Kreeg onderstaand bericht
Beste Lucas,
Het wachtwoord van e-mailaccount joep@pchelpforum.nl heb ik moeten wijzigen, omdat het account werd gebruikt voor het versturen van spam.
De onmiddellijke wijziging is noodzakelijk om te voorkomen dat de server, waarop jouw pakket staat, terecht komt op een zogeheten blacklist. Deze lijsten houden bij wie op het internet spam versturen. Eenmaal op zo'n lijst betekent dat er in veel gevallen geen e-mail meer kan worden afgeleverd bij andere servers en dient te allen tijde te worden voorkomen.
Vaak ligt de oorzaak in 'gestolen' inloggegevens of virussen. Neem contact op met onze helpdesk via support@antagonist.nl, zodra je in de gelegenheid bent. Zij kunnen je helpen bij het beveiligen van je computer, zodat dit soort situaties in de toekomst worden voorkomen.
Ik vertrouw je hiermee voldoende te hebben geïnformeerd en hoop spoedig van je te horen.
Met vriendelijke groet,
Martijn Uffing
Antagonist B.V.
Scan 1
Malwarebytes
www.malwarebytes.com
-Logboekdetails-
Scandatum: 26-09-18
Scantijd: 22:14
Logbestand: b4ec4b58-c1c8-11e8-b4ca-00ff683ccb58.json
-Software-informatie-
Versie: 3.6.1.2711
Versie componenten: 1.0.463
Update pakketversie: 1.0.7027
Licentie: Gratis
-Systeeminformatie-
Besturingssysteem: Windows 7 Service Pack 1
Processor: x64
Bestandssysteem: NTFS
Gebruiker: joep-PC\joep
-Scansamenvatting-
Scantype: Bedreigingsscan
Scan geactiveerd door: Handmatig
Resultaat: Voltooid
Objecten gescand: 239808
Dreigingen herkend: 0
Dreigingen in quarantaine: 0
Verstreken tijd: 1 min, 8 sec
-Scanopties-
Geheugen: Ingeschakeld
Opstarten: Ingeschakeld
Bestandssysteem: Ingeschakeld
Archieven: Ingeschakeld
Rootkits: Uitgeschakeld
Heuristiek: Ingeschakeld
POP: Detectie
POA: Detectie
-Scandetails-
Proces: 0
(Geen kwaadaardige items gedetecteerd)
Module: 0
(Geen kwaadaardige items gedetecteerd)
Registersleutel: 0
(Geen kwaadaardige items gedetecteerd)
Registerwaarde: 0
(Geen kwaadaardige items gedetecteerd)
Registerdata: 0
(Geen kwaadaardige items gedetecteerd)
Gegevensstroom: 0
(Geen kwaadaardige items gedetecteerd)
Map: 0
(Geen kwaadaardige items gedetecteerd)
Bestand: 0
(Geen kwaadaardige items gedetecteerd)
Fysieke sector: 0
(Geen kwaadaardige items gedetecteerd)
WMI: 0
(Geen kwaadaardige items gedetecteerd)
(end)
Scan 2
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Home Premium x64
Ran by joep (Administrator) on wo 26-09-2018 at 22:19:23,92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 16
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0GHSZ1VW (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10KJDXUF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3QXWQ9RZ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5NW2DUYW (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\60ITA2NT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7IAPUH36 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QNIT8SAA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\joep\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UZIBLJ6W (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0GHSZ1VW (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10KJDXUF (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3QXWQ9RZ (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5NW2DUYW (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\60ITA2NT (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7IAPUH36 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QNIT8SAA (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UZIBLJ6W (Temporary Internet Files Folder)
Registry: 2
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on wo 26-09-2018 at 22:21:02,84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Zien jullie wat vreemds :read4:
Draai cccleaner eens 😏
Ook gedraaid
Vreemde is dat er in mijn verzonden mail via Pchelpforum eigenlijks niets staat
laatste mail verstuurd op 17-9-18 :icon_o_O:
Ik neem aan dat jij het Pchelpforum mailaccount gekoppeld hebt met Outlook of iets dergelijks?
Als je Comp geïnfecteerd is dan kun je spam versturen via het Pchelpforum account.
Of dit in je uitgaande post is te zien betwijfel ik.
Voorzover ik kan overzien is je comp schoon.
Neem maar contact op met Antogonist morgen. Geef aan wat voor acties je hebt ondernomen en dat jij de spam mails niet kunt zien. Je moet immers toch weer een wachtwoord terug hebben 😏
Ja ga ze morgen middag wel ff mailen
Kreeg laaste tijd wel veel spam binnen
Maar mailwasher filterde dit er gelijk uit
Maar weer bedankt voor de ondersteuning :icon_good: :icon_good: :icon_good: :respect: :respect: :respect:
Wordt vervolgt :icon_good:
Graag gedaan we horen het wel.
Hun chat functie werkt ook uitstekend😏
Het gaat hun om mails die via jouw mailaccount worden verstuurd. Dus niet om binnenkomende spam.
Ik vermoed dat er op 1 of andere manier jouw inloggegevens ( gebruikersnaam en wachtwoord ) zijn afgevangen d.m.v. een sql injectie op een bepaalde website en dat er m.b.v. die inloggegevens spam is verstuurd via de mailserver van pchelp.
Volgens mij moet men bij Antagonist in de logs het IP-adres kunnen zien waarvan deze spam met jouw inloggegevens zijn verstuurd...
Een nieuw wachtwoord zou dat moeten oplossen..
