20:56:21.0475 4172 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
20:56:21.0740 4172 ============================================================
20:56:21.0740 4172 Current date / time: 2012/05/28 20:56:21.0740
20:56:21.0740 4172 SystemInfo:
20:56:21.0740 4172
20:56:21.0740 4172 OS Version: 6.0.6001 ServicePack: 1.0
20:56:21.0740 4172 Product type: Workstation
20:56:21.0740 4172 ComputerName: HÖLLING-PC
20:56:21.0740 4172 UserName: Hölling
20:56:21.0740 4172 Windows directory: C:\Windows
20:56:21.0740 4172 System windows directory: C:\Windows
20:56:21.0740 4172 Running under WOW64
20:56:21.0740 4172 Processor architecture: Intel x64
20:56:21.0740 4172 Number of processors: 2
20:56:21.0740 4172 Page size: 0x1000
20:56:21.0740 4172 Boot type: Normal boot
20:56:21.0740 4172 ============================================================
20:56:51.0567 4172 !crdlk
20:56:51.0567 4172 Drive \Device\Harddisk0\DR0 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'A'
20:56:51.0614 4172 ============================================================
20:56:51.0614 4172 \Device\Harddisk0\DR0:
20:56:51.0614 4172 MBR partitions:
20:56:51.0614 4172 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1749C800
20:56:51.0614 4172 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1778B000, BlocksNum 0x171AE000
20:56:51.0614 4172 ============================================================
20:56:51.0630 4172 C: <-> \Device\Harddisk0\DR0\Partition0
20:56:51.0676 4172 E: <-> \Device\Harddisk0\DR0\Partition1
20:56:51.0676 4172 ============================================================
20:56:51.0676 4172 Initialize success
20:56:51.0676 4172 ============================================================
20:57:51.0315 3004 ============================================================
20:57:51.0315 3004 Scan started
20:57:51.0315 3004 Mode: Manual; SigCheck; TDLFS;
20:57:51.0315 3004 ============================================================
20:57:51.0783 3004 ACPI (8c99ed256a889d647935a97c543b7b85) C:\Windows\system32\drivers\acpi.sys
20:57:51.0939 3004 ACPI - ok
20:57:52.0189 3004 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:57:52.0204 3004 AdobeFlashPlayerUpdateSvc - ok
20:57:52.0314 3004 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
20:57:52.0376 3004 adp94xx - ok
20:57:52.0485 3004 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
20:57:52.0516 3004 adpahci - ok
20:57:52.0548 3004 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
20:57:52.0563 3004 adpu160m - ok
20:57:52.0626 3004 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
20:57:52.0641 3004 adpu320 - ok
20:57:52.0704 3004 AeLookupSvc (0f421175574bfe0bf2f4d8e910a253bb) C:\Windows\System32\aelupsvc.dll
20:57:52.0860 3004 AeLookupSvc - ok
20:57:53.0000 3004 AFD (9bb97042fa331a0fb4bdd98b9280a50a) C:\Windows\system32\drivers\afd.sys
20:57:53.0078 3004 AFD - ok
20:57:53.0156 3004 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
20:57:53.0172 3004 agp440 - ok
20:57:53.0234 3004 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
20:57:53.0250 3004 aic78xx - ok
20:57:53.0312 3004 ALG (5922f4f59b7868f3d74bbbbeb7b825a3) C:\Windows\System32\alg.exe
20:57:53.0499 3004 ALG - ok
20:57:53.0546 3004 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
20:57:53.0562 3004 aliide - ok
20:57:53.0624 3004 AMD External Events Utility (c5ef0a376ce36979409774a5b9dc7903) C:\Windows\system32\atiesrxx.exe
20:57:53.0686 3004 AMD External Events Utility - ok
20:57:53.0749 3004 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
20:57:53.0764 3004 amdide - ok
20:57:53.0780 3004 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
20:57:53.0858 3004 AmdK8 - ok
20:57:54.0061 3004 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:57:54.0076 3004 AntiVirSchedulerService - ok
20:57:54.0154 3004 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:57:54.0170 3004 AntiVirService - ok
20:57:54.0264 3004 ApfiltrService (19b93a45c4428419e60fe840014407e7) C:\Windows\system32\DRIVERS\Apfiltr.sys
20:57:54.0295 3004 ApfiltrService - ok
20:57:54.0373 3004 Appinfo (9c37b3fd5615477cb9a0cd116cf43f5c) C:\Windows\System32\appinfo.dll
20:57:54.0435 3004 Appinfo - ok
20:57:54.0544 3004 Apple Mobile Device (4b5ae15e5c73eb4dc8dbec2788230d41) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
20:57:54.0560 3004 Apple Mobile Device - ok
20:57:54.0654 3004 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
20:57:54.0669 3004 arc - ok
20:57:54.0716 3004 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
20:57:54.0732 3004 arcsas - ok
20:57:54.0778 3004 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
20:57:54.0825 3004 AsyncMac - ok
20:57:54.0888 3004 atapi (b388797caab36d523840347cc6a39b96) C:\Windows\system32\drivers\atapi.sys
20:57:54.0903 3004 atapi - ok
20:57:54.0997 3004 AtiHdmiService (ccfd2e5455ef3bd154d4c5aaba010f32) C:\Windows\system32\drivers\AtiHdmi.sys
20:57:55.0012 3004 AtiHdmiService - ok
20:57:55.0465 3004 atikmdag (c28928becd9d35248c2a6cb18032cacc) C:\Windows\system32\DRIVERS\atikmdag.sys
20:57:55.0964 3004 atikmdag - ok
20:57:56.0198 3004 AudioEndpointBuilder (2a54b6a48ab6d2166271b05e9469326e) C:\Windows\System32\Audiosrv.dll
20:57:56.0276 3004 AudioEndpointBuilder - ok
20:57:56.0323 3004 AudioSrv (2a54b6a48ab6d2166271b05e9469326e) C:\Windows\System32\Audiosrv.dll
20:57:56.0416 3004 AudioSrv - ok
20:57:56.0526 3004 avgntflt (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
20:57:56.0541 3004 avgntflt - ok
20:57:56.0588 3004 avipbb (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
20:57:56.0604 3004 avipbb - ok
20:57:56.0650 3004 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
20:57:56.0666 3004 avkmgr - ok
20:57:56.0713 3004 Beep - ok
20:57:56.0806 3004 BFE (bc4737aaffa5964e4f8827c9b8c0eb8e) C:\Windows\System32\bfe.dll
20:57:56.0931 3004 BFE - ok
20:57:57.0072 3004 BITS (d896a0d43f8ab81ecb1fc6c24decfd58) C:\Windows\system32\qmgr.dll
20:57:57.0196 3004 BITS - ok
20:57:57.0274 3004 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
20:57:57.0337 3004 blbdrive - ok
20:57:57.0446 3004 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
20:57:57.0462 3004 Bonjour Service - ok
20:57:57.0540 3004 bowser (f0f035fcec3554cc1b70c5611bd87951) C:\Windows\system32\DRIVERS\bowser.sys
20:57:57.0602 3004 bowser - ok
20:57:57.0664 3004 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
20:57:57.0711 3004 BrFiltLo - ok
20:57:57.0742 3004 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
20:57:57.0789 3004 BrFiltUp - ok
20:57:57.0867 3004 Browser (a1b39de453433b115b4ea69ee0343816) C:\Windows\System32\browser.dll
20:57:57.0930 3004 Browser - ok
20:57:57.0992 3004 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
20:57:58.0226 3004 Brserid - ok
20:57:58.0288 3004 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
20:57:58.0382 3004 BrSerWdm - ok
20:57:58.0413 3004 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
20:57:58.0507 3004 BrUsbMdm - ok
20:57:58.0554 3004 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
20:57:58.0647 3004 BrUsbSer - ok
20:57:58.0710 3004 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
20:57:58.0788 3004 BTHMODEM - ok
20:57:58.0881 3004 camsvc (f1140ed3a1e1d6824a63f27afd9eef32) C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCameraSrv.exe
20:57:58.0897 3004 camsvc - ok
20:57:58.0944 3004 catchme - ok
20:57:58.0990 3004 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
20:57:59.0068 3004 cdfs - ok
20:57:59.0146 3004 cdrom (3b2fb35363423ed60c8fbf15fc8680bd) C:\Windows\system32\DRIVERS\cdrom.sys
20:57:59.0224 3004 cdrom - ok
20:57:59.0302 3004 CertPropSvc (edfffc8b6afb609bf33dbe0a900426b6) C:\Windows\System32\certprop.dll
20:57:59.0380 3004 CertPropSvc - ok
20:57:59.0443 3004 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
20:57:59.0505 3004 circlass - ok
20:57:59.0614 3004 CLFS (caeda2572b7042b11062f327f099251d) C:\Windows\system32\CLFS.sys
20:57:59.0677 3004 CLFS - ok
20:57:59.0817 3004 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:57:59.0833 3004 clr_optimization_v2.0.50727_32 - ok
20:57:59.0942 3004 clr_optimization_v2.0.50727_64 (fa58b51ed71c9133e141164eaa7c54eb) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:57:59.0958 3004 clr_optimization_v2.0.50727_64 - ok
20:58:00.0129 3004 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:58:00.0145 3004 clr_optimization_v4.0.30319_32 - ok
20:58:00.0285 3004 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:58:00.0301 3004 clr_optimization_v4.0.30319_64 - ok
20:58:00.0363 3004 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys
20:58:00.0441 3004 CmBatt - ok
20:58:00.0504 3004 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
20:58:00.0519 3004 cmdide - ok
20:58:00.0550 3004 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys
20:58:00.0566 3004 Compbatt - ok
20:58:00.0597 3004 COMSysApp - ok
20:58:00.0753 3004 ConfigFree Gadget Service (bcf2c3177e4777e3793310bac0244c1a) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
20:58:00.0769 3004 ConfigFree Gadget Service ( UnsignedFile.Multi.Generic ) - warning
20:58:00.0769 3004 ConfigFree Gadget Service - detected UnsignedFile.Multi.Generic (1)
20:58:00.0847 3004 ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
20:58:00.0862 3004 ConfigFree Service - ok
20:58:00.0909 3004 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
20:58:00.0925 3004 crcdisk - ok
20:58:01.0018 3004 CryptSvc (4374f784121d8b3bb466b03f5e5ebd33) C:\Windows\system32\cryptsvc.dll
20:58:01.0081 3004 CryptSvc - ok
20:58:01.0206 3004 DcomLaunch (52cdade8289ff21f1f2215ff51a5f36c) C:\Windows\system32\rpcss.dll
20:58:01.0284 3004 DcomLaunch - ok
20:58:01.0377 3004 DfsC (3725c43c9e90731eca651d506cc599a3) C:\Windows\system32\Drivers\dfsc.sys
20:58:01.0424 3004 DfsC - ok
20:58:01.0736 3004 DFSR (1781f99840979ee7b126c9073c377fd0) C:\Windows\system32\DFSR.exe
20:58:01.0954 3004 DFSR - ok
20:58:02.0173 3004 Dhcp (fdaa0edfcfb70cd529589ad654651b40) C:\Windows\System32\dhcpcsvc.dll
20:58:02.0220 3004 Dhcp - ok
20:58:02.0344 3004 disk (2dc415fc05fb8a079f896cbbacb19324) C:\Windows\system32\drivers\disk.sys
20:58:02.0360 3004 disk - ok
20:58:02.0485 3004 Dnscache (daf05293c1264e251d3a25e7e24b2ddf) C:\Windows\System32\dnsrslvr.dll
20:58:02.0516 3004 Dnscache - ok
20:58:02.0625 3004 dot3svc (cc661867677627f2911c2a4970dee0f1) C:\Windows\System32\dot3svc.dll
20:58:02.0703 3004 dot3svc - ok
20:58:02.0766 3004 DPS (1583b39790db3eaec7edb0cb0140c708) C:\Windows\system32\dps.dll
20:58:02.0828 3004 DPS - ok
20:58:02.0890 3004 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
20:58:02.0922 3004 drmkaud - ok
20:58:03.0062 3004 DXGKrnl (412964040ce920ff83aff6b5b551bf99) C:\Windows\System32\drivers\dxgkrnl.sys
20:58:03.0171 3004 DXGKrnl - ok
20:58:03.0280 3004 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
20:58:03.0327 3004 E1G60 - ok
20:58:03.0374 3004 Suspicious service (NoAccess): e70a4204416b18c4
20:58:03.0421 3004 e70a4204416b18c4 (7548c052774ad41a0ffd0ba5cb7ed208) C:\Windows\System32\Drivers\e70a4204416b18c4.sys
20:58:03.0421 3004 Suspicious file (NoAccess): C:\Windows\System32\Drivers\e70a4204416b18c4.sys. md5: 7548c052774ad41a0ffd0ba5cb7ed208
20:58:03.0452 3004 e70a4204416b18c4 ( LockedService.Multi.Generic ) - warning
20:58:03.0452 3004 e70a4204416b18c4 - detected LockedService.Multi.Generic (1)
20:58:03.0499 3004 EapHost (c2303883fd9be49dc36a6400643002ea) C:\Windows\System32\eapsvc.dll
20:58:03.0561 3004 EapHost - ok
20:58:03.0592 3004 Ecache (7343d950a34a95dcb7441642e3e6beef) C:\Windows\system32\drivers\ecache.sys
20:58:03.0624 3004 Ecache - ok
20:58:03.0655 3004 edafvdn - ok
20:58:03.0748 3004 ehRecvr (33510be001ccdb5a01fcc88f4dd8dfc7) C:\Windows\ehome\ehRecvr.exe
20:58:03.0826 3004 ehRecvr - ok
20:58:03.0889 3004 ehSched (1abc6436b0edaa3d496d9c827f92820d) C:\Windows\ehome\ehsched.exe
20:58:03.0920 3004 ehSched - ok
20:58:03.0998 3004 ehstart (08f48cb2cd4019afb0456869b49cd76f) C:\Windows\ehome\ehstart.dll
20:58:04.0029 3004 ehstart - ok
20:58:04.0123 3004 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
20:58:04.0154 3004 elxstor - ok
20:58:04.0232 3004 EMDMgmt (e4eb76d0a8fc43db7f36302e1f33791f) C:\Windows\system32\emdmgmt.dll
20:58:04.0310 3004 EMDMgmt - ok
20:58:04.0372 3004 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
20:58:04.0435 3004 ErrDev - ok
20:58:04.0544 3004 EventSystem (6b1a97bf9fefbdc83f3c7c7d0f826c66) C:\Windows\system32\es.dll
20:58:04.0622 3004 EventSystem - ok
20:58:04.0716 3004 exfat (2a546b9a84658b0554b1ec35cd9adaf5) C:\Windows\system32\drivers\exfat.sys
20:58:04.0794 3004 exfat - ok
20:58:04.0856 3004 fastfat (fe731d345ed9eeabbc72a59b35941834) C:\Windows\system32\drivers\fastfat.sys
20:58:04.0918 3004 fastfat - ok
20:58:04.0996 3004 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
20:58:05.0043 3004 fdc - ok
20:58:05.0121 3004 fdPHost (bb9267acacd8b7533dd936c34a0cba5e) C:\Windows\system32\fdPHost.dll
20:58:05.0184 3004 fdPHost - ok
20:58:05.0215 3004 FDResPub (300c80931eabbe1db7591c516efe8d0f) C:\Windows\system32\fdrespub.dll
20:58:05.0324 3004 FDResPub - ok
20:58:05.0371 3004 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
