Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Audiofile playing from svchost.exe


  • This topic is locked This topic is locked
6 replies to this topic

#1 Viruuus

Viruuus

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 10 January 2014 - 12:43 PM

Dear helping hands, my working laptop has started acting weird yesterday, shutting down randomly and today it started playing audio, with no programs opened after reboot. The mixer says its coming from the svchost.exe and if i kill that process it stops, but then it says it will reboot the pc soon, which it does without me giving an ok. I have seend some stuff on google before getting here, so I have tried some tools such as TDSkiller and malwarebytes anti malware which didnt help. Sorry for using those, I just did not know better, but at least my machine is still working so far. Any help is much appreciated!

BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 AM

Posted 10 January 2014 - 01:18 PM

Can I see the Tdss Killer and Malwarebytes log's  please.

 

 

Step 1

 

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner\AdwCleaner[S0].txt as well.

Step 2

 

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Step 3.

 

 

Please download HitmanPro. to your desktop.

  • Launch the program by double clicking on HitmanPro.exe. (Windows Vista/7 users right click on the HitmanPro icon and select run as administrator).
  • Click on the next button. You must agree with the terms of EULA.
  • Check the box beside "No, I only want to perform a one-time scan to check this computer".
  • Click on the next button.
  • The program will start to scan the computer. The scan will typically take no more than 2-3 minutes.
  • Click on the next button and choose the option activate free license
  • Click on the next button and the infections where will be deleted.
  • Click now on the Save Log option and save this log to your desktop.
  • Click on the next button and restart the computer.
  • Copy the information of HitmanPro_20130116_1239.log in your next reply

Step 4.

 

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.



#3 Viruuus

Viruuus
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 10 January 2014 - 01:46 PM

Thank you for the quick response.

Warning ahead: Step 3 found something but could not delete it, because there is no "free license" thing (anymore?).

STEP1:

# AdwCleaner v3.016 - Bericht erstellt am 10/01/2014 um 13:30:50
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 7 Professional (32 bits)
# Benutzername : PBueermann - CVKO7097
# Gestartet von : C:\Users\pbueermann\Desktop\AdwCleaner.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4C836512-BB70-11D2-A5A7-00105A9C91C6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DB797690-40E0-11D2-9BD5-0060082AE372}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DB797681-40E0-11D2-9BD5-0060082AE372}
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094

***** [ Browser ] *****

-\\ Internet Explorer v8.0.7600.17267


*************************

AdwCleaner[R0].txt - [1176 octets] - [10/01/2014 13:30:50]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1236 octets] ##########


STEP2:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Professional x86
Ran by PBueermann on 10.01.2014 at 13:34:49,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\pbueermann\AppData\Roaming\getrighttogo"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.01.2014 at 13:37:07,46
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


STEP 3:

[code=auto:0]
HitmanPro 3.7.8.208
www.hitmanpro.com

Computer name . . . . : CVKO7097
Windows . . . . . . . : 6.1.0.7600.X86/4
User name . . . . . . : CONVISTA\PBueermann
UAC . . . . . . . . . : Disabled
License . . . . . . . : Free

Scan date . . . . . . : 2014-01-10 13:38:56
Scan mode . . . . . . : Normal
Scan duration . . . . : 1m 1s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No

Threats . . . . . . . : 1
Traces . . . . . . . : 59

Objects scanned . . . : 1.148.169
Files scanned . . . . : 29.065
Remnants scanned . . : 309.277 files / 809.827 keys

Malware _____________________________________________________________________

C:\Windows\system32\rpcss.dll
Size . . . . . . . : 376.320 bytes
Age . . . . . . . : 1641.8 days (2009-07-13 18:45:11)
Entropy . . . . . : 6.7
SHA-256 . . . . . : 5FBECB15EE71EBF77F2B17D7FA65A369103BB3057409ABEC55C2DF8C2A43BA32
Product . . . . . : Microsoft® Windows® Operating System
Publisher . . . . : Microsoft Corporation
Description . . . : Distributed COM Services
Version . . . . . : 6.1.7600.16385
Copyright . . . . : © Microsoft Corporation. All rights reserved.
Service . . . . . : RpcSs
> Bitdefender . . . : Trojan.Patched.Zekos.A
> Kaspersky . . . . : Trojan.Win32.Patched.pj
Fuzzy . . . . . . : 109.0
Startup
HKLM\SYSTEM\CurrentControlSet\Services\DcomLaunch\
HKLM\SYSTEM\CurrentControlSet\Services\RpcSs\


Cookies _____________________________________________________________________

C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\0FV62Z6N.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\0RVEU43K.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\16SJQKIJ.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\30VZK75M.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\3DJJGGZ5.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\3F086FB1.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\466A3GX6.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\5BGTRFKL.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\6CR36H1P.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\76PZXNV1.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\99HCUMCL.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\9E0E408A.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\ALIO6IZ3.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\APOO012D.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\BEIEU34Z.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\BMIEW5CV.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\BOSJGUFZ.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\BWFOVUHY.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\EOJBO147.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\EV2FGV0Z.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\FWUKGL6S.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\GFC6FS3A.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\HWUAATXX.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\J27QKQ3Q.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\JJMWH4PH.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\LBBBJREX.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\LM5VCL07.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\LW9BXXN3.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\MZ4FXSO0.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\N8CKHAL1.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\O1C7VYM2.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\O4A2QBVK.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\O4Z07SUN.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\O6WTCCT6.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\pbueermann@de.sitestat[1].txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\pbueermann@de.sitestat[2].txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\pbueermann@xiti[1].txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\QCTJWOAQ.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\R261CWPT.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\R3K4WL0O.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\SAVUI0Q6.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\T7IO1279.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\TD4B85QQ.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\UD1PTZBD.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\UKBDD3XD.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\UOJXCR57.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\V6JGW2SJ.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\V9BIZM68.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\VFZE3DWA.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\VPNG4BTP.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\X4YHX3YX.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\Y5PAN5FQ.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\YCWO9RK0.txt
C:\Users\pbueermann\AppData\Roaming\Microsoft\Windows\Cookies\YJG42813.txt


Step 4:

MiniToolBox by Farbar Version: 18-12-2013
Ran by PBueermann (administrator) on 10-01-2014 at 13:42:00
Running from "C:\Users\pbueermann\Desktop"
Microsoft Windows 7 Professional (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows-IP-Konfiguration

Der DNS-Auflsungscache wurde geleert.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6200 AGN = Drahtlosnetzwerkverbindung (Connected)
Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows = LAN-Verbindung 4 (Hardware not present)
Intel® 82577LM Gigabit Network Connection = LAN-Verbindung (Media disconnected)
Bluetooth-Gerät (PAN) = Bluetooth-Netzwerkverbindung (Media disconnected)
Dell Wireless 5540 HSPA Mini-Card Network Adapter = Mobile Breitbandverbindung (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Drahtlosnetzwerkverbindung 2 (Media disconnected)


# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="LAN-Verbindung 4" forwarding=enabled advertise=enabled metric=1 nud=enabled


popd
# Ende der IPv4-Konfiguration



Windows-IP-Konfiguration

Hostname . . . . . . . . . . . . : CVKO7097
Primres DNS-Suffix . . . . . . . : private.convista.de
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein
DNS-Suffixsuchliste . . . . . . . : private.convista.de
home

Drahtlos-LAN-Adapter Drahtlosnetzwerkverbindung 2:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physikalische Adresse . . . . . . : 58-94-6B-5D-AF-05
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja

Mobiler Breitbandadapter Mobile Breitbandverbindung:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Dell Wireless 5540 HSPA Mini-Card Network Adapter
Physikalische Adresse . . . . . . : 02-80-37-EC-02-00
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Ethernet-Adapter Bluetooth-Netzwerkverbindung:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Bluetooth-Gert (PAN)
Physikalische Adresse . . . . . . : 1C-65-9D-AC-60-4D
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja

Drahtlos-LAN-Adapter Drahtlosnetzwerkverbindung:

Verbindungsspezifisches DNS-Suffix: home
Beschreibung. . . . . . . . . . . : Intel® Centrino® Advanced-N 6200 AGN
Physikalische Adresse . . . . . . : 58-94-6B-5D-AF-04
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::19b2:be4:4e69:a87%12(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.1.8(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Freitag, 10. Januar 2014 13:33:22
Lease luft ab. . . . . . . . . . : Samstag, 11. Januar 2014 13:33:22
Standardgateway . . . . . . . . . : 192.168.1.1
DHCP-Server . . . . . . . . . . . : 192.168.1.1
DHCPv6-IAID . . . . . . . . . . . : 223908971
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-14-B8-C0-27-5C-26-0A-26-7A-BB
DNS-Server . . . . . . . . . . . : 192.168.1.1
NetBIOS ber TCP/IP . . . . . . . : Aktiviert

Ethernet-Adapter LAN-Verbindung:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Intel® 82577LM Gigabit Network Connection
Physikalische Adresse . . . . . . : 5C-26-0A-20-27-86
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 3:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #19
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 20:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #6
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 18:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #3
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter Teredo Tunneling Pseudo-Interface:

Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
IPv6-Adresse. . . . . . . . . . . : 2001:0:9d38:6ab8:2488:13ed:3f57:fef7(Bevorzugt)
Verbindungslokale IPv6-Adresse . : fe80::2488:13ed:3f57:fef7%16(Bevorzugt)
Standardgateway . . . . . . . . . : ::
NetBIOS ber TCP/IP . . . . . . . : Deaktiviert

Tunneladapter LAN-Verbindung* 17:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #2
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter Reusable Microsoft 6To4 Adapter:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #4
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter 6TO4 Adapter:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 19:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #5
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 28:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #13
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 24:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #9
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 26:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #11
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 27:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #12
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 22:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #7
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 15:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #22
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 23:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #8
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 25:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #10
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 32:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #17
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 29:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #14
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 14:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #21
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 13:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #20
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 30:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #15
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 31:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #16
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 2:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #18
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 36:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #28
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 16:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #23
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 21:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #24
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 35:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #27
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 38:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #30
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 34:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #26
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 37:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #29
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 33:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #25
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 40:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #32
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 41:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #33
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 43:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #35
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 44:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #36
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 46:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #38
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 39:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #31
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 48:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #40
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 42:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #34
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter isatap.home:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix: home
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #2
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 49:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #41
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 45:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #37
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung* 47:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-6zu4-Adapter #39
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja

Tunneladapter isatap.{5E836206-C424-4073-BF1A-760367415785}:

Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #6
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com.private.convista.de
Address: 199.101.28.20


Ping wird ausgefhrt fr google.com [74.125.226.198] mit 32 Bytes Daten:
Antwort von 74.125.226.198: Bytes=32 Zeit=11ms TTL=250
Antwort von 74.125.226.198: Bytes=32 Zeit=15ms TTL=250

Ping-Statistik fr 74.125.226.198:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 11ms, Maximum = 15ms, Mittelwert = 13ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com.private.convista.de
Address: 199.101.28.20


Ping wird ausgefhrt fr yahoo.com [98.138.253.109] mit 32 Bytes Daten:
Antwort von 98.138.253.109: Bytes=32 Zeit=51ms TTL=250
Antwort von 98.138.253.109: Bytes=32 Zeit=49ms TTL=250

Ping-Statistik fr 98.138.253.109:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 49ms, Maximum = 51ms, Mittelwert = 50ms

Ping wird ausgefhrt fr 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit=8ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit=2ms TTL=128

Ping-Statistik fr 127.0.0.1:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 2ms, Maximum = 8ms, Mittelwert = 5ms
===========================================================================
Schnittstellenliste
23...58 94 6b 5d af 05 ......Microsoft Virtual WiFi Miniport Adapter
15...02 80 37 ec 02 00 ......Dell Wireless 5540 HSPA Mini-Card Network Adapter
14...1c 65 9d ac 60 4d ......Bluetooth-Gerät (PAN)
12...58 94 6b 5d af 04 ......Intel® Centrino® Advanced-N 6200 AGN
11...5c 26 0a 20 27 86 ......Intel® 82577LM Gigabit Network Connection
1...........................Software Loopback Interface 1
36...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #19
22...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #6
19...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #3
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #4
17...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter
21...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #5
30...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #13
26...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #9
28...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #11
29...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #12
24...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #7
39...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #22
25...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #8
27...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #10
34...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #17
31...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #14
38...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #21
37...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #20
32...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #15
33...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #16
35...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #18
46...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #28
40...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #23
41...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #24
45...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #27
48...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #30
44...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #26
47...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #29
42...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #25
50...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #32
51...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #33
53...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #35
54...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #36
56...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #38
49...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #31
58...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #40
52...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #34
64...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #2
59...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #41
55...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #37
57...00 00 00 00 00 00 00 e0 Microsoft-6zu4-Adapter #39
62...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #6
===========================================================================

IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.8 25
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.1.0 255.255.255.0 Auf Verbindung 192.168.1.8 281
192.168.1.8 255.255.255.255 Auf Verbindung 192.168.1.8 281
192.168.1.255 255.255.255.255 Auf Verbindung 192.168.1.8 281
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.1.8 281
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.1.8 281
===========================================================================
Ständige Routen:
Keine

IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
16 58 ::/0 Auf Verbindung
1 306 ::1/128 Auf Verbindung
16 58 2001::/32 Auf Verbindung
16 306 2001:0:9d38:6ab8:2488:13ed:3f57:fef7/128
Auf Verbindung
12 281 fe80::/64 Auf Verbindung
16 306 fe80::/64 Auf Verbindung
12 281 fe80::19b2:be4:4e69:a87/128
Auf Verbindung
16 306 fe80::2488:13ed:3f57:fef7/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
16 306 ff00::/8 Auf Verbindung
12 281 ff00::/8 Auf Verbindung
===========================================================================
Ständige Routen:
Keine
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [280232] (Avira GmbH)
Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [280232] (Avira GmbH)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [280232] (Avira GmbH)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 46 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 47 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 48 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 49 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 50 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 51 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 52 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 53 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 54 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 55 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 56 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 57 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 58 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 59 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 60 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 61 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 62 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 63 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 64 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 65 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 66 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 67 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 68 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 69 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 70 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 71 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 72 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 73 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 74 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 75 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 76 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 77 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 78 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 79 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 80 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 81 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 82 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 83 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 84 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 85 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 86 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 87 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 88 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 89 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 90 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 91 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 92 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 93 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 94 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 95 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 96 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 97 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 98 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 99 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000100 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000101 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000102 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000103 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000104 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000105 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000106 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000107 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000108 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000109 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000110 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000111 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000112 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000113 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000114 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000115 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000116 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000117 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000118 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000119 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000120 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000121 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000122 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000123 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000124 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000125 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000126 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000127 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000128 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000129 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000130 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000131 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000132 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000133 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000134 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000135 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000136 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000137 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000138 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000139 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 000000000140 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================
Error: (09/30/2013 00:18:36 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/31/2011 10:16:24 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1996 seconds with 1140 seconds of active time. This session ended with a crash.