Je zou eventueel nog een rootkit-scanner kunnen draaien ( van Kaspersky (https://usa.kaspersky.com/downloads/tdsskiller) bijv ) of AdwCleaner (https://nl.malwarebytes.com/adwcleaner/) er overheen laten lopen maar ik verwacht daar eigenlijk niks van.. :icon_rolleyes:
Oke zal die 2 scanners voor zekerheid ook nog even draaien :icon_good: :icon_good:
Link van ze gehad om mijn ww te herstellen , maar eerst maar de scans :icon_good:
AdwCleaner vind ook niets vreemds :icon_good:
# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build: 09-25-2018
# Database: 2018-09-24.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 09-27-2018
# Duration: 00:00:07
# OS: Windows 7 Home Premium
# Scanned: 42059
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
AdwCleaner[S00].txt - [1249 octets] - [14/08/2018 10:44:49]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
16:30:05.0609 0x06d8 TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
16:30:08.0755 0x06d8 ============================================================
16:30:08.0755 0x06d8 Current date / time: 2018/09/27 16:30:08.0755
16:30:08.0755 0x06d8 SystemInfo:
16:30:08.0755 0x06d8
16:30:08.0755 0x06d8 OS Version: 6.1.7601 ServicePack: 1.0
16:30:08.0755 0x06d8 Product type: Workstation
16:30:08.0755 0x06d8 ComputerName: JOEP-PC
16:30:08.0756 0x06d8 UserName: joep
16:30:08.0756 0x06d8 Windows directory: C:\windows
16:30:08.0756 0x06d8 System windows directory: C:\windows
16:30:08.0756 0x06d8 Running under WOW64
16:30:08.0756 0x06d8 Processor architecture: Intel x64
16:30:08.0756 0x06d8 Number of processors: 8
16:30:08.0756 0x06d8 Page size: 0x1000
16:30:08.0756 0x06d8 Boot type: Normal boot
16:30:08.0756 0x06d8 CodeIntegrityOptions = 0x00000001
16:30:08.0756 0x06d8 ============================================================
16:30:09.0045 0x06d8 KLMD registered as C:\windows\system32\drivers\27039938.sys
16:30:09.0046 0x06d8 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.24231, osProperties = 0x1
16:30:09.0129 0x06d8 System UUID: {A665171E-B38F-D6C7-72A5-D7396DBBC19C}
16:30:09.0312 0x06d8 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:30:09.0312 0x06d8 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:30:09.0327 0x06d8 Drive \Device\Harddisk6\DR6 - Size: 0x2BAA1476000 ( 2794.52 Gb ), SectorSize: 0x200, Cylinders: 0x59101, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:30:09.0330 0x06d8 ============================================================
16:30:09.0330 0x06d8 \Device\Harddisk0\DR0:
16:30:09.0330 0x06d8 MBR partitions:
16:30:09.0330 0x06d8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x1BE3C800
16:30:09.0330 0x06d8 \Device\Harddisk1\DR1:
16:30:09.0330 0x06d8 MBR partitions:
16:30:09.0330 0x06d8 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x4D79E948, BlocksNum 0x9B668B79
16:30:09.0936 0x06d8 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x4D796B8E
16:30:09.0936 0x06d8 \Device\Harddisk6\DR6:
16:30:09.0937 0x06d8 GPT partitions:
16:30:09.0939 0x06d8 \Device\Harddisk6\DR6\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {93A75AE8-7888-45E9-BE44-E68946F18D95}, Name: , StartLBA 0x8000, BlocksNum 0x5D502000
16:30:09.0939 0x06d8 MBR partitions:
16:30:09.0939 0x06d8 ============================================================
16:30:09.0940 0x06d8 C: <-> \Device\Harddisk0\DR0\Partition1
16:30:10.0005 0x06d8 D: <-> \Device\Harddisk1\DR1\Partition1
16:30:10.0017 0x06d8 E: <-> \Device\Harddisk1\DR1\Partition2
16:30:10.0067 0x06d8 M: <-> \Device\Harddisk6\DR6\Partition1
16:30:10.0067 0x06d8 ============================================================
16:30:10.0067 0x06d8 Initialize success
16:30:10.0067 0x06d8 ============================================================
16:30:11.0242 0x1a9c ============================================================
16:30:11.0242 0x1a9c Scan started
16:30:11.0243 0x1a9c Mode: Manual;
16:30:11.0243 0x1a9c ============================================================
16:30:11.0243 0x1a9c KSN ping started
16:30:11.0336 0x1a9c KSN ping finished: true
16:30:11.0610 0x1a9c ================ Scan system memory ========================
16:30:11.0610 0x1a9c System memory - ok
16:30:11.0610 0x1a9c ================ Scan services =============================
16:30:11.0632 0x1a9c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
16:30:11.0636 0x1a9c 1394ohci - ok
16:30:11.0645 0x1a9c [ DCA5495CA17AEB2F4FD8AC60812C3999, 20A3FC0349294584C340C76D674EE5CA37BA69C886DDA6886CBCCFA437A51BD8 ] ACPI C:\windows\system32\drivers\ACPI.sys
16:30:11.0650 0x1a9c ACPI - ok
16:30:11.0652 0x1a9c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
16:30:11.0653 0x1a9c AcpiPmi - ok
16:30:11.0657 0x1a9c [ CA805DA983594B01F3554464B2E5158F, AC311C5D59AA1FA2B1B3CDB9CCEABEC85878BF6CA6106253186909AA9EB3C1BA ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:30:11.0658 0x1a9c AdobeARMservice - ok
16:30:11.0666 0x1a9c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
16:30:11.0673 0x1a9c adp94xx - ok
16:30:11.0680 0x1a9c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys
16:30:11.0685 0x1a9c adpahci - ok
16:30:11.0689 0x1a9c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys
16:30:11.0692 0x1a9c adpu320 - ok
16:30:11.0696 0x1a9c [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\windows\System32\aelupsvc.dll
16:30:11.0697 0x1a9c AeLookupSvc - ok
16:30:11.0706 0x1a9c [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\windows\system32\drivers\afd.sys
16:30:11.0713 0x1a9c AFD - ok
16:30:11.0716 0x1a9c [ 466BF4170DC41BB939F1F9AB8F97F8F5, 603BF9DA00AABF2CC9FA89865EBCF0CDAADB77D147D0B9FC30480DA7D8215C61 ] agp440 C:\windows\system32\drivers\agp440.sys
16:30:11.0717 0x1a9c agp440 - ok