20:58:05.0386 3004 FileInfo - ok
20:58:05.0418 3004 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
20:58:05.0464 3004 Filetrace - ok
20:58:05.0589 3004 FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:58:05.0636 3004 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
20:58:05.0636 3004 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
20:58:05.0698 3004 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:58:05.0745 3004 flpydisk - ok
20:58:05.0839 3004 FltMgr (7dacf1a3a4219575070c6dc7c957428a) C:\Windows\system32\drivers\fltmgr.sys
20:58:05.0870 3004 FltMgr - ok
20:58:05.0948 3004 FontCache3.0.0.0 (73d0f1d32edae3dcc4e84468bf910add) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:58:05.0964 3004 FontCache3.0.0.0 - ok
20:58:06.0026 3004 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys
20:58:06.0073 3004 Fs_Rec - ok
20:58:06.0151 3004 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
20:58:06.0166 3004 gagp30kx - ok
20:58:06.0322 3004 GameConsoleService (54fd6b2f163782914f1205d51fedd3ef) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
20:58:06.0338 3004 GameConsoleService - ok
20:58:06.0400 3004 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:58:06.0416 3004 GEARAspiWDM - ok
20:58:06.0541 3004 gpsvc (9e5b254d58232ec8921ec3c5a94c81ed) C:\Windows\System32\gpsvc.dll
20:58:06.0603 3004 gpsvc - ok
20:58:06.0728 3004 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:58:06.0744 3004 gupdate - ok
20:58:06.0806 3004 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:58:06.0822 3004 gupdatem - ok
20:58:06.0868 3004 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
20:58:06.0962 3004 HdAudAddService - ok
20:58:07.0040 3004 HDAudBus (0c0d0f8a3ff09ecc81963d09ec6a0a84) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:58:07.0102 3004 HDAudBus - ok
20:58:07.0165 3004 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
20:58:07.0258 3004 HidBth - ok
20:58:07.0305 3004 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
20:58:07.0399 3004 HidIr - ok
20:58:07.0477 3004 hidserv (0aa154538544e988429da2d5aa803a6c) C:\Windows\System32\hidserv.dll
20:58:07.0539 3004 hidserv - ok
20:58:07.0633 3004 HidUsb (128e2da8483fdd4dd0c7b3f9abd6f323) C:\Windows\system32\DRIVERS\hidusb.sys
20:58:07.0695 3004 HidUsb - ok
20:58:07.0758 3004 hkmsvc (b12f367ea39c0795fd57e31242ce1a5a) C:\Windows\system32\kmsvc.dll
20:58:07.0820 3004 hkmsvc - ok
20:58:07.0867 3004 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
20:58:07.0882 3004 HpCISSs - ok
20:58:08.0007 3004 HTTP (e690736da6c543f5d99c8fa27bea31db) C:\Windows\system32\drivers\HTTP.sys
20:58:08.0085 3004 HTTP - ok
20:58:08.0148 3004 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
20:58:08.0163 3004 i2omp - ok
20:58:08.0241 3004 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
20:58:08.0304 3004 i8042prt - ok
20:58:08.0428 3004 iaStor (1adaa4f16073fd0c7270f451fd024e97) C:\Windows\system32\DRIVERS\iaStor.sys
20:58:08.0444 3004 iaStor - ok
20:58:08.0538 3004 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
20:58:08.0553 3004 iaStorV - ok
20:58:08.0694 3004 idsvc (76ea63cdb2d88dae7209691d089bef1d) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:58:08.0803 3004 idsvc - ok
20:58:08.0896 3004 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
20:58:08.0912 3004 iirsp - ok
20:58:09.0006 3004 IKEEXT (3a3b232140c33376e134e7b61a0eaa44) C:\Windows\System32\ikeext.dll
20:58:09.0099 3004 IKEEXT - ok
20:58:09.0302 3004 IntcAzAudAddService (627c6b352718e59df08f02c536e2e0ed) C:\Windows\system32\drivers\RTKVHD64.sys
20:58:09.0442 3004 IntcAzAudAddService - ok
20:58:09.0645 3004 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
20:58:09.0661 3004 intelide - ok
20:58:09.0708 3004 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
20:58:09.0770 3004 intelppm - ok
20:58:09.0817 3004 IPBusEnum (5624bc1bc5eeb49c0ab76a8114f05ea3) C:\Windows\system32\ipbusenum.dll
20:58:09.0895 3004 IPBusEnum - ok
20:58:09.0942 3004 IpFilterDriver (99b821f5bebd6a3cc3fe564f802ae0fd) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:58:10.0004 3004 IpFilterDriver - ok
20:58:10.0129 3004 iphlpsvc (3a0427f35e7f8c16bbc5b1be32b8de76) C:\Windows\System32\iphlpsvc.dll
20:58:10.0176 3004 iphlpsvc - ok
20:58:10.0222 3004 IpInIp - ok
20:58:10.0300 3004 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
20:58:10.0347 3004 IPMIDRV - ok
20:58:10.0394 3004 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
20:58:10.0441 3004 IPNAT - ok
20:58:10.0550 3004 iPod Service (1475a1a0a1fdb9894dce7d0ee7eda58a) C:\Program Files\iPod\bin\iPodService.exe
20:58:10.0628 3004 iPod Service - ok
20:58:10.0706 3004 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
20:58:10.0800 3004 IRENUM - ok
20:58:10.0893 3004 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
20:58:10.0909 3004 isapnp - ok
20:58:11.0002 3004 iScsiPrt (49e4ccbf74783fce5d2cc1ff6480e1f4) C:\Windows\system32\DRIVERS\msiscsi.sys
20:58:11.0018 3004 iScsiPrt - ok
20:58:11.0096 3004 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
20:58:11.0112 3004 iteatapi - ok
20:58:11.0143 3004 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
20:58:11.0158 3004 iteraid - ok
20:58:11.0221 3004 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
20:58:11.0236 3004 kbdclass - ok
20:58:11.0314 3004 kbdhid (bf8783a5066cfecf45095459e8010fa7) C:\Windows\system32\DRIVERS\kbdhid.sys
20:58:11.0377 3004 kbdhid - ok
20:58:11.0408 3004 KeyIso (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe
20:58:11.0439 3004 KeyIso - ok
20:58:11.0533 3004 KSecDD (ccdcce6224e1e207e953af826b98a9d9) C:\Windows\system32\Drivers\ksecdd.sys
20:58:11.0595 3004 KSecDD - ok
20:58:11.0689 3004 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
20:58:11.0689 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ksthunk.sys. md5: 1d419cf43db29396ecd7113d129d94eb
20:58:11.0689 3004 ksthunk ( LockedFile.Multi.Generic ) - warning
20:58:11.0689 3004 ksthunk - detected LockedFile.Multi.Generic (1)
20:58:11.0767 3004 KtmRm (1faf6926f3416d3da05c5b265491bdae) C:\Windows\system32\msdtckrm.dll
20:58:11.0876 3004 KtmRm - ok
20:58:11.0985 3004 LanmanServer (3f27c9cdae606d74431e3ab39571a7f3) C:\Windows\System32\srvsvc.dll
20:58:12.0048 3004 LanmanServer - ok
20:58:12.0141 3004 LanmanWorkstation (6e25ffc6fead6544c6e9f1d23329570c) C:\Windows\System32\wkssvc.dll
20:58:12.0188 3004 LanmanWorkstation - ok
20:58:12.0266 3004 LHidFilt (b45686101f9473b52d7a501c544dda5d) C:\Windows\system32\DRIVERS\LHidFilt.Sys
20:58:12.0282 3004 LHidFilt - ok
20:58:12.0328 3004 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
20:58:12.0328 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\lltdio.sys. md5: 96ece2659b6654c10a0c310ae3a6d02c
20:58:12.0375 3004 lltdio ( LockedFile.Multi.Generic ) - warning
20:58:12.0375 3004 lltdio - detected LockedFile.Multi.Generic (1)
20:58:12.0422 3004 lltdsvc (961ccbd0b1ccb5675d64976fae37d092) C:\Windows\System32\lltdsvc.dll
20:58:12.0500 3004 lltdsvc - ok
20:58:12.0547 3004 lmhosts (a47f8080cacc23c91fe823ad19aa5612) C:\Windows\System32\lmhsvc.dll
20:58:12.0625 3004 lmhosts - ok
20:58:12.0703 3004 LMouFilt (9980bb086248ca45772eff2559aa62d3) C:\Windows\system32\DRIVERS\LMouFilt.Sys
20:58:12.0703 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\LMouFilt.Sys. md5: 9980bb086248ca45772eff2559aa62d3
20:58:12.0750 3004 LMouFilt ( LockedFile.Multi.Generic ) - warning
20:58:12.0750 3004 LMouFilt - detected LockedFile.Multi.Generic (1)
20:58:12.0796 3004 LPCFilter (9c551a9121639a9779862cb8a6cabf03) C:\Windows\system32\DRIVERS\LPCFilter.sys
20:58:12.0796 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\LPCFilter.sys. md5: 9c551a9121639a9779862cb8a6cabf03
20:58:12.0843 3004 LPCFilter ( LockedFile.Multi.Generic ) - warning
20:58:12.0843 3004 LPCFilter - detected LockedFile.Multi.Generic (1)
20:58:12.0906 3004 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
20:58:12.0906 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\lsi_fc.sys. md5: acbe1af32d3123e330a07bfbc5ec4a9b
20:58:12.0968 3004 LSI_FC ( LockedFile.Multi.Generic ) - warning
20:58:12.0968 3004 LSI_FC - detected LockedFile.Multi.Generic (1)
20:58:13.0030 3004 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
20:58:13.0030 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\lsi_sas.sys. md5: 799ffb2fc4729fa46d2157c0065b3525
20:58:13.0046 3004 LSI_SAS ( LockedFile.Multi.Generic ) - warning
20:58:13.0046 3004 LSI_SAS - detected LockedFile.Multi.Generic (1)
20:58:13.0124 3004 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
20:58:13.0124 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\lsi_scsi.sys. md5: f445ff1daad8a226366bfaf42551226b
20:58:13.0155 3004 LSI_SCSI ( LockedFile.Multi.Generic ) - warning
20:58:13.0155 3004 LSI_SCSI - detected LockedFile.Multi.Generic (1)
20:58:13.0202 3004 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
20:58:13.0202 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\luafv.sys. md5: 52f87b9cc8932c2a7375c3b2a9be5e3e
20:58:13.0233 3004 luafv ( LockedFile.Multi.Generic ) - warning
20:58:13.0233 3004 luafv - detected LockedFile.Multi.Generic (1)
20:58:13.0311 3004 LUsbFilt (a1eb1db073972c7ce252daa3456bbbe7) C:\Windows\system32\Drivers\LUsbFilt.Sys
20:58:13.0311 3004 Suspicious file (NoAccess): C:\Windows\system32\Drivers\LUsbFilt.Sys. md5: a1eb1db073972c7ce252daa3456bbbe7
20:58:13.0342 3004 LUsbFilt ( LockedFile.Multi.Generic ) - warning
20:58:13.0342 3004 LUsbFilt - detected LockedFile.Multi.Generic (1)
20:58:13.0420 3004 massfilter (1b4dbcaa0321bbb76255983148051f09) C:\Windows\system32\drivers\massfilter.sys
20:58:13.0420 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\massfilter.sys. md5: 1b4dbcaa0321bbb76255983148051f09
20:58:13.0467 3004 massfilter ( LockedFile.Multi.Generic ) - warning
20:58:13.0467 3004 massfilter - detected LockedFile.Multi.Generic (1)
20:58:13.0514 3004 massfilter_hs (7ad627cdb12f5f451f24c8a97ca6e175) C:\Windows\system32\drivers\massfilter_hs.sys
20:58:13.0514 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\massfilter_hs.sys. md5: 7ad627cdb12f5f451f24c8a97ca6e175
20:58:13.0561 3004 massfilter_hs ( LockedFile.Multi.Generic ) - warning
20:58:13.0561 3004 massfilter_hs - detected LockedFile.Multi.Generic (1)
20:58:13.0608 3004 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
20:58:13.0623 3004 MBAMProtector - ok
20:58:13.0795 3004 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:58:13.0826 3004 MBAMService - ok
20:58:13.0904 3004 Mcx2Svc (6da30c0de0cc8525e89d612c5063cac1) C:\Windows\system32\Mcx2Svc.dll
20:58:13.0935 3004 Mcx2Svc - ok
20:58:14.0013 3004 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
20:58:14.0013 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\megasas.sys. md5: 5c5cd6aaced32fb26c3fb34b3dcf972f
20:58:14.0029 3004 megasas ( LockedFile.Multi.Generic ) - warning
20:58:14.0029 3004 megasas - detected LockedFile.Multi.Generic (1)
20:58:14.0060 3004 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
20:58:14.0060 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\megasr.sys. md5: 859bc2436b076c77c159ed694acfe8f8
20:58:14.0122 3004 MegaSR ( LockedFile.Multi.Generic ) - warning
20:58:14.0122 3004 MegaSR - detected LockedFile.Multi.Generic (1)
20:58:14.0247 3004 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Office 2007\Office12\GrooveAuditService.exe
20:58:14.0263 3004 Microsoft Office Groove Audit Service - ok
20:58:14.0372 3004 MMCSS (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
20:58:14.0450 3004 MMCSS - ok
20:58:14.0497 3004 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
20:58:14.0497 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\modem.sys. md5: 59848d5cc74606f0ee7557983bb73c2e
20:58:14.0544 3004 Modem ( LockedFile.Multi.Generic ) - warning
20:58:14.0544 3004 Modem - detected LockedFile.Multi.Generic (1)
20:58:14.0606 3004 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
20:58:14.0606 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\monitor.sys. md5: c247cc2a57e0a0c8c6dccf7807b3e9e5
20:58:14.0637 3004 monitor ( LockedFile.Multi.Generic ) - warning
20:58:14.0637 3004 monitor - detected LockedFile.Multi.Generic (1)
20:58:14.0700 3004 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
20:58:14.0700 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mouclass.sys. md5: 9367304e5e412b120cf5f4ea14e4e4f1
20:58:14.0715 3004 mouclass ( LockedFile.Multi.Generic ) - warning
20:58:14.0715 3004 mouclass - detected LockedFile.Multi.Generic (1)
20:58:14.0762 3004 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
20:58:14.0762 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mouhid.sys. md5: c2c2bd5c5ce5aaf786ddd74b75d2ac69
20:58:14.0778 3004 mouhid ( LockedFile.Multi.Generic ) - warning
20:58:14.0778 3004 mouhid - detected LockedFile.Multi.Generic (1)
20:58:14.0809 3004 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
20:58:14.0809 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\mountmgr.sys. md5: 11bc9b1e8801b01f7f6adb9ead30019b
20:58:14.0840 3004 MountMgr ( LockedFile.Multi.Generic ) - warning
20:58:14.0840 3004 MountMgr - detected LockedFile.Multi.Generic (1)