Error: (05/04/2011 04:41:33 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/07/2011 11:35:35 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4436 seconds with 60 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office Suite Service Pack 2 (SP2)
32 Bit HP CIO Components Installer (Version: 7.1.7)
7-Zip 9.20
AccelerometerP11 (Version: 2.00.00.12)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader X (10.1.8) - Deutsch (Version: 10.1.8)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
ARIS Express (Version: 1.00)
Avira AntiVir Professional (Version: 10.2.0.1064)
Avira Management Console Agent (Version: )
baramundi Management Agent (Version: 8.3.0.0)
Battle.net
BioAPI Framework (Version: 1.0.1)
BizAgi Process Modeler (Version: 2.1.0.1)
Bonjour (Version: 3.0.0.10)
Cisco AnyConnect Secure Mobility Client (Version: 3.1.04066)
Cisco AnyConnect Secure Mobility Client (Version: 3.1.04066)
Cisco AnyConnect VPN Client Start Before Login Components (Version: 2.5.0217)
Cisco WebEx Meetings
Citrix Online Plug-in - Web (Version: 12.0.3.6)
Citrix Online Plug-in (DV) (Version: 12.0.3.6)
Citrix Online Plug-in (HDX) (Version: 12.0.3.6)
Citrix Online Plug-in (USB) (Version: 12.0.3.6)
Citrix Online Plug-in (Web) (Version: 12.0.3.6)
DCP32MMWrapper (Version: 1.6.461.83)
Dell Control Point (Version: 1.6.461.83)
Dell ControlPoint Security Manager (Version: 1.6.461.83)
Dell ControlPoint System Manager (Version: 1.4.00001)
Dell ControlVault Host Components Installer (Version: 1.7.459.360)
Dell Embassy Trust Suite by Wave Systems (Version: 03.05.03.000)
Dell Mobile Broadband Manager (Version: 6.1.13.2)
Dell Security Device Driver Pack (Version: 1.4.055)
Dell Touchpad (Version: 7.1006.101.118)
Dell Wireless HSPA Mini-Card Drivers (Version: 6.1.18.4)
DHTML Editing Component (Version: 6.02.0001)
Document Manager Lite (Version: 06.09.00.159)
Dota 2
ECL Viewer (Version: 6.0)
EMBASSY Security Center (Version: 04.00.00.101)
EMBASSY Security Setup (Version: 04.00.00.090)
ESC Home Page Plugin (Version: 04.00.00.018)
FreeMind (Version: 0.9.0)
FreePDF (Remove only)
Gemalto (Version: 01.01.00.0000)
GPL Ghostscript 8.71
Hearthstone
IDT Audio (Version: 1.0.6292.0)
IrfanView (remove only) (Version: 4.28)
iTunes (Version: 11.1.3.8)
Java 2 SDK, SE v1.4.2_13 (Version: 1.4.2_13)
Java™ 6 Update 12 (Version: 6.0.120)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office Professional 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office Visio 2007 Service Pack 2 (SP2)
Microsoft Office Visio MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft Office Visio Professional 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6425.1000)
Microsoft redistributable runtime DLLs VS2008 SP1(x86) (Version: 9.0)
Microsoft redistributable runtime DLLs VS2010 SP1 (x86) (Version: 10.0.40219.1)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 (Version: 3.0.5305.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4.0 redistributable (Version: 4.0.0.0)
NTRU TCG Software Stack (Version: 2.1.29)
NVIDIA 3D Vision Treiber 310.90 (Version: 310.90)
NVIDIA Grafiktreiber 310.90 (Version: 310.90)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA nView 136.53 (Version: 136.53)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1090)
NVIDIA Systemsteuerung 310.90 (Version: 310.90)
OLXCat (Version: 2.0.0)
Opera 12.16 (Version: 12.16.1860)
PokerStars.eu
Preboot Manager (Version: 03.00.00.154)
Private Information Manager (Version: 06.04.00.065)
QuickTime (Version: 7.72.80.56)
RedMon - Redirection Port Monitor
SAP Business Explorer (Version: 7.20)
SAP GUI for Windows 7.20 (Version: 7.20 Compilation 3)
SAP JNet
Security Wizards (Version: 01.07.00.026)
Skype 6.11 (Version: 6.11.102)
SO32MMWrapper (Version: 1.6.461.83)
Steam (Version: 1.0.0.0)
TeamViewer 6 (MSI Wrapper) (Version: 6.0.9947)
TeamViewer 8 (Version: 8.0.20202)
Trillian
Trusted Drive Manager (Version: 3.3.3.104)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update für Microsoft Office Excel 2007 Help (KB963678)
Update für Microsoft Office Outlook 2007 Help (KB963677)
Update für Microsoft Office Powerpoint 2007 Help (KB963669)
Update für Microsoft Office Word 2007 Help (KB963665)
UPEK TouchChip Fingerprint Reader (Version: 1.2.0)
vcredist_x86 (Version: 1.0.0)
VLC media player 1.1.11 (Version: 1.1.11)
VMware Horizon View Client (Version: 5.4.0.1219906)
Vz In Home Agent (Version: 8.03.71)
Wave Infrastructure Installer (Version: 07.01.30.0022)
Wave Support Software (Version: 05.10.00.073)
WebEx Access Anywhere (Version: 1.29.3202)
WebEx Productivity Tools (Version: 2.29.3220)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows-Treiberpaket - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (Version: 09/11/2009 1.0.1.6)

========================= Devices: ================================

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 2037.83 MB
Available physical RAM: 939.29 MB
Total Pagefile: 4075.66 MB
Available Pagefile: 2685.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1929.86 MB

========================= Partitions: =====================================

1 Drive c: (SYSTEM) (Fixed) (Total:39.05 GB) (Free:2.04 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:80.17 GB) (Free:37.04 GB) NTFS

========================= Users: ========================================

Benutzerkonten fr \\CVKO7097

Administrator Gast
Der Befehl wurde erfolgreich ausgefhrt.


**** End of log ****


And finally the TDSS log,dont have the other one anymore it seems:

11:16:14.0814 0x01a4 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
11:16:17.0903 0x01a4 ============================================================
11:16:17.0903 0x01a4 Current date / time: 2014/01/10 11:16:17.0903
11:16:17.0903 0x01a4 SystemInfo:
11:16:17.0903 0x01a4
11:16:17.0903 0x01a4 OS Version: 6.1.7600 ServicePack: 0.0
11:16:17.0903 0x01a4 Product type: Workstation
11:16:17.0903 0x01a4 ComputerName: CVKO7097
11:16:17.0903 0x01a4 UserName: PBueermann
11:16:17.0903 0x01a4 Windows directory: C:\Windows
11:16:17.0903 0x01a4 System windows directory: C:\Windows
11:16:17.0903 0x01a4 Processor architecture: Intel x86
11:16:17.0903 0x01a4 Number of processors: 4
11:16:17.0903 0x01a4 Page size: 0x1000
11:16:17.0903 0x01a4 Boot type: Safe boot with network
11:16:17.0903 0x01a4 ============================================================
11:16:19.0432 0x01a4 KLMD registered as C:\Windows\system32\drivers\07120514.sys
11:16:19.0463 0x01a4 System UUID: {04E32703-E429-B078-67A1-41A76A58BE3F}
11:16:19.0697 0x01a4 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:16:19.0697 0x01a4 ============================================================
11:16:19.0697 0x01a4 \Device\Harddisk0\DR0:
11:16:19.0697 0x01a4 MBR partitions:
11:16:19.0697 0x01a4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4E1AF2B
11:16:19.0697 0x01a4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4E1AF6A, BlocksNum 0xA058E62
11:16:19.0697 0x01a4 ============================================================
11:16:19.0712 0x01a4 C: <-> \Device\Harddisk0\DR0\Partition1
11:16:19.0712 0x01a4 D: <-> \Device\Harddisk0\DR0\Partition2
11:16:19.0712 0x01a4 ============================================================
11:16:19.0712 0x01a4 Initialize success
11:16:19.0712 0x01a4 ============================================================
11:16:34.0891 0x079c ============================================================
11:16:34.0891 0x079c Scan started
11:16:34.0891 0x079c Mode: Manual; SigCheck; TDLFS;
11:16:34.0891 0x079c ============================================================
11:16:34.0891 0x079c KSN ping started
11:16:34.0938 0x079c KSN ping finished: false
11:16:35.0016 0x079c ================ Scan system memory ========================
11:16:35.0016 0x079c System memory - ok
11:16:35.0016 0x079c ================ Scan services =============================
11:16:35.0078 0x079c [ 6D2ACA41739BFE8CB86EE8E85F29697D, 74A4F53C8309A8E5E94CDE4D440DD5308566185E6D8D98FD08E70A25BD728C91 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
11:16:35.0125 0x079c 1394ohci - ok
11:16:35.0141 0x079c [ AF1F178B0218B44876E63BF0B019E96B, A6D16FBCFC2B8620294E882BFEB6F89FE558D2D371EE8CFA72B365DC53909EFA ] Acceler C:\Windows\system32\DRIVERS\Accelern.sys
11:16:35.0141 0x079c Acceler - ok
11:16:35.0219 0x079c [ F0E07D144C8685B8774BC32FC8DA4DF0, 39816ED2623CA9ABE2B2EDCDB2F8481634742F00FEEF7E324F34D2BAAD668A67 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
11:16:35.0234 0x079c ACPI - ok
11:16:35.0234 0x079c [ 98D81CA942D19F7D9153B095162AC013, ACE5C073323176621F3312AA9B1EE1A3382F8CDD590D90DC57B34035FD6BC281 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
11:16:35.0250 0x079c AcpiPmi - ok
11:16:35.0250 0x079c [ 9BC0D1B4D9CCEC2DC9F010E466738A38, FA213D43DC18F92606B9A69E08B9D7B699038F087FE90AA3A1BB348AEBDEEACB ] acsock C:\Windows\system32\DRIVERS\acsock.sys
11:16:35.0266 0x079c acsock - ok
11:16:35.0281 0x079c [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:16:35.0281 0x079c AdobeARMservice - ok
11:16:35.0297 0x079c [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:16:35.0312 0x079c adp94xx - ok
11:16:35.0328 0x079c [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:16:35.0344 0x079c adpahci - ok
11:16:35.0359 0x079c [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:16:35.0375 0x079c adpu320 - ok
11:16:35.0406 0x079c [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:16:35.0422 0x079c AeLookupSvc - ok
11:16:35.0422 0x079c [ 827DBC22C96EECF6D36A13162FABAFD3, EBBC04A6AD3BC83E3791569C1120BBBB59AF70512FA2CEB6A8BA2A257F3F6C32 ] AESTFilters C:\Program Files\IDT\WDM\aestsrv.exe
11:16:35.0437 0x079c AESTFilters - ok
11:16:35.0468 0x079c [ 0DB7A48388D54D154EBEC120461A0FCD, 567B65F96ADE0E8252B7D8CE7F254CB8054C3AE4BC3577C394EFDEF8D8A61427 ] AFD C:\Windows\system32\drivers\afd.sys
11:16:35.0484 0x079c AFD - ok
11:16:35.0484 0x079c [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
11:16:35.0500 0x079c agp440 - ok
11:16:35.0531 0x079c [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
11:16:35.0531 0x079c aic78xx - ok
11:16:35.0546 0x079c [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
11:16:35.0562 0x079c ALG - ok
11:16:35.0562 0x079c [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
11:16:35.0578 0x079c aliide - ok
11:16:35.0640 0x079c [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
11:16:35.0640 0x079c amdagp - ok
11:16:35.0656 0x079c [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
11:16:35.0671 0x079c amdide - ok
11:16:35.0718 0x079c [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:16:35.0734 0x079c AmdK8 - ok
11:16:35.0780 0x079c [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:16:35.0796 0x079c AmdPPM - ok
11:16:35.0812 0x079c [ 19CE906B4CDC11FC4FEF5745F33A63B6, 27BF91DB1FDC81CFCF0E0DCFD3C4AD51FCFB778D36F1E83105C2AFCF6851A4DF ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:16:35.0827 0x079c amdsata - ok
11:16:35.0843 0x079c [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:16:35.0858 0x079c amdsbs - ok
11:16:35.0890 0x079c [ 869E67D66BE326A5A9159FBA8746FA70, 8F493A340F19FB39B5BD24EF8603812BECE7770544AB91817FF67236448569CB ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:16:35.0905 0x079c amdxata - ok
11:16:35.0952 0x079c [ 453669898B809786654210D79DB003B2, DEB74A8D0F18416F48A9FDB8CF759918428BC4222B71BB94FB2AE6993AE3153A ] AntiVir Security Management Center Agent C:\Program Files\Avira\Avira Security Management Center Agent\agent.exe
11:16:35.0983 0x079c AntiVir Security Management Center Agent - detected UnsignedFile.Multi.Generic ( 1 )
11:16:36.0139 0x079c AntiVir Security Management Center Agent ( UnsignedFile.Multi.Generic ) - warning
11:16:36.0155 0x079c [ EC26A3A760C91387E474A27DADE92121, A8DFAA4522D57DDEBCD6BD53FFA7B2F260A3E7DB78F36FC21B14F6062772711E ] AntiVirMailService C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
11:16:36.0170 0x079c AntiVirMailService - ok
11:16:36.0170 0x079c [ A8E19A9398902DEE9292D781AA56149E, 370FF33EF02479F648198ADF51EED80C4CA7DFE525DBC0514065F6533584A828 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
11:16:36.0186 0x079c AntiVirSchedulerService - ok
11:16:36.0202 0x079c [ 4ACAB679C845F5781E501AAF7BB17008, 9F336D6D56F95702C2CC70FC0AEFCC30367591AA3E5C472B1B5DF77E6C703E94 ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
11:16:36.0202 0x079c AntiVirService - ok
11:16:36.0217 0x079c [ 49FFD184FA6CE6AAAC9C423DCBF66133, 80421E3F736E1208D4D8A05C2B329B680E76EB8A38652A3AB015A3DCB6EF647B ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
11:16:36.0233 0x079c AntiVirWebService - ok
11:16:36.0264 0x079c [ 8FF1990DC4CC50B68DDCDE1DB3782923, BF1CEEBA42EA9BBD7F76DFA36ED33CFB8E34FC9603C49051722E177E6234B41A ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
11:16:36.0264 0x079c ApfiltrService - ok
11:16:36.0280 0x079c [ FEB834C02CE1E84B6A38F953CA067706, E5A7F8B632ABFBD1283C3D44FB02449814EDB653B204E1720DAA780A6D64FD01 ] AppID C:\Windows\system32\drivers\appid.sys
11:16:36.0295 0x079c AppID - ok
11:16:36.0295 0x079c [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:16:36.0326 0x079c AppIDSvc - ok
11:16:36.0326 0x079c [ 7DEAD9E3F65DCB2794F2711003BBF650, F541C30EEFD1BDB70F361B878B6E51DC728873695DD137148CE531FBACCDA21B ] Appinfo C:\Windows\System32\appinfo.dll
11:16:36.0342 0x079c Appinfo - ok
11:16:36.0342 0x079c [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:16:36.0358 0x079c Apple Mobile Device - ok
11:16:36.0373 0x079c [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:16:36.0404 0x079c AppMgmt - ok
11:16:36.0420 0x079c [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
11:16:36.0436 0x079c arc - ok
11:16:36.0482 0x079c [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:16:36.0482 0x079c arcsas - ok
11:16:36.0498 0x079c [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:16:36.0514 0x079c aspnet_state - ok
11:16:36.0514 0x079c [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:16:36.0529 0x079c AsyncMac - ok
11:16:36.0545 0x079c [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\DRIVERS\atapi.sys
11:16:36.0560 0x079c atapi - ok
11:16:36.0560 0x079c [ B82E4DC458033B095BF677D86FB9C40C, D305665BD3BA78639CAF659FA9E765620094EC5180610EB8FFE4853F63AB4E30 ] atnthost C:\ProgramData\webex\webex\319\atnthost.exe
11:16:36.0576 0x079c atnthost - ok
11:16:36.0607 0x079c [ 510C873BFA135AA829F4180352772734, BC528D840EB338B0C5D11801C63D8EADD40AF8043DC77ACB4B42E8D20767538F ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:16:36.0638 0x079c AudioEndpointBuilder - ok
11:16:36.0654 0x079c [ 510C873BFA135AA829F4180352772734, BC528D840EB338B0C5D11801C63D8EADD40AF8043DC77ACB4B42E8D20767538F ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:16:36.0685 0x079c Audiosrv - ok
11:16:36.0701 0x079c [ 1E4114685DE1FFA9675E09C6A1FB3F4B, A9A558BBF5D1EFDC7C82D58307CE3C48FE41A0905A3C4010C3F24D083EC891AC ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
11:16:36.0701 0x079c avgntflt - ok
11:16:36.0716 0x079c [ 0F78D3DAE6DEDD99AE54C9491C62ADF2, 0E06E5DE67BCFF8028311DE492279F9D8B3B11B68C49CA8B2AFA19FFFADCC18F ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
11:16:36.0716 0x079c avipbb - ok
11:16:36.0732 0x079c [ DD6A431B43E34B91A767D1CE33728175, 8BFF6474C9DFBEC96FA7B2789EF9B17C7910B52DBCF70CDA1F0C698CFA5EFB6E ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:16:36.0748 0x079c AxInstSV - ok
11:16:36.0763 0x079c [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
11:16:36.0779 0x079c b06bdrv - ok
11:16:36.0794 0x079c [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
11:16:36.0810 0x079c b57nd60x - ok
11:16:36.0950 0x079c [ 1D12D8F82976C9A26E28EADD001665C4, 811F3FD154B9F1C83DA71123E08E22C8B116915F4F368E2750B4546701D54DD8 ] BARAAGNT C:\Program Files\bsAG\BMA\bma.exe
11:16:37.0106 0x079c BARAAGNT - ok
11:16:37.0122 0x079c [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
11:16:37.0122 0x079c BDESVC - ok
11:16:37.0138 0x079c [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
11:16:37.0153 0x079c Beep - ok
11:16:37.0169 0x079c [ CBDFA04303713A9CA491E66EDF41E815, 48BE49F8B864F9D9E8721EFF036E041F11DA037471E7E26AA6C15FB3F2BA3727 ] BFCRX C:\Windows\system32\BFCRX.exe
11:16:37.0184 0x079c BFCRX - ok
11:16:37.0200 0x079c [ 85AC71C045CEB054ED48A7841AAE0C11, BA0C0CC50E5C49838116AC9A12A7CF1A683601FD08D3CF6EC06620C51C0806FF ] BFE C:\Windows\System32\bfe.dll
11:16:37.0247 0x079c BFE - ok
11:16:37.0262 0x079c [ 53F476476F55A27F580661BDE09C4EC4, 90DFBF97F011CFF41D2CFA2E33978BC746A7E693AC75EED1436130C4F10B4E67 ] BITS C:\Windows\System32\qmgr.dll
11:16:37.0294 0x079c BITS - ok
11:16:37.0325 0x079c [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:16:37.0340 0x079c blbdrive - ok
11:16:37.0356 0x079c [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:16:37.0372 0x079c Bonjour Service - ok
11:16:37.0387 0x079c [ 9A5C671B7FBAE4865149BB11F59B91B2, BE1D5901CB8EF20E34F711D6451BDFBCA4BD65AFAD6028964C5CE1673D94FBAD ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:16:37.0403 0x079c bowser - ok
11:16:37.0403 0x079c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:16:37.0418 0x079c BrFiltLo - ok
11:16:37.0434 0x079c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:16:37.0434 0x079c BrFiltUp - ok
11:16:37.0465 0x079c [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:16:37.0481 0x079c BridgeMP - ok
11:16:37.0481 0x079c [ A0E691DC6589D4D2CBE373171D1A49E5, 66BAED3EF7AFE0FB4304FC97ABE2BB106ADE1A956F89DCB52E70F30239461D05 ] Browser C:\Windows\System32\browser.dll
11:16:37.0496 0x079c Browser - ok
11:16:37.0512 0x079c [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:16:37.0528 0x079c Brserid - ok
11:16:37.0543 0x079c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:16:37.0543 0x079c BrSerWdm - ok
11:16:37.0559 0x079c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:16:37.0574 0x079c BrUsbMdm - ok
11:16:37.0606 0x079c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:16:37.0621 0x079c BrUsbSer - ok
11:16:37.0668 0x079c [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:16:37.0668 0x079c BthEnum - ok
11:16:37.0684 0x079c [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:16:37.0684 0x079c BTHMODEM - ok
11:16:37.0699 0x079c [ AD1872E5829E8A2C3B5B4B641C3EAB0E, 8C2DBCAC08DDB41E2B44E257C55FA2D0272959B308EFF9EAF5FF9AE1E4A0AA39 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:16:37.0715 0x079c BthPan - ok
11:16:37.0746 0x079c [ 04CEDA17A195924070B01174CB1F9AF8, 01095271F02B5C95F32C08812F2557CCFECBBC4EBAB56C91AFC9B367C717DF15 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:16:37.0762 0x079c BTHPORT - ok
11:16:37.0777 0x079c [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
11:16:37.0808 0x079c bthserv - ok
11:16:37.0808 0x079c [ 80E6384BEEC03B8BD45EDEA29802D657, FBFCC6FE940AFD522D781B054AA24668B2C6DBFAAC0FC754FDBBC8230AAAE682 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:16:37.0824 0x079c BTHUSB - ok
11:16:37.0840 0x079c [ D9846A19208E76604E1074BB30228AC8, 50F91117D2478318A6E1A8A6C228E8B3F9E7E28119424F2A3EF7058B2DD2B9C1 ] buttonsvc32 c:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
11:16:37.0855 0x079c buttonsvc32 - ok
11:16:37.0918 0x079c catchme - ok
11:16:37.0980 0x079c [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:16:37.0996 0x079c cdfs - ok