16:30:11.0720 0x1a9c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe
16:30:11.0723 0x1a9c ALG - ok
16:30:11.0725 0x1a9c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys
16:30:11.0726 0x1a9c aliide - ok
16:30:11.0728 0x1a9c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys
16:30:11.0729 0x1a9c amdide - ok
16:30:11.0731 0x1a9c [ 24BB1011B63B01CDD1CC1780C2C883DC, BBC7BCAFF5AC6BCEAC49B4993A8F5A7BE19DD0BB57E121B63C8B40C561AF5002 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
16:30:11.0732 0x1a9c AmdK8 - ok
16:30:11.0735 0x1a9c [ CC76850B771641B1B6237538F69CB4E5, 17BFEEBF9F13F40BD612DB1EA6F96BFD81477AED73C505AB0AD8564107102024 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
16:30:11.0736 0x1a9c AmdPPM - ok
16:30:11.0739 0x1a9c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\windows\system32\drivers\amdsata.sys
16:30:11.0741 0x1a9c amdsata - ok
16:30:11.0747 0x1a9c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
16:30:11.0750 0x1a9c amdsbs - ok
16:30:11.0752 0x1a9c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\windows\system32\drivers\amdxata.sys
16:30:11.0753 0x1a9c amdxata - ok
16:30:11.0755 0x1a9c [ 88FC69B50011362B4024A83C7ED89B32, 08B838732E22A0E904B3BB36D2B074525713B23FB4BC87A3C60D593684805CB7 ] AppID C:\windows\system32\drivers\appid.sys
16:30:11.0757 0x1a9c AppID - ok
16:30:11.0759 0x1a9c [ AE03D4224F13A185B11A2732B345E4BF, F1198238765C56757E3BF2732667F97BA3D5CAB146A6809B5EA3EDD795F0344D ] AppIDSvc C:\windows\System32\appidsvc.dll
16:30:11.0760 0x1a9c AppIDSvc - ok
16:30:11.0763 0x1a9c [ 672F9F574E34C4E0E671CD8B6D529CC9, AEDFC5DC098CC1974771CD9F119CDDCCF2B6DFB11806D7CA27A2C751A4DBB159 ] Appinfo C:\windows\System32\appinfo.dll
16:30:11.0765 0x1a9c Appinfo - ok
16:30:11.0767 0x1a9c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys
16:30:11.0769 0x1a9c arc - ok
16:30:11.0772 0x1a9c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys
16:30:11.0774 0x1a9c arcsas - ok
16:30:11.0784 0x1a9c [ A8EAEFC4FCF34CE2B85DAA573144A26A, DE24C27CA83CA76101C3A2FBA613B64E8054F38DC8A87E22228F4188B858D552 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:30:11.0785 0x1a9c aspnet_state - ok
16:30:11.0787 0x1a9c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
16:30:11.0788 0x1a9c AsyncMac - ok
16:30:11.0790 0x1a9c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys
16:30:11.0791 0x1a9c atapi - ok
16:30:11.0803 0x1a9c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
16:30:11.0813 0x1a9c AudioEndpointBuilder - ok
16:30:11.0824 0x1a9c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\windows\System32\Audiosrv.dll
16:30:11.0831 0x1a9c AudioSrv - ok
16:30:11.0836 0x1a9c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll
16:30:11.0838 0x1a9c AxInstSV - ok
16:30:11.0847 0x1a9c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
16:30:11.0853 0x1a9c b06bdrv - ok
16:30:11.0859 0x1a9c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
16:30:11.0863 0x1a9c b57nd60a - ok
16:30:11.0867 0x1a9c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll
16:30:11.0869 0x1a9c BDESVC - ok
16:30:11.0871 0x1a9c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys
16:30:11.0872 0x1a9c Beep - ok
16:30:11.0883 0x1a9c [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] BFE C:\windows\System32\bfe.dll
16:30:11.0893 0x1a9c BFE - ok
16:30:11.0906 0x1a9c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll
16:30:11.0918 0x1a9c BITS - ok
16:30:11.0921 0x1a9c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\drivers\blbdrive.sys
16:30:11.0922 0x1a9c blbdrive - ok
16:30:11.0925 0x1a9c [ D7E5C916557268B3DCC9E7DAD58E7727, 439D76346E8762BA7D7F91B09580EFE8354F1A650F3B59101A3BEE2328D8F562 ] bowser C:\windows\system32\DRIVERS\bowser.sys
16:30:11.0927 0x1a9c bowser - ok
16:30:11.0928 0x1a9c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
16:30:11.0929 0x1a9c BrFiltLo - ok
16:30:11.0931 0x1a9c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
16:30:11.0932 0x1a9c BrFiltUp - ok
16:30:11.0935 0x1a9c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll
16:30:11.0937 0x1a9c Browser - ok
16:30:11.0943 0x1a9c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys
16:30:11.0948 0x1a9c Brserid - ok
16:30:11.0950 0x1a9c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
16:30:11.0951 0x1a9c BrSerWdm - ok
16:30:11.0953 0x1a9c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
16:30:11.0954 0x1a9c BrUsbMdm - ok
16:30:11.0956 0x1a9c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
16:30:11.0956 0x1a9c BrUsbSer - ok
16:30:11.0959 0x1a9c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
16:30:11.0961 0x1a9c BTHMODEM - ok
16:30:11.0964 0x1a9c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll
16:30:11.0966 0x1a9c bthserv - ok
16:30:11.0969 0x1a9c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
16:30:11.0971 0x1a9c cdfs - ok
16:30:11.0974 0x1a9c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
16:30:11.0977 0x1a9c cdrom - ok
16:30:11.0980 0x1a9c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll
16:30:11.0982 0x1a9c CertPropSvc - ok
16:30:11.0984 0x1a9c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys
16:30:11.0985 0x1a9c circlass - ok
16:30:11.0992 0x1a9c [ B5D7A0638CA817BA7D8A4DFD3499BA2A, B20EDC88A37C87456102EFFCA5EDD6DC9EFDA4B2E03DD9611C06693D1E4BC526 ] CLFS C:\windows\system32\CLFS.sys
16:30:11.0997 0x1a9c CLFS - ok
16:30:12.0001 0x1a9c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:30:12.0003 0x1a9c clr_optimization_v2.0.50727_32 - ok
16:30:12.0007 0x1a9c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:30:12.0009 0x1a9c clr_optimization_v2.0.50727_64 - ok
16:30:12.0019 0x1a9c [ 53076ABBB58EBFFB79177BEF0DB30888, F7C22D1AC8BD67E0423DFD4929EB1DCEBADA6E32A573C6228171E7BEF2C2B76B ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:30:12.0020 0x1a9c clr_optimization_v4.0.30319_32 - ok