20:58:14.0902 3004 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:58:14.0918 3004 MozillaMaintenance - ok
20:58:14.0996 3004 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
20:58:14.0996 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpio.sys. md5: f8276eb8698142884498a528dfea8478
20:58:14.0996 3004 mpio ( LockedFile.Multi.Generic ) - warning
20:58:14.0996 3004 mpio - detected LockedFile.Multi.Generic (1)
20:58:15.0058 3004 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
20:58:15.0058 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\mpsdrv.sys. md5: c92b9abdb65a5991e00c28f13491dba2
20:58:15.0090 3004 mpsdrv ( LockedFile.Multi.Generic ) - warning
20:58:15.0090 3004 mpsdrv - detected LockedFile.Multi.Generic (1)
20:58:15.0168 3004 MpsSvc (8a670648c755867a3aa38da50ba569aa) C:\Windows\system32\mpssvc.dll
20:58:15.0292 3004 MpsSvc - ok
20:58:15.0402 3004 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
20:58:15.0402 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\mraid35x.sys. md5: 3c200630a89ef2c0864d515b7a75802e
20:58:15.0433 3004 Mraid35x ( LockedFile.Multi.Generic ) - warning
20:58:15.0433 3004 Mraid35x - detected LockedFile.Multi.Generic (1)
20:58:15.0480 3004 MRxDAV (fe2706c15f8345c342820e4e4583fea0) C:\Windows\system32\drivers\mrxdav.sys
20:58:15.0480 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\mrxdav.sys. md5: fe2706c15f8345c342820e4e4583fea0
20:58:15.0526 3004 MRxDAV ( LockedFile.Multi.Generic ) - warning
20:58:15.0526 3004 MRxDAV - detected LockedFile.Multi.Generic (1)
20:58:15.0589 3004 mrxsmb (b698eb9acc7ecd4927d99d268918f912) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:58:15.0589 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb.sys. md5: b698eb9acc7ecd4927d99d268918f912
20:58:15.0620 3004 mrxsmb ( LockedFile.Multi.Generic ) - warning
20:58:15.0620 3004 mrxsmb - detected LockedFile.Multi.Generic (1)
20:58:15.0682 3004 mrxsmb10 (9a797e27fd28500ee13d43000c931435) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:58:15.0682 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb10.sys. md5: 9a797e27fd28500ee13d43000c931435
20:58:15.0729 3004 mrxsmb10 ( LockedFile.Multi.Generic ) - warning
20:58:15.0729 3004 mrxsmb10 - detected LockedFile.Multi.Generic (1)
20:58:15.0792 3004 mrxsmb20 (f9425d610712533107a264e2d5b2154b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:58:15.0792 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mrxsmb20.sys. md5: f9425d610712533107a264e2d5b2154b
20:58:15.0823 3004 mrxsmb20 ( LockedFile.Multi.Generic ) - warning
20:58:15.0823 3004 mrxsmb20 - detected LockedFile.Multi.Generic (1)
20:58:15.0885 3004 msahci (e7e3e515d1d33a2a372d7fce2bbef5d9) C:\Windows\system32\drivers\msahci.sys
20:58:15.0885 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\msahci.sys. md5: e7e3e515d1d33a2a372d7fce2bbef5d9
20:58:15.0932 3004 msahci ( LockedFile.Multi.Generic ) - warning
20:58:15.0932 3004 msahci - detected LockedFile.Multi.Generic (1)
20:58:15.0963 3004 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
20:58:15.0963 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\msdsm.sys. md5: 264bbb4aaf312a485f0e44b65a6b7202
20:58:16.0010 3004 msdsm ( LockedFile.Multi.Generic ) - warning
20:58:16.0010 3004 msdsm - detected LockedFile.Multi.Generic (1)
20:58:16.0057 3004 MSDTC (7ec02ce772f068ed0beafa3da341a9bc) C:\Windows\System32\msdtc.exe
20:58:16.0135 3004 MSDTC - ok
20:58:16.0228 3004 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
20:58:16.0228 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\Msfs.sys. md5: 704f59bfc4512d2bb0146aec31b10a7c
20:58:16.0260 3004 Msfs ( LockedFile.Multi.Generic ) - warning
20:58:16.0260 3004 Msfs - detected LockedFile.Multi.Generic (1)
20:58:16.0338 3004 msisadrv (e7204a02a42fc331e9ca9d9521105b14) C:\Windows\system32\drivers\msisadrv.sys
20:58:16.0338 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\msisadrv.sys. md5: e7204a02a42fc331e9ca9d9521105b14
20:58:16.0400 3004 msisadrv ( LockedFile.Multi.Generic ) - warning
20:58:16.0400 3004 msisadrv - detected LockedFile.Multi.Generic (1)
20:58:16.0462 3004 MSiSCSI (366b0c1f4478b519c181e37d43dcda32) C:\Windows\system32\iscsiexe.dll
20:58:16.0540 3004 MSiSCSI - ok
20:58:16.0603 3004 msiserver - ok
20:58:16.0665 3004 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
20:58:16.0665 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSKSSRV.sys. md5: 0ea73e498f53b96d83dbfca074ad4cf8
20:58:16.0681 3004 MSKSSRV ( LockedFile.Multi.Generic ) - warning
20:58:16.0681 3004 MSKSSRV - detected LockedFile.Multi.Generic (1)
20:58:16.0696 3004 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
20:58:16.0696 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPCLOCK.sys. md5: 52e59b7e992a58e740aa63f57edbae8b
20:58:16.0696 3004 MSPCLOCK ( LockedFile.Multi.Generic ) - warning
20:58:16.0696 3004 MSPCLOCK - detected LockedFile.Multi.Generic (1)
20:58:16.0728 3004 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
20:58:16.0728 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSPQM.sys. md5: 49084a75bae043ae02d5b44d02991bb2
20:58:16.0759 3004 MSPQM ( LockedFile.Multi.Generic ) - warning
20:58:16.0759 3004 MSPQM - detected LockedFile.Multi.Generic (1)
20:58:16.0790 3004 MsRPC (b8e32e6103fbba9fbb1d0c11ff0d13b5) C:\Windows\system32\drivers\MsRPC.sys
20:58:16.0790 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\MsRPC.sys. md5: b8e32e6103fbba9fbb1d0c11ff0d13b5
20:58:16.0821 3004 MsRPC ( LockedFile.Multi.Generic ) - warning
20:58:16.0821 3004 MsRPC - detected LockedFile.Multi.Generic (1)
20:58:16.0899 3004 mssmbios (c68739cfa09401233c72b1047dbf0008) C:\Windows\system32\DRIVERS\mssmbios.sys
20:58:16.0899 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\mssmbios.sys. md5: c68739cfa09401233c72b1047dbf0008
20:58:16.0930 3004 mssmbios ( LockedFile.Multi.Generic ) - warning
20:58:16.0930 3004 mssmbios - detected LockedFile.Multi.Generic (1)
20:58:17.0008 3004 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
20:58:17.0008 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\MSTEE.sys. md5: 86d632d75d05d5b7c7c043fa3564ae86
20:58:17.0040 3004 MSTEE ( LockedFile.Multi.Generic ) - warning
20:58:17.0040 3004 MSTEE - detected LockedFile.Multi.Generic (1)
20:58:17.0086 3004 Mup (ddf133501f68d6988a0f55dfa88637b4) C:\Windows\system32\Drivers\mup.sys
20:58:17.0086 3004 Suspicious file (NoAccess): C:\Windows\system32\Drivers\mup.sys. md5: ddf133501f68d6988a0f55dfa88637b4
20:58:17.0133 3004 Mup ( LockedFile.Multi.Generic ) - warning
20:58:17.0133 3004 Mup - detected LockedFile.Multi.Generic (1)
20:58:17.0211 3004 napagent (c25022cdd18980846973b598900915f8) C:\Windows\system32\qagentRT.dll
20:58:17.0274 3004 napagent - ok
20:58:17.0383 3004 NativeWifiP (73b99c98fa3a2ed1566e02d6fe1913a5) C:\Windows\system32\DRIVERS\nwifi.sys
20:58:17.0383 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\nwifi.sys. md5: 73b99c98fa3a2ed1566e02d6fe1913a5
20:58:17.0414 3004 NativeWifiP ( LockedFile.Multi.Generic ) - warning
20:58:17.0414 3004 NativeWifiP - detected LockedFile.Multi.Generic (1)
20:58:17.0508 3004 NDIS (f9a3ae5c9f047d71a36a99f9abca7d02) C:\Windows\system32\drivers\ndis.sys
20:58:17.0508 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ndis.sys. md5: f9a3ae5c9f047d71a36a99f9abca7d02
20:58:17.0539 3004 NDIS ( LockedFile.Multi.Generic ) - warning
20:58:17.0539 3004 NDIS - detected LockedFile.Multi.Generic (1)
20:58:17.0586 3004 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
20:58:17.0586 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndistapi.sys. md5: 64df698a425478e321981431ac171334
20:58:17.0632 3004 NdisTapi ( LockedFile.Multi.Generic ) - warning
20:58:17.0632 3004 NdisTapi - detected LockedFile.Multi.Generic (1)
20:58:17.0664 3004 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
20:58:17.0664 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndisuio.sys. md5: 8baa43196d7b5bb972c9a6b2bbf61a19
20:58:17.0679 3004 Ndisuio ( LockedFile.Multi.Generic ) - warning
20:58:17.0679 3004 Ndisuio - detected LockedFile.Multi.Generic (1)
20:58:17.0726 3004 NdisWan (52e3e8e35101399be9b2938c992aa087) C:\Windows\system32\DRIVERS\ndiswan.sys
20:58:17.0726 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ndiswan.sys. md5: 52e3e8e35101399be9b2938c992aa087
20:58:17.0773 3004 NdisWan ( LockedFile.Multi.Generic ) - warning
20:58:17.0773 3004 NdisWan - detected LockedFile.Multi.Generic (1)
20:58:17.0804 3004 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
20:58:17.0804 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\NDProxy.sys. md5: 9cb77ed7cb72850253e973a2d6afdf49
20:58:17.0851 3004 NDProxy ( LockedFile.Multi.Generic ) - warning
20:58:17.0851 3004 NDProxy - detected LockedFile.Multi.Generic (1)
20:58:17.0898 3004 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
20:58:17.0898 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbios.sys. md5: a499294f5029a7862adc115bda7371ce
20:58:17.0944 3004 NetBIOS ( LockedFile.Multi.Generic ) - warning
20:58:17.0944 3004 NetBIOS - detected LockedFile.Multi.Generic (1)
20:58:18.0022 3004 netbt (7a29ca243a629230799754162d80120f) C:\Windows\system32\DRIVERS\netbt.sys
20:58:18.0022 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\netbt.sys. md5: 7a29ca243a629230799754162d80120f
20:58:18.0069 3004 netbt ( LockedFile.Multi.Generic ) - warning
20:58:18.0069 3004 netbt - detected LockedFile.Multi.Generic (1)
20:58:18.0116 3004 Netlogon (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe
20:58:18.0147 3004 Netlogon - ok
20:58:18.0225 3004 Netman (9b63b29defc0f3115a559d2597bf5d75) C:\Windows\System32\netman.dll
20:58:18.0319 3004 Netman - ok
20:58:18.0397 3004 netprofm (7846d0136cc2b264926a73047ba7688a) C:\Windows\System32\netprofm.dll
20:58:18.0490 3004 netprofm - ok
20:58:18.0600 3004 NetTcpPortSharing (b84613b469b98e09f50a748c1d02e132) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:58:18.0615 3004 NetTcpPortSharing - ok
20:58:19.0021 3004 NETw5v64 (2bdcb7b7917380794c9d87ac2153ce33) C:\Windows\system32\DRIVERS\NETw5v64.sys
20:58:19.0021 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\NETw5v64.sys. md5: 2bdcb7b7917380794c9d87ac2153ce33
20:58:19.0083 3004 NETw5v64 ( LockedFile.Multi.Generic ) - warning
20:58:19.0083 3004 NETw5v64 - detected LockedFile.Multi.Generic (1)
20:58:19.0224 3004 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
20:58:19.0224 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\nfrd960.sys. md5: 4ac08bd6af2df42e0c3196d826c8aea7
20:58:19.0270 3004 nfrd960 ( LockedFile.Multi.Generic ) - warning
20:58:19.0270 3004 nfrd960 - detected LockedFile.Multi.Generic (1)
20:58:19.0333 3004 NlaSvc (f145bf4c4668e7e312069f81ef847cfc) C:\Windows\System32\nlasvc.dll
20:58:19.0395 3004 NlaSvc - ok
20:58:19.0473 3004 Npfs (b06154e2a2c91e9be5599fca53bc4cd0) C:\Windows\system32\drivers\Npfs.sys
20:58:19.0473 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\Npfs.sys. md5: b06154e2a2c91e9be5599fca53bc4cd0
20:58:19.0504 3004 Npfs ( LockedFile.Multi.Generic ) - warning
20:58:19.0504 3004 Npfs - detected LockedFile.Multi.Generic (1)
20:58:19.0551 3004 nsi (acb62baa1c319b17752553df3026eeeb) C:\Windows\system32\nsisvc.dll
20:58:19.0629 3004 nsi - ok
20:58:19.0676 3004 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
20:58:19.0676 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\nsiproxy.sys. md5: 1523af19ee8b030ba682f7a53537eaeb
20:58:19.0676 3004 nsiproxy ( LockedFile.Multi.Generic ) - warning
20:58:19.0676 3004 nsiproxy - detected LockedFile.Multi.Generic (1)
20:58:19.0832 3004 Ntfs (fe86ba5ac3b50e2ca911e9c60c07b638) C:\Windows\system32\drivers\Ntfs.sys
20:58:19.0832 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\Ntfs.sys. md5: fe86ba5ac3b50e2ca911e9c60c07b638
20:58:19.0863 3004 Ntfs ( LockedFile.Multi.Generic ) - warning
20:58:19.0863 3004 Ntfs - detected LockedFile.Multi.Generic (1)
20:58:19.0972 3004 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
20:58:19.0972 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\Null.sys. md5: dd5d684975352b85b52e3fd5347c20cb
20:58:20.0004 3004 Null ( LockedFile.Multi.Generic ) - warning
20:58:20.0004 3004 Null - detected LockedFile.Multi.Generic (1)
20:58:20.0066 3004 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
20:58:20.0066 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvraid.sys. md5: 2c040b7ada5b06f6facadac8514aa034
20:58:20.0113 3004 nvraid ( LockedFile.Multi.Generic ) - warning
20:58:20.0113 3004 nvraid - detected LockedFile.Multi.Generic (1)
20:58:20.0144 3004 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
20:58:20.0144 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\nvstor.sys. md5: f7ea0fe82842d05eda3efdd376dbfdba
20:58:20.0191 3004 nvstor ( LockedFile.Multi.Generic ) - warning
20:58:20.0191 3004 nvstor - detected LockedFile.Multi.Generic (1)
20:58:20.0222 3004 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
20:58:20.0222 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\nv_agp.sys. md5: 19067ca93075ef4823e3938a686f532f
20:58:20.0269 3004 nv_agp ( LockedFile.Multi.Generic ) - warning
20:58:20.0269 3004 nv_agp - detected LockedFile.Multi.Generic (1)
