51.0008 0x14f0 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:40:51.0044 0x14f0 clr_optimization_v2.0.50727_64 - ok
18:40:51.0108 0x14f0 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:40:51.0149 0x14f0 clr_optimization_v4.0.30319_32 - ok
18:40:51.0189 0x14f0 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:40:51.0232 0x14f0 clr_optimization_v4.0.30319_64 - ok
18:40:51.0255 0x14f0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:40:51.0289 0x14f0 CmBatt - ok
18:40:51.0311 0x14f0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:40:51.0336 0x14f0 cmdide - ok
18:40:51.0372 0x14f0 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
18:40:51.0480 0x14f0 CNG - ok
18:40:51.0511 0x14f0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:40:51.0564 0x14f0 Compbatt - ok
18:40:51.0595 0x14f0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:40:51.0656 0x14f0 CompositeBus - ok
18:40:51.0667 0x14f0 COMSysApp - ok
18:40:51.0679 0x14f0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:40:51.0718 0x14f0 crcdisk - ok
18:40:51.0753 0x14f0 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:40:51.0799 0x14f0 CryptSvc - ok
18:40:51.0833 0x14f0 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
18:40:51.0931 0x14f0 CSC - ok
18:40:51.0989 0x14f0 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
18:40:52.0108 0x14f0 CscService - ok
18:40:52.0169 0x14f0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:40:52.0305 0x14f0 DcomLaunch - ok
18:40:52.0336 0x14f0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:40:52.0405 0x14f0 defragsvc - ok
18:40:52.0432 0x14f0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:40:52.0489 0x14f0 DfsC - ok
18:40:52.0528 0x14f0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:40:52.0583 0x14f0 Dhcp - ok
18:40:52.0613 0x14f0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
18:40:52.0671 0x14f0 discache - ok
18:40:52.0696 0x14f0 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:40:52.0726 0x14f0 Disk - ok
18:40:52.0784 0x14f0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:40:52.0873 0x14f0 Dnscache - ok
18:40:52.0908 0x14f0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
18:40:52.0987 0x14f0 dot3svc - ok
18:40:53.0035 0x14f0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:40:53.0128 0x14f0 DPS - ok
18:40:53.0182 0x14f0 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:40:53.0215 0x14f0 drmkaud - ok
18:40:53.0255 0x14f0 [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:40:53.0302 0x14f0 dtsoftbus01 - ok
18:40:53.0347 0x14f0 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:40:53.0415 0x14f0 DXGKrnl - ok
18:40:53.0442 0x14f0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:40:53.0504 0x14f0 EapHost - ok
18:40:53.0668 0x14f0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:40:53.0899 0x14f0 ebdrv - ok
18:40:53.0933 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS C:\Windows\System32\lsass.exe
18:40:53.0972 0x14f0 EFS - ok
18:40:54.0017 0x14f0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:40:54.0180 0x14f0 ehRecvr - ok
18:40:54.0217 0x14f0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:40:54.0258 0x14f0 ehSched - ok
18:40:54.0309 0x14f0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:40:54.0400 0x14f0 elxstor - ok
18:40:54.0423 0x14f0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:40:54.0467 0x14f0 ErrDev - ok
18:40:54.0573 0x14f0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:40:54.0727 0x14f0 EventSystem - ok
18:40:54.0761 0x14f0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
18:40:54.0848 0x14f0 exfat - ok
18:40:54.0957 0x14f0 [ 872A4DE096F1B4B5D0CDFA369ABF9388, D3F03DD7E01BC8A77CA315D534728F86DF5E49AAF83AA5E9ACA56989A2CFD67E ] F-Secure Filter D:\Program Files_K\F-Secure\Anti-Virus\Win2K\FSfilter.sys
18:40:54.0991 0x14f0 F-Secure Filter - ok
18:40:55.0017 0x14f0 [ 36A1B6F894F6B3638B12EB8AB4431271, 0ECE89B392FF20C8DA236005AE9740D27FCD7FA56B8D8473657F8E514448714E ] F-Secure Gatekeeper D:\Program Files_K\F-Secure\Anti-Virus\minifilter\fsgk.sys
18:40:55.0058 0x14f0 F-Secure Gatekeeper - ok
18:40:55.0101 0x14f0 [ A081425C6A0286AFFCCBE1F7EE1F9F23, 12DC608721588A461392C4FE35E3959E47FDB18DE7FF0B5D39629CE4D267B3F9 ] F-Secure Gatekeeper Handler Starter D:\Program Files_K\F-Secure\Anti-Virus\fsgk32st.exe
18:40:55.0156 0x14f0 F-Secure Gatekeeper Handler Starter - ok
18:40:55.0184 0x14f0 [ 1C8AB0D7D5451C58962940539F913473, 356D2FE11A49B68BF8E4CD9477CB9F5ECEBCD539200F17D464653D31C721D419 ] F-Secure HIPS D:\Program Files_K\F-Secure\HIPS\drivers\fshs.sys
18:40:55.0212 0x14f0 F-Secure HIPS - ok
18:40:55.0240 0x14f0 [ 504F83BE6D94346E5288FC5881A38A9B, 6D746EE077547E210044FA20FF6A9D74B0636B68BCF415E6ADCA269B2E43C171 ] F-Secure Recognizer D:\Program Files_K\F-Secure\Anti-Virus\Win2K\FSrec.sys
18:40:55.0272 0x14f0 F-Secure Recognizer - ok
18:40:55.0288 0x14f0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:40:55.0357 0x14f0 fastfat - ok
18:40:55.0419 0x14f0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:40:55.0538 0x14f0 Fax - ok
18:40:55.0562 0x14f0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:40:55.0593 0x14f0 fdc - ok
18:40:55.0628 0x14f0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:40:55.0691 0x14f0 fdPHost - ok
18:40:55.0714 0x14f0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:40:55.0775 0x14f0 FDResPub - ok
18:40:55.0794 0x14f0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:40:55.0828 0x14f0 FileInfo - ok
18:40:55.0847 0x14f0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:40:55.0908 0x14f0 Filetrace - ok
18:40:55.0920 0x14f0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:40:55.0948 0x14f0 flpydisk - ok
18:40:55.0997 0x14f0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:40:56.0038 0x14f0 FltMgr - ok
18:40:56.0153 0x14f0 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
18:40:56.0327 0x14f0 FontCache - ok
18:40:56.0379 0x14f0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:40:56.0416 0x14f0 FontCache3.0.0.0 - ok
18:40:56.0453 0x14f0 [ F59F2C574AA5D84477EB89F87C938F16, 0F3905D56440F9216911F7338061CFB8BEF243DDF9DC1E5D57254874EBBFA629 ] fsbts C:\Windows\system32\Drivers\fsbts.sys
18:40:56.0482 0x14f0 fsbts - ok
18:40:56.0510 0x14f0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:40:56.0537 0x14f0 FsDepends - ok
18:40:56.0627 0x14f0 [ 4FB994AA29BE9D11F17E579CF9941093, E643EFEF19A0C2B6CB01CD27A81412A163512870FA47D48B06915D35737C8F8E ] FSDFWD D:\Program Files_K\F-Secure\FWES\Program\fsdfwd.exe
18:40:56.0717 0x14f0 FSDFWD - ok
18:40:56.0747 0x14f0 [ 81491719AD2F5BB3563334F87C82F734, 1A2628BD459B0BECC0FB842E83B265D1E6D6263E66EAB321ED697D23C500062A ] FSES C:\Windows\system32\drivers\fses.sys
18:40:56.0773 0x14f0 FSES - ok
18:40:56.0794 0x14f0 [ B5B3D6EB4F40ABFC4F28BE0E5B5538E5, 6C84AEFEA5F4A3956B613ABEB477D3D9A29A686482C22B4926921DE674288D19 ] FSFW C:\Windows\system32\drivers\fsdfw.sys
18:40:56.0845 0x14f0 FSFW - ok
18:40:56.0904 0x14f0 [ 7F0C12D9C38A51319687132C41A36468, 174034ACF350292C520DF6F56AE3792865B1D6A967909066C8B97C775EC38869 ] FSMA D:\Program Files_K\F-Secure\Common\FSMA32.EXE
18:40:56.0955 0x14f0 FSMA - ok
18:40:57.0009 0x14f0 [ 45303CDBC1FD8F8D371E726BF126F771, AEBAD185AD6DA8648900C840DE64C2D83E94515EC0E08586C52BF64C8C2E4B6F ] FSORSPClient D:\Program Files_K\F-Secure\ORSP Client\fsorsp.exe
18:40:57.0101 0x14f0 FSORSPClient - ok
18:40:57.0121 0x14f0 [ 8A920E6CFF3163C843C06E14CF787BD8, C07E99BD6784561C4DD6AE8CC3DD1603841DC5BB9198FB841C1335CC57F992CE ] fsvista D:\Program Files_K\F-Secure\Anti-Virus\minifilter\fsvista.sys
18:40:57.0147 0x14f0 fsvista - ok
18:40:57.0174 0x14f0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:40:57.0201 0x14f0 Fs_Rec - ok
18:40:57.0249 0x14f0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:40:57.0292 0x14f0 fvevol - ok
18:40:57.0319 0x14f0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:40:57.0347 0x14f0 gagp30kx - ok
18:40:57.0395 0x14f0 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
18:40:57.0540 0x14f0 gpsvc - ok
18:40:57.0569 0x14f0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:40:57.0617 0x14f0 hcw85cir - ok
18:40:57.0676 0x14f0 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:40:57.0767 0x14f0 HdAudAddService - ok
18:40:57.0787 0x14f0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:40:57.0824 0x14f0 HDAudBus - ok
18:40:57.0839 0x14f0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:40:57.0885 0x14f0 HidBatt - ok
18:40:57.0907 0x14f0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:40:57.0948 0x14f0 HidBth - ok
18:40:57.0954 0x14f0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:40:57.0991 0x14f0 HidIr - ok
18:40:58.0016 0x14f0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
18:40:58.0068 0x14f0 hidserv - ok
18:40:58.0121 0x14f0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:40:58.0147 0x14f0 HidUsb - ok
18:40:58.0181 0x14f0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:40:58.0239 0x14f0 hkmsvc - ok
18:40:58.0276 0x14f0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:40:58.0333 0x14f0 HomeGroupListener - ok
18:40:58.0366 0x14f0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:40:58.0411 0x14f0 HomeGroupProvider - ok
18:40:58.0450 0x14f0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:40:58.0479 0x14f0 HpSAMD - ok
18:40:58.0542 0x14f0 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:40:58.0672 0x14f0 HTTP - ok
18:40:58.0696 0x14f0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:40:58.0721 0x14f0 hwpolicy - ok
18:40:58.0740 0x14f0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:40:58.0776 0x14f0 i8042prt - ok
18:40:58.0802 0x14f0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:40:58.0905 0x14f0 iaStorV - ok
18:40:59.0003 0x14f0 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:40:59.0077 0x14f0 idsvc - ok
18:40:59.0090 0x14f0 IEEtwCollectorService - ok
18:40:59.0112 0x14f0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:40:59.0138 0x14f0 iirsp - ok
18:40:59.0192 0x14f0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
18:40:59.0260 0x14f0 IKEEXT - ok
18:40:59.0279 0x14f0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:40:59.0324 0x14f0 intelide - ok
18:40:59.0350 0x14f0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:40:59.0405 0x14f0 intelppm - ok
18:40:59.0432 0x14f0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:40:59.0486 0x14f0 IPBusEnum - ok
18:40:59.0507 0x14f0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:40:59.0566 0x14f0 IpFilterDriver - ok
18:40:59.0597 0x14f0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:40:59.0688 0x14f0 iphlpsvc - ok
18:40:59.0714 0x14f0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:40:59.0754 0x14f0 IPMIDRV - ok
18:40:59.0778 0x14f0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:40:59.0838 0x14f0 IPNAT - ok
18:40:59.0873 0x14f0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:40:59.0964 0x14f0 IRENUM - ok
18:40:59.0984 0x14f0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:41:00.0018 0x14f0 isapnp - ok
18:41:00.0045 0x14f0 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:41:00.0085 0x14f0 iScsiPrt - ok
18:41:00.0099 0x14f0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:41:00.0127 0x14f0 kbdclass - ok
18:41:00.0165 0x14f0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:41:00.0205 0x14f0 kbdhid - ok
18:41:00.0218 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso C:\Windows\system32\lsass.exe
18:41:00.0248 0x14f0 KeyIso - ok
18:41:00.0279 0x14f0 [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:41:00.0309 0x14f0 KSecDD - ok
18:41:00.0330 0x14f0 [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:41:00.0362 0x14f0 KSecPkg - ok
18:41:00.0386 0x14f0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:41:00.0447 0x14f0 ksthunk - ok
18:41:00.0475 0x14f0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:41:00.0596 0x14f0 KtmRm - ok
18:41:00.0650 0x14f0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:41:00.0773 0x14f0 LanmanServer - ok
18:41:00.0808 0x14f0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:41:00.0888 0x14f0 LanmanWorkstation - ok
18:41:00.0923 0x14f0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:41:00.0981 0x14f0 lltdio - ok
18:41:01.0011 0x14f0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:41:01.0111 0x14f0 lltdsvc - ok
18:41:01.0122 0x14f0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:41:01.0185 0x14f0 lmhosts - ok
18:41:01.0207 0x14f0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:41:01.0236 0x14f0 LSI_FC - ok
18:41:01.0254 0x14f0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:41:01.0282 0x14f0 LSI_SAS - ok
18:41:01.0301 0x14f0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:41:01.0329 0x14f0 LSI_SAS2 - ok
18:41:01.0337 0x14f0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:41:01.0368 0x14f0 LSI_SCSI - ok
18:41:01.0388 0x14f0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
18:41:01.0453 0x14f0 luafv - ok
18:41:01.0490 0x14f0 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
18:41:01.0528 0x14f0 MBAMProtector - ok
18:41:01.0575 0x14f0 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:41:01.0686 0x14f0 MBAMScheduler - ok
18:41:01.0726 0x14f0 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:41:01.0901 0x14f0 MBAMService - ok
18:41:01.0931 0x14f0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:41:01.0971 0x14f0 Mcx2Svc - ok
18:41:01.0999 0x14f0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:41:02.0025 0x14f0 megasas - ok
18:41:02.0058 0x14f0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:41:02.0094 0x14f0 MegaSR - ok
18:41:02.0148 0x14f0 [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
18:41:02.0191 0x14f0 Microsoft Office Groove Audit Service - ok
18:41:02.0217 0x14f0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:41:02.0280 0x14f0 MMCSS - ok
18:41:02.0293 0x14f0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
18:41:02.0351 0x14f0 Modem - ok
18:41:02.0389 0x14f0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:41:02.0430 0x14f0 monitor - ok
18:41:02.0450 0x14f0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
18:41:02.0478 0x14f0 mouclass - ok
18:41:02.0498 0x14f0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:41:02.0534 0x14f0 mouhid - ok
18:41:02.0558 0x14f0 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:41:02.0599 0x14f0 mountmgr - ok
18:41:02.0663 0x14f0 [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:41:02.0756 0x14f0 MozillaMaintenance - ok
18:41:02.0785 0x14f0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
18:41:02.0826 0x14f0 mpio - ok
18:41:02.0848 0x14f0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:41:02.0898 0x14f0 mpsdrv - ok
18:41:02.0947 0x14f0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:41:03.0077 0x14f0 MpsSvc - ok
18:41:03.0112 0x14f0 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:41:03.0150 0x14f0 MRxDAV - ok
18:41:03.0178 0x14f0 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:41:03.0223 0x14f0 mrxsmb - ok
18:41:03.0243 0x14f0 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:41:03.0318 0x14f0 mrxsmb10 - ok
18:41:03.0360 0x14f0 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:41:03.0446 0x14f0 mrxsmb20 - ok
18:41:03.0460 0x14f0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:41:03.0525 0x14f0 msahci - ok
18:41:03.0564 0x14f0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:41:03.0601 0x14f0 msdsm - ok
18:41:03.0623 0x14f0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:41:03.0671 0x14f0 MSDTC - ok
18:41:03.0698 0x14f0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:41:03.0746 0x14f0 Msfs - ok
18:41:03.0761 0x14f0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:41:03.0809 0x14f0 mshidkmdf - ok
18:41:03.0824 0x14f0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:41:03.0848 0x14f0 msisadrv - ok
18:41:03.0878 0x14f0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:41:03.0938 0x14f0 MSiSCSI - ok
18:41:03.0943 0x14f0 msiserver - ok
18:41:03.0965 0x14f0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:41:04.0018 0x14f0 MSKSSRV - ok
18:41:04.0028 0x14f0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:41:04.0097 0x14f0 MSPCLOCK - ok
18:41:04.0106 0x14f0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:41:04.0233 0x14f0 MSPQM - ok
18:41:04.0278 0x14f0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:41:04.0363 0x14f0 MsRPC - ok
18:41:04.0398 0x14f0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:41:04.0448 0x14f0 mssmbios - ok
18:41:04.0467 0x14f0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:41:04.0529 0x14f0 MSTEE - ok
18:41:04.0534 0x14f0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:41:04.0569 0x14f0 MTConfig - ok
18:41:04.0597 0x14f0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:41:04.0651 0x14f0 Mup - ok
18:41:04.0701 0x14f0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:41:04.0802 0x14f0 napagent - ok
18:41:04.0839 0x14f0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:41:04.0888 0x14f0 NativeWifiP - ok
18:41:04.0996 0x14f0 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
18:41:05.0226 0x14f0 NDIS - ok
18:41:05.0258 0x14f0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:41:05.0315 0x14f0 NdisCap - ok
18:41:05.0345 0x14f0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:41:05.0403 0x14f0 NdisTapi - ok
18:41:05.0432 0x14f0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:41:05.0490 0x14f0 Ndisuio - ok
18:41:05.0523 0x14f0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:41:05.0587 0x14f0 NdisWan - ok
18:41:05.0612 0x14f0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:41:05.0661 0x14f0 NDProxy - ok
18:41:05.0689 0x14f0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:41:05.0750 0x14f0 NetBIOS - ok
18:41:05.0779 0x14f0 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:41:05.0849 0x14f0 NetBT - ok
18:41:05.0862 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon C:\Windows\system32\lsass.exe
18:41:05.0889 0x14f0 Netlogon - ok
18:41:05.0927 0x14f0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:41:06.0021 0x14f0 Netman - ok
18:41:06.0051 0x14f0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:41:06.0142 0x14f0 netprofm - ok
18:41:06.0171 0x14f0 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:41:06.0204 0x14f0 NetTcpPortSharing - ok
18:41:06.0228 0x14f0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:41:06.0255 0x14f0 nfrd960 - ok
18:41:06.0291 0x14f0 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:41:06.0339 0x14f0 NlaSvc - ok
18:41:06.0345 0x14f0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:41:06.0414 0x14f0 Npfs - ok
18:41:06.0439 0x14f0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
18:41:06.0496 0x14f0 nsi - ok
18:41:06.0510 0x14f0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:41:06.0557 0x14f0 nsiproxy - ok
18:41:06.0672 0x14f0 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:41:06.0900 0x14f0 Ntfs - ok
18:41:06.0917 0x14f0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:41:06.0977 0x14f0 Null - ok
18:41:07.0012 0x14f0 [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
18:41:07.0071 0x14f0 NVENETFD - ok
18:41:07.0119 0x14f0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:41:07.0177 0x14f0 nvraid - ok
18:41:07.0197 0x14f0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:41:07.0229 0x14f0 nvstor - ok
18:41:07.0254 0x14f0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:41:07.0286 0x14f0 nv_agp - ok
18:41:07.0330 0x14f0 [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:41:07.0407 0x14f0 odserv - ok
18:41:07.0432 0x14f0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:41:07.0466 0x14f0 ohci1394 - ok
18:41:07.0486 0x14f0 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:41:07.0555 0x14f0 ose - ok
18:41:07.0612 0x14f0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:41:07.0691 0x14f0 p2pimsvc - ok
18:41:07.0720 0x14f0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
18:41:07.0797 0x14f0 p2psvc - ok
18:41:07.0832 0x14f0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:41:07.0902 0x14f0 Parport - ok
18:41:07.0936 0x14f0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:41:07.0979 0x14f0 partmgr - ok
18:41:07.0992 0x14f0 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
18:41:08.0048 0x14f0 PcaSvc - ok
18:41:08.0071 0x14f0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
18:41:08.0107 0x14f0 pci - ok
18:41:08.0137 0x14f0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:41:08.0161 0x14f0 pciide - ok
18:41:08.0190 0x14f0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:41:08.0242 0x14f0 pcmcia - ok
18:41:08.0263 0x14f0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:41:08.0292 0x14f0 pcw - ok
18:41:08.0329 0x14f0 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:41:08.0466 0x14f0 PEAUTH - ok
18:41:08.0562 0x14f0 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:41:08.0690 0x14f0 PeerDistSvc - ok
18:41:08.0743 0x14f0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:41:08.0782 0x14f0 PerfHost - ok
18:41:08.0853 0x14f0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
18:41:09.0004 0x14f0 pla - ok
18:41:09.0110 0x14f0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:41:09.0216 0x14f0 PlugPlay - ok
18:41:09.0249 0x14f0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:41:09.0287 0x14f0 PNRPAutoReg - ok
18:41:09.0312 0x14f0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:41:09.0381 0x14f0 PNRPsvc - ok
18:41:09.0422 0x14f0 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:41:09.0518 0x14f0 PolicyAgent - ok
18:41:09.0544 0x14f0 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
18:41:09.0609 0x14f0 Power - ok
18:41:09.0646 0x14f0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:41:09.0711 0x14f0 PptpMiniport - ok
18:41:09.0733 0x14f0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:41:09.0771 0x14f0 Processor - ok
18:41:09.0805 0x14f0 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll
18:41:09.0841 0x14f0 ProfSvc - ok
18:41:09.0858 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
18:41:09.0885 0x14f0 ProtectedStorage - ok
18:41:09.0927 0x14f0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:41:09.0991 0x14f0 Psched - ok
18:41:10.0025 0x14f0 [ 543A4EF0923BF70D126625B034EF25AF, 9CC82C5221F11850419A796D48D5452B3DEE0C8E8E85A818F4AAA869673F9740 ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
18:41:10.0075 0x14f0 PSI_SVC_2 - ok
18:41:10.0130 0x14f0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:41:10.0270 0x14f0 ql2300 - ok
18:41:10.0288 0x14f0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:41:10.0317 0x14f0 ql40xx - ok
18:41:10.0351 0x14f0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:41:10.0391 0x14f0 QWAVE - ok
18:41:10.0399 0x14f0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:41:10.0437 0x14f0 QWAVEdrv - ok
18:41:10.0449 0x14f0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:41:10.0500 0x14f0 RasAcd - ok
18:41:10.0522 0x14f0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:41:10.0573 0x14f0 RasAgileVpn - ok
18:41:10.0589 0x14f0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:41:10.0668 0x14f0 RasAuto - ok
18:41:10.0702 0x14f0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:41:10.0765 0x14f0 Rasl2tp - ok
18:41:10.0785 0x14f0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
18:41:10.0869 0x14f0 RasMan - ok
18:41:10.0890 0x14f0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:41:10.0949 0x14f0 RasPppoe - ok
18:41:10.0972 0x14f0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:41:11.0032 0x14f0 RasSstp - ok
18:41:11.0066 0x14f0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:41:11.0131 0x14f0 rdbss - ok
18:41:11.0152 0x14f0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:41:11.0195 0x14f0 rdpbus - ok
18:41:11.0226 0x14f0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:41:11.0306 0x14f0 RDPCDD - ok
18:41:11.0341 0x14f0 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:41:11.0377 0x14f0 RDPDR - ok
18:41:11.0410 0x14f0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:41:11.0456 0x14f0 RDPENCDD - ok
18:41:11.0480 0x14f0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:41:11.0546 0x14f0 RDPREFMP - ok
18:41:11.0594 0x14f0 [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:41:11.0644 0x14f0 RdpVideoMiniport - ok
18:41:11.0676 0x14f0 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:41:11.0740 0x14f0 RDPWD - ok
18:41:11.0769 0x14f0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:41:11.0824 0x14f0 rdyboost - ok
18:41:11.0850 0x14f0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:41:11.0926 0x14f0 RemoteAccess - ok
18:41:11.0953 0x14f0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:41:12.0008 0x14f0 RemoteRegistry - ok
18:41:12.0035 0x14f0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:41:12.0092 0x14f0 RpcEptMapper - ok
18:41:12.0109 0x14f0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:41:12.0155 0x14f0 RpcLocator - ok
18:41:12.0196 0x14f0 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
18:41:12.0292 0x14f0 RpcSs - ok
18:41:12.0329 0x14f0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:41:12.0391 0x14f0 rspndr - ok
18:41:12.0419 0x14f0 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:41:12.0510 0x14f0 s3cap - ok
18:41:12.0540 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs C:\Windows\system32\lsass.exe
18:41:12.0602 0x14f0 SamSs - ok
18:41:12.0621 0x14f0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:41:12.0655 0x14f0 sbp2port - ok
18:41:12.0682 0x14f0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:41:12.0742 0x14f0 SCardSvr - ok
18:41:12.0769 0x14f0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:41:12.0818 0x14f0 scfilter - ok
18:41:12.0877 0x14f0 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
18:41:13.0049 0x14f0 Schedule - ok
18:41:13.0076 0x14f0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:41:13.0123 0x14f0 SCPolicySvc - ok
18:41:13.0158 0x14f0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:41:13.0191 0x14f0 SDRSVC - ok
18:41:13.0226 0x14f0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:41:13.0290 0x14f0 secdrv - ok
18:41:13.0307 0x14f0 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
18:41:13.0362 0x14f0 seclogon - ok
18:41:13.0383 0x14f0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
18:41:13.0441 0x14f0 SENS - ok
18:41:13.0455 0x14f0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:41:13.0485 0x14f0 SensrSvc - ok
18:41:13.0511 0x14f0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:41:13.0547 0x14f0 Serenum - ok
18:41:13.0580 0x14f0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:41:13.0639 0x14f0 Serial - ok
18:41:13.0663 0x14f0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:41:13.0700 0x14f0 sermouse - ok
18:41:13.0740 0x14f0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
18:41:13.0801 0x14f0 SessionEnv - ok
18:41:13.0827 0x14f0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:41:13.0865 0x14f0 sffdisk - ok
18:41:13.0883 0x14f0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:41:13.0922 0x14f0 sffp_mmc - ok
18:41:13.0941 0x14f0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:41:13.0982 0x14f0 sffp_sd - ok
18:41:14.0006 0x14f0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:41:14.0044 0x14f0 sfloppy - ok
18:41:14.0075 0x14f0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:41:14.0228 0x14f0 SharedAccess - ok
18:41:14.0279 0x14f0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:41:14.0399 0x14f0 ShellHWDetection - ok
18:41:14.0428 0x14f0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:41:14.0521 0x14f0 SiSRaid2 - ok
18:41:14.0527 0x14f0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:41:14.0612 0x14f0 SiSRaid4 - ok
18:41:14.0651 0x14f0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:41:14.0712 0x14f0 Smb - ok
18:41:14.0752 0x14f0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:41:14.0832 0x14f0 SNMPTRAP - ok
18:41:14.0882 0x14f0 [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
18:41:14.0945 0x14f0 Sony PC Companion - ok
18:41:14.0961 0x14f0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:41:14.0987 0x14f0 spldr - ok
18:41:15.0034 0x14f0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
18:41:15.0128 0x14f0 Spooler - ok
18:41:15.0247 0x14f0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
18:41:15.0572 0x14f0 sppsvc - ok
18:41:15.0625 0x14f0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:41:15.0685 0x14f0 sppuinotify - ok
18:41:15.0726 0x14f0 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:41:15.0829 0x14f0 srv - ok
18:41:15.0858 0x14f0 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:41:15.0948 0x14f0 srv2 - ok
18:41:15.0969 0x14f0 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:41:16.0015 0x14f0 srvnet - ok
18:41:16.0046 0x14f0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:41:16.0107 0x14f0 SSDPSRV - ok
18:41:16.0127 0x14f0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:41:16.0176 0x14f0 SstpSvc - ok
18:41:16.0208 0x14f0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:41:16.0233 0x14f0 stexstor - ok
18:41:16.0283 0x14f0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:41:16.0374 0x14f0 stisvc - ok
18:41:16.0400 0x14f0 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:41:16.0448 0x14f0 storflt - ok
18:41:16.0469 0x14f0 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:41:16.0543 0x14f0 storvsc - ok
18:41:16.0560 0x14f0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
18:41:16.0587 0x14f0 swenum - ok
18:41:16.0625 0x14f0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
18:41:16.0727 0x14f0 swprv - ok
18:41:16.0739 0x14f0 Synth3dVsc - ok
18:41:16.0817 0x14f0 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
18:41:17.0003 0x14f0 SysMain - ok
18:41:17.0054 0x14f0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:41:17.0098 0x14f0 TabletInputService - ok
18:41:17.0128 0x14f0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
18:41:17.0222 0x14f0 TapiSrv - ok
18:41:17.0248 0x14f0 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:41:17.0297 0x14f0 TBS - ok
18:41:17.0379 0x14f0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:41:17.0673 0x14f0 Tcpip - ok
18:41:17.0769 0x14f0 [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:41:17.0943 0x14f0 TCPIP6 - ok
18:41:17.0969 0x14f0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:41:18.0006 0x14f0 tcpipreg - ok
18:41:18.0036 0x14f0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:41:18.0072 0x14f0 TDPIPE - ok
18:41:18.0096 0x14f0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:41:18.0127 0x14f0 TDTCP - ok
18:41:18.0154 0x14f0 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:41:18.0207 0x14f0 tdx - ok
18:41:18.0448 0x14f0 [ F67C21CC4195F6AFC447418FE163E156, 01D245952C1AF2B365DBA6C36AFE0FFB2332480B6A1D7D4B43A0DE4FB7535B0B ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
18:41:19.0133 0x14f0 TeamViewer8 - ok
18:41:19.0158 0x14f0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
18:41:19.0185 0x14f0 TermDD - ok
18:41:19.0235 0x14f0 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll
18:41:19.0349 0x14f0 TermService - ok
18:41:19.0389 0x14f0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:41:19.0525 0x14f0 Themes - ok
18:41:19.0541 0x14f0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:41:19.0601 0x14f0 THREADORDER - ok
18:41:19.0624 0x14f0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:41:19.0697 0x14f0 TrkWks - ok
18:41:19.0748 0x14f0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:41:19.0803 0x14f0 TrustedInstaller - ok
18:41:19.0819 0x14f0 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:41:19.0858 0x14f0 tssecsrv - ok
18:41:19.0885 0x14f0 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:41:19.0924 0x14f0 TsUsbFlt - ok
18:41:19.0929 0x14f0 tsusbhub - ok
18:41:19.0973 0x14f0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:41:20.0089 0x14f0 tunnel - ok
18:41:20.0116 0x14f0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:41:20.0147 0x14f0 uagp35 - ok
18:41:20.0179 0x14f0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:41:20.0277 0x14f0 udfs - ok
18:41:20.0304 0x14f0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:41:20.0358 0x14f0 UI0Detect - ok
18:41:20.0382 0x14f0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:41:20.0411 0x14f0 uliagpkx - ok
18:41:20.0439 0x14f0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
18:41:20.0476 0x14f0 umbus - ok
18:41:20.0489 0x14f0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:41:20.0514 0x14f0 UmPass - ok
18:41:20.0549 0x14f0 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
18:41:20.0585 0x14f0 UmRdpService - ok
18:41:20.0609 0x14f0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:41:20.0704 0x14f0 upnphost - ok
18:41:20.0734 0x14f0 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:41:20.0775 0x14f0 usbaudio - ok
18:41:20.0803 0x14f0 [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:41:20.0833 0x14f0 usbccgp - ok
18:41:20.0863 0x14f0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:41:20.0902 0x14f0 usbcir - ok
18:41:20.0918 0x14f0 [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:41:20.0944 0x14f0 usbehci - ok
18:41:20.0981 0x14f0 [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:41:21.0055 0x14f0 usbhub - ok
18:41:21.0069 0x14f0 [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:41:21.0104 0x14f0 usbohci - ok
18:41:21.0137 0x14f0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:41:21.0206 0x14f0 usbprint - ok
18:41:21.0236 0x14f0 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:41:21.0294 0x14f0 USBSTOR - ok
18:41:21.0311 0x14f0 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:41:21.0354 0x14f0 usbuhci - ok
18:41:21.0398 0x14f0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:41:21.0432 0x14f0 usbvideo - ok
18:41:21.0456 0x14f0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
18:41:21.0514 0x14f0 UxSms - ok
18:41:21.0530 0x14f0 [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc C:\Windows\system32\lsass.exe
18:41:21.0561 0x14f0 VaultSvc - ok
18:41:21.0588 0x14f0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:41:21.0614 0x14f0 vdrvroot - ok
18:41:21.0651 0x14f0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
18:41:21.0750 0x14f0 vds - ok
18:41:21.0782 0x14f0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:41:21.0811 0x14f0 vga - ok
18:41:21.0831 0x14f0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:41:21.0898 0x14f0 VgaSave - ok
18:41:21.0909 0x14f0 VGPU - ok
18:41:21.0942 0x14f0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:41:21.0994 0x14f0 vhdmp - ok
18:41:22.0021 0x14f0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:41:22.0046 0x14f0 viaide - ok
18:41:22.0069 0x14f0 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:41:22.0105 0x14f0 vmbus - ok
18:41:22.0129 0x14f0 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:41:22.0165 0x14f0 VMBusHID - ok
18:41:22.0179 0x14f0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:41:22.0226 0x14f0 volmgr - ok
18:41:22.0258 0x14f0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:41:22.0353 0x14f0 volmgrx - ok
18:41:22.0399 0x14f0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:41:22.0481 0x14f0 volsnap - ok
18:41:22.0509 0x14f0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:41:22.0541 0x14f0 vsmraid - ok
18:41:22.0615 0x14f0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
18:41:22.0808 0x14f0 VSS - ok
18:41:22.0833 0x14f0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:41:22.0869 0x14f0 vwifibus - ok
18:41:22.0904 0x14f0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
18:41:23.0001 0x14f0 W32Time - ok
18:41:23.0035 0x14f0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:41:23.0080 0x14f0 WacomPen - ok
18:41:23.0118 0x14f0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:41:23.0169 0x14f0 WANARP - ok
18:41:23.0193 0x14f0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:41:23.0243 0x14f0 Wanarpv6 - ok
18:41:23.0330 0x14f0 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:41:23.0505 0x14f0 WatAdminSvc - ok
18:41:23.0604 0x14f0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
18:41:23.0720 0x14f0 wbengine - ok
18:41:23.0755 0x14f0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:41:23.0795 0x14f0 WbioSrvc - ok
18:41:23.0832 0x14f0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:41:23.0915 0x14f0 wcncsvc - ok
18:41:23.0931 0x14f0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:41:23.0966 0x14f0 WcsPlugInService - ok
18:41:24.0000 0x14f0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:41:24.0027 0x14f0 Wd - ok
18:41:24.0077 0x14f0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:41:24.0193 0x14f0 Wdf01000 - ok
18:41:24.0228 0x14f0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:41:24.0290 0x14f0 WdiServiceHost - ok
18:41:24.0297 0x14f0 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:41:24.0339 0x14f0 WdiSystemHost - ok
18:41:24.0360 0x14f0 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
18:41:24.0408 0x14f0 WebClient - ok
18:41:24.0435 0x14f0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:41:24.0503 0x14f0 Wecsvc - ok
18:41:24.0519 0x14f0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:41:24.0584 0x14f0 wercplsupport - ok
18:41:24.0619 0x14f0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:41:24.0685 0x14f0 WerSvc - ok
18:41:24.0717 0x14f0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:41:24.0764 0x14f0 WfpLwf - ok
18:41:24.0783 0x14f0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:41:24.0809 0x14f0 WIMMount - ok
18:41:24.0832 0x14f0 WinDefend - ok
18:41:24.0842 0x14f0 WinHttpAutoProxySvc - ok
18:41:24.0879 0x14f0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:41:24.0960 0x14f0 Winmgmt - ok
18:41:25.0042 0x14f0 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll
18:41:25.0236 0x14f0 WinRM - ok
18:41:25.0304 0x14f0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:41:25.0360 0x14f0 WinUsb - ok
18:41:25.0412 0x14f0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:41:25.0540 0x14f0 Wlansvc - ok
18:41:25.0560 0x14f0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:41:25.0595 0x14f0 WmiAcpi - ok
18:41:25.0626 0x14f0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:41:25.0671 0x14f0 wmiApSrv - ok
18:41:25.0699 0x14f0 WMPNetworkSvc - ok
18:41:25.0719 0x14f0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:41:25.0746 0x14f0 WPCSvc - ok
18:41:25.0778 0x14f0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:41:25.0812 0x14f0 WPDBusEnum - ok
18:41:25.0840 0x14f0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:41:25.0955 0x14f0 ws2ifsl - ok
18:41:25.0978 0x14f0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
18:41:26.0035 0x14f0 wscsvc - ok
18:41:26.0040 0x14f0 WSearch - ok
18:41:26.0140 0x14f0 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll
18:41:26.0266 0x14f0 wuauserv - ok
18:41:26.0303 0x14f0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:41:26.0338 0x14f0 WudfPf - ok
18:41:26.0375 0x14f0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:41:26.0415 0x14f0 WUDFRd - ok
18:41:26.0435 0x14f0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:41:26.0479 0x14f0 wudfsvc - ok
18:41:26.0511 0x14f0 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:41:26.0548 0x14f0 WwanSvc - ok
18:41:26.0553 0x14f0 ================ Scan global ===============================
18:41:26.0574 0x14f0 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
18:41:26.0604 0x14f0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:41:26.0618 0x14f0 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:41:26.0640 0x14f0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
18:41:26.0689 0x14f0 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
18:41:26.0699 0x14f0 [ Global ] - ok
18:41:26.0699 0x14f0 ================ Scan MBR ==================================
18:41:26.0710 0x14f0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:41:27.0267 0x14f0 \Device\Harddisk0\DR0 - ok
18:41:27.0657 0x14f0 [ 9ECD6A6563309C153732EB5F8CCDAAE9 ] \Device\Harddisk1\DR2
18:41:27.0660 0x14f0 \Device\Harddisk1\DR2 - detected Rootkit.Boot.Sinowal.b ( 0 )
18:41:27.0660 0x14f0 \Device\Harddisk1\DR2 ( Rootkit.Boot.Sinowal.b ) - infected
18:41:30.0542 0x14f0 ================ Scan VBR ==================================
18:41:30.0546 0x14f0 [ 067A749DD45E967EB61594027ABFA6B4 ] \Device\Harddisk0\DR0\Partition1
18:41:30.0549 0x14f0 \Device\Harddisk0\DR0\Partition1 - ok
18:41:30.0557 0x14f0 [ 7BB488D6369EEF849034AA244134E3F4 ] \Device\Harddisk0\DR0\Partition2
18:41:30.0560 0x14f0 \Device\Harddisk0\DR0\Partition2 - ok
18:41:30.0580 0x14f0 [ AD1B7B80F63F50B8D5ECB26419358F38 ] \Device\Harddisk0\DR0\Partition3
18:41:30.0582 0x14f0 \Device\Harddisk0\DR0\Partition3 - ok
18:41:30.0587 0x14f0 [ B503700CC1FE84F9CBA5AAA8A638BD06 ] \Device\Harddisk1\DR2\Partition1
18:41:30.0588 0x14f0 \Device\Harddisk1\DR2\Partition1 - ok
18:41:30.0589 0x14f0 Waiting for KSN requests completion. In queue: 70
18:41:31.0589 0x14f0 Waiting for KSN requests completion. In queue: 70
18:41:32.0656 0x14f0 AV detected via SS2: F-Secure Anti-Virus 2011 10.51, D:\Program Files_K\F-Secure\Anti-Virus\fsavwsch.exe ( 9.10.15260.0 ), 0x41000 ( enabled : updated )
18:41:32.0664 0x14f0 Win FW state via NFP2: enabled
18:41:35.0354 0x14f0 ============================================================
18:41:35.0354 0x14f0 Scan finished
18:41:35.0354 0x14f0 ============================================================
18:41:35.0363 0x049c Detected object count: 1
18:41:35.0363 0x049c Actual detected object count: 1
18:41:54.0531 0x049c \Device\Harddisk1\DR2 ( Rootkit.Boot.Sinowal.b ) - skipped by user
18:41:54.0532 0x049c \Device\Harddisk1\DR2 ( Rootkit.Boot.Sinowal.b ) - User select action: Skip
Re: Problém s virem na ext. HDd - .MBR
Tak jsem vše provedl jak bylo řečeno( jen k restartu jsem nebyl vyzván, nýbrž musel jsem jej restartovat sám) a F-Secure mi již nic nehlásí, a mbrscan dump files byly uploadnuty na virustotal jež také nic nehlásí. ( detail v mrbscan mam u ext. disku jako MBR CODE : XP mrb code. Je to dobré ?
Je tedy tento nepříjemný problém s mbr havětí za mnou ? Mohu zase klidně spát bez špatného pocitu, či je ještě potřeba něco ?
Je tedy tento nepříjemný problém s mbr havětí za mnou ?
Mohu zase klidně spát bez špatného pocitu, či je ještě potřeba něco ?Re: Problém s virem na ext. HDd - .MBR
Aha, tak to se omlouvám, nepochopil jsem
Každopádně veliké díky za pomoc s tou havětí, snad již je po všem a příště se mi toto vyhne
Díky díky díky a hezký zbytek večera
Každopádně veliké díky za pomoc s tou havětí, snad již je po všem a příště se mi toto vyhne
Díky díky díky a hezký zbytek večera
Přispějete na provoz fóra?