16:30:12.0023 0x1a9c [ 64A703D8BEFF0C653FD518E72CEE16C3, 988EDCAED395446340F157688D607B8F18DBAA810B84089BF0CD934CB10DD7E5 ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:30:12.0025 0x1a9c clr_optimization_v4.0.30319_64 - ok
16:30:12.0027 0x1a9c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\drivers\CmBatt.sys
16:30:12.0028 0x1a9c CmBatt - ok
16:30:12.0030 0x1a9c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys
16:30:12.0031 0x1a9c cmdide - ok
16:30:12.0040 0x1a9c [ 9DE8D00626F01DBD1879A6655D7A752D, 7624FEAEC4FBB2FAC484DA295FB748136BB331032FC58B426A45802F55F5C24D ] CNG C:\windows\system32\Drivers\cng.sys
16:30:12.0047 0x1a9c CNG - ok
16:30:12.0049 0x1a9c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\drivers\compbatt.sys
16:30:12.0049 0x1a9c Compbatt - ok
16:30:12.0051 0x1a9c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
16:30:12.0053 0x1a9c CompositeBus - ok
16:30:12.0054 0x1a9c COMSysApp - ok
16:30:12.0079 0x1a9c [ DAC4D7D79C07957F237E1A4F24435E96, F0D5C21A403580D71F1F6B049C5BB043D3257D39FABCDE623E81CD48034610AC ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
16:30:12.0083 0x1a9c cphs - ok
16:30:12.0086 0x1a9c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
16:30:12.0087 0x1a9c crcdisk - ok
16:30:12.0092 0x1a9c [ EC0550300E899BD69BDB5937E684D348, 982E5FB213F6DE07F061D4FE201CA69D99572398ED41C953E0B3358C3FD9EBF6 ] CryptSvc C:\windows\system32\cryptsvc.dll
16:30:12.0095 0x1a9c CryptSvc - ok
16:30:12.0104 0x1a9c [ 43CCB07A71347064695B8852492DA126, 193438A7B60AC65C19BB3E1B6A1E2F7C870605712C6696FD4AD3544D48A72F51 ] DcomLaunch C:\windows\system32\rpcss.dll
16:30:12.0112 0x1a9c DcomLaunch - ok
16:30:12.0118 0x1a9c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll
16:30:12.0123 0x1a9c defragsvc - ok
16:30:12.0127 0x1a9c [ 63705A08981F7EDD376241D6E0A9C2AC, 6965D64D164A4DBBC328D2611EE38A71D3FA66A6438AFC6E4830DC37ABC28729 ] DfsC C:\windows\system32\Drivers\dfsc.sys
16:30:12.0129 0x1a9c DfsC - ok
16:30:12.0135 0x1a9c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll
16:30:12.0140 0x1a9c Dhcp - ok
16:30:12.0163 0x1a9c [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\windows\system32\diagtrack.dll
16:30:12.0184 0x1a9c DiagTrack - ok
16:30:12.0187 0x1a9c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys
16:30:12.0188 0x1a9c discache - ok
16:30:12.0191 0x1a9c [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\windows\system32\drivers\disk.sys
16:30:12.0192 0x1a9c Disk - ok
16:30:12.0197 0x1a9c [ EEEFC204476D5C44E4F6802F55697179, 0B67D193FF6389BE207F584F4D0C4C0B8BC9F4206851991AD270D894B95E314E ] Dnscache C:\windows\System32\dnsrslvr.dll
16:30:12.0200 0x1a9c Dnscache - ok
16:30:12.0206 0x1a9c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll
16:30:12.0210 0x1a9c dot3svc - ok
16:30:12.0214 0x1a9c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll
16:30:12.0217 0x1a9c DPS - ok
16:30:12.0219 0x1a9c [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
16:30:12.0220 0x1a9c drmkaud - ok
16:30:12.0226 0x1a9c [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01 C:\windows\system32\DRIVERS\dtsoftbus01.sys
16:30:12.0229 0x1a9c dtsoftbus01 - ok
16:30:12.0245 0x1a9c [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
16:30:12.0256 0x1a9c DXGKrnl - ok
16:30:12.0261 0x1a9c [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD, 967829CE37158020F6026C588260FCFC6F9852DDDACD622FAF7AB75121DF5B3D ] E1G60 C:\windows\system32\DRIVERS\E1G6032E.sys
16:30:12.0264 0x1a9c E1G60 - ok
16:30:12.0268 0x1a9c [ ADCEA5E208D2C6B706F2107B1E774167, 865591CD5F617A25BF05AF46D642E77BB4EE33F26BEB10C17C6C75A12B481A9E ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
16:30:12.0270 0x1a9c eamonm - ok
16:30:12.0274 0x1a9c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll
16:30:12.0276 0x1a9c EapHost - ok
16:30:12.0323 0x1a9c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys
16:30:12.0366 0x1a9c ebdrv - ok
16:30:12.0372 0x1a9c [ 72D30CE8351FD3B8E87DDF92365ED7FC, 344245640AFD4B775055EF3C84CA2D114B0C1DBC88BB28CC82728A5CDC492DDD ] EFS C:\windows\System32\lsass.exe
16:30:12.0374 0x1a9c EFS - ok
16:30:12.0379 0x1a9c [ 861C5A4837C1B044D7B72F81E9FE5FD6, E30BEF717A7F5620F0FF7F3984130E084A5298875CE0028536971CBE87AC9507 ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
16:30:12.0381 0x1a9c ehdrv - ok
16:30:12.0393 0x1a9c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe
16:30:12.0402 0x1a9c ehRecvr - ok
16:30:12.0406 0x1a9c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe
16:30:12.0408 0x1a9c ehSched - ok
16:30:12.0441 0x1a9c [ C902C5BE11D6214754A6ECA32E3CA8EB, 13ACB59EDA522399AC31152C0B18E4600815CEDD0857C975AB21180FD69F9899 ] ekrn C:\Program Files\ESET\ESET Security\ekrn.exe
16:30:12.0467 0x1a9c ekrn - ok
16:30:12.0500 0x1a9c [ C902C5BE11D6214754A6ECA32E3CA8EB, 13ACB59EDA522399AC31152C0B18E4600815CEDD0857C975AB21180FD69F9899 ] ekrnEpfw C:\Program Files\ESET\ESET Security\ekrn.exe
16:30:12.0526 0x1a9c ekrnEpfw - ok
16:30:12.0537 0x1a9c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys
16:30:12.0545 0x1a9c elxstor - ok
16:30:12.0549 0x1a9c [ 88AE4F33F5AE0EE77FA5C82B7BFAF036, 5CE4DA9ACFBAC48DD60E49F6345F4C8C0E53B2334769D5E4B6120389CD0BE502 ] epfwwfp C:\windows\system32\DRIVERS\epfwwfp.sys
16:30:12.0550 0x1a9c epfwwfp - ok
16:30:12.0555 0x1a9c [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc C:\windows\system32\EscSvc64.exe
16:30:12.0557 0x1a9c EpsonScanSvc - ok
16:30:12.0562 0x1a9c [ 86032A47AD0105130FE7808C903E2086, ACCCA35483B7E8F9FC72A65031E024C469DF94FCCF2C5CC37C9B3BED4F1C676E ] EPSON_PM_RPCV4_06 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