20:58:20.0284 3004 NwlnkFlt - ok
20:58:20.0300 3004 NwlnkFwd - ok
20:58:20.0456 3004 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:58:20.0487 3004 odserv - ok
20:58:20.0581 3004 ohci1394 (7b58953e2f263421fdbb09a192712a85) C:\Windows\system32\drivers\ohci1394.sys
20:58:20.0581 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ohci1394.sys. md5: 7b58953e2f263421fdbb09a192712a85
20:58:20.0628 3004 ohci1394 ( LockedFile.Multi.Generic ) - warning
20:58:20.0628 3004 ohci1394 - detected LockedFile.Multi.Generic (1)
20:58:20.0706 3004 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:58:20.0721 3004 ose - ok
20:58:20.0846 3004 p2pimsvc (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll
20:58:20.0986 3004 p2pimsvc - ok
20:58:21.0049 3004 p2psvc (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll
20:58:21.0096 3004 p2psvc - ok
20:58:21.0127 3004 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
20:58:21.0127 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\parport.sys. md5: aecd57f94c887f58919f307c35498ea0
20:58:21.0174 3004 Parport ( LockedFile.Multi.Generic ) - warning
20:58:21.0174 3004 Parport - detected LockedFile.Multi.Generic (1)
20:58:21.0205 3004 partmgr (5ab40c36894f4c06bdab0c9a2fba282d) C:\Windows\system32\drivers\partmgr.sys
20:58:21.0205 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\partmgr.sys. md5: 5ab40c36894f4c06bdab0c9a2fba282d
20:58:21.0220 3004 partmgr ( LockedFile.Multi.Generic ) - warning
20:58:21.0220 3004 partmgr - detected LockedFile.Multi.Generic (1)
20:58:21.0252 3004 PcaSvc (9ab157b374192ff276c1628fbdba2b0e) C:\Windows\System32\pcasvc.dll
20:58:21.0314 3004 PcaSvc - ok
20:58:21.0423 3004 pci (7a3dc4201208437d7d5c426789e92054) C:\Windows\system32\drivers\pci.sys
20:58:21.0423 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\pci.sys. md5: 7a3dc4201208437d7d5c426789e92054
20:58:21.0486 3004 pci ( LockedFile.Multi.Generic ) - warning
20:58:21.0486 3004 pci - detected LockedFile.Multi.Generic (1)
20:58:21.0532 3004 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\DRIVERS\pciide.sys
20:58:21.0532 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pciide.sys. md5: 8d618c829034479985a9ed56106cc732
20:58:21.0579 3004 pciide ( LockedFile.Multi.Generic ) - warning
20:58:21.0579 3004 pciide - detected LockedFile.Multi.Generic (1)
20:58:21.0642 3004 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
20:58:21.0642 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\pcmcia.sys. md5: 037661f3d7c507c9993b7010ceee6288
20:58:21.0673 3004 pcmcia ( LockedFile.Multi.Generic ) - warning
20:58:21.0673 3004 pcmcia - detected LockedFile.Multi.Generic (1)
20:58:21.0766 3004 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
20:58:21.0766 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\peauth.sys. md5: 58865916f53592a61549b04941bfd80d
20:58:21.0829 3004 PEAUTH ( LockedFile.Multi.Generic ) - warning
20:58:21.0829 3004 PEAUTH - detected LockedFile.Multi.Generic (1)
20:58:21.0954 3004 PerfHost (0ed8727ea0172860f47258456c06caea) C:\Windows\SysWow64\perfhost.exe
20:58:22.0016 3004 PerfHost - ok
20:58:22.0125 3004 PGEffect (2c3ba65f8ca712730050c29104e093f9) C:\Windows\system32\DRIVERS\pgeffect.sys
20:58:22.0125 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pgeffect.sys. md5: 2c3ba65f8ca712730050c29104e093f9
20:58:22.0172 3004 PGEffect ( LockedFile.Multi.Generic ) - warning
20:58:22.0172 3004 PGEffect - detected LockedFile.Multi.Generic (1)
20:58:22.0344 3004 pla (e9e68c1a0f25cf4a7ac966eea74ee89e) C:\Windows\system32\pla.dll
20:58:22.0546 3004 pla - ok
20:58:22.0671 3004 PlugPlay (5aaa0c5534b05ed49919fcd9dbd11a5b) C:\Windows\system32\umpnpmgr.dll
20:58:22.0734 3004 PlugPlay - ok
20:58:22.0858 3004 PNRPAutoReg (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll
20:58:22.0936 3004 PNRPAutoReg - ok
20:58:22.0999 3004 PNRPsvc (430f35c5592d253f43a26b4f5a523dbf) C:\Windows\system32\p2psvc.dll
20:58:23.0077 3004 PNRPsvc - ok
20:58:23.0186 3004 PolicyAgent (eef3688d5e9592cbbbed00de71dda1ef) C:\Windows\System32\ipsecsvc.dll
20:58:23.0264 3004 PolicyAgent - ok
20:58:23.0358 3004 PptpMiniport (f5739f2c6db2534c384ad5150808e8f5) C:\Windows\system32\DRIVERS\raspptp.sys
20:58:23.0358 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspptp.sys. md5: f5739f2c6db2534c384ad5150808e8f5
20:58:23.0389 3004 PptpMiniport ( LockedFile.Multi.Generic ) - warning
20:58:23.0389 3004 PptpMiniport - detected LockedFile.Multi.Generic (1)
20:58:23.0498 3004 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
20:58:23.0498 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\processr.sys. md5: 5080e59ecee0bc923f14018803aa7a01
20:58:23.0514 3004 Processor ( LockedFile.Multi.Generic ) - warning
20:58:23.0514 3004 Processor - detected LockedFile.Multi.Generic (1)
20:58:23.0576 3004 ProfSvc (b21fe10dad3ab59e78df7aa3fbf41e70) C:\Windows\system32\profsvc.dll
20:58:23.0654 3004 ProfSvc - ok
20:58:23.0716 3004 ProtectedStorage (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe
20:58:23.0732 3004 ProtectedStorage - ok
20:58:23.0810 3004 PSched (0e0e205a296095fe4c631e6a4775ad6c) C:\Windows\system32\DRIVERS\pacer.sys
20:58:23.0810 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\pacer.sys. md5: 0e0e205a296095fe4c631e6a4775ad6c
20:58:23.0857 3004 PSched ( LockedFile.Multi.Generic ) - warning
20:58:23.0857 3004 PSched - detected LockedFile.Multi.Generic (1)
20:58:23.0919 3004 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
20:58:23.0935 3004 Suspicious file (NoAccess): C:\Windows\system32\Drivers\PxHlpa64.sys. md5: 4712cc14e720ecccc0aa16949d18aaf1
20:58:23.0966 3004 PxHlpa64 ( LockedFile.Multi.Generic ) - warning
20:58:23.0966 3004 PxHlpa64 - detected LockedFile.Multi.Generic (1)
20:58:24.0091 3004 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
20:58:24.0091 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ql2300.sys. md5: 0b83f4e681062f3839be2ec1d98fd94a
20:58:24.0138 3004 ql2300 ( LockedFile.Multi.Generic ) - warning
20:58:24.0138 3004 ql2300 - detected LockedFile.Multi.Generic (1)
20:58:24.0184 3004 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
20:58:24.0184 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ql40xx.sys. md5: e1c80f8d4d1e39ef9595809c1369bf2a
20:58:24.0216 3004 ql40xx ( LockedFile.Multi.Generic ) - warning
20:58:24.0216 3004 ql40xx - detected LockedFile.Multi.Generic (1)
20:58:24.0294 3004 QWAVE (90574842c3da781e279061a3eff91f07) C:\Windows\system32\qwave.dll
20:58:24.0325 3004 QWAVE - ok
20:58:24.0372 3004 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
20:58:24.0372 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\qwavedrv.sys. md5: e8d76edab77ec9c634c27b8eac33adc5
20:58:24.0387 3004 QWAVEdrv ( LockedFile.Multi.Generic ) - warning
20:58:24.0387 3004 QWAVEdrv - detected LockedFile.Multi.Generic (1)
20:58:24.0434 3004 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
20:58:24.0434 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasacd.sys. md5: 1013b3b663a56d3ddd784f581c1bd005
20:58:24.0434 3004 RasAcd ( LockedFile.Multi.Generic ) - warning
20:58:24.0434 3004 RasAcd - detected LockedFile.Multi.Generic (1)
20:58:24.0496 3004 RasAuto (b2ae18f847d07f0044404ddf7cb04497) C:\Windows\System32\rasauto.dll
20:58:24.0559 3004 RasAuto - ok
20:58:24.0590 3004 Rasl2tp (3b9085f91ef00abd15a6f36570e90e12) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:58:24.0590 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rasl2tp.sys. md5: 3b9085f91ef00abd15a6f36570e90e12
20:58:24.0637 3004 Rasl2tp ( LockedFile.Multi.Generic ) - warning
20:58:24.0637 3004 Rasl2tp - detected LockedFile.Multi.Generic (1)
20:58:24.0684 3004 RasMan (2a63d46b01685fd4be9778ca3c231c2d) C:\Windows\System32\rasmans.dll
20:58:24.0762 3004 RasMan - ok
20:58:24.0808 3004 RasPppoe (2ce1703c27196094fb6e4c6e439f2c21) C:\Windows\system32\DRIVERS\raspppoe.sys
20:58:24.0808 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\raspppoe.sys. md5: 2ce1703c27196094fb6e4c6e439f2c21
20:58:24.0808 3004 RasPppoe ( LockedFile.Multi.Generic ) - warning
20:58:24.0808 3004 RasPppoe - detected LockedFile.Multi.Generic (1)
20:58:24.0855 3004 RasSstp (fcd04fa67e8b40fa0ad361dd38593942) C:\Windows\system32\DRIVERS\rassstp.sys
20:58:24.0855 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rassstp.sys. md5: fcd04fa67e8b40fa0ad361dd38593942
20:58:24.0871 3004 RasSstp ( LockedFile.Multi.Generic ) - warning
20:58:24.0871 3004 RasSstp - detected LockedFile.Multi.Generic (1)
20:58:24.0918 3004 rdbss (33fa5b6136d92ee0f53f021c79091300) C:\Windows\system32\DRIVERS\rdbss.sys
20:58:24.0918 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rdbss.sys. md5: 33fa5b6136d92ee0f53f021c79091300
20:58:24.0964 3004 rdbss ( LockedFile.Multi.Generic ) - warning
20:58:24.0964 3004 rdbss - detected LockedFile.Multi.Generic (1)
20:58:24.0996 3004 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:58:24.0996 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\RDPCDD.sys. md5: 603900cc05f6be65ccbf373800af3716
20:58:25.0011 3004 RDPCDD ( LockedFile.Multi.Generic ) - warning
20:58:25.0011 3004 RDPCDD - detected LockedFile.Multi.Generic (1)
20:58:25.0105 3004 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
20:58:25.0105 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpdr.sys. md5: c045d1fb111c28df0d1be8d4bda22c06
20:58:25.0136 3004 rdpdr ( LockedFile.Multi.Generic ) - warning
20:58:25.0136 3004 rdpdr - detected LockedFile.Multi.Generic (1)
20:58:25.0167 3004 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
20:58:25.0167 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\rdpencdd.sys. md5: cab9421daf3d97b33d0d055858e2c3ab
20:58:25.0183 3004 RDPENCDD ( LockedFile.Multi.Generic ) - warning
20:58:25.0183 3004 RDPENCDD - detected LockedFile.Multi.Generic (1)
20:58:25.0230 3004 RDPWD (7747082f672aa2846235c9cea42e2e72) C:\Windows\system32\drivers\RDPWD.sys
20:58:25.0230 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\RDPWD.sys. md5: 7747082f672aa2846235c9cea42e2e72
20:58:25.0261 3004 RDPWD ( LockedFile.Multi.Generic ) - warning
20:58:25.0261 3004 RDPWD - detected LockedFile.Multi.Generic (1)
20:58:25.0370 3004 RemoteAccess (c612b9557da73f70d41f8a6fbc8e5344) C:\Windows\System32\mprdim.dll
20:58:25.0448 3004 RemoteAccess - ok
20:58:25.0542 3004 RemoteRegistry (416c611369cbe49074b89cee2f83abef) C:\Windows\system32\regsvc.dll
20:58:25.0588 3004 RemoteRegistry - ok
20:58:25.0620 3004 RpcLocator (f46c457840d4b7a4daafee739ce04102) C:\Windows\system32\locator.exe
20:58:25.0682 3004 RpcLocator - ok
20:58:25.0791 3004 RpcSs (52cdade8289ff21f1f2215ff51a5f36c) C:\Windows\system32\rpcss.dll
20:58:25.0822 3004 RpcSs - ok
20:58:25.0885 3004 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
20:58:25.0885 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\rspndr.sys. md5: 22a9cb08b1a6707c1550c6bf099aae73
20:58:25.0900 3004 rspndr ( LockedFile.Multi.Generic ) - warning
20:58:25.0900 3004 rspndr - detected LockedFile.Multi.Generic (1)
20:58:25.0978 3004 RTL8169 (3e800d0dd24c5cfe61a1d71a3f6feab9) C:\Windows\system32\DRIVERS\Rtlh64.sys
20:58:25.0978 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\Rtlh64.sys. md5: 3e800d0dd24c5cfe61a1d71a3f6feab9
20:58:26.0010 3004 RTL8169 ( LockedFile.Multi.Generic ) - warning
20:58:26.0010 3004 RTL8169 - detected LockedFile.Multi.Generic (1)
20:58:26.0056 3004 RTSTOR (23dae458ede953f3f0ff193cac7b2d84) C:\Windows\system32\drivers\RTSTOR64.SYS
20:58:26.0056 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\RTSTOR64.SYS. md5: 23dae458ede953f3f0ff193cac7b2d84
20:58:26.0103 3004 RTSTOR ( LockedFile.Multi.Generic ) - warning
20:58:26.0103 3004 RTSTOR - detected LockedFile.Multi.Generic (1)
20:58:26.0150 3004 SamSs (80f4593e92ff960e4763380d3168e498) C:\Windows\system32\lsass.exe
20:58:26.0166 3004 SamSs - ok
20:58:26.0212 3004 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys
20:58:26.0212 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sbp2port.sys. md5: cd9c693589c60ad59bbbcfb0e524e01b
20:58:26.0259 3004 sbp2port ( LockedFile.Multi.Generic ) - warning
20:58:26.0259 3004 sbp2port - detected LockedFile.Multi.Generic (1)
20:58:26.0337 3004 SCardSvr (f024d560fea06f8b56d673849eb89ae6) C:\Windows\System32\SCardSvr.dll
20:58:26.0415 3004 SCardSvr - ok
20:58:26.0571 3004 Schedule (ce75d26e0a1106129f4d156851e298ed) C:\Windows\system32\schedsvc.dll
20:58:26.0649 3004 Schedule - ok
20:58:26.0727 3004 SCPolicySvc (edfffc8b6afb609bf33dbe0a900426b6) C:\Windows\System32\certprop.dll
20:58:26.0790 3004 SCPolicySvc - ok
20:58:26.0852 3004 SDRSVC (4ff71b076a7760fe75ea5ae2d0ee0018) C:\Windows\System32\SDRSVC.dll
20:58:26.0914 3004 SDRSVC - ok
20:58:26.0992 3004 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:58:26.0992 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\secdrv.sys. md5: 3ea8a16169c26afbeb544e0e48421186
20:58:27.0039 3004 secdrv ( LockedFile.Multi.Generic ) - warning
20:58:27.0039 3004 secdrv - detected LockedFile.Multi.Generic (1)
20:58:27.0117 3004 seclogon (5acdcbc67fcf894a1815b9f96d704490) C:\Windows\system32\seclogon.dll
20:58:27.0195 3004 seclogon - ok