11:16:38.0011 0x079c [ BA6E70AA0E6091BC39DE29477D866A77, A17A68BDA46995F75FB1C2C593A81CD3B2BFE290CEAA45FA2380DDF5537A23C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:16:38.0027 0x079c cdrom - ok
11:16:38.0042 0x079c [ 628A9E30EC5E18DD5DE6BE4DBDC12198, DDA43DCCB195440D6BD5752BD00D984F45BD6D23DBE2A656C33E3CD1E5D17AD7 ] CertPropSvc C:\Windows\System32\certprop.dll
11:16:38.0058 0x079c CertPropSvc - ok
11:16:38.0058 0x079c [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:16:38.0074 0x079c circlass - ok
11:16:38.0105 0x079c [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
11:16:38.0120 0x079c CLFS - ok
11:16:38.0120 0x079c [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:16:38.0136 0x079c clr_optimization_v2.0.50727_32 - ok
11:16:38.0167 0x079c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:16:38.0167 0x079c clr_optimization_v4.0.30319_32 - ok
11:16:38.0183 0x079c [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:16:38.0198 0x079c CmBatt - ok
11:16:38.0198 0x079c [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
11:16:38.0214 0x079c cmdide - ok
11:16:38.0245 0x079c [ DB5E008B3744DD60C8498CBBF2A1CFA6, 1D851BF2433A953B32438A911D194C9DB42A52CD6E8DA296CA3C8DD2CCA83381 ] CNG C:\Windows\system32\Drivers\cng.sys
11:16:38.0261 0x079c CNG - ok
11:16:38.0276 0x079c [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:16:38.0276 0x079c Compbatt - ok
11:16:38.0323 0x079c [ F1724BA27E97D627F808FB0BA77A28A6, F7D69082EEFEC0FB8B309F6AEE282D4A5DFC1A40851ED65904AA9582C5DEA5AB ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:16:38.0339 0x079c CompositeBus - ok
11:16:38.0370 0x079c COMSysApp - ok
11:16:38.0370 0x079c [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:16:38.0386 0x079c crcdisk - ok
11:16:38.0417 0x079c [ 09FEA7FBD6A29E3941A2FFC6F7AEB818, 7186AB94A3E94A02F963B8C912B8B5CF74310FFFE07FDDCFA5AB8D333714FFA5 ] Credential Vault Host Control Service C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
11:16:38.0432 0x079c Credential Vault Host Control Service - ok
11:16:38.0448 0x079c [ 45BF153D51ED8790DE8F8446B11DEB57, 76185892EBD120C196A454196FA572F0DC42B6F39BCDA1DA0F297CC23A2F75E3 ] Credential Vault Host Storage C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
11:16:38.0464 0x079c Credential Vault Host Storage - ok
11:16:38.0510 0x079c [ F2FDE6C8DBAAD44CC58D1E07E4AF4EED, 579D206CF49FB78C2D9BA29A9C57489B7875242EB618019CB7B8D336C70A09E6 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:16:38.0526 0x079c CryptSvc - ok
11:16:38.0542 0x079c [ 27C9490BDD0AE48911AB8CF1932591ED, 751F576F797F8A7BA576C32598BD6FD2E60D4FACC7836CC5BA3F68C38D27CCCA ] CSC C:\Windows\system32\drivers\csc.sys
11:16:38.0557 0x079c CSC - ok
11:16:38.0573 0x079c [ 56FB5F222EA30D3D3FC459879772CB73, 2C4646774575858E26DBA9C73853E06D0BD18CC8A4C73C633071FF5FE04CA0F4 ] CscService C:\Windows\System32\cscsvc.dll
11:16:38.0588 0x079c CscService - ok
11:16:38.0604 0x079c [ CB6FF7012BB5D59D7C12350DB795CE1F, D0C614B206B69EBE735CFB158703730B42A72A46F6808D0D1C7385E3C1434AC5 ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
11:16:38.0604 0x079c ctxusbm - ok
11:16:38.0620 0x079c [ D1697063E2CDB6575AA46D668FFEE825, EE5492AD955B6F637DB8516D7EB6D89E239259AE4CE0A4A25DB320548BF267B5 ] cvusbdrv C:\Windows\system32\Drivers\cvusbdrv.sys
11:16:38.0620 0x079c cvusbdrv - ok
11:16:38.0635 0x079c [ 804E3F7F4AE25ACB0C0E5D7C5E6076C7, C4D0DB5840B393E724C597F85E4F2E7D231C528E01E6B4C2F712829B69E28512 ] d554gps C:\Windows\system32\DRIVERS\d554gps.sys
11:16:38.0635 0x079c d554gps - ok
11:16:38.0651 0x079c [ CFA3BB767AC22B56AF0DE781640E2165, 37D880191195DA6855BBC24268DE5F0D798CE3916B14F0128EA1B944573243DD ] d554scard C:\Windows\system32\DRIVERS\d554scard.sys
11:16:38.0666 0x079c d554scard - ok
11:16:38.0682 0x079c [ 6D3BFF2A044D641208CA5666332F102A, 5FBECB15EE71EBF77F2B17D7FA65A369103BB3057409ABEC55C2DF8C2A43BA32 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:16:38.0698 0x079c DcomLaunch - detected UnsignedFile.Multi.Generic ( 1 )
11:16:38.0698 0x079c Object is SCO, delete is not allowed
11:16:38.0698 0x079c DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
11:16:38.0713 0x079c [ 55AFBB8E560018221911E9FF9F5CF637, 1CDC7159FC4537F115F4D9FC8B302658CE3FE20A024B5ED99B85F071A6F69B07 ] dcpsysmgrsvc c:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
11:16:38.0729 0x079c dcpsysmgrsvc - ok
11:16:38.0744 0x079c [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
11:16:38.0760 0x079c defragsvc - ok
11:16:38.0791 0x079c [ 83D1ECEA8FAAE75604C0FA49AC7AD996, 0EB4F374CB91AFF12ABC7EFC7858BDB6E58B50FCE0ADA1711F90FF592059DA40 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:16:38.0807 0x079c DfsC - ok
11:16:38.0822 0x079c [ C56495FBD770712367CAD35E5DE72DA6, 9D5456A2E208F542F0B6C951EFCABA2A10919777C4287D7298A28F543D5BAC32 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:16:38.0838 0x079c Dhcp - ok
11:16:38.0854 0x079c [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
11:16:38.0885 0x079c discache - ok
11:16:38.0885 0x079c [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:16:38.0900 0x079c Disk - ok
11:16:38.0932 0x079c [ B15BE77A2BACF9C3177D27518AFE26A9, FBF02038C2EC0262B401FCBD348C48DF184AD76E95643E3D6ED32C02E90D8FC9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:16:38.0947 0x079c Dnscache - ok
11:16:38.0947 0x079c [ 4408C85C21EEA48EB0CE486BAEEF0502, 67EA726F4053665D94D7790EC89616EA0698A7548073A9211E3F75937B4384BE ] dot3svc C:\Windows\System32\dot3svc.dll
11:16:38.0994 0x079c dot3svc - ok
11:16:39.0010 0x079c [ 7FA81C6E11CAA594ADB52084DA73A1E5, 9ED1C585D9CA091E75E4A2A1E5B923B104EBDC5FC9D12154DE909C583E4D0CAE ] DPS C:\Windows\system32\dps.dll
11:16:39.0041 0x079c DPS - ok
11:16:39.0041 0x079c [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:16:39.0056 0x079c drmkaud - ok
11:16:39.0103 0x079c [ 1679A4669326CB1A67CC95658D273234, 57429EC10744956635CAE0742320D7C03B3EEA0CB1F5769AEF21C054C0B5E498 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:16:39.0134 0x079c DXGKrnl - ok
11:16:39.0150 0x079c [ 19E30C3C80D8CE29944B3F30FF9C8B76, 0121F66A1B4B6265C7F9C96CE954E64471891C7C9AE4D3862C05C19A1A9E3AFB ] e1kexpress C:\Windows\system32\DRIVERS\e1k6232.sys
11:16:39.0166 0x079c e1kexpress - ok
11:16:39.0166 0x079c [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
11:16:39.0197 0x079c EapHost - ok
11:16:39.0306 0x079c [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
11:16:39.0431 0x079c ebdrv - ok
11:16:39.0431 0x079c [ E922BC274FBD736B41020872C8AAC390, 32152BFAF162BFE3DB1EA775373EA7BDDF16641A1C687A2D138A8485DF0DB819 ] ecnssndis C:\Windows\system32\Drivers\wwanuss.sys
11:16:39.0446 0x079c ecnssndis - ok
11:16:39.0446 0x079c [ 15CA5CD73A30398C89247B3C5E933044, 06A4857DAA3A9F780F09CF4799F38B9A6BA5C6BB50FA0FD2C6B62E29E307103D ] ecnssndisfltr C:\Windows\system32\Drivers\wwanussf.sys
11:16:39.0462 0x079c ecnssndisfltr - ok
11:16:39.0462 0x079c [ C2243FF9E9AAD0C30E8B1A0914DA15B6, CD01BD44659FDAA6FE8679D0F76748409680A4F4885905EA56F655C60DDEC01F ] EFS C:\Windows\System32\lsass.exe
11:16:39.0478 0x079c EFS - ok
11:16:39.0509 0x079c [ 1697C39978CD69F6FBC15302EDCECE1F, E496FAE102EE33EBD35AC745E8647976DB9F91EF78E54EB962FF2D04D45B561A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:16:39.0540 0x079c ehRecvr - ok
11:16:39.0556 0x079c [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
11:16:39.0571 0x079c ehSched - ok
11:16:39.0587 0x079c [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:16:39.0618 0x079c elxstor - ok
11:16:39.0634 0x079c [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
11:16:39.0665 0x079c ErrDev - ok
11:16:39.0680 0x079c [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
11:16:39.0727 0x079c EventSystem - ok
11:16:39.0727 0x079c [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
11:16:39.0758 0x079c exfat - ok
11:16:39.0774 0x079c [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:16:39.0805 0x079c fastfat - ok
11:16:39.0836 0x079c [ F7EA23CC5E6BF2181F3F399D54F6EFC1, 4659A2EDC5D5171668FB20BED7B56466A674876888519D6F524F7456EBD11263 ] Fax C:\Windows\system32\fxssvc.exe
11:16:39.0868 0x079c Fax - ok
11:16:39.0868 0x079c [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:16:39.0883 0x079c fdc - ok
11:16:39.0899 0x079c [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
11:16:39.0930 0x079c fdPHost - ok
11:16:39.0946 0x079c [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
11:16:39.0992 0x079c FDResPub - ok
11:16:39.0992 0x079c [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:16:40.0008 0x079c FileInfo - ok
11:16:40.0024 0x079c [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:16:40.0070 0x079c Filetrace - ok
11:16:40.0070 0x079c [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:16:40.0086 0x079c flpydisk - ok
11:16:40.0117 0x079c [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:16:40.0133 0x079c FltMgr - ok
11:16:40.0148 0x079c [ 7FE4995528A7529A761875151EE3D512, 63F062A8E6AA9AEF39A46E94ADD548C72B4E21C1090DE9CBDCFB3F4489637BAF ] FontCache C:\Windows\system32\FntCache.dll
11:16:40.0195 0x079c FontCache - ok
11:16:40.0211 0x079c [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:16:40.0211 0x079c FontCache3.0.0.0 - ok
11:16:40.0226 0x079c [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:16:40.0242 0x079c FsDepends - ok
11:16:40.0273 0x079c [ 500A9814FD9446A8126858A5A7F7D273, FB9607A43B8DDA87A449A3BFEBDC035F00BA7B5D9CC56AD5F310732A38F56A46 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:16:40.0289 0x079c Fs_Rec - ok
11:16:40.0304 0x079c [ 4732E596BB1C50D9F9188C5074EE7782, 465E47C6AFA53B7CAFED5C61A5D832E7B3A1A33F82E1F11A472B84CD24D2ED55 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:16:40.0336 0x079c fvevol - ok
11:16:40.0336 0x079c [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:16:40.0351 0x079c gagp30kx - ok
11:16:40.0351 0x079c [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:16:40.0351 0x079c GEARAspiWDM - ok
11:16:40.0398 0x079c [ 8BA3C04702BF8F927AB36AE8313CA4EE, 3B6460C8134AA9D6E4FB978201B35FE9B67DD5BBB6C8D9625F3097DDA30C2893 ] gpsvc C:\Windows\System32\gpsvc.dll
11:16:40.0445 0x079c gpsvc - ok
11:16:40.0460 0x079c [ 2144F7E15B4B779BFD91429EE3B4188A, 692B5CA6449A713BF9BA6CD21B8483AFCB334924EA74B31DF6FEC1510DD828F9 ] hcmon C:\Windows\system32\drivers\hcmon.sys
11:16:40.0476 0x079c hcmon - ok
11:16:40.0476 0x079c [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:16:40.0492 0x079c hcw85cir - ok
11:16:40.0507 0x079c [ 3530CAD25DEBA7DC7DE8BB51632CBC5F, 6706B8AD211A4B89B6571ACD227412026EAD87D71456B3EC6E7DD8FA15B997BE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:16:40.0538 0x079c HdAudAddService - ok
11:16:40.0538 0x079c [ 717A2207FD6F13AD3E664C7D5A43C7BF, BF28A6F00B64FA0E801493E3289CFFD5E313E724DF7B5AB521C9E37A20890DCF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:16:40.0554 0x079c HDAudBus - ok
11:16:40.0570 0x079c [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:16:40.0570 0x079c HidBatt - ok
11:16:40.0616 0x079c [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:16:40.0616 0x079c HidBth - ok
11:16:40.0632 0x079c [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:16:40.0648 0x079c HidIr - ok
11:16:40.0663 0x079c [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\System32\hidserv.dll
11:16:40.0694 0x079c hidserv - ok
11:16:40.0710 0x079c [ 25072FB35AC90B25F9E4E3BACF774102, EBCE089947CC5A251A517CB91E81FCB948B18405FBACA04C874D4A48AF88676D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:16:40.0710 0x079c HidUsb - ok
11:16:40.0741 0x079c [ 741C2A45CA8407E374AABA3E330B7872, FCF31C46297CFDF8240F0E783A61C8463FEDB1EF7A676AB89DFF0EAE9F3534B4 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:16:40.0772 0x079c hkmsvc - ok
11:16:40.0788 0x079c [ A768CA158BB06782A2835B907F4873C3, EFF736C6BA38FB8FC8807286AB273E7274F505E8E59D952E8563DF77C412C5AE ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:16:40.0804 0x079c HomeGroupListener - ok
11:16:40.0819 0x079c [ FB08DEC5EF43D0C66D83B8E9694E7549, 9C9ECE9E90F524791FC5DCE797BAE39605F966592126FF058BA3FA0BEFD07BEB ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:16:40.0835 0x079c HomeGroupProvider - ok
11:16:40.0835 0x079c [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
11:16:40.0850 0x079c HpSAMD - ok
11:16:40.0866 0x079c [ C531C7FD9E8B62021112787C4E2C5A5A, 09205E2A5BFB6C623B312B8AC82F7F7CA8A922B1D9A0E3952BD3BA47BBE1F18C ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:16:40.0897 0x079c HTTP - ok
11:16:40.0897 0x079c [ 8305F33CDE89AD6C7A0763ED0B5A8D42, A7CA4978DC1FF6105EA39124DF854F0B1FD478476B871ED0E018AF3AE2165282 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:16:40.0913 0x079c hwpolicy - ok
11:16:40.0913 0x079c [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:16:40.0928 0x079c i8042prt - ok
11:16:40.0928 0x079c [ 71F1A494FEDF4B33C02C4A6A28D6D9E9, 3AF6B8220E5081C79951979FE59E980C0309C826E201AE286D3B42CD2BA8145F ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:16:40.0960 0x079c iaStorV - ok
11:16:40.0991 0x079c [ 5AF815EB5BC9802E5A064E2BA62BFC0C, DC8CED05F623D30C57E8A7A382A219B4266C9C766ABF8A8D71783EACB8607B82 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:16:41.0006 0x079c idsvc - ok
11:16:41.0038 0x079c [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:16:41.0053 0x079c iirsp - ok
11:16:41.0069 0x079c [ FAC0EE6562B121B1399D6E855583F7A5, 034C9EE9232EB2CE64297EC4BCBEB5DA443ED9176C436CC754EF84FFB4AD4B08 ] IKEEXT C:\Windows\System32\ikeext.dll
11:16:41.0116 0x079c IKEEXT - ok
11:16:41.0116 0x079c [ 987A2CC8EC0E86CAA2D8068B1ED7B441, 7F4364824C6F6237D502D4ACBFBDB52016D1F41C6D868E49F1AC0039DA974212 ] InstallFilterService C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