16:30:12.0565 0x1a9c EPSON_PM_RPCV4_06 - ok
16:30:12.0567 0x1a9c [ 9002EED07FD7FCFF6B8C5C06B454AC19, 0FCEF7D930316FF267841009DF83F29A7D9CD6ED710128F493EC15EC99D9ACD6 ] ErrDev C:\windows\system32\drivers\errdev.sys
16:30:12.0567 0x1a9c ErrDev - ok
16:30:12.0576 0x1a9c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll
16:30:12.0582 0x1a9c EventSystem - ok
16:30:12.0588 0x1a9c [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat C:\windows\system32\drivers\exfat.sys
16:30:12.0592 0x1a9c exfat - ok
16:30:12.0597 0x1a9c [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat C:\windows\system32\drivers\fastfat.sys
16:30:12.0600 0x1a9c fastfat - ok
16:30:12.0611 0x1a9c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe
16:30:12.0621 0x1a9c Fax - ok
16:30:12.0624 0x1a9c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys
16:30:12.0625 0x1a9c fdc - ok
16:30:12.0627 0x1a9c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll
16:30:12.0628 0x1a9c fdPHost - ok
16:30:12.0630 0x1a9c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll
16:30:12.0631 0x1a9c FDResPub - ok
16:30:12.0634 0x1a9c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys
16:30:12.0636 0x1a9c FileInfo - ok
16:30:12.0638 0x1a9c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys
16:30:12.0639 0x1a9c Filetrace - ok
16:30:12.0641 0x1a9c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys
16:30:12.0642 0x1a9c flpydisk - ok
16:30:12.0648 0x1a9c [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] FltMgr C:\windows\system32\drivers\fltmgr.sys
16:30:12.0652 0x1a9c FltMgr - ok
16:30:12.0673 0x1a9c [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache C:\windows\system32\FntCache.dll
16:30:12.0690 0x1a9c FontCache - ok
16:30:12.0693 0x1a9c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:30:12.0694 0x1a9c FontCache3.0.0.0 - ok
16:30:12.0697 0x1a9c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
16:30:12.0699 0x1a9c FsDepends - ok
16:30:12.0701 0x1a9c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
16:30:12.0701 0x1a9c Fs_Rec - ok
16:30:12.0706 0x1a9c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
16:30:12.0709 0x1a9c fvevol - ok
16:30:12.0712 0x1a9c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
16:30:12.0714 0x1a9c gagp30kx - ok
16:30:12.0726 0x1a9c [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\windows\System32\gpsvc.dll
16:30:12.0738 0x1a9c gpsvc - ok
16:30:12.0741 0x1a9c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
16:30:12.0742 0x1a9c hcw85cir - ok
16:30:12.0749 0x1a9c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
16:30:12.0754 0x1a9c HdAudAddService - ok
16:30:12.0758 0x1a9c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
16:30:12.0760 0x1a9c HDAudBus - ok
16:30:12.0762 0x1a9c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys
16:30:12.0763 0x1a9c HidBatt - ok
16:30:12.0766 0x1a9c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys
16:30:12.0768 0x1a9c HidBth - ok
16:30:12.0770 0x1a9c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys
16:30:12.0771 0x1a9c HidIr - ok
16:30:12.0774 0x1a9c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\system32\hidserv.dll
16:30:12.0775 0x1a9c hidserv - ok
16:30:12.0777 0x1a9c [ 90D91013D16A15B22A4B4EB6D4140A5B, A13B013AB5F1839304699A8130A5DF8B4F76657E4132BF7EAFAEADBFFE3AB490 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
16:30:12.0778 0x1a9c HidUsb - ok
16:30:12.0781 0x1a9c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll
16:30:12.0783 0x1a9c hkmsvc - ok
16:30:12.0788 0x1a9c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:30:12.0792 0x1a9c HomeGroupListener - ok
16:30:12.0798 0x1a9c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:30:12.0802 0x1a9c HomeGroupProvider - ok
16:30:12.0804 0x1a9c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
16:30:12.0806 0x1a9c HpSAMD - ok
16:30:12.0819 0x1a9c [ 93C367EA831FB39DEE3BA96539A187FB, 8B912152CA8B89B4429278F93163481BAA07E2D940EE61CE1B7AD178AB13E105 ] HTTP C:\windows\system32\drivers\HTTP.sys
16:30:12.0829 0x1a9c HTTP - ok
16:30:12.0832 0x1a9c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
16:30:12.0833 0x1a9c hwpolicy - ok
16:30:12.0835 0x1a9c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\drivers\i8042prt.sys
16:30:12.0837 0x1a9c i8042prt - ok
16:30:12.0849 0x1a9c [ FA4C48E36F0B24E7E33D3E7E1844B9C9, F61F448B8E305DEFDDA5D4A6FC4E57C798C11ED4DA0ACB885847DC8A9A7B4E98 ] iaStorA C:\windows\system32\drivers\iaStorA.sys
16:30:12.0856 0x1a9c iaStorA - ok
16:30:12.0859 0x1a9c [ 05E24E2CA39C0D2FAADE8FC603345A7D, 01C519CABD3B1F003AAD1B6F1CE79C1A49408DFC2CE5A8008A7BD0A1266D783C ] iaStorF C:\windows\system32\drivers\iaStorF.sys
16:30:12.0860 0x1a9c iaStorF - ok
16:30:12.0868 0x1a9c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
16:30:12.0874 0x1a9c iaStorV - ok
16:30:12.0889 0x1a9c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:30:12.0901 0x1a9c idsvc - ok
16:30:12.0904 0x1a9c IEEtwCollectorService - ok
16:30:12.0973 0x1a9c [ 5863E2DD2E5C2D1B1F70C3826C162A7B, A6A0DBFA91F53D116AFFC1644F636A9D33A20B00A842A190190584F8AE2D1FF0 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
16:30:13.0028 0x1a9c igfx - ok
16:30:13.0039 0x1a9c [ C5202C7669226FF13A74228BD42AD982, BA843DEF6649DF34F9D0D0A380E77557D7785B8239A61EA33EFF08AEF0C8E6DE ] igfxCUIService1.0.0.0 C:\windows\system32\igfxCUIService.exe
16:30:13.0045 0x1a9c igfxCUIService1.0.0.0 - ok
16:30:13.0048 0x1a9c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys
16:30:13.0049 0x1a9c iirsp - ok
16:30:13.0062 0x1a9c [ 25AF7D5C819F19D7C97F4A9607F2609A, 70142B97F1087E20758AFECF5A7AB2EC1FDBBF68019A3BEC6C49F168650FEFC8 ] IKEEXT C:\windows\System32\ikeext.dll
16:30:13.0074 0x1a9c IKEEXT - ok