20:58:27.0258 3004 SENS (90973a64b96cd647ff81c79443618eed) C:\Windows\system32\sens.dll
20:58:27.0336 3004 SENS - ok
20:58:27.0382 3004 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\drivers\serenum.sys
20:58:27.0382 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\serenum.sys. md5: f71bfe7ac6c52273b7c82cbf1bb2a222
20:58:27.0414 3004 Serenum ( LockedFile.Multi.Generic ) - warning
20:58:27.0414 3004 Serenum - detected LockedFile.Multi.Generic (1)
20:58:27.0460 3004 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys
20:58:27.0476 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\serial.sys. md5: e62fac91ee288db29a9696a9d279929c
20:58:27.0492 3004 Serial ( LockedFile.Multi.Generic ) - warning
20:58:27.0492 3004 Serial - detected LockedFile.Multi.Generic (1)
20:58:27.0554 3004 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
20:58:27.0554 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sermouse.sys. md5: a842f04833684bceea7336211be478df
20:58:27.0601 3004 sermouse ( LockedFile.Multi.Generic ) - warning
20:58:27.0601 3004 sermouse - detected LockedFile.Multi.Generic (1)
20:58:27.0679 3004 SessionEnv (a8e4a4407a09f35dccc3771af590b0c4) C:\Windows\system32\sessenv.dll
20:58:27.0757 3004 SessionEnv - ok
20:58:27.0819 3004 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
20:58:27.0819 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffdisk.sys. md5: 14d4b4465193a87c127933978e8c4106
20:58:27.0850 3004 sffdisk ( LockedFile.Multi.Generic ) - warning
20:58:27.0850 3004 sffdisk - detected LockedFile.Multi.Generic (1)
20:58:27.0866 3004 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
20:58:27.0866 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_mmc.sys. md5: 7073aee3f82f3d598e3825962aa98ab2
20:58:27.0882 3004 sffp_mmc ( LockedFile.Multi.Generic ) - warning
20:58:27.0882 3004 sffp_mmc - detected LockedFile.Multi.Generic (1)
20:58:27.0897 3004 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
20:58:27.0897 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sffp_sd.sys. md5: 35e59ebe4a01a0532ed67975161c7b82
20:58:27.0944 3004 sffp_sd ( LockedFile.Multi.Generic ) - warning
20:58:27.0944 3004 sffp_sd - detected LockedFile.Multi.Generic (1)
20:58:27.0991 3004 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
20:58:27.0991 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sfloppy.sys. md5: 6b7838c94135768bd455cbdc23e39e5f
20:58:28.0022 3004 sfloppy ( LockedFile.Multi.Generic ) - warning
20:58:28.0022 3004 sfloppy - detected LockedFile.Multi.Generic (1)
20:58:28.0100 3004 SharedAccess (4c5aee179da7e1ee9a9ccb9da289af34) C:\Windows\System32\ipnathlp.dll
20:58:28.0162 3004 SharedAccess - ok
20:58:28.0272 3004 ShellHWDetection (9235ec680d3db17464b39c7c7decb4dd) C:\Windows\System32\shsvcs.dll
20:58:28.0318 3004 ShellHWDetection - ok
20:58:28.0396 3004 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
20:58:28.0396 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sisraid2.sys. md5: 7a5de502aeb719d4594c6471060a78b3
20:58:28.0443 3004 SiSRaid2 ( LockedFile.Multi.Generic ) - warning
20:58:28.0443 3004 SiSRaid2 - detected LockedFile.Multi.Generic (1)
20:58:28.0474 3004 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
20:58:28.0474 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sisraid4.sys. md5: 3a2f769fab9582bc720e11ea1dfb184d
20:58:28.0521 3004 SiSRaid4 ( LockedFile.Multi.Generic ) - warning
20:58:28.0521 3004 SiSRaid4 - detected LockedFile.Multi.Generic (1)
20:58:28.0724 3004 slsvc (a301d2cefb4747dfe0c24425dcbe0b78) C:\Windows\system32\SLsvc.exe
20:58:28.0833 3004 slsvc - ok
20:58:28.0974 3004 SLUINotify (f5ddf7c0af85eb72cb295171f8c3cb35) C:\Windows\system32\SLUINotify.dll
20:58:29.0052 3004 SLUINotify - ok
20:58:29.0130 3004 Smb (41eb2e8e005feedcafce301983eff932) C:\Windows\system32\DRIVERS\smb.sys
20:58:29.0130 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\smb.sys. md5: 41eb2e8e005feedcafce301983eff932
20:58:29.0176 3004 Smb ( LockedFile.Multi.Generic ) - warning
20:58:29.0176 3004 Smb - detected LockedFile.Multi.Generic (1)
20:58:29.0286 3004 SNMPTRAP (f8f47f38909823b1af28d60b96340cff) C:\Windows\System32\snmptrap.exe
20:58:29.0332 3004 SNMPTRAP - ok
20:58:29.0410 3004 spldr (f9cb0672162f7f04248e2b82c1ff4617) C:\Windows\system32\drivers\spldr.sys
20:58:29.0410 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\spldr.sys. md5: f9cb0672162f7f04248e2b82c1ff4617
20:58:29.0457 3004 spldr ( LockedFile.Multi.Generic ) - warning
20:58:29.0457 3004 spldr - detected LockedFile.Multi.Generic (1)
20:58:29.0520 3004 Spooler (92e6738d25c2123be9515c0eac0776cd) C:\Windows\System32\spoolsv.exe
20:58:29.0566 3004 Spooler - ok
20:58:29.0676 3004 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys
20:58:29.0676 3004 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2
20:58:29.0722 3004 sptd ( LockedFile.Multi.Generic ) - warning
20:58:29.0722 3004 sptd - detected LockedFile.Multi.Generic (1)
20:58:29.0816 3004 srv (a8abd7d0d907b45cf3831f4dd8644349) C:\Windows\system32\DRIVERS\srv.sys
20:58:29.0816 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv.sys. md5: a8abd7d0d907b45cf3831f4dd8644349
20:58:29.0847 3004 srv ( LockedFile.Multi.Generic ) - warning
20:58:29.0847 3004 srv - detected LockedFile.Multi.Generic (1)
20:58:29.0910 3004 srv2 (6c72eea39e1c37b436a6d1532999f9ec) C:\Windows\system32\DRIVERS\srv2.sys
20:58:29.0910 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srv2.sys. md5: 6c72eea39e1c37b436a6d1532999f9ec
20:58:29.0956 3004 srv2 ( LockedFile.Multi.Generic ) - warning
20:58:29.0956 3004 srv2 - detected LockedFile.Multi.Generic (1)
20:58:30.0003 3004 srvnet (7f69bcf9e6fa3d93c82ee6b87812666d) C:\Windows\system32\DRIVERS\srvnet.sys
20:58:30.0003 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\srvnet.sys. md5: 7f69bcf9e6fa3d93c82ee6b87812666d
20:58:30.0034 3004 srvnet ( LockedFile.Multi.Generic ) - warning
20:58:30.0034 3004 srvnet - detected LockedFile.Multi.Generic (1)
20:58:30.0097 3004 SSDPSRV (192c74646ec5725aef3f80d19ff75f6a) C:\Windows\System32\ssdpsrv.dll
20:58:30.0144 3004 SSDPSRV - ok
20:58:30.0253 3004 SstpSvc (2ee3fa0308e6185ba64a9a7f2e74332b) C:\Windows\system32\sstpsvc.dll
20:58:30.0300 3004 SstpSvc - ok
20:58:30.0409 3004 stisvc (f14f7d7d68a66777fb999d5d0f21138d) C:\Windows\System32\wiaservc.dll
20:58:30.0487 3004 stisvc - ok
20:58:30.0565 3004 swenum (409f0882afbb34832b24370c23c550b2) C:\Windows\system32\DRIVERS\swenum.sys
20:58:30.0565 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\swenum.sys. md5: 409f0882afbb34832b24370c23c550b2
20:58:30.0580 3004 swenum ( LockedFile.Multi.Generic ) - warning
20:58:30.0580 3004 swenum - detected LockedFile.Multi.Generic (1)
20:58:30.0736 3004 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:58:30.0752 3004 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
20:58:30.0752 3004 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
20:58:30.0877 3004 swprv (da34d6eb4a3154c0bebaeb0a2483ef3e) C:\Windows\System32\swprv.dll
20:58:30.0986 3004 swprv - ok
20:58:31.0048 3004 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
20:58:31.0048 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\symc8xx.sys. md5: 2f26a2c6fc96b29beff5d8ed74e6625b
20:58:31.0095 3004 Symc8xx ( LockedFile.Multi.Generic ) - warning
20:58:31.0095 3004 Symc8xx - detected LockedFile.Multi.Generic (1)
20:58:31.0142 3004 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
20:58:31.0142 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sym_hi.sys. md5: a909667976d3bccd1df813fed517d837
20:58:31.0173 3004 Sym_hi ( LockedFile.Multi.Generic ) - warning
20:58:31.0173 3004 Sym_hi - detected LockedFile.Multi.Generic (1)
20:58:31.0220 3004 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
20:58:31.0220 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\sym_u3.sys. md5: 36887b56ec2d98b9c362f6ae4de5b7b0
20:58:31.0251 3004 Sym_u3 ( LockedFile.Multi.Generic ) - warning
20:58:31.0251 3004 Sym_u3 - detected LockedFile.Multi.Generic (1)
20:58:31.0360 3004 SysMain (bea0d5521ed21df8f6ffeed86daede7b) C:\Windows\system32\sysmain.dll
20:58:31.0470 3004 SysMain - ok
20:58:31.0548 3004 TabletInputService (005ce42567f9113a3bccb3b20073b029) C:\Windows\System32\TabSvc.dll
20:58:31.0610 3004 TabletInputService - ok
20:58:31.0704 3004 TapiSrv (52091001caf20ae84cf47023ee21b4bb) C:\Windows\System32\tapisrv.dll
20:58:31.0766 3004 TapiSrv - ok
20:58:31.0844 3004 TBS (cdbe8d7c1e201b911cdc346d06617fb5) C:\Windows\System32\tbssvc.dll
20:58:31.0922 3004 TBS - ok
20:58:32.0125 3004 Tcpip (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\drivers\tcpip.sys
20:58:32.0125 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpip.sys. md5: 7d86275fb640011b372fd566c0eafa8d
20:58:32.0187 3004 Tcpip ( LockedFile.Multi.Generic ) - warning
20:58:32.0187 3004 Tcpip - detected LockedFile.Multi.Generic (1)
20:58:32.0234 3004 Tcpip6 (7d86275fb640011b372fd566c0eafa8d) C:\Windows\system32\DRIVERS\tcpip.sys
20:58:32.0234 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tcpip.sys. md5: 7d86275fb640011b372fd566c0eafa8d
20:58:32.0250 3004 Tcpip6 ( LockedFile.Multi.Generic ) - warning
20:58:32.0250 3004 Tcpip6 - detected LockedFile.Multi.Generic (1)
20:58:32.0296 3004 tcpipreg (c29d4b3b08ad0b7e8564814e4ff6a57b) C:\Windows\system32\drivers\tcpipreg.sys
20:58:32.0296 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\tcpipreg.sys. md5: c29d4b3b08ad0b7e8564814e4ff6a57b
20:58:32.0328 3004 tcpipreg ( LockedFile.Multi.Generic ) - warning
20:58:32.0328 3004 tcpipreg - detected LockedFile.Multi.Generic (1)
20:58:32.0390 3004 tdcmdpst (d45586a9facb2c9708b10e491ef748a6) C:\Windows\system32\DRIVERS\tdcmdpst.sys
20:58:32.0390 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tdcmdpst.sys. md5: d45586a9facb2c9708b10e491ef748a6
20:58:32.0437 3004 tdcmdpst ( LockedFile.Multi.Generic ) - warning
20:58:32.0437 3004 tdcmdpst - detected LockedFile.Multi.Generic (1)
20:58:32.0484 3004 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
20:58:32.0484 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdpipe.sys. md5: 1d8bf4aaa5fb7a2761475781dc1195bc
20:58:32.0515 3004 TDPIPE ( LockedFile.Multi.Generic ) - warning
20:58:32.0515 3004 TDPIPE - detected LockedFile.Multi.Generic (1)
20:58:32.0546 3004 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
20:58:32.0546 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\tdtcp.sys. md5: 7f7e00cdf609df657f4cda02dd1c9bb1
20:58:32.0562 3004 TDTCP ( LockedFile.Multi.Generic ) - warning
20:58:32.0562 3004 TDTCP - detected LockedFile.Multi.Generic (1)
20:58:32.0608 3004 tdx (8c39c72e0e853de04748c0337d9b9216) C:\Windows\system32\DRIVERS\tdx.sys
20:58:32.0608 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tdx.sys. md5: 8c39c72e0e853de04748c0337d9b9216
20:58:32.0640 3004 tdx ( LockedFile.Multi.Generic ) - warning
20:58:32.0640 3004 tdx - detected LockedFile.Multi.Generic (1)
20:58:32.0733 3004 TeamViewer5 (2a96c8fa665c02e6ad596c321b583112) C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe
20:58:32.0749 3004 TeamViewer5 - ok
20:58:32.0842 3004 TermDD (134507aa0b5a2acf57f657d2f956f4e1) C:\Windows\system32\DRIVERS\termdd.sys
20:58:32.0842 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\termdd.sys. md5: 134507aa0b5a2acf57f657d2f956f4e1
20:58:32.0874 3004 TermDD ( LockedFile.Multi.Generic ) - warning
20:58:32.0874 3004 TermDD - detected LockedFile.Multi.Generic (1)
20:58:32.0952 3004 TermService (f870a5589d6a94b426efb13689023946) C:\Windows\System32\termsrv.dll
20:58:33.0014 3004 TermService - ok
20:58:33.0186 3004 TGCM_ImportWiFiSvc (f6b82925bc410c0a7dde5f5fff0ede3d) C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe
20:58:33.0201 3004 TGCM_ImportWiFiSvc ( UnsignedFile.Multi.Generic ) - warning
20:58:33.0201 3004 TGCM_ImportWiFiSvc - detected UnsignedFile.Multi.Generic (1)
20:58:33.0326 3004 Themes (9235ec680d3db17464b39c7c7decb4dd) C:\Windows\system32\shsvcs.dll
20:58:33.0342 3004 Themes - ok
20:58:33.0420 3004 THREADORDER (3cbe4995e80e13ccfbc42e5dcf3ac81a) C:\Windows\system32\mmcss.dll
20:58:33.0482 3004 THREADORDER - ok
20:58:33.0607 3004 TMachInfo (fb8448d1b0da00d70c28adf9282b31bb) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
20:58:33.0622 3004 TMachInfo - ok
20:58:33.0685 3004 TNaviSrv (22bc804efe155f54252f389b0781d7f2) C:\Program Files (x86)\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
20:58:33.0700 3004 TNaviSrv - ok
20:58:33.0763 3004 TODDSrv (19af3434564e973bc232bbd629ec2bf6) C:\Windows\system32\TODDSrv.exe
20:58:33.0794 3004 TODDSrv ( UnsignedFile.Multi.Generic ) - warning
20:58:33.0794 3004 TODDSrv - detected UnsignedFile.Multi.Generic (1)
20:58:33.0934 3004 TosCoSrv (7810e3a97e004cd2641fd3fc5d2a62cd) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
20:58:33.0997 3004 TosCoSrv - ok
20:58:34.0122 3004 TOSHIBA eco Utility Service (97735d78da5737ea8428d551fa263eea) C:\Program Files\TOSHIBA\TECO\TecoService.exe
20:58:34.0153 3004 TOSHIBA eco Utility Service ( UnsignedFile.Multi.Generic ) - warning
20:58:34.0153 3004 TOSHIBA eco Utility Service - detected UnsignedFile.Multi.Generic (1)
20:58:34.0246 3004 TOSHIBA HDD SSD Alert Service (b67c69e2982769355d9ff76dd3b2a0fd) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