11:16:41.0131 0x079c InstallFilterService - detected UnsignedFile.Multi.Generic ( 1 )
11:16:41.0131 0x079c InstallFilterService ( UnsignedFile.Multi.Generic ) - warning
11:16:41.0131 0x079c [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
11:16:41.0147 0x079c intelide - ok
11:16:41.0147 0x079c [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:16:41.0162 0x079c intelppm - ok
11:16:41.0178 0x079c [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:16:41.0209 0x079c IPBusEnum - ok
11:16:41.0240 0x079c [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:16:41.0256 0x079c IpFilterDriver - ok
11:16:41.0272 0x079c [ 477397B432A256A50EE7E4339EB9EA14, 3722938E69D16962F773F39669E9B90279DC9527BBC63564B33C89DAFD283497 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:16:41.0303 0x079c iphlpsvc - ok
11:16:41.0334 0x079c [ E4454B6C37D7FFD5649611F6496308A7, 5B2AA8C06076C9A1FF944E5EA07C29BA7FABEBB38E6BFB388ED46933EAC465FB ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
11:16:41.0350 0x079c IPMIDRV - ok
11:16:41.0350 0x079c [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:16:41.0381 0x079c IPNAT - ok
11:16:41.0428 0x079c [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:16:41.0443 0x079c iPod Service - ok
11:16:41.0443 0x079c [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:16:41.0459 0x079c IRENUM - ok
11:16:41.0474 0x079c [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
11:16:41.0474 0x079c isapnp - ok
11:16:41.0506 0x079c [ ED46C223AE46C6866AB77CDC41C404B7, 1B2A4A3FF0E5F8F02717F20983D57612D62DFF809064A7E524700E7254BB7DB3 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:16:41.0506 0x079c iScsiPrt - ok
11:16:41.0521 0x079c [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:16:41.0521 0x079c kbdclass - ok
11:16:41.0552 0x079c [ 3D9F0EBF350EDCFD6498057301455964, B3CB5F0C045B06C86E683F3C67DC0D4E37AF16E20B189B05C926A5A7011438FB ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:16:41.0568 0x079c kbdhid - ok
11:16:41.0568 0x079c [ C2243FF9E9AAD0C30E8B1A0914DA15B6, CD01BD44659FDAA6FE8679D0F76748409680A4F4885905EA56F655C60DDEC01F ] KeyIso C:\Windows\system32\lsass.exe
11:16:41.0584 0x079c KeyIso - ok
11:16:41.0584 0x079c [ 52FC17C8589F11747D01D3CF592673D0, 0D432F14DF6A0964947FADF4AFBCC195946A68230DC17FA610CC000BB0C921A7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:16:41.0599 0x079c KSecDD - ok
11:16:41.0599 0x079c [ 3E5474B03568CFAB834DA3C38E8C9EFA, 1223B99AD86905C34BC95C61DA894F36567F4A23EA7E32E955133C5B2FD558DB ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:16:41.0615 0x079c KSecPkg - ok
11:16:41.0646 0x079c [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:16:41.0677 0x079c KtmRm - ok
11:16:41.0708 0x079c [ 8F6BF790D3168224C16F2AF68A84438C, CEEA0E38B746163A4110E157DAB50CC35A689A5BBC9B3691F2B9D3AE49B0D95E ] LanmanServer C:\Windows\System32\srvsvc.dll
11:16:41.0708 0x079c LanmanServer - ok
11:16:41.0724 0x079c [ B9891F885DCF1F0513A51CB58493CB1F, C883D243E1E7B7AEA031FB90FE4FCEED631F835DC95F9D9D60BC554E6EC358C2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:16:41.0755 0x079c LanmanWorkstation - ok
11:16:41.0771 0x079c [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:16:41.0802 0x079c lltdio - ok
11:16:41.0818 0x079c [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:16:41.0833 0x079c lltdsvc - ok
11:16:41.0849 0x079c [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:16:41.0864 0x079c lmhosts - ok
11:16:41.0880 0x079c [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:16:41.0880 0x079c LSI_FC - ok
11:16:41.0911 0x079c [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:16:41.0927 0x079c LSI_SAS - ok
11:16:41.0927 0x079c [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:16:41.0942 0x079c LSI_SAS2 - ok
11:16:41.0942 0x079c [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:16:41.0958 0x079c LSI_SCSI - ok
11:16:41.0958 0x079c [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
11:16:41.0989 0x079c luafv - ok
11:16:41.0989 0x079c [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:16:42.0005 0x079c MBAMProtector - ok
11:16:42.0020 0x079c [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:16:42.0036 0x079c MBAMScheduler - ok
11:16:42.0052 0x079c [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:16:42.0083 0x079c MBAMService - ok
11:16:42.0083 0x079c [ A2AA6A39FFC7788F7A6BAED88F29581A, ADA9063AC7BAE4247451B2C279F37F27D351FBC4B3C24F356567AB524D5F04EF ] Mbm3CBus C:\Windows\system32\DRIVERS\Mbm3CBus.sys
11:16:42.0098 0x079c Mbm3CBus - ok
11:16:42.0114 0x079c [ CA2469CF5FE4E9E601E3C3233ABED59E, 18483C15553E619D24BA0EB6C4882CF8F1754AE74F3A175C91322B64EA64461F ] Mbm3DevMt C:\Windows\system32\DRIVERS\Mbm3DevMt.sys
11:16:42.0130 0x079c Mbm3DevMt - ok
11:16:42.0145 0x079c [ 329D0375074E3506F42B0A760514FD9D, A6948D5148EDD9E184E300BACF30C524936E6643F889BEEC876967D3BA186B8E ] Mbm3mdfl C:\Windows\system32\DRIVERS\Mbm3mdfl.sys
11:16:42.0161 0x079c Mbm3mdfl - ok
11:16:42.0161 0x079c [ 2F0D95A667B71FE8EDAE31EAF4652252, 81007034094570E2A68826647B5E5111B4B1297301CC9E490223A3428489DE84 ] Mbm3Mdm C:\Windows\system32\DRIVERS\Mbm3Mdm.sys
11:16:42.0176 0x079c Mbm3Mdm - ok
11:16:42.0192 0x079c [ E2B0887816ED336685954E3D8FDAA51D, 4DCB08ADC6A89DCA68D1285734B283B567888EF72249F6BBA73A63D1BD462466 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:16:42.0208 0x079c Mcx2Svc - ok
11:16:42.0239 0x079c [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
11:16:42.0239 0x079c MDM - detected UnsignedFile.Multi.Generic ( 1 )
11:16:42.0239 0x079c MDM ( UnsignedFile.Multi.Generic ) - warning
11:16:42.0254 0x079c [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:16:42.0254 0x079c megasas - ok
11:16:42.0270 0x079c [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:16:42.0286 0x079c MegaSR - ok
11:16:42.0301 0x079c [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
11:16:42.0332 0x079c MMCSS - ok
11:16:42.0332 0x079c [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
11:16:42.0364 0x079c Modem - ok
11:16:42.0379 0x079c [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:16:42.0395 0x079c monitor - ok
11:16:42.0395 0x079c [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:16:42.0410 0x079c mouclass - ok
11:16:42.0410 0x079c [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:16:42.0426 0x079c mouhid - ok
11:16:42.0426 0x079c [ 921C18727C5920D6C0300736646931C2, 19ACE502982E9C5B0134676102EAEE96675C9CA237E410DB36C389D6B4078301 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:16:42.0442 0x079c mountmgr - ok
11:16:42.0457 0x079c [ 2AF5997438C55FB79D33D015C30E1974, E8F048A02FEB400C133D0BFC1659921E73B59549E3F7D2A13929901B87A1901F ] mpio C:\Windows\system32\DRIVERS\mpio.sys
11:16:42.0473 0x079c mpio - ok
11:16:42.0488 0x079c [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:16:42.0504 0x079c mpsdrv - ok
11:16:42.0520 0x079c [ 5CD996CECF45CBC3E8D109C86B82D69E, ABE40DA4DA555D3D5054BE28BF82E775D90DCB9E31409DC95FABF2F016B17700 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:16:42.0566 0x079c MpsSvc - ok
11:16:42.0566 0x079c [ B1BE47008D20E43DA3ADC37C24CDB89D, 6E8555E84B42E5098227B35EA5ABADF2CD3AC247B37CB9E9304FF67064EBE59B ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:16:42.0582 0x079c MRxDAV - ok
11:16:42.0598 0x079c [ CA7570E42522E24324A12161DB14EC02, E4DA5EDC7CBCC9E601543071A49347A0AA3EB4EAC205E342A1F2768FD785D08F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:16:42.0598 0x079c mrxsmb - ok
11:16:42.0629 0x079c [ F965C3AB2B2AE5C378F4562486E35051, 5FFDD5531B98FF0EA19A901C4EE1CE6043C245A4BE5533A495E331B5834D696B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:16:42.0644 0x079c mrxsmb10 - ok
11:16:42.0644 0x079c [ 25C38264A3C72594DD21D355D70D7A5D, DCEF2DEBB1859FED6FC7A19D13A841B6B6CA10577E12F116D0EB2D2B8C72A4A1 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:16:42.0660 0x079c mrxsmb20 - ok
11:16:42.0660 0x079c [ 4326D168944123F38DD3B2D9C37A0B12, 322AE93418BE3BA6B3E11C86431EC3F4B23CADC3B968B92978A08A7C0D0D8902 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
11:16:42.0676 0x079c msahci - ok
11:16:42.0691 0x079c [ 455029C7174A2DBB03DBA8A0D8BDDD9A, 614D71978B024109ADD9A7A74F74ABD5FAA1C36A2E859AF288398EAE7CD76DF2 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
11:16:42.0707 0x079c msdsm - ok
11:16:42.0722 0x079c [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
11:16:42.0738 0x079c MSDTC - ok
11:16:42.0738 0x079c [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:16:42.0769 0x079c Msfs - ok
11:16:42.0769 0x079c [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:16:42.0800 0x079c mshidkmdf - ok
11:16:42.0800 0x079c [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
11:16:42.0816 0x079c msisadrv - ok
11:16:42.0832 0x079c [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:16:42.0863 0x079c MSiSCSI - ok
11:16:42.0863 0x079c msiserver - ok
11:16:42.0878 0x079c [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:16:42.0894 0x079c MSKSSRV - ok
11:16:42.0910 0x079c [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:16:42.0941 0x079c MSPCLOCK - ok
11:16:42.0941 0x079c [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:16:42.0956 0x079c MSPQM - ok
11:16:42.0988 0x079c [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:16:43.0003 0x079c MsRPC - ok
11:16:43.0019 0x079c [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:16:43.0019 0x079c mssmbios - ok
11:16:43.0034 0x079c [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:16:43.0050 0x079c MSTEE - ok
11:16:43.0066 0x079c [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:16:43.0081 0x079c MTConfig - ok
11:16:43.0081 0x079c [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
11:16:43.0097 0x079c Mup - ok
11:16:43.0112 0x079c [ 80284F1985C70C86F0B5F86DA2DFE1DF, 424A5BBC28C72DA0DBABEB9E423B8C409754CD1BA3DFC9E174BF22D8BCE1BE63 ] napagent C:\Windows\system32\qagentRT.dll
11:16:43.0144 0x079c napagent - ok
11:16:43.0159 0x079c [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:16:43.0175 0x079c NativeWifiP - ok
11:16:43.0190 0x079c [ 23759D175A0A9BAAF04D05047BC135A8, 2C8C553B4E1ED3A644F619F16BCEDD5A3C6D74A17E6E75A3E740E06B1D636348 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:16:43.0222 0x079c NDIS - ok
11:16:43.0222 0x079c [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:16:43.0253 0x079c NdisCap - ok
11:16:43.0253 0x079c [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:16:43.0284 0x079c NdisTapi - ok
11:16:43.0284 0x079c [ B30AE7F2B6D7E343B0DF32E6C08FCE75, 39BBBF7AF886732CB9ED3E6C06DA4318554089F3BEA74C74328FE1C6EF68E70B ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:16:43.0315 0x079c Ndisuio - ok
11:16:43.0315 0x079c [ 267C415EADCBE53C9CA873DEE39CF3A4, BAA8626BDA7B68176B19A99FBBD40FB2A774C8F44B56F9FFB99A1F5C16A1C555 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:16:43.0346 0x079c NdisWan - ok
11:16:43.0362 0x079c [ AF7E7C63DCEF3F8772726F86039D6EB4, 1CFDED48E8844138864786DBF9D5519162A6DB28F885A781934E8AFBD52EAC50 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:16:43.0393 0x079c NDProxy - ok
11:16:43.0393 0x079c [ 90EB97C8DBF11BB0016C51946AC5ECD6, 1DE00CCDDF49FB05FA73FE14C8EA101B410BFD40A1F7A099B61BBDB6324985BB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:16:43.0393 0x079c Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
11:16:43.0393 0x079c Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
11:16:43.0409 0x079c [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
11:16:43.0409 0x079c Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
11:16:43.0409 0x079c Netaapl ( UnsignedFile.Multi.Generic ) - warning
11:16:43.0409 0x079c [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:16:43.0440 0x079c NetBIOS - ok
11:16:43.0456 0x079c [ DD52A733BF4CA5AF84562A5E2F963B91, 5CEB9664CED3D120F5408A12035748728710D41090A289CF66023CED4C838A1F ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:16:43.0471 0x079c NetBT - ok
11:16:43.0487 0x079c [ C2243FF9E9AAD0C30E8B1A0914DA15B6, CD01BD44659FDAA6FE8679D0F76748409680A4F4885905EA56F655C60DDEC01F ] Netlogon C:\Windows\system32\lsass.exe
11:16:43.0487 0x079c Netlogon - ok
11:16:43.0502 0x079c [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
11:16:43.0534 0x079c Netman - ok
11:16:43.0534 0x079c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:16:43.0549 0x079c NetMsmqActivator - ok
11:16:43.0549 0x079c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:16:43.0565 0x079c NetPipeActivator - ok
11:16:43.0596 0x079c [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
11:16:43.0627 0x079c netprofm - ok
11:16:43.0627 0x079c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:16:43.0643 0x079c NetTcpActivator - ok
11:16:43.0658 0x079c [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:16:43.0674 0x079c NetTcpPortSharing - ok
11:16:43.0830 0x079c [ EF51B405AD8ACAAE6F0231290D20F516, 2BBD53127E1375E36590ECBA9DA6AAD133E850A90D5B5610DED99D37987CAADD ] NETw5s32 C:\Windows\system32\DRIVERS\NETw5s32.sys
11:16:44.0017 0x079c NETw5s32 - ok
11:16:44.0033 0x079c [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:16:44.0033 0x079c nfrd960 - ok
11:16:44.0048 0x079c [ 2226496E34BD40734946A054B1CD657F, 98392D98C9213822268971432BB55047ABD8B4EBD42483FA69BF50FB8FAD64A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:16:44.0080 0x079c NlaSvc - ok
11:16:44.0080 0x079c [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:16:44.0111 0x079c Npfs - ok
11:16:44.0111 0x079c [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
11:16:44.0142 0x079c nsi - ok
11:16:44.0158 0x079c [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:16:44.0189 0x079c nsiproxy - ok
11:16:44.0220 0x079c [ A8F59428E9F361C7AC42A94AC1560BC9, 5B056375C8D21E7AE9E2EAC2EF62F5A2D6D0DBB52DD2FC34F9CC35F55C6766A6 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:16:44.0251 0x079c Ntfs - ok