16:30:13.0125 0x1a9c [ E9740A3BC0AE6EA035FF7ECE3A1B27B6, 4CA3E094B0057E143955DE5D41C3344688B6D2C4FFC0417235FF46312B600F99 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
16:30:13.0163 0x1a9c IntcAzAudAddService - ok
16:30:13.0174 0x1a9c [ EEE7376243CD8A4B49B885EF122D25E5, A3B89E7B513C95558C4DA41D3C136D464381263BA43E00EC136FC776DAA0BA94 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
16:30:13.0181 0x1a9c IntcDAud - ok
16:30:13.0183 0x1a9c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys
16:30:13.0184 0x1a9c intelide - ok
16:30:13.0187 0x1a9c [ FA4475BE23137E680B53C9384F77A85D, F1EBA75E92F667307C051A1FBE523E06CEE664FEA7B863F8CD4A88564B75818F ] intelppm C:\windows\system32\drivers\intelppm.sys
16:30:13.0188 0x1a9c intelppm - ok
16:30:13.0190 0x1a9c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll
16:30:13.0193 0x1a9c IPBusEnum - ok
16:30:13.0196 0x1a9c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
16:30:13.0197 0x1a9c IpFilterDriver - ok
16:30:13.0206 0x1a9c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll
16:30:13.0214 0x1a9c iphlpsvc - ok
16:30:13.0218 0x1a9c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
16:30:13.0219 0x1a9c IPMIDRV - ok
16:30:13.0223 0x1a9c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys
16:30:13.0226 0x1a9c IPNAT - ok
16:30:13.0228 0x1a9c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys
16:30:13.0229 0x1a9c IRENUM - ok
16:30:13.0231 0x1a9c [ 905E9D664F38B93B53FA05422165F5B5, 5B0D8869C73836378C234FAA407DE047F5F638D3E872B246A1AC74BE44BBD7DD ] isapnp C:\windows\system32\drivers\isapnp.sys
16:30:13.0232 0x1a9c isapnp - ok
16:30:13.0237 0x1a9c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
16:30:13.0241 0x1a9c iScsiPrt - ok
16:30:13.0244 0x1a9c [ 78D369F8A81A341109FBA1DB64B4C512, E584F693255CCBF7006E7D35984149CF599BB0849A8F02EFDD6223DF0D606049 ] iusb3hcs C:\windows\system32\drivers\iusb3hcs.sys
16:30:13.0244 0x1a9c iusb3hcs - ok
16:30:13.0251 0x1a9c [ 5B632ABA038CE2E2D5D2D1115C6B26D1, 605A8FFA704E4369CF9D17DF8630DC9E196B8920D47F1CC5151759E60B234C1F ] iusb3hub C:\windows\system32\DRIVERS\iusb3hub.sys
16:30:13.0256 0x1a9c iusb3hub - ok
16:30:13.0269 0x1a9c [ EA841584EF59528D11F20355770E427E, 515737761BB2A0A233F4AD141E28D93E3B9789320A15B7D5FB3DB5AC3CD8E249 ] iusb3xhc C:\windows\system32\drivers\iusb3xhc.sys
16:30:13.0279 0x1a9c iusb3xhc - ok
16:30:13.0283 0x1a9c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
16:30:13.0284 0x1a9c kbdclass - ok
16:30:13.0286 0x1a9c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys
16:30:13.0288 0x1a9c kbdhid - ok
16:30:13.0289 0x1a9c [ 72D30CE8351FD3B8E87DDF92365ED7FC, 344245640AFD4B775055EF3C84CA2D114B0C1DBC88BB28CC82728A5CDC492DDD ] KeyIso C:\windows\system32\lsass.exe
16:30:13.0290 0x1a9c KeyIso - ok
16:30:13.0293 0x1a9c [ 2A37E1867C1B0187E48D87AD36DB15D2, 8F522A2E340D23E478DC2673F557B5327535208F393616216CF8190DE0F76016 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
16:30:13.0295 0x1a9c KSecDD - ok
16:30:13.0299 0x1a9c [ 5C42CED47415DC06C62B56AABD35B2A2, 7FC7ED231CDFA2CDD40D17103A67D3A132BE9276482369C54AFF0D66FD651760 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
16:30:13.0302 0x1a9c KSecPkg - ok
16:30:13.0304 0x1a9c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys
16:30:13.0305 0x1a9c ksthunk - ok
16:30:13.0311 0x1a9c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll
16:30:13.0317 0x1a9c KtmRm - ok
16:30:13.0322 0x1a9c [ E65118228501478C4630BC96F2E1C876, FF2346ED4B097D9D58D558F4A8A854597E457F37C12984160D22E0F5B2F31720 ] LanmanServer C:\windows\system32\srvsvc.dll
16:30:13.0327 0x1a9c LanmanServer - ok
16:30:13.0330 0x1a9c [ 01C95A8CAE16CCF1EA1181395C872B9F, 0BB846AFC7335BB0CD52735AE32E0BCD5075865900C356493DC159795E8C8181 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:30:13.0333 0x1a9c LanmanWorkstation - ok
16:30:13.0336 0x1a9c [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] LGBusEnum C:\windows\system32\drivers\LGBusEnum.sys
16:30:13.0336 0x1a9c LGBusEnum - ok
16:30:13.0339 0x1a9c [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
16:30:13.0339 0x1a9c LGCoreTemp - ok
16:30:13.0342 0x1a9c [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] LGJoyXlCore C:\windows\system32\drivers\LGJoyXlCore.sys
16:30:13.0343 0x1a9c LGJoyXlCore - ok
16:30:13.0345 0x1a9c [ 94AF1384A67B9FCF5651E70BC9D4C526, 9C025F7BBB5BBE9DAF3DEF2F6385CE77C8F413912C4D16930814F6D19B62B367 ] LGSHidFilt C:\windows\system32\DRIVERS\LGSHidFilt.Sys
16:30:13.0346 0x1a9c LGSHidFilt - ok
16:30:13.0348 0x1a9c [ FA59A7421049F5852C1182345A4B8C4F, 6E7DFBF8382187E01CA0AE9CB7A175B563DA6807909A8A7E67779C045F290A06 ] LGVirHid C:\windows\system32\drivers\LGVirHid.sys
16:30:13.0349 0x1a9c LGVirHid - ok
16:30:13.0351 0x1a9c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
16:30:13.0353 0x1a9c lltdio - ok
16:30:13.0359 0x1a9c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll
16:30:13.0364 0x1a9c lltdsvc - ok
16:30:13.0366 0x1a9c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll
16:30:13.0368 0x1a9c lmhosts - ok
16:30:13.0372 0x1a9c [ E33D19987E8AAEF9E227D512D4D7B3C5, BD6EAFC5F780393B51D994FE5E33833049A6AEC9FB5F02C0EA42006C670249B6 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
16:30:13.0375 0x1a9c LogiRegistryService - ok
16:30:13.0380 0x1a9c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
16:30:13.0382 0x1a9c LSI_FC - ok
16:30:13.0385 0x1a9c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
16:30:13.0387 0x1a9c LSI_SAS - ok
16:30:13.0390 0x1a9c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
16:30:13.0392 0x1a9c LSI_SAS2 - ok
16:30:13.0395 0x1a9c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
16:30:13.0397 0x1a9c LSI_SCSI - ok