20:58:34.0246 3004 TOSHIBA HDD SSD Alert Service ( UnsignedFile.Multi.Generic ) - warning
20:58:34.0246 3004 TOSHIBA HDD SSD Alert Service - detected UnsignedFile.Multi.Generic (1)
20:58:34.0387 3004 tos_sps64 (dd50a5df5f7b29fdb6b5fea728c43dc3) C:\Windows\system32\DRIVERS\tos_sps64.sys
20:58:34.0387 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tos_sps64.sys. md5: dd50a5df5f7b29fdb6b5fea728c43dc3
20:58:34.0434 3004 tos_sps64 ( LockedFile.Multi.Generic ) - warning
20:58:34.0434 3004 tos_sps64 - detected LockedFile.Multi.Generic (1)
20:58:34.0543 3004 TPCHSrv (47db100934d168232f63ab7331ccf6b5) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
20:58:34.0621 3004 TPCHSrv - ok
20:58:34.0761 3004 TrkWks (f4689f05af472a651a7b1b7b02d200e7) C:\Windows\System32\trkwks.dll
20:58:34.0839 3004 TrkWks - ok
20:58:34.0933 3004 TrustedInstaller (ac6ff1df22ed90bad6417ee5a4c6e2f0) C:\Windows\servicing\TrustedInstaller.exe
20:58:34.0995 3004 TrustedInstaller - ok
20:58:35.0104 3004 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:58:35.0104 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tssecsrv.sys. md5: 9e5409cd17c8bef193aad498f3bc2cb8
20:58:35.0136 3004 tssecsrv ( LockedFile.Multi.Generic ) - warning
20:58:35.0136 3004 tssecsrv - detected LockedFile.Multi.Generic (1)
20:58:35.0182 3004 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
20:58:35.0182 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tunmp.sys. md5: 89ec74a9e602d16a75a4170511029b3c
20:58:35.0229 3004 tunmp ( LockedFile.Multi.Generic ) - warning
20:58:35.0229 3004 tunmp - detected LockedFile.Multi.Generic (1)
20:58:35.0307 3004 tunnel (2dc2c423572946e9a3131425bda73cb6) C:\Windows\system32\DRIVERS\tunnel.sys
20:58:35.0307 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\tunnel.sys. md5: 2dc2c423572946e9a3131425bda73cb6
20:58:35.0338 3004 tunnel ( LockedFile.Multi.Generic ) - warning
20:58:35.0338 3004 tunnel - detected LockedFile.Multi.Generic (1)
20:58:35.0401 3004 TVALZ (9a744cc3d804ec38a6c2c65bc3c6fcd8) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
20:58:35.0401 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\TVALZ_O.SYS. md5: 9a744cc3d804ec38a6c2c65bc3c6fcd8
20:58:35.0416 3004 TVALZ ( LockedFile.Multi.Generic ) - warning
20:58:35.0416 3004 TVALZ - detected LockedFile.Multi.Generic (1)
20:58:35.0463 3004 TVALZFL (be32a8658a0b56474ad4d0bb8afa8e55) C:\Windows\system32\DRIVERS\TVALZFL.sys
20:58:35.0463 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\TVALZFL.sys. md5: be32a8658a0b56474ad4d0bb8afa8e55
20:58:35.0463 3004 TVALZFL ( LockedFile.Multi.Generic ) - warning
20:58:35.0463 3004 TVALZFL - detected LockedFile.Multi.Generic (1)
20:58:35.0541 3004 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
20:58:35.0541 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\uagp35.sys. md5: fec266ef401966311744bd0f359f7f56
20:58:35.0557 3004 uagp35 ( LockedFile.Multi.Generic ) - warning
20:58:35.0557 3004 uagp35 - detected LockedFile.Multi.Generic (1)
20:58:35.0635 3004 udfs (93edd10512c981d8f5189e1c048a4280) C:\Windows\system32\DRIVERS\udfs.sys
20:58:35.0635 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\udfs.sys. md5: 93edd10512c981d8f5189e1c048a4280
20:58:35.0682 3004 udfs ( LockedFile.Multi.Generic ) - warning
20:58:35.0682 3004 udfs - detected LockedFile.Multi.Generic (1)
20:58:35.0728 3004 UI0Detect (060507c4113391394478f6953a79eedc) C:\Windows\system32\UI0Detect.exe
20:58:35.0791 3004 UI0Detect - ok
20:58:35.0838 3004 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
20:58:35.0838 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\uliagpkx.sys. md5: 4ec9447ac3ab462647f60e547208ca00
20:58:35.0869 3004 uliagpkx ( LockedFile.Multi.Generic ) - warning
20:58:35.0869 3004 uliagpkx - detected LockedFile.Multi.Generic (1)
20:58:35.0931 3004 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
20:58:35.0931 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\uliahci.sys. md5: 697f0446134cdc8f99e69306184fbbb4
20:58:35.0978 3004 uliahci ( LockedFile.Multi.Generic ) - warning
20:58:35.0978 3004 uliahci - detected LockedFile.Multi.Generic (1)
20:58:36.0040 3004 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
20:58:36.0040 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ulsata.sys. md5: 31707f09846056651ea2c37858f5ddb0
20:58:36.0087 3004 UlSata ( LockedFile.Multi.Generic ) - warning
20:58:36.0087 3004 UlSata - detected LockedFile.Multi.Generic (1)
20:58:36.0134 3004 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
20:58:36.0134 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ulsata2.sys. md5: 85e5e43ed5b48c8376281bab519271b7
20:58:36.0181 3004 ulsata2 ( LockedFile.Multi.Generic ) - warning
20:58:36.0181 3004 ulsata2 - detected LockedFile.Multi.Generic (1)
20:58:36.0212 3004 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
20:58:36.0212 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\umbus.sys. md5: 46e9a994c4fed537dd951f60b86ad3f4
20:58:36.0228 3004 umbus ( LockedFile.Multi.Generic ) - warning
20:58:36.0228 3004 umbus - detected LockedFile.Multi.Generic (1)
20:58:36.0290 3004 upnphost (7093799ff80e9deca0680d2e3535be60) C:\Windows\System32\upnphost.dll
20:58:36.0430 3004 upnphost - ok
20:58:36.0540 3004 usbccgp (94d2ca4ea9272bf1feeb3bc3c5d1bed8) C:\Windows\system32\DRIVERS\usbccgp.sys
20:58:36.0540 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbccgp.sys. md5: 94d2ca4ea9272bf1feeb3bc3c5d1bed8
20:58:36.0602 3004 usbccgp ( LockedFile.Multi.Generic ) - warning
20:58:36.0602 3004 usbccgp - detected LockedFile.Multi.Generic (1)
20:58:36.0649 3004 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
20:58:36.0649 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbcir.sys. md5: 9247f7e0b65852c1f6631480984d6ed2
20:58:36.0680 3004 usbcir ( LockedFile.Multi.Generic ) - warning
20:58:36.0680 3004 usbcir - detected LockedFile.Multi.Generic (1)
20:58:36.0758 3004 usbehci (87c446527105dde271ad51bd6058b5b3) C:\Windows\system32\DRIVERS\usbehci.sys
20:58:36.0758 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbehci.sys. md5: 87c446527105dde271ad51bd6058b5b3
20:58:36.0805 3004 usbehci ( LockedFile.Multi.Generic ) - warning
20:58:36.0805 3004 usbehci - detected LockedFile.Multi.Generic (1)
20:58:36.0867 3004 usbhub (9c3af1c9e3255726ff4d2e3913312431) C:\Windows\system32\DRIVERS\usbhub.sys
20:58:36.0867 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbhub.sys. md5: 9c3af1c9e3255726ff4d2e3913312431
20:58:36.0914 3004 usbhub ( LockedFile.Multi.Generic ) - warning
20:58:36.0930 3004 usbhub - detected LockedFile.Multi.Generic (1)
20:58:36.0976 3004 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys
20:58:36.0976 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\usbohci.sys. md5: eba14ef0c07cec233f1529c698d0d154
20:58:37.0008 3004 usbohci ( LockedFile.Multi.Generic ) - warning
20:58:37.0008 3004 usbohci - detected LockedFile.Multi.Generic (1)
20:58:37.0086 3004 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
20:58:37.0086 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbprint.sys. md5: 28b693b6d31e7b9332c1bdcefef228c1
20:58:37.0101 3004 usbprint ( LockedFile.Multi.Generic ) - warning
20:58:37.0101 3004 usbprint - detected LockedFile.Multi.Generic (1)
20:58:37.0148 3004 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys
20:58:37.0148 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbscan.sys. md5: ea0bf666868964fbe8cb10e50c97b9f1
20:58:37.0179 3004 usbscan ( LockedFile.Multi.Generic ) - warning
20:58:37.0179 3004 usbscan - detected LockedFile.Multi.Generic (1)
20:58:37.0257 3004 USBSTOR (586d9876a4945779c8eea926c0d16889) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:58:37.0257 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\USBSTOR.SYS. md5: 586d9876a4945779c8eea926c0d16889
20:58:37.0304 3004 USBSTOR ( LockedFile.Multi.Generic ) - warning
20:58:37.0304 3004 USBSTOR - detected LockedFile.Multi.Generic (1)
20:58:37.0366 3004 usbuhci (1953695eaca70b7b0061dd00fd3656f8) C:\Windows\system32\DRIVERS\usbuhci.sys
20:58:37.0366 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\usbuhci.sys. md5: 1953695eaca70b7b0061dd00fd3656f8
20:58:37.0398 3004 usbuhci ( LockedFile.Multi.Generic ) - warning
20:58:37.0398 3004 usbuhci - detected LockedFile.Multi.Generic (1)
20:58:37.0460 3004 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys
20:58:37.0460 3004 Suspicious file (NoAccess): C:\Windows\system32\Drivers\usbvideo.sys. md5: fc33099877790d51b0927b7039059855
20:58:37.0507 3004 usbvideo ( LockedFile.Multi.Generic ) - warning
20:58:37.0507 3004 usbvideo - detected LockedFile.Multi.Generic (1)
20:58:37.0569 3004 UxSms (9190f03c82547afa87367f1ceca88f3b) C:\Windows\System32\uxsms.dll
20:58:37.0632 3004 UxSms - ok
20:58:37.0741 3004 vds (c15a4a550cba7b9f1f68b72528e04ce1) C:\Windows\System32\vds.exe
20:58:37.0834 3004 vds - ok
20:58:37.0897 3004 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
20:58:37.0897 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\vgapnp.sys. md5: 916b94bcf1e09873fff2d5fb11767bbc
20:58:37.0928 3004 vga ( LockedFile.Multi.Generic ) - warning
20:58:37.0928 3004 vga - detected LockedFile.Multi.Generic (1)
20:58:37.0990 3004 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
20:58:37.0990 3004 Suspicious file (NoAccess): C:\Windows\System32\drivers\vga.sys. md5: b83ab16b51feda65dd81b8c59d114d63
20:58:38.0053 3004 VgaSave ( LockedFile.Multi.Generic ) - warning
20:58:38.0053 3004 VgaSave - detected LockedFile.Multi.Generic (1)
20:58:38.0084 3004 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
20:58:38.0084 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\viaide.sys. md5: 8294b6c3fdb6c33f24e150de647ecdaa
20:58:38.0115 3004 viaide ( LockedFile.Multi.Generic ) - warning
20:58:38.0115 3004 viaide - detected LockedFile.Multi.Generic (1)
20:58:38.0193 3004 volmgr (28b52d1f950b36e03819013d0b7514bc) C:\Windows\system32\drivers\volmgr.sys
20:58:38.0193 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgr.sys. md5: 28b52d1f950b36e03819013d0b7514bc
20:58:38.0240 3004 volmgr ( LockedFile.Multi.Generic ) - warning
20:58:38.0240 3004 volmgr - detected LockedFile.Multi.Generic (1)
20:58:38.0302 3004 volmgrx (5aa217da5dc4ff5b9ac9ab86563b3223) C:\Windows\system32\drivers\volmgrx.sys
20:58:38.0302 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\volmgrx.sys. md5: 5aa217da5dc4ff5b9ac9ab86563b3223
20:58:38.0334 3004 volmgrx ( LockedFile.Multi.Generic ) - warning
20:58:38.0334 3004 volmgrx - detected LockedFile.Multi.Generic (1)
20:58:38.0443 3004 volsnap (de4307412d98050239026e56a7dff3c0) C:\Windows\system32\drivers\volsnap.sys
20:58:38.0443 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\volsnap.sys. md5: de4307412d98050239026e56a7dff3c0
20:58:38.0474 3004 volsnap ( LockedFile.Multi.Generic ) - warning
20:58:38.0474 3004 volsnap - detected LockedFile.Multi.Generic (1)
20:58:38.0552 3004 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
20:58:38.0552 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\vsmraid.sys. md5: a68f455ed2673835209318dd61bfbb0e
20:58:38.0599 3004 vsmraid ( LockedFile.Multi.Generic ) - warning
20:58:38.0599 3004 vsmraid - detected LockedFile.Multi.Generic (1)
20:58:38.0739 3004 VSS (186bd53f8a408ad20f5a056c05678629) C:\Windows\system32\vssvc.exe
20:58:38.0926 3004 VSS - ok
20:58:39.0036 3004 W32Time (ba29f34a61cb55c0dee29e787542edf4) C:\Windows\system32\w32time.dll
20:58:39.0160 3004 W32Time - ok
20:58:39.0270 3004 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
20:58:39.0270 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\wacompen.sys. md5: fef8fe5923fead2cee4dfabfce3393a7
20:58:39.0301 3004 WacomPen ( LockedFile.Multi.Generic ) - warning
20:58:39.0301 3004 WacomPen - detected LockedFile.Multi.Generic (1)
20:58:39.0363 3004 Wanarp (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
20:58:39.0363 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: aea75207e443c8623c36b8d03596f84f
20:58:39.0410 3004 Wanarp ( LockedFile.Multi.Generic ) - warning
20:58:39.0410 3004 Wanarp - detected LockedFile.Multi.Generic (1)
20:58:39.0410 3004 Wanarpv6 (aea75207e443c8623c36b8d03596f84f) C:\Windows\system32\DRIVERS\wanarp.sys
20:58:39.0410 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wanarp.sys. md5: aea75207e443c8623c36b8d03596f84f
20:58:39.0426 3004 Wanarpv6 ( LockedFile.Multi.Generic ) - warning
20:58:39.0426 3004 Wanarpv6 - detected LockedFile.Multi.Generic (1)
20:58:39.0504 3004 wcncsvc (055449247c490e24b968b44fe8a969eb) C:\Windows\System32\wcncsvc.dll
20:58:39.0597 3004 wcncsvc - ok
20:58:39.0691 3004 WcsPlugInService (ea4b369560e986f19d93f45a881484ac) C:\Windows\System32\WcsPlugInService.dll
20:58:39.0753 3004 WcsPlugInService - ok
20:58:39.0831 3004 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
20:58:39.0831 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\wd.sys. md5: 0c17a0816f65b89e362e682ad5e7266e
20:58:39.0862 3004 Wd ( LockedFile.Multi.Generic ) - warning
20:58:39.0862 3004 Wd - detected LockedFile.Multi.Generic (1)
20:58:39.0956 3004 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