11:16:44.0267 0x079c [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
11:16:44.0282 0x079c Null - ok
11:16:44.0485 0x079c [ 2FA5434344AF84D73F66BA402FF78690, D244C9BA5C9A582C17AA5DE3BE78A2C177AC2CEE5EE6C0E62A52AED7C51B0FB1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:16:44.0719 0x079c nvlddmkm - ok
11:16:44.0750 0x079c [ F1B0BED906F97E16F6D0C3629D2F21C6, 563DE1AF0BE884264FD0D17AAA92EA32A2EACDF1E6C56D038773919D731E110C ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:16:44.0766 0x079c nvraid - ok
11:16:44.0782 0x079c [ 4520B63899E867F354EE012D34E11536, BDFF1033609834F44B0EDBE8B360FD7977D027034C469862385736AEFE8832B7 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:16:44.0797 0x079c nvstor - ok
11:16:44.0813 0x079c [ B785320CBCF5021DE9945C803696C511, 01D374F6F0EEA385A25DA375EDDD83F5F6F3FEC6D5C3F844AE2DDE75C451A623 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:16:44.0844 0x079c nvsvc - ok
11:16:44.0860 0x079c [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
11:16:44.0875 0x079c nv_agp - ok
11:16:44.0891 0x079c [ 1F0E05DFF4F5A833168E49BE1256F002, A858267572033C185293B0FD15B2BFDA679D0771A14C0ADF24461B529DBAD8DF ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:16:44.0906 0x079c odserv - ok
11:16:44.0922 0x079c [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:16:44.0938 0x079c ohci1394 - ok
11:16:44.0953 0x079c [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:16:44.0969 0x079c ose - ok
11:16:44.0984 0x079c [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:16:45.0000 0x079c p2pimsvc - ok
11:16:45.0016 0x079c [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
11:16:45.0031 0x079c p2psvc - ok
11:16:45.0031 0x079c [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:16:45.0047 0x079c Parport - ok
11:16:45.0062 0x079c [ 66D3415C159741ADE7038A277EFFF99F, D9853845FE495A546328986718074373EAB0F59538CFE7E604B1A94C8CBE7140 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:16:45.0062 0x079c partmgr - ok
11:16:45.0078 0x079c [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
11:16:45.0094 0x079c Parvdm - ok
11:16:45.0094 0x079c [ 4088C1ECD1F54281A92FA663B0FDC36F, DF6EF6C6ACBF7604681D86D352773E8C11937995C512761C66D50DB126F581C2 ] PBADRV C:\Windows\system32\DRIVERS\PBADRV.sys
11:16:45.0109 0x079c PBADRV - ok
11:16:45.0109 0x079c [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:16:45.0125 0x079c PcaSvc - ok
11:16:45.0140 0x079c [ C858CB77C577780ECC456A892E7E7D0F, 21AE545B736739DE5A7B02CF227516BA6D02B1AAAECD8CC516CCF9F1FD710BCF ] pci C:\Windows\system32\DRIVERS\pci.sys
11:16:45.0140 0x079c pci - ok
11:16:45.0156 0x079c [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
11:16:45.0172 0x079c pciide - ok
11:16:45.0172 0x079c [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:16:45.0187 0x079c pcmcia - ok
11:16:45.0203 0x079c [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
11:16:45.0203 0x079c pcw - ok
11:16:45.0218 0x079c [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:16:45.0265 0x079c PEAUTH - ok
11:16:45.0281 0x079c [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:16:45.0328 0x079c PeerDistSvc - ok
11:16:45.0374 0x079c [ 9C1BFF7910C89A1D12E57343475840CB, 62E00E1278BD263B2AC8CB803C31F2818C54DB143C49470FAD07731E04BD2DE3 ] pla C:\Windows\system32\pla.dll
11:16:45.0437 0x079c pla - ok
11:16:45.0468 0x079c [ 71DEF5EC79774C798342D0EA16E41780, 5B5A365E57A7ACE3C4EDA1D891BD613879B284831E8253FDE498E40B2091E3B6 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:16:45.0484 0x079c PlugPlay - ok
11:16:45.0484 0x079c [ F0EFAF6000E9FCBD77F769D527CE5F9D, 2318F47BB5D43CA288AB753F68F509F92CC33F7C0613640C13E14D50BDBD9E65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:16:45.0499 0x079c Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
11:16:45.0499 0x079c Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
11:16:45.0499 0x079c [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:16:45.0515 0x079c PNRPAutoReg - ok
11:16:45.0546 0x079c [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:16:45.0562 0x079c PNRPsvc - ok
11:16:45.0562 0x079c [ 48E1B75C6DC0232FD92BAAE4BD344721, 5BA4EB5A60725836D8085EABF87F51160BA57E318A0C4378410217911A393CE7 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:16:45.0593 0x079c PolicyAgent - ok
11:16:45.0640 0x079c [ DBFF83F709A91049621C1D35DD45C92C, 0A722A44F431CAB5EA77FF5F25EB6975C2111B605564FF9FB59751067E7CD3A7 ] Power C:\Windows\system32\umpo.dll
11:16:45.0671 0x079c Power - ok
11:16:45.0702 0x079c [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:16:45.0733 0x079c PptpMiniport - ok
11:16:45.0733 0x079c [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:16:45.0749 0x079c Processor - ok
11:16:45.0764 0x079c [ AEA3BDBDBA667AA6F678CB38907E4F5E, AB698DCA117F8D5F22F9CD8D7884147BAB4E0C055B8A487BC035C18ED1634752 ] ProfSvc C:\Windows\system32\profsvc.dll
11:16:45.0764 0x079c ProfSvc - ok
11:16:45.0780 0x079c [ C2243FF9E9AAD0C30E8B1A0914DA15B6, CD01BD44659FDAA6FE8679D0F76748409680A4F4885905EA56F655C60DDEC01F ] ProtectedStorage C:\Windows\system32\lsass.exe
11:16:45.0780 0x079c ProtectedStorage - ok
11:16:45.0811 0x079c [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:16:45.0842 0x079c Psched - ok
11:16:45.0874 0x079c [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:16:45.0920 0x079c ql2300 - ok
11:16:45.0920 0x079c [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:16:45.0936 0x079c ql40xx - ok
11:16:45.0952 0x079c [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
11:16:45.0967 0x079c QWAVE - ok
11:16:45.0998 0x079c [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:16:46.0014 0x079c QWAVEdrv - ok
11:16:46.0045 0x079c [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:16:46.0061 0x079c RasAcd - ok
11:16:46.0076 0x079c [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:16:46.0092 0x079c RasAgileVpn - ok
11:16:46.0108 0x079c [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
11:16:46.0139 0x079c RasAuto - ok
11:16:46.0139 0x079c [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:16:46.0170 0x079c Rasl2tp - ok
11:16:46.0186 0x079c [ 0CE66EC736B7FC526D78F7624C7D2A94, D70B45AA413691CF84B24E966EBA1689955E54BDDA206380CAB7CD50F56D5CEB ] RasMan C:\Windows\System32\rasmans.dll
11:16:46.0232 0x079c RasMan - ok
11:16:46.0232 0x079c [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:16:46.0264 0x079c RasPppoe - ok
11:16:46.0295 0x079c [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:16:46.0310 0x079c RasSstp - ok
11:16:46.0326 0x079c [ 835D7E81BF517A3B72384BDCC85E1CE6, DC855AF17150C1B27926293115C01B5E1FD00FABCE18AFAEAB3DC68BDE4C908B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:16:46.0357 0x079c rdbss - ok
11:16:46.0357 0x079c [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:16:46.0373 0x079c rdpbus - ok
11:16:46.0388 0x079c [ 1E016846895B15A99F9A176A05029075, 78AE674B6E7D3A69099B24AC07E06563A4C867F9DCD8548E4DAAE6FC5ACA4E29 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:16:46.0404 0x079c RDPCDD - ok
11:16:46.0435 0x079c [ C5FF95883FFEF704D50C40D21CFB3AB5, 26CC53DDE126A6BD99F606695F063BB7FDC4BBABB9F75F7AD7A84B58C837EEAA ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:16:46.0451 0x079c RDPDR - ok
11:16:46.0466 0x079c [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:16:46.0482 0x079c RDPENCDD - ok
11:16:46.0498 0x079c [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:16:46.0529 0x079c RDPREFMP - ok
11:16:46.0529 0x079c [ C5B8D47A4688DE9D335204EA757C2240, 2F646466120911B0CA0E331B4959A470E18DFD51C8FAAB69BE0461C31D52DBBE ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:16:46.0544 0x079c RDPWD - ok
11:16:46.0576 0x079c [ 4EA225BF1CF05E158853F30A99CA29A7, F211480F13E2FE36C31110AE67ABE74E9D572D3A36BEEDE29E14ECBD8C246878 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:16:46.0576 0x079c rdyboost - ok
11:16:46.0591 0x079c [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:16:46.0622 0x079c RemoteAccess - ok
11:16:46.0638 0x079c [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:16:46.0654 0x079c RemoteRegistry - ok
11:16:46.0669 0x079c [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:16:46.0685 0x079c RFCOMM - ok
11:16:46.0700 0x079c [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:16:46.0732 0x079c RpcEptMapper - ok
11:16:46.0763 0x079c [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
11:16:46.0763 0x079c RpcLocator - ok
11:16:46.0778 0x079c [ 6D3BFF2A044D641208CA5666332F102A, 5FBECB15EE71EBF77F2B17D7FA65A369103BB3057409ABEC55C2DF8C2A43BA32 ] RpcSs C:\Windows\system32\rpcss.dll
11:16:46.0794 0x079c RpcSs - detected UnsignedFile.Multi.Generic ( 1 )
11:16:46.0794 0x079c Object is SCO, delete is not allowed
11:16:46.0794 0x079c RpcSs ( UnsignedFile.Multi.Generic ) - warning
11:16:46.0794 0x079c [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:16:46.0825 0x079c rspndr - ok
11:16:46.0841 0x079c [ 5423D8437051E89DD34749F242C98648, 28FD190E13676B0FD452A73C3069B72206E2938DB2240BAA9BDB56687C748A2B ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
11:16:46.0856 0x079c s3cap - ok
11:16:46.0856 0x079c [ C2243FF9E9AAD0C30E8B1A0914DA15B6, CD01BD44659FDAA6FE8679D0F76748409680A4F4885905EA56F655C60DDEC01F ] SamSs C:\Windows\system32\lsass.exe
11:16:46.0872 0x079c SamSs - ok
11:16:46.0872 0x079c [ 34EE0C44B724E3E4CE2EFF29126DE5B5, D27AAF77CB8830893558A600E19CDBF9A6AA7D69DE4B34F317ED4AFD38E8CAFB ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
11:16:46.0888 0x079c sbp2port - ok
11:16:46.0888 0x079c [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:16:46.0919 0x079c SCardSvr - ok
11:16:46.0934 0x079c [ A95C54B2AC3CC9C73FCDF9E51A1D6B51, 8C0189A6AF9AEC46CBA4DA422C52B2D3E4858B2F2658DB6CA7996B5F368D2503 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:16:46.0950 0x079c scfilter - ok
11:16:46.0966 0x079c [ DF1E5C82E4D09CF8105CC644980C4803, 36BB8402B29466CF1AE5BD56ED6CF6FE47DE162ADF04D44E2BCEA168CB0BD4D4 ] Schedule C:\Windows\system32\schedsvc.dll
11:16:46.0997 0x079c Schedule - ok
11:16:47.0012 0x079c [ 628A9E30EC5E18DD5DE6BE4DBDC12198, DDA43DCCB195440D6BD5752BD00D984F45BD6D23DBE2A656C33E3CD1E5D17AD7 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:16:47.0028 0x079c SCPolicySvc - ok
11:16:47.0044 0x079c [ AA826E35F6D28A8E5D1EFEB337F24BA2, B363485F7B6C0048A18CE49009B03B409C61807A9B3F043E0B933DF04B107638 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:16:47.0044 0x079c sdbus - ok
11:16:47.0075 0x079c [ 5FD90ABDBFAEE85986802622CBB03446, 0A8D9DC09C2ACA9EAABED04737E9EBF6EFB92BB2B9E5F37F10BFDF47CBF7DEDB ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:16:47.0090 0x079c SDRSVC - ok
11:16:47.0106 0x079c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:16:47.0122 0x079c secdrv - ok
11:16:47.0122 0x079c [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
11:16:47.0153 0x079c seclogon - ok
11:16:47.0184 0x079c [ E396FBC469DF73692318DC90AD13CE86, 101CE7D454C309BBF02AFCB23CD59D0FEC37D43A19BB55C175237EDBB9BA8595 ] SecureStorageService C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
11:16:47.0215 0x079c SecureStorageService - detected UnsignedFile.Multi.Generic ( 1 )
11:16:47.0215 0x079c SecureStorageService ( UnsignedFile.Multi.Generic ) - warning
11:16:47.0231 0x079c [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\System32\sens.dll
11:16:47.0262 0x079c SENS - ok
11:16:47.0262 0x079c [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:16:47.0278 0x079c SensrSvc - ok
11:16:47.0309 0x079c [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:16:47.0324 0x079c Serenum - ok
11:16:47.0324 0x079c [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:16:47.0340 0x079c Serial - ok
11:16:47.0340 0x079c [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:16:47.0356 0x079c sermouse - ok
11:16:47.0356 0x079c [ 8F55CE568C543D5ADF45C409D16718FC, 64D45854A91B656C1AF36EB272FDC54E9B5FB0200CB93E20F7D997DDA109EF7F ] SessionEnv C:\Windows\system32\sessenv.dll
11:16:47.0387 0x079c SessionEnv - ok
11:16:47.0402 0x079c [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
11:16:47.0402 0x079c sffdisk - ok
11:16:47.0449 0x079c [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
11:16:47.0449 0x079c sffp_mmc - ok
11:16:47.0496 0x079c [ A0708BBD07D245C06FF9DE549CA47185, 6A95ACD63A3E7CE6065D0A8B5C182C5B3F4540B8345AB5DCCBD3AC77E9D6CEAC ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
11:16:47.0496 0x079c sffp_sd - ok
11:16:47.0527 0x079c [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:16:47.0543 0x079c sfloppy - ok
11:16:47.0558 0x079c [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:16:47.0590 0x079c SharedAccess - ok
11:16:47.0621 0x079c [ CD2E48FA5B29EE2B3B5858056D246EF2, B743F92D0121CF3D827753C85F1F5A14C2DAA1CAFD42C7810C3BECB853DB6175 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:16:47.0636 0x079c ShellHWDetection - ok
11:16:47.0636 0x079c [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
11:16:47.0652 0x079c sisagp - ok
11:16:47.0668 0x079c [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:16:47.0683 0x079c SiSRaid2 - ok
11:16:47.0683 0x079c [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:16:47.0699 0x079c SiSRaid4 - ok
11:16:47.0714 0x079c [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
11:16:47.0730 0x079c SkypeUpdate - ok
11:16:47.0746 0x079c [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:16:47.0777 0x079c Smb - ok
11:16:47.0777 0x079c [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:16:47.0792 0x079c SNMPTRAP - ok
11:16:47.0792 0x079c [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
11:16:47.0808 0x079c spldr - ok
11:16:47.0839 0x079c [ E17323B0AA9FB3FF9945731D736EDA2F, 65837FC6329A4B2B042B0CDB04F139CA14C2BD1EE0CDB2C7705431E9D97D0597 ] Spooler C:\Windows\System32\spoolsv.exe
11:16:47.0855 0x079c Spooler - ok
11:16:47.0933 0x079c [ 4C287F9069FEDBD791178876EE9DE536, 6099E76FF6FBA002EBA2BA7BE4E3238D91332E077524D1DD402E0C9ADA22E852 ] sppsvc C:\Windows\system32\sppsvc.exe
11:16:48.0026 0x079c sppsvc - ok
11:16:48.0042 0x079c [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7, E7A8A5774C62DC12B56DC3E0A385ACA9069F3A5E6AC664AD0C383EF44DCF81B3 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:16:48.0073 0x079c sppuinotify - ok
11:16:48.0073 0x079c [ C4A027B8C0BD3FC0699F41FA5E9E0C87, A709BD7DDF0ACA5CF65B5A541FC6013FF86181138B86D1BF631E4BF5F4F2E266 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:16:48.0089 0x079c srv - ok
11:16:48.0120 0x079c [ 414BB592CAD8A79649D01F9D94318FB3, 093F52568B48E94B6C53F2E7F229416B8643DD9CEBB3E41601C64E932E3098F3 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:16:48.0136 0x079c srv2 - ok
11:16:48.0136 0x079c [ FF207D67700AA18242AAF985D3E7D8F4, CFB36B6AA3D6915D23654FB11E848EC47DA8346F47151BE66967E51101FD4222 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:16:48.0151 0x079c srvnet - ok
11:16:48.0167 0x079c [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:16:48.0198 0x079c SSDPSRV - ok
11:16:48.0198 0x079c [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
11:16:48.0214 0x079c ssmdrv - ok
11:16:48.0214 0x079c [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:16:48.0245 0x079c SstpSvc - ok
11:16:48.0260 0x079c [ 7AEFC130355AA99307B31EE678614380, 3DE11EF705725D5B6C9BCD24AD983EFA030A1182FD7FEFA78E54927E74EF2901 ] STacSV C:\Program Files\IDT\WDM\STacSV.exe
11:16:48.0276 0x079c STacSV - ok
11:16:48.0276 0x079c [ A5B83C8050572622E5C43B5B3326A129, D2706C056A69CD2D56AF17C009F1DC72E060EC8C58BB020EDAE9BFF21BBB505C ] stdflt C:\Windows\system32\DRIVERS\stdfltn.sys
11:16:48.0292 0x079c stdflt - ok
11:16:48.0292 0x079c Steam Client Service - ok
11:16:48.0338 0x079c [ 00FCEC4DA4198F5F2B9BBD9225842568, 95CE48CC4238FB4D95E2EFFF195C38C321D3F7B513C779FDFBB3F77F9C72EA05 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
11:16:48.0354 0x079c Stereo Service - ok
11:16:48.0354 0x079c [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:16:48.0370 0x079c stexstor - ok
11:16:48.0385 0x079c [ EC4B4125BA14F7436B1740F63F7BFF21, B1D30A8CBC3EDACDE46C43A4C4CD36D09CFB6AD75ACCD063CE31BEFFEFF9C7A5 ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
11:16:48.0401 0x079c STHDA - ok
11:16:48.0416 0x079c [ A22825E7BB7018E8AF3E229A5AF17221, 5C97557F8BC6ABBB5BE624AE41AAC22C3D845F76C3E930337A4C07B2381086D7 ] StiSvc C:\Windows\System32\wiaservc.dll
11:16:48.0448 0x079c StiSvc - ok
11:16:48.0448 0x079c [ 957E346CA948668F2496A6CCF6FF82CC, 5C0E0F0E0F2D36E3213885C60BC3B075AFD2257FEB4B8186FC1FE253E0C218AF ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
11:16:48.0463 0x079c storflt - ok
11:16:48.0479 0x079c [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc C:\Windows\system32\storsvc.dll
11:16:48.0494 0x079c StorSvc - ok
11:16:48.0494 0x079c [ D5751969DC3E4B88BF482AC8EC9FE019, DAEB50C0045364C75965B0E94744C6E2E1E85C8D00F1E8A5593F3EC780BDD7D9 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
11:16:48.0510 0x079c storvsc - ok
11:16:48.0510 0x079c [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:16:48.0526 0x079c swenum - ok
11:16:48.0557 0x079c [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
11:16:48.0588 0x079c swprv - ok
11:16:48.0619 0x079c [ 04105C8DA62353589C29BDAEB8D88BD8, CC7A3A779A143E09FE5C0AA6795A7B13496C4E121347949CB23F7946EE5E2DED ] SysMain C:\Windows\system32\sysmain.dll
11:16:48.0666 0x079c SysMain - ok
11:16:48.0666 0x079c [ FCFB6C552FBC0DA299799CBD50AD9FD4, A2A90829087B1A7F9B57D6F184EB4AE38D10B2986B0DC8D2ACA5EE9412CA3976 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:16:48.0682 0x079c TabletInputService - ok
11:16:48.0697 0x079c [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF, FF66CBA014F3F8B721088F5AB3D004C1711E7F587CC8D4AC3DCFB45CDB746800 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:16:48.0728 0x079c TapiSrv - ok
11:16:48.0760 0x079c [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
11:16:48.0775 0x079c TBS - ok
11:16:48.0806 0x079c [ BBCEAEFF1FD72A026F827CBB2F4AA8AD, D06B2B340BFF9AB71E2EC1B808079A43A09358495CB583840D79454D4BB1654E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:16:48.0838 0x079c Tcpip - ok
11:16:48.0884 0x079c [ BBCEAEFF1FD72A026F827CBB2F4AA8AD, D06B2B340BFF9AB71E2EC1B808079A43A09358495CB583840D79454D4BB1654E ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:16:48.0916 0x079c TCPIP6 - ok
11:16:48.0931 0x079c [ E64444523ADD154F86567C469BC0B17F, FBE8A1DC28C102068183754F6BF0D03F5D18FD24BEB7E4B57D1CFCEBB13B381F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:16:48.0947 0x079c tcpipreg - ok
11:16:49.0040 0x079c [ 69F1A38A6DBFE682491CB61A596662E3, A1FD47C8D4331132806205756F5793F2602442B233CAA0628FD27D8766321CE0 ] tcsd_win32.exe C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
11:16:49.0072 0x079c tcsd_win32.exe - detected UnsignedFile.Multi.Generic ( 1 )
11:16:49.0072 0x079c tcsd_win32.exe ( UnsignedFile.Multi.Generic ) - warning
11:16:49.0072 0x079c Force sending object to P2P due to detect: C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
11:16:49.0087 0x079c Object send P2P result: false
11:16:49.0118 0x079c [ A405D39F4DD131954C39114FBA31A5E0, 3BA5BFE6E7ABE06FDBFCF6CFE53395E2C5E3D2027FF561C538D82C09FA90D29A ] TdmService C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
11:16:49.0150 0x079c TdmService - ok
11:16:49.0165 0x079c [ 1875C1490D99E70E449E3AFAE9FCBADF, FFDF03826DAB748D51B53B648B632E79B3CD6238F684FDEA749B4D0F93BE5A77 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:16:49.0165 0x079c TDPIPE - ok
11:16:49.0196 0x079c [ 7156308896D34EA75A582F9A09E50C17, B5663B4035EE4D7957D2EDB4F9D3342806CB0E094D9661C6BD6AFC031160F176 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:16:49.0212 0x079c TDTCP - ok
11:16:49.0228 0x079c [ CB39E896A2A83702D1737BFD402B3542, FA77D98EA3606CA2FCEF0E0949FDE2C32A080B47CAFDE46CE903CA3CBFC5DF35 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:16:49.0259 0x079c tdx - ok
11:16:49.0368 0x079c [ D53118C165AE5D188632B6CDEEE82A1B, 407885433688329DE733706DBF94D22704B6F55E2E846A288E2C2A546234621B ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
11:16:49.0477 0x079c TeamViewer8 - ok
11:16:49.0493 0x079c [ C36F41EE20E6999DBF4B0425963268A5, 9DB789A17DF2C283D6E803EEA15F2BDFC56EE3BE342A5606DD5C179C3550ECA6 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:16:49.0493 0x079c TermDD - ok
11:16:49.0508 0x079c [ A01E50A04D7B1960B33E92B9080E6A94, 0512BF11F2FD62BDBD2B1AA34D509BE82AC374C37B925C8C0ED119C6331930FD ] TermService C:\Windows\System32\termsrv.dll
11:16:49.0555 0x079c TermService - ok
11:16:49.0555 0x079c [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
11:16:49.0571 0x079c Themes - ok
11:16:49.0571 0x079c [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
11:16:49.0602 0x079c THREADORDER - ok
11:16:49.0618 0x079c [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
11:16:49.0649 0x079c TrkWks - ok
11:16:49.0649 0x079c [ 41A4C781D2286208D397D72099304133, 447CAAD5589AA499EEE49FBA2CB53210359DB76AFF1DF2F0BD4D92A397037C1D ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:16:49.0680 0x079c TrustedInstaller - ok
11:16:49.0696 0x079c [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242, 9606DACB8CBDAF520282BE8C8F064535767405F138D9E9A215D2C59183E93CC1 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:16:49.0727 0x079c tssecsrv - ok
11:16:49.0727 0x079c [ 3E461D890A97F9D4C168F5FDA36E1D00, 82A8778F404F7AC5102802CF46F279F1E58AC74244665D06FD0C68A8BD887536 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:16:49.0758 0x079c tunnel - ok
11:16:49.0774 0x079c [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:16:49.0774 0x079c uagp35 - ok
11:16:49.0789 0x079c [ 09CC3E16F8E5EE7168E01CF8FCBE061A, 81EEAC72A7C4D72666C743DEFF8096FDB465AA1FA8076C60D19CC192846F01CA ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:16:49.0820 0x079c udfs - ok
11:16:49.0852 0x079c [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:16:49.0867 0x079c UI0Detect - ok
11:16:49.0867 0x079c [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
11:16:49.0883 0x079c uliagpkx - ok
11:16:49.0883 0x079c [ 049B3A50B3D646BAEEEE9EEC9B0668DC, 5774438BBD0976424C20559E14BA2AC158D9FF5D4E1FDC1C9C9F4D7A5CE8C377 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:16:49.0898 0x079c umbus - ok
11:16:49.0914 0x079c [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:16:49.0930 0x079c UmPass - ok
11:16:49.0945 0x079c [ 8ECACA5454844F66386F7BE4AE0D7CD1, F3B02A9F598C6A9EFA019F5833959DD1A86FDFDB9FDDF99A8687BBB6211AAD00 ] UmRdpService C:\Windows\System32\umrdp.dll
11:16:49.0961 0x079c UmRdpService - ok
11:16:49.0976 0x079c [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
11:16:50.0008 0x079c upnphost - ok
11:16:50.0008 0x079c [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
11:16:50.0023 0x079c USBAAPL - ok
11:16:50.0023 0x079c [ C31AE588E403042632DC796CF09E30B0, 3EA64F9637D6F0AFC9DA70775AC6598828CB289BC1F7B028B3CC22878A443F30 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:16:50.0039 0x079c usbccgp - ok
11:16:50.0039 0x079c [ 04EC7CEC62EC3B6D9354EEE93327FC82, 6CB41D8644618A5F701F6CA91FB65BB94AA83EA48992133B5262DC539B334B2E ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
11:16:50.0070 0x079c usbcir - ok
11:16:50.0070 0x079c [ E4C436D914768CE965D5E659BA7EEBD8, 4FE0B360D2FE4C8B1D3FA5BD9A0E24CA6C186CD99B72EA58F6B669FABB0B1269 ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:16:50.0086 0x079c usbehci - ok
11:16:50.0101 0x079c [ BDCD7156EC37448F08633FD899823620, 557A6E8B1CD43213FCCB247DEC9EEBC12F263DA13CFF72DEE724E830F7F22C33 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:16:50.0117 0x079c usbhub - ok
11:16:50.0117 0x079c [ EB2D819A639015253C871CDA09D91D58, E65757F3D162F26012BF9E16ECA0688BBCAE633AFFD1CE07083A3306376A4E82 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:16:50.0117 0x079c usbohci - ok
11:16:50.0148 0x079c [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:16:50.0164 0x079c usbprint - ok
11:16:50.0226 0x079c [ 1C4287739A93594E57E2A9E6A3ED7353, FCA7D01D7A699B2C3514FD30D534C9ABA975D4AC2543546D94BEB224834BCA54 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:16:50.0242 0x079c USBSTOR - ok
11:16:50.0242 0x079c [ 22480BF4E5A09192E5E30BA4DDE79FA4, E5CB29CD419009AC0F641E50E8B0E0B7FF6AD68ADB48A959FFD07A37FCF7B9BE ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:16:50.0257 0x079c usbuhci - ok
11:16:50.0257 0x079c [ B5F6A992D996282B7FAE7048E50AF83A, CE8A3096DB78BD7E660A7B544AD3EE25AE747B3A63359D55B480B7FF1B6BEE8B ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:16:50.0273 0x079c usbvideo - ok
11:16:50.0288 0x079c [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
11:16:50.0304 0x079c UxSms - ok
11:16:50.0304 0x079c [ C2243FF9E9AAD0C30E8B1A0914DA15B6, CD01BD44659FDAA6FE8679D0F76748409680A4F4885905EA56F655C60DDEC01F ] VaultSvc C:\Windows\system32\lsass.exe
11:16:50.0320 0x079c VaultSvc - ok
11:16:50.0335 0x079c [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
11:16:50.0351 0x079c vdrvroot - ok
11:16:50.0382 0x079c [ 8C4E7C49D3641BC9E299E466A7F8867D, 4F2E742EFE2DE47EE187B3BCDFDCB525FE484B74700A226D7894F9633F957AFA ] vds C:\Windows\System32\vds.exe
11:16:50.0398 0x079c vds - ok
11:16:50.0413 0x079c [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:16:50.0413 0x079c vga - ok
11:16:50.0429 0x079c [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:16:50.0444 0x079c VgaSave - ok
11:16:50.0460 0x079c [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583, 33DF8F7C9A3176175113CA10D69FAF17A5412C055943F14DDC9923531FADB82D ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
11:16:50.0460 0x079c vhdmp - ok
11:16:50.0476 0x079c [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
11:16:50.0476 0x079c viaagp - ok
11:16:50.0507 0x079c [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
11:16:50.0522 0x079c ViaC7 - ok
11:16:50.0554 0x079c [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
11:16:50.0569 0x079c viaide - ok
11:16:50.0600 0x079c [ 379B349F65F453D2A6E75EA6B7448E49, F52B1B3AE9F5D38B45C889A7B1EBE59533C17E73678D355D1466B5EF3338BF16 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
11:16:50.0600 0x079c vmbus - ok
11:16:50.0616 0x079c [ EC2BBAB4B84D0738C6C83D2234DC36FE, 8BA2FA187DAC6994D5A29897AE5F46E6424FB53C827553E0BB148E31825D6676 ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
11:16:50.0616 0x079c VMBusHID - ok
11:16:50.0632 0x079c [ AFB10AD9AA91D2F70C9F0E6BDA0D119B, 3321A9600CB284E25EAC909A44D3039C7330D398A48AAE2CEDDCFD5C5E438456 ] vmusb C:\Windows\system32\Drivers\vmusb.sys
11:16:50.0632 0x079c vmusb - ok
11:16:50.0663 0x079c [ B98F73F42F88AC63E7324DE51A9E8ED5, 467A251E21CFFA8E9E3EA5BC793060ED3D1671EE4E4D7FA0C634B34E86661902 ] VMUSBArbService C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
11:16:50.0678 0x079c VMUSBArbService - ok
11:16:50.0741 0x079c [ 675130F704973B846DB965D692362619, A3F3ACD84CEAE229280B7A8CB235B7395A4123128BC54D3BC115516DB119DA1F ] vmware-view-usbd C:\Program Files\VMware\VMware View\Client\bin\vmware-view-usbd.exe
11:16:50.0819 0x079c vmware-view-usbd - detected UnsignedFile.Multi.Generic ( 1 )
11:16:50.0819 0x079c vmware-view-usbd ( UnsignedFile.Multi.Generic ) - warning
11:16:50.0819 0x079c Force sending object to P2P due to detect: C:\Program Files\VMware\VMware View\Client\bin\vmware-view-usbd.exe
11:16:50.0819 0x079c Object send P2P result: false
11:16:50.0834 0x079c [ 384E5A2AA49934295171E499F86BA6F3, C79271F98506392422325C075144F45436F9979FE1E002B57F9426F3DA96CEF0 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
11:16:50.0834 0x079c volmgr - ok
11:16:50.0866 0x079c [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:16:50.0881 0x079c volmgrx - ok
11:16:50.0881 0x079c [ 59F06B4968E58BC83DFC56CA4517960E, F0ACE8D5F30B8C81E4FDE0CEBDBA71A212A3198ED09D92B2B40C48FBB243D3F5 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:16:50.0897 0x079c volsnap - ok
11:16:50.0944 0x079c [ 80FB6539A72E03BC39A8CA38C75550F8, 1E7590C2F5637B0BD2E286C0EF599302F02AE6CF0601250E2B5A6019F8ADAFFE ] vpnagent C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
11:16:50.0959 0x079c vpnagent - ok
11:16:50.0959 0x079c [ 0728EFA3492908D683F1A88C0818CBA3, 8264F769D2271294BE1A35E1DBF83826F1563C027216F0D6FBA5FA43522E6683 ] vpnva C:\Windows\system32\DRIVERS\vpnva-6.sys
11:16:50.0975 0x079c vpnva - ok
11:16:50.0975 0x079c [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:16:50.0990 0x079c vsmraid - ok
11:16:51.0037 0x079c [ 7EA2BCD94D9CFAF4C556F5CC94532A6C, 7CD6637BE0A08E3B0F9991D79751DCA8AEC9224B83301821DAA29C9F42B7A9E3 ] VSS C:\Windows\system32\vssvc.exe
11:16:51.0084 0x079c VSS - ok
11:16:51.0084 0x079c [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:16:51.0100 0x079c vwifibus - ok
11:16:51.0100 0x079c [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:16:51.0115 0x079c vwififlt - ok
11:16:51.0115 0x079c [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:16:51.0131 0x079c vwifimp - ok
11:16:51.0162 0x079c [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
11:16:51.0193 0x079c W32Time - ok
11:16:51.0193 0x079c [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:16:51.0209 0x079c WacomPen - ok
11:16:51.0224 0x079c [ 692A712062146E96D28BA0B7D75DE31B, B6D260272330E0C8EBFAD8F09212F48F1EFED42E6BD3F29A5780D0B691D55B34 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:16:51.0256 0x079c WANARP - ok
11:16:51.0256 0x079c [ 692A712062146E96D28BA0B7D75DE31B, B6D260272330E0C8EBFAD8F09212F48F1EFED42E6BD3F29A5780D0B691D55B34 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:16:51.0287 0x079c Wanarpv6 - ok
11:16:51.0318 0x079c [ FBF43B275EFC98799E76D57E5437EDEE, 421566CCFA472ADEF437DF147FDCE6CB2A803DCD3F5C73423CE5312DEE414213 ] WavxDMgr C:\Windows\system32\DRIVERS\WavxDMgr.sys
11:16:51.0318 0x079c WavxDMgr - detected UnsignedFile.Multi.Generic ( 1 )
11:16:51.0318 0x079c WavxDMgr ( UnsignedFile.Multi.Generic ) - warning
11:16:51.0318 0x079c Force sending object to P2P due to detect: C:\Windows\system32\DRIVERS\WavxDMgr.sys
11:16:51.0318 0x079c Object send P2P result: false
11:16:51.0349 0x079c [ 7790B77FE1E5EE47DCC66247095BB4C9, FFB541F83CDE32E65007D41217C2F46CDDF68121E2846B638EAB620ACA940B05 ] wbengine C:\Windows\system32\wbengine.exe
11:16:51.0396 0x079c wbengine - ok
11:16:51.0412 0x079c [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:16:51.0427 0x079c WbioSrvc - ok
11:16:51.0458 0x079c [ 6D9B75275C3E3A5F51AEF81AFFADB2B6, 0805471A57DDF1974F3F7B36B0DD843731C608D10A1C00B01E6E9D0460098E1A ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:16:51.0474 0x079c wcncsvc - ok
11:16:51.0474 0x079c [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:16:51.0490 0x079c WcsPlugInService - ok
11:16:51.0490 0x079c [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:16:51.0505 0x079c Wd - ok
11:16:51.0536 0x079c [ A840213F1ACDCC175B4D1D5AAEAC0D7A, B20F7CAEEA790290072BC170EBEEADB4C19E1C40DB0B3FE0D4A640D0D82300D6 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:16:51.0568 0x079c Wdf01000 - ok
11:16:51.0568 0x079c [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:16:51.0583 0x079c WdiServiceHost - ok
11:16:51.0599 0x079c [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:16:51.0614 0x079c WdiSystemHost - ok
11:16:51.0630 0x079c [ BB5EC38F8D4600119B4720BC5D4211F1, F04F823A9FE77704F38D773C7350C71727C5E3309CD1EC754519C826A4599476 ] WebClient C:\Windows\System32\webclnt.dll
11:16:51.0646 0x079c WebClient - ok
11:16:51.0646 0x079c [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:16:51.0677 0x079c Wecsvc - ok
11:16:51.0692 0x079c [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:16:51.0708 0x079c wercplsupport - ok
11:16:51.0708 0x079c [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
11:16:51.0739 0x079c WerSvc - ok
11:16:51.0755 0x079c [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:16:51.0786 0x079c WfpLwf - ok
11:16:51.0786 0x079c [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:16:51.0802 0x079c WIMMount - ok
11:16:51.0817 0x079c [ 3FAE8F94296001C32EAB62CD7D82E0FD, 180FAECC426CF8F46700C855022E5865D528B1A20686F96D11080AB2FE2E0430 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:16:51.0848 0x079c WinDefend - ok
11:16:51.0848 0x079c WinHttpAutoProxySvc - ok
11:16:51.0864 0x079c [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:16:51.0895 0x079c Winmgmt - ok
11:16:51.0942 0x079c [ C4F5D3901D1B41D602DDC196E0B95B51, 20FF2A9DEE3ECBFB163DFA62A407E30ED49F609EF46936F286C2A08A24EA3E7C ] WinRM C:\Windows\system32\WsmSvc.dll
11:16:52.0004 0x079c WinRM - ok
11:16:52.0020 0x079c [ 30FC6E5448D0CBAAA95280EEEF7FEDAE, 04374450882504D9031951F4E9317E5A128EBA5A22A3555ACD28BC742861AF9C ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
11:16:52.0020 0x079c WinUsb - ok
11:16:52.0051 0x079c [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:16:52.0082 0x079c Wlansvc - ok
11:16:52.0082 0x079c WMCoreService - ok
11:16:52.0098 0x079c [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:16:52.0098 0x079c WmiAcpi - ok
11:16:52.0114 0x079c [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:16:52.0129 0x079c wmiApSrv - ok
11:16:52.0176 0x079c [ 77FBD400984CF72BA0FC4B3489D65F74, 9AA404F17177FEB43A9EA1A86061B452E7C4A93C873E61B68269047519CD433E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:16:52.0223 0x079c WMPNetworkSvc - ok
11:16:52.0223 0x079c [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:16:52.0238 0x079c WPCSvc - ok
11:16:52.0238 0x079c [ B7F658A2EBC07129538AD9AB35212637, 86774A760189E4B126C972A778F890C00C1C30EDD28044DD43B40644A8778B4D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:16:52.0254 0x079c WPDBusEnum - ok
11:16:52.0270 0x079c [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:16:52.0285 0x079c ws2ifsl - ok
11:16:52.0301 0x079c [ A661A76333057B383A06E65F0073222F, B25AEC2B668C61F2E1C6F7AD27706EE10F8B04F09B5D069784131A6B8B5DF570 ] wscsvc C:\Windows\system32\wscsvc.dll
11:16:52.0316 0x079c wscsvc - ok
11:16:52.0332 0x079c WSearch - ok
11:16:52.0348 0x079c [ F12A9DAE73EFCA39FDA6B48FA5FCDF4C, D9CB872D46B90951543CA661CA8B487ECE8B74ED613CC7D6E87DF52597FFD9AF ] wsnm C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
11:16:52.0363 0x079c wsnm - ok
11:16:52.0410 0x079c [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
11:16:52.0472 0x079c wuauserv - ok
11:16:52.0472 0x079c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:16:52.0488 0x079c WudfPf - ok
11:16:52.0488 0x079c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:16:52.0504 0x079c WUDFRd - ok
11:16:52.0519 0x079c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:16:52.0535 0x079c wudfsvc - ok
11:16:52.0550 0x079c [ FF2D745B560F7C71B31F30F4D49F73D2, B2FBF7E5F58E34AC64FE6CF65800F1F07939279203BDE89375FAC92B884A4F37 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:16:52.0566 0x079c WwanSvc - ok
11:16:52.0582 0x079c [ F01FE5EDB32A726EF421304BD3732026, D980891C7B692E67CE9CE3C70B97B74CC6C1BE0D0B543CF24FAE0D6F8DEA771D ] WwanUsbServ C:\Windows\system32\DRIVERS\WwanUsbMp.sys
11:16:52.0582 0x079c WwanUsbServ - ok
11:16:52.0613 0x079c ================ Scan global ===============================
11:16:52.0613 0x079c [ 9A595DF601070DA78C40481120DD2C06, 4C2D6216F212DE9346339ED29152962A39E4435E70F18DD655156727E70818F6 ] C:\Windows\system32\basesrv.dll
11:16:52.0628 0x079c [ 8531AAF69394EFB93BC653916C46D245, 0DD9319AB0E4A714EB51989B2458E46D77F4776DBAD9F65CFA55662BAFB82CD9 ] C:\Windows\system32\winsrv.dll
11:16:52.0644 0x079c [ 8531AAF69394EFB93BC653916C46D245, 0DD9319AB0E4A714EB51989B2458E46D77F4776DBAD9F65CFA55662BAFB82CD9 ] C:\Windows\system32\winsrv.dll
11:16:52.0644 0x079c [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
11:16:52.0660 0x079c [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
11:16:52.0660 0x079c [ Global ] - ok
11:16:52.0675 0x079c ================ Scan MBR ==================================
11:16:52.0675 0x079c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:16:52.0847 0x079c \Device\Harddisk0\DR0 - ok
11:16:52.0847 0x079c ================ Scan VBR ==================================
11:16:52.0847 0x079c [ FC219FED3B1EF3C6DB60FA83720D1AE1 ] \Device\Harddisk0\DR0\Partition1
11:16:52.0847 0x079c \Device\Harddisk0\DR0\Partition1 - ok
11:16:52.0847 0x079c [ FA203C50E66E72409ED073A80DE42F46 ] \Device\Harddisk0\DR0\Partition2
11:16:52.0847 0x079c \Device\Harddisk0\DR0\Partition2 - ok
11:16:52.0862 0x079c AV detected via SS2: AntiVir Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 10.0.0.0 ), 0x42000 ( disabled : updated )
11:16:52.0878 0x079c Win FW state via NFP2: disabled
11:16:52.0878 0x079c ============================================================
11:16:52.0878 0x079c Scan finished
11:16:52.0878 0x079c ============================================================
11:16:52.0878 0x0794 Detected object count: 12
11:16:52.0878 0x0794 Actual detected object count: 12
11:19:36.0678 0x0794 AntiVir Security Management Center Agent ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0678 0x0794 AntiVir Security Management Center Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:36.0678 0x0794 DcomLaunch ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0678 0x0794 DcomLaunch ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:36.0678 0x0794 C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe - copied to quarantine
11:19:36.0694 0x0794 HKLM\SYSTEM\ControlSet001\services\InstallFilterService - will be deleted on reboot
11:19:36.0694 0x0794 HKLM\SYSTEM\ControlSet002\services\InstallFilterService - will be deleted on reboot
11:19:36.0694 0x0794 C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe - will be deleted on reboot
11:19:36.0694 0x0794 InstallFilterService ( UnsignedFile.Multi.Generic ) - User select action: Delete
11:19:36.0710 0x0794 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0710 0x0794 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:36.0741 0x0794 C:\Windows\system32\HPZinw12.dll - copied to quarantine
11:19:36.0741 0x0794 HKLM\SYSTEM\ControlSet001\services\Net Driver HPZ12 - will be deleted on reboot
11:19:36.0741 0x0794 HKLM\SYSTEM\ControlSet002\services\Net Driver HPZ12 - will be deleted on reboot
11:19:36.0772 0x0794 C:\Windows\system32\HPZinw12.dll - will be deleted on reboot
11:19:36.0772 0x0794 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Delete
11:19:36.0803 0x0794 C:\Windows\system32\DRIVERS\netaapl.sys - copied to quarantine
11:19:36.0803 0x0794 HKLM\SYSTEM\ControlSet001\services\Netaapl - will be deleted on reboot
11:19:36.0803 0x0794 HKLM\SYSTEM\ControlSet002\services\Netaapl - will be deleted on reboot
11:19:36.0803 0x0794 C:\Windows\system32\DRIVERS\netaapl.sys - will be deleted on reboot
11:19:36.0803 0x0794 Netaapl ( UnsignedFile.Multi.Generic ) - User select action: Delete
11:19:36.0819 0x0794 C:\Windows\system32\HPZipm12.dll - copied to quarantine
11:19:36.0819 0x0794 HKLM\SYSTEM\ControlSet001\services\Pml Driver HPZ12 - will be deleted on reboot
11:19:36.0819 0x0794 HKLM\SYSTEM\ControlSet002\services\Pml Driver HPZ12 - will be deleted on reboot
11:19:36.0819 0x0794 C:\Windows\system32\HPZipm12.dll - will be deleted on reboot
11:19:36.0819 0x0794 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Delete
11:19:36.0819 0x0794 RpcSs ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0819 0x0794 RpcSs ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:36.0819 0x0794 SecureStorageService ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0819 0x0794 SecureStorageService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:36.0897 0x0794 C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe - copied to quarantine
11:19:36.0897 0x0794 HKLM\SYSTEM\ControlSet001\services\tcsd_win32.exe - will be deleted on reboot
11:19:36.0897 0x0794 HKLM\SYSTEM\ControlSet002\services\tcsd_win32.exe - will be deleted on reboot
11:19:36.0897 0x0794 C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe - will be deleted on reboot
11:19:36.0897 0x0794 tcsd_win32.exe ( UnsignedFile.Multi.Generic ) - User select action: Delete
11:19:36.0897 0x0794 vmware-view-usbd ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0897 0x0794 vmware-view-usbd ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:36.0897 0x0794 WavxDMgr ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:36.0897 0x0794 WavxDMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:37.0006 0x0794 KLMD registered as C:\Windows\system32\drivers\63871646.sys
11:19:42.0076 0x064c Deinitialize success



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 AM

Posted 10 January 2014 - 01:57 PM

You have a patched system file you need some help with stronger disenfection tools.
 

 

C:\Windows\system32\rpcss.dll

 

 

 

You need to start a new thread here. :)



#5 Viruuus

Viruuus
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 10 January 2014 - 02:04 PM

thanks i will do that..!

#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:30 AM

Posted 10 January 2014 - 02:07 PM

:)



#7 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 35,905 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:03:30 AM

Posted 10 January 2014 - 02:33 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/t/520352/patched-system-file-audio-from-svchostexe/ you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users