16:30:13.0400 0x1a9c [ 5416CEB2916BBE635288C4D1075B045E, BEFF99052206C0D774CFFF14AC3305C397726B289B17666C2AD2706C261F2FF0 ] luafv C:\windows\system32\drivers\luafv.sys
16:30:13.0402 0x1a9c luafv - ok
16:30:13.0488 0x1a9c [ ECB760B2391608BA4E0A7987ADA70CCF, 03B39EA56CD46666CFA8467AA246A63924C0F4AACD27E51FD5E1192000B4A577 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
16:30:13.0558 0x1a9c MBAMService - ok
16:30:13.0570 0x1a9c [ 7CE9DEB496E666174498F7DF681E977E, 665D146303C39985E136C38F5F04C5FAE3BCCCB914F9AE75E541E09B28EC639E ] MBAMSwissArmy C:\windows\System32\Drivers\mbamswissarmy.sys
16:30:13.0573 0x1a9c MBAMSwissArmy - ok
16:30:13.0577 0x1a9c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
16:30:13.0579 0x1a9c Mcx2Svc - ok
16:30:13.0582 0x1a9c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys
16:30:13.0583 0x1a9c megasas - ok
16:30:13.0589 0x1a9c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
16:30:13.0594 0x1a9c MegaSR - ok
16:30:13.0597 0x1a9c [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64 C:\windows\system32\drivers\TeeDriverx64.sys
16:30:13.0599 0x1a9c MEIx64 - ok
16:30:13.0601 0x1a9c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll
16:30:13.0603 0x1a9c MMCSS - ok
16:30:13.0606 0x1a9c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys
16:30:13.0607 0x1a9c Modem - ok
16:30:13.0609 0x1a9c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys
16:30:13.0610 0x1a9c monitor - ok
16:30:13.0613 0x1a9c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
16:30:13.0614 0x1a9c mouclass - ok
16:30:13.0616 0x1a9c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
16:30:13.0617 0x1a9c mouhid - ok
16:30:13.0620 0x1a9c [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
16:30:13.0621 0x1a9c mountmgr - ok
16:30:13.0626 0x1a9c [ 9BEDF12A8CE7FA6F8691676E1CB98B04, 1E7A891158CEDD006493AE9BDE47B6F970DBF95B149E0E2B23202EC406DAB7C8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:30:13.0629 0x1a9c MozillaMaintenance - ok
16:30:13.0633 0x1a9c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys
16:30:13.0636 0x1a9c mpio - ok
16:30:13.0639 0x1a9c [ 3F829492638A86A3C4E0BB06778F0C23, A5B5FBE06E407C892E4668D53CC3F49BC6C7ACA12ED7AFB69FAC1C133003A890 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
16:30:13.0641 0x1a9c mpsdrv - ok
16:30:13.0654 0x1a9c [ C7A8706D5536D9BE35396C0116CAA8EE, AFB6B40B5CBA4F54C6AB3F82534CCA9D393C466EC5E3981CEBB33CB111C405D0 ] MpsSvc C:\windows\system32\mpssvc.dll
16:30:13.0666 0x1a9c MpsSvc - ok
16:30:13.0671 0x1a9c [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
16:30:13.0673 0x1a9c MRxDAV - ok
16:30:13.0677 0x1a9c [ FEBE1FE31AEE1F4D9A71D8EDEE646F1E, CB20E409C5142519FD4549DC92282591879994F4151B30918E0F81BD06752B11 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
16:30:13.0680 0x1a9c mrxsmb - ok
16:30:13.0686 0x1a9c [ 1545FC773D6069A3BCD361EA2B3A6FB2, CB11C1965A61B5B43809DA56B77D3A2D62CFDCB88ED58A14A891B9AC10927443 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
16:30:13.0691 0x1a9c mrxsmb10 - ok
16:30:13.0695 0x1a9c [ BD0394F9F6E98BE4E909424D5DF338C8, 230E0EF92137A8CE40632A21E2B1694EDBE01C159EBAC97B65972FDAB572D16C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
16:30:13.0697 0x1a9c mrxsmb20 - ok
16:30:13.0699 0x1a9c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys
16:30:13.0700 0x1a9c msahci - ok
16:30:13.0704 0x1a9c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys
16:30:13.0706 0x1a9c msdsm - ok
16:30:13.0710 0x1a9c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe
16:30:13.0713 0x1a9c MSDTC - ok
16:30:13.0717 0x1a9c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys
16:30:13.0718 0x1a9c Msfs - ok
16:30:13.0719 0x1a9c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
16:30:13.0720 0x1a9c mshidkmdf - ok
16:30:13.0722 0x1a9c [ 6FE3DBEEA730A857CA3DF603B7DEADA2, CFB2F88799BD8D4D6B435C88B0B12D6E3EE83428B8EBE4C9DAACE25F03E7EABB ] msisadrv C:\windows\system32\drivers\msisadrv.sys
16:30:13.0722 0x1a9c msisadrv - ok
16:30:13.0727 0x1a9c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll
16:30:13.0730 0x1a9c MSiSCSI - ok
16:30:13.0732 0x1a9c msiserver - ok
16:30:13.0734 0x1a9c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
16:30:13.0735 0x1a9c MSKSSRV - ok
16:30:13.0736 0x1a9c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
16:30:13.0737 0x1a9c MSPCLOCK - ok
16:30:13.0739 0x1a9c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys
16:30:13.0740 0x1a9c MSPQM - ok
16:30:13.0747 0x1a9c [ 94275393BB85D1E2B74BFEFEC386B4A0, D1E8B2AFB5B0E0B4670887F15A4EDFF88B1C91AF052B2C687590AF05AC560C18 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
16:30:13.0753 0x1a9c MsRPC - ok
16:30:13.0756 0x1a9c [ 1FC0BF25FFCB9F751BCBC6C6AC577078, D48313C4A3E711F3E2AFEC87E3C78B9230A96438CEC92857F8B454E2D1602E84 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
16:30:13.0757 0x1a9c mssmbios - ok
16:30:13.0759 0x1a9c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys
16:30:13.0760 0x1a9c MSTEE - ok
16:30:13.0762 0x1a9c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys
16:30:13.0763 0x1a9c MTConfig - ok
16:30:13.0766 0x1a9c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys
16:30:13.0767 0x1a9c Mup - ok
16:30:13.0775 0x1a9c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll
16:30:13.0783 0x1a9c napagent - ok
16:30:13.0789 0x1a9c [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
16:30:13.0794 0x1a9c NativeWifiP - ok
16:30:13.0809 0x1a9c [ CBE5C2A3353A367734989E335D6AF194, E8927AD1202AC5E523717AC4ADB2345D31A00B304FA56056B27043792237CFEC ] NDIS C:\windows\system32\drivers\ndis.sys
16:30:13.0822 0x1a9c NDIS - ok
16:30:13.0826 0x1a9c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
16:30:13.0828 0x1a9c NdisCap - ok