20:58:39.0956 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\Wdf01000.sys. md5: d02e7e4567da1e7582fbf6a91144b0df
20:58:40.0003 3004 Wdf01000 ( LockedFile.Multi.Generic ) - warning
20:58:40.0003 3004 Wdf01000 - detected LockedFile.Multi.Generic (1)
20:58:40.0050 3004 WdiServiceHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
20:58:40.0128 3004 WdiServiceHost - ok
20:58:40.0190 3004 WdiSystemHost (c5efda73ebfca8b02a094898de0a9276) C:\Windows\system32\wdi.dll
20:58:40.0237 3004 WdiSystemHost - ok
20:58:40.0299 3004 WebClient (3d4ab55f8178fd0cd3ca45cd0ec9cf5b) C:\Windows\System32\webclnt.dll
20:58:40.0346 3004 WebClient - ok
20:58:40.0424 3004 Wecsvc (8d40bc587993f876658bf9fb0f7d3462) C:\Windows\system32\wecsvc.dll
20:58:40.0486 3004 Wecsvc - ok
20:58:40.0549 3004 wercplsupport (9c980351d7e96288ea0c23ae232bd065) C:\Windows\System32\wercplsupport.dll
20:58:40.0611 3004 wercplsupport - ok
20:58:40.0705 3004 WerSvc (fc25242b3bcaf7e84d9184082274ae08) C:\Windows\System32\WerSvc.dll
20:58:40.0767 3004 WerSvc - ok
20:58:40.0845 3004 WinDefend - ok
20:58:40.0892 3004 WinHttpAutoProxySvc - ok
20:58:40.0986 3004 Winmgmt (ac98f38feab066a8f983d54ff3f4fd4c) C:\Windows\system32\wbem\WMIsvc.dll
20:58:41.0048 3004 Winmgmt - ok
20:58:41.0235 3004 WinRM (6cbb0c68f13b9c2ec1b16f5fa5e7c869) C:\Windows\system32\WsmSvc.dll
20:58:41.0313 3004 WinRM - ok
20:58:41.0563 3004 Wlansvc (0a69955261c1b54206adc9beb89517de) C:\Windows\System32\wlansvc.dll
20:58:41.0672 3004 Wlansvc - ok
20:58:41.0797 3004 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\drivers\wmiacpi.sys
20:58:41.0797 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\wmiacpi.sys. md5: e18aebaaa5a773fe11aa2c70f65320f5
20:58:41.0844 3004 WmiAcpi ( LockedFile.Multi.Generic ) - warning
20:58:41.0844 3004 WmiAcpi - detected LockedFile.Multi.Generic (1)
20:58:41.0922 3004 wmiApSrv (d303322dd577c3deda1251ed2e7a496c) C:\Windows\system32\wbem\WmiApSrv.exe
20:58:41.0984 3004 wmiApSrv - ok
20:58:42.0078 3004 WMPNetworkSvc - ok
20:58:42.0156 3004 WPCSvc (cbc156c913f099e6680d1df9307db7a8) C:\Windows\System32\wpcsvc.dll
20:58:42.0202 3004 WPCSvc - ok
20:58:42.0265 3004 WPDBusEnum (a27c8f92d84e2ddc151978e4692c978e) C:\Windows\system32\wpdbusenum.dll
20:58:42.0327 3004 WPDBusEnum - ok
20:58:42.0421 3004 WpdUsb (6329d1990db931073b86ab5946d8e317) C:\Windows\system32\DRIVERS\wpdusb.sys
20:58:42.0421 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\wpdusb.sys. md5: 6329d1990db931073b86ab5946d8e317
20:58:42.0483 3004 WpdUsb ( LockedFile.Multi.Generic ) - warning
20:58:42.0483 3004 WpdUsb - detected LockedFile.Multi.Generic (1)
20:58:42.0733 3004 WPFFontCache_v0400 (991e2c2cf3bc204c2bb2ee1476149e4e) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:58:42.0811 3004 WPFFontCache_v0400 - ok
20:58:42.0920 3004 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
20:58:42.0920 3004 Suspicious file (NoAccess): C:\Windows\system32\drivers\ws2ifsl.sys. md5: 8a900348370e359b6bff6a550e4649e1
20:58:42.0936 3004 ws2ifsl ( LockedFile.Multi.Generic ) - warning
20:58:42.0936 3004 ws2ifsl - detected LockedFile.Multi.Generic (1)
20:58:43.0014 3004 wscsvc (cb8ea6d95949384925ccfca21cc6dfd8) C:\Windows\system32\wscsvc.dll
20:58:43.0045 3004 wscsvc - ok
20:58:43.0092 3004 WSearch - ok
20:58:43.0310 3004 wuauserv (fb3796754fe00f0bdc87a36f164a5f4d) C:\Windows\system32\wuaueng.dll
20:58:43.0622 3004 wuauserv - ok
20:58:43.0778 3004 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:58:43.0778 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\WUDFRd.sys. md5: 501a65252617b495c0f1832f908d54d8
20:58:43.0825 3004 WUDFRd ( LockedFile.Multi.Generic ) - warning
20:58:43.0825 3004 WUDFRd - detected LockedFile.Multi.Generic (1)
20:58:43.0872 3004 wudfsvc (6cbd51ff913c851d56ed9dc7f2a27dde) C:\Windows\System32\WUDFSvc.dll
20:58:43.0934 3004 wudfsvc - ok
20:58:44.0043 3004 ZTEusbmdm6k (21d99ae7a7b9c1f9587040e8ca7e1b54) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
20:58:44.0043 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys. md5: 21d99ae7a7b9c1f9587040e8ca7e1b54
20:58:44.0074 3004 ZTEusbmdm6k ( LockedFile.Multi.Generic ) - warning
20:58:44.0090 3004 ZTEusbmdm6k - detected LockedFile.Multi.Generic (1)
20:58:44.0168 3004 ZTEusbnmea (21d99ae7a7b9c1f9587040e8ca7e1b54) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
20:58:44.0168 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ZTEusbnmea.sys. md5: 21d99ae7a7b9c1f9587040e8ca7e1b54
20:58:44.0184 3004 ZTEusbnmea ( LockedFile.Multi.Generic ) - warning
20:58:44.0184 3004 ZTEusbnmea - detected LockedFile.Multi.Generic (1)
20:58:44.0246 3004 ZTEusbser6k (21d99ae7a7b9c1f9587040e8ca7e1b54) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
20:58:44.0262 3004 Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\ZTEusbser6k.sys. md5: 21d99ae7a7b9c1f9587040e8ca7e1b54
20:58:44.0293 3004 ZTEusbser6k ( LockedFile.Multi.Generic ) - warning
20:58:44.0293 3004 ZTEusbser6k - detected LockedFile.Multi.Generic (1)
20:58:44.0371 3004 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:58:45.0915 3004 \Device\Harddisk0\DR0 - ok
20:58:45.0962 3004 Boot (0x1200) (03fc678cae863fc928fd4214c5856db9) \Device\Harddisk0\DR0\Partition0
20:58:45.0962 3004 \Device\Harddisk0\DR0\Partition0 - ok
20:58:45.0993 3004 Boot (0x1200) (6b6324ecc14244bda7c9ed852afbd197) \Device\Harddisk0\DR0\Partition1
20:58:45.0993 3004 \Device\Harddisk0\DR0\Partition1 - ok
20:58:45.0993 3004 ============================================================
20:58:45.0993 3004 Scan finished
20:58:45.0993 3004 ============================================================
20:58:46.0024 4568 Detected object count: 159
20:58:46.0024 4568 Actual detected object count: 159
21:01:53.0041 4568 ConfigFree Gadget Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0041 4568 ConfigFree Gadget Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0041 4568 e70a4204416b18c4 ( LockedService.Multi.Generic ) - skipped by user
21:01:53.0041 4568 e70a4204416b18c4 ( LockedService.Multi.Generic ) - User select action: Skip
21:01:53.0041 4568 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0041 4568 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0041 4568 ksthunk ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0041 4568 ksthunk ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0041 4568 lltdio ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0041 4568 lltdio ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0041 4568 LMouFilt ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0041 4568 LMouFilt ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0057 4568 LPCFilter ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0057 4568 LPCFilter ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0057 4568 LSI_FC ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0057 4568 LSI_FC ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0057 4568 LSI_SAS ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0057 4568 LSI_SAS ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0057 4568 LSI_SCSI ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0057 4568 LSI_SCSI ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0057 4568 luafv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0057 4568 luafv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0072 4568 LUsbFilt ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0072 4568 LUsbFilt ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0072 4568 massfilter ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0072 4568 massfilter ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0072 4568 massfilter_hs ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0072 4568 massfilter_hs ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0072 4568 megasas ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0072 4568 megasas ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0072 4568 MegaSR ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0072 4568 MegaSR ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0072 4568 Modem ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0072 4568 Modem ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0088 4568 monitor ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0088 4568 monitor ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0088 4568 mouclass ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0088 4568 mouclass ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0088 4568 mouhid ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0088 4568 mouhid ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0088 4568 MountMgr ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0088 4568 MountMgr ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0104 4568 mpio ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0104 4568 mpio ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0104 4568 mpsdrv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0104 4568 mpsdrv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0104 4568 Mraid35x ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0104 4568 Mraid35x ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0104 4568 MRxDAV ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0104 4568 MRxDAV ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0104 4568 mrxsmb ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0104 4568 mrxsmb ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0104 4568 mrxsmb10 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0104 4568 mrxsmb10 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0119 4568 mrxsmb20 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0119 4568 mrxsmb20 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0119 4568 msahci ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0119 4568 msahci ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0119 4568 msdsm ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0119 4568 msdsm ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0119 4568 Msfs ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0119 4568 Msfs ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0119 4568 msisadrv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0119 4568 msisadrv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0119 4568 MSKSSRV ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0119 4568 MSKSSRV ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0135 4568 MSPCLOCK ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0135 4568 MSPCLOCK ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0135 4568 MSPQM ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0135 4568 MSPQM ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0135 4568 MsRPC ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0135 4568 MsRPC ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0135 4568 mssmbios ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0135 4568 mssmbios ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0135 4568 MSTEE ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0135 4568 MSTEE ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0150 4568 Mup ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0150 4568 Mup ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0150 4568 NativeWifiP ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0150 4568 NativeWifiP ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0150 4568 NDIS ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0150 4568 NDIS ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0150 4568 NdisTapi ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0150 4568 NdisTapi ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0150 4568 Ndisuio ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0150 4568 Ndisuio ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0166 4568 NdisWan ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0166 4568 NdisWan ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0166 4568 NDProxy ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0166 4568 NDProxy ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0166 4568 NetBIOS ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0166 4568 NetBIOS ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0166 4568 netbt ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0166 4568 netbt ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0166 4568 NETw5v64 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0166 4568 NETw5v64 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0166 4568 nfrd960 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0166 4568 nfrd960 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0182 4568 Npfs ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0182 4568 Npfs ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0182 4568 nsiproxy ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0182 4568 nsiproxy ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0182 4568 Ntfs ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0182 4568 Ntfs ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0182 4568 Null ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0182 4568 Null ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0182 4568 nvraid ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0182 4568 nvraid ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0182 4568 nvstor ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0182 4568 nvstor ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0197 4568 nv_agp ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0197 4568 nv_agp ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0197 4568 ohci1394 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0197 4568 ohci1394 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0197 4568 Parport ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0197 4568 Parport ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0197 4568 partmgr ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0197 4568 partmgr ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0197 4568 pci ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0197 4568 pci ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0213 4568 pciide ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0213 4568 pciide ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0213 4568 pcmcia ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0213 4568 pcmcia ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0213 4568 PEAUTH ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0213 4568 PEAUTH ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0213 4568 PGEffect ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0213 4568 PGEffect ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0213 4568 PptpMiniport ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0213 4568 PptpMiniport ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0228 4568 Processor ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0228 4568 Processor ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0228 4568 PSched ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0228 4568 PSched ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0228 4568 PxHlpa64 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0228 4568 PxHlpa64 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0228 4568 ql2300 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0228 4568 ql2300 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0228 4568 ql40xx ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0228 4568 ql40xx ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0244 4568 QWAVEdrv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0244 4568 QWAVEdrv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0244 4568 RasAcd ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0244 4568 RasAcd ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0244 4568 Rasl2tp ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0244 4568 Rasl2tp ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0244 4568 RasPppoe ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0244 4568 RasPppoe ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0244 4568 RasSstp ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0244 4568 RasSstp ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0260 4568 rdbss ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0260 4568 rdbss ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0260 4568 RDPCDD ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0260 4568 RDPCDD ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0260 4568 rdpdr ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0260 4568 rdpdr ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0260 4568 RDPENCDD ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0260 4568 RDPENCDD ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0260 4568 RDPWD ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0260 4568 RDPWD ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0260 4568 rspndr ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0260 4568 rspndr ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0275 4568 RTL8169 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0275 4568 RTL8169 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0275 4568 RTSTOR ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0275 4568 RTSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0275 4568 sbp2port ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0275 4568 sbp2port ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0275 4568 secdrv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0275 4568 secdrv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0275 4568 Serenum ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0275 4568 Serenum ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0275 4568 Serial ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0275 4568 Serial ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0291 4568 sermouse ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0291 4568 sermouse ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0291 4568 sffdisk ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0291 4568 sffdisk ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0291 4568 sffp_mmc ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0291 4568 sffp_mmc ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0291 4568 sffp_sd ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0291 4568 sffp_sd ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0291 4568 sfloppy ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0291 4568 sfloppy ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0306 4568 SiSRaid2 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0306 4568 SiSRaid2 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0306 4568 SiSRaid4 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0306 4568 SiSRaid4 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0306 4568 Smb ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0306 4568 Smb ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0306 4568 spldr ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0306 4568 spldr ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0306 4568 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0306 4568 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0306 4568 srv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0306 4568 srv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0322 4568 srv2 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0322 4568 srv2 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0322 4568 srvnet ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0322 4568 srvnet ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0322 4568 swenum ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0322 4568 swenum ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0322 4568 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0322 4568 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0322 4568 Symc8xx ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0322 4568 Symc8xx ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0338 4568 Sym_hi ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0338 4568 Sym_hi ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0338 4568 Sym_u3 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0338 4568 Sym_u3 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0338 4568 Tcpip ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0338 4568 Tcpip ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0338 4568 Tcpip6 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0338 4568 Tcpip6 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0338 4568 tcpipreg ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0338 4568 tcpipreg ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0353 4568 tdcmdpst ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0353 4568 tdcmdpst ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0353 4568 TDPIPE ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0353 4568 TDPIPE ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0353 4568 TDTCP ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0353 4568 TDTCP ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0353 4568 tdx ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0353 4568 tdx ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0353 4568 TermDD ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0353 4568 TermDD ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0353 4568 TGCM_ImportWiFiSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0353 4568 TGCM_ImportWiFiSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0369 4568 TODDSrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0369 4568 TODDSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0369 4568 TOSHIBA eco Utility Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0369 4568 TOSHIBA eco Utility Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0369 4568 TOSHIBA HDD SSD Alert Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:01:53.0369 4568 TOSHIBA HDD SSD Alert Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:01:53.0369 4568 tos_sps64 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0369 4568 tos_sps64 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0369 4568 tssecsrv ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0369 4568 tssecsrv ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0369 4568 tunmp ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0369 4568 tunmp ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0384 4568 tunnel ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0384 4568 tunnel ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0384 4568 TVALZ ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0384 4568 TVALZ ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0384 4568 TVALZFL ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0384 4568 TVALZFL ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0384 4568 uagp35 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0384 4568 uagp35 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0384 4568 udfs ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0384 4568 udfs ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0400 4568 uliagpkx ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0400 4568 uliagpkx ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0400 4568 uliahci ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0400 4568 uliahci ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0400 4568 UlSata ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0400 4568 UlSata ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0400 4568 ulsata2 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0400 4568 ulsata2 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0400 4568 umbus ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0400 4568 umbus ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0416 4568 usbccgp ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0416 4568 usbccgp ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0416 4568 usbcir ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0416 4568 usbcir ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0416 4568 usbehci ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0416 4568 usbehci ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0416 4568 usbhub ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0416 4568 usbhub ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0416 4568 usbohci ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0416 4568 usbohci ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0416 4568 usbprint ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0416 4568 usbprint ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0431 4568 usbscan ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0431 4568 usbscan ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0431 4568 USBSTOR ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0431 4568 USBSTOR ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0431 4568 usbuhci ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0431 4568 usbuhci ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0431 4568 usbvideo ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0431 4568 usbvideo ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0431 4568 vga ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0431 4568 vga ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0431 4568 VgaSave ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0431 4568 VgaSave ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0447 4568 viaide ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0447 4568 viaide ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0447 4568 volmgr ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0447 4568 volmgr ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0447 4568 volmgrx ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0447 4568 volmgrx ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0447 4568 volsnap