16:30:13.0830 0x1a9c [ 3F217F77899654833B650ED6A1372BE4, BB351A685D8F05E8066716F7346D28F950FB263D6C4F6957D908EA602FFF0681 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
16:30:13.0831 0x1a9c NdisTapi - ok
16:30:13.0834 0x1a9c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
16:30:13.0835 0x1a9c Ndisuio - ok
16:30:13.0839 0x1a9c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
16:30:13.0842 0x1a9c NdisWan - ok
16:30:13.0845 0x1a9c [ E46AF308E96F7730F59B0F250A884CD6, F5D00B950AAE1F38E295385C934FDC6C24608E65A8357317AE889947A2FE2BDC ] NDProxy C:\windows\system32\drivers\NDProxy.sys
16:30:13.0846 0x1a9c NDProxy - ok
16:30:13.0848 0x1a9c [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
16:30:13.0849 0x1a9c NetBIOS - ok
16:30:13.0855 0x1a9c [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
16:30:13.0859 0x1a9c NetBT - ok
16:30:13.0863 0x1a9c [ 72D30CE8351FD3B8E87DDF92365ED7FC, 344245640AFD4B775055EF3C84CA2D114B0C1DBC88BB28CC82728A5CDC492DDD ] Netlogon C:\windows\system32\lsass.exe
16:30:13.0864 0x1a9c Netlogon - ok
16:30:13.0871 0x1a9c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll
16:30:13.0877 0x1a9c Netman - ok
16:30:13.0887 0x1a9c [ C986B84B68DDA3EECB65F4C330175522, 8F40D3F90BC61FC57BEA66280FF30DEFB1F37F53636992B1C61D01465684BB39 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:30:13.0889 0x1a9c NetMsmqActivator - ok
16:30:13.0892 0x1a9c [ C986B84B68DDA3EECB65F4C330175522, 8F40D3F90BC61FC57BEA66280FF30DEFB1F37F53636992B1C61D01465684BB39 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:30:13.0895 0x1a9c NetPipeActivator - ok
16:30:13.0903 0x1a9c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll
16:30:13.0910 0x1a9c netprofm - ok
16:30:13.0913 0x1a9c [ C986B84B68DDA3EECB65F4C330175522, 8F40D3F90BC61FC57BEA66280FF30DEFB1F37F53636992B1C61D01465684BB39 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:30:13.0915 0x1a9c NetTcpActivator - ok
16:30:13.0918 0x1a9c [ C986B84B68DDA3EECB65F4C330175522, 8F40D3F90BC61FC57BEA66280FF30DEFB1F37F53636992B1C61D01465684BB39 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:30:13.0920 0x1a9c NetTcpPortSharing - ok
16:30:13.0923 0x1a9c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
16:30:13.0924 0x1a9c nfrd960 - ok
16:30:13.0931 0x1a9c [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] NlaSvc C:\windows\System32\nlasvc.dll
16:30:13.0936 0x1a9c NlaSvc - ok
16:30:13.0938 0x1a9c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys
16:30:13.0939 0x1a9c Npfs - ok
16:30:13.0941 0x1a9c [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\windows\system32\nsisvc.dll
16:30:13.0943 0x1a9c nsi - ok
16:30:13.0946 0x1a9c [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
16:30:13.0946 0x1a9c nsiproxy - ok
16:30:13.0972 0x1a9c [ 8422AFBD1C2D30FFC913309D7F1A366D, 1CE5A7945C412BC1F38852DECD7C57FE244EF0D525B9A4F5DD29C1073713B8C6 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
16:30:13.0996 0x1a9c Ntfs - ok
16:30:13.0999 0x1a9c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys
16:30:14.0000 0x1a9c Null - ok
16:30:14.0007 0x1a9c [ 4FD4739B359C2923965FE99B03AFD090, 02D52056A7605B9413747B41CBA2A904FAB025250FE64DFCD435606EF898A73D ] NVHDA C:\windows\system32\drivers\nvhda64v.sys
16:30:14.0010 0x1a9c NVHDA - ok
16:30:14.0263 0x1a9c [ F082C00A47BD495D2648FF5F6AAC40C3, 52023CF9F0C7FDA99E9BDA8E6D8F64EB7554A76FFE581DD3FF54F0B1C3BB6332 ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
16:30:14.0446 0x1a9c nvlddmkm - ok
16:30:14.0465 0x1a9c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys
16:30:14.0468 0x1a9c nvraid - ok
16:30:14.0472 0x1a9c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys
16:30:14.0475 0x1a9c nvstor - ok
16:30:14.0478 0x1a9c [ 7205B1942F895B5597A0DD9164CCDD8C, 182B411F92BFEE76BD71C6DA3223397478055DEB02B8A1105B80B768447F8DF1 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:30:14.0479 0x1a9c NvStreamKms - ok
16:30:14.0487 0x1a9c [ 957DA7FCA6F35F7E69CE8A061D5BEC55, 8DCC292AC9A0F9B940340001FC8DCDE64864C66B9E44616091886ABCA2999C07 ] NvStUSB C:\windows\system32\drivers\nvstusb.sys
16:30:14.0494 0x1a9c NvStUSB - ok
16:30:14.0506 0x1a9c [ CAD1F6AEB2DBB0095323D2BCC1826B32, E9D93E34174C11BDD70B2A695D39E3B8A2ABDBA57CEE7057E17AE8EBB1E00744 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
16:30:14.0515 0x1a9c NvTelemetryContainer - ok
16:30:14.0518 0x1a9c [ 31A62118FFA56D758D3CA4D00EAEA430, 397F7A3F1F1349CF7BA8EF6A417F87C101B1A6C4A0DF08466B50E3CB6F5B5C37 ] nvvad_WaveExtensible C:\windows\system32\drivers\nvvad64v.sys
16:30:14.0519 0x1a9c nvvad_WaveExtensible - ok
16:30:14.0522 0x1a9c [ 05524B29F19E0BB
Inderdaad, maar zoals ik al zei, had ik dat ook niet verwacht...het zit niet op jouw pc....
Ik denk meer in de richting van een besmette website die de wachtwoord-manager of formulier-cache van je browser heeft uitgelezen o.i.d.
Daarvoor hoeft er geen sprake te zijn van enige besmetting van je pc omdat het via je browser-engine verloopt.
In zo'n geval ga ik er wel van uit dat je via een UTP-kabel werkt.
Bij een WiFi-verbinding kun je ook het slachtoffer zijn geworden van een "man in the middle" aanval waardoor je inloggegevens zijn onderschept...
Wie het weet mag het zeggen... :icon_rolleyes:
Ja Reinier hij hangt gewoon aan UTP
Maar ww reset is uitgevoerd en mail werkt weer
Dus voor zover gaat hij goed
:icon_good: :icon_good: :icon_good: :icon_good: :icon_good:
Ik denk ook aan een wachtwoord hack. De pc is schoon. Mocht je die op meerdere plekken gebruiken dan even wijzigen lijkt me. Mooi dat het weer zonder problemen werkt :icon_good:
Mooi Joep, opgelost maar hou hem de komende tijd effe in de smiezen...
Verwacht eigenlijk geen herhaling maar je kunt niet voorzichtig genoeg zijn tegenwoordig. :icon_good:
Ja ik blijf er op letten :read4:
:icon_good: :icon_good: :icon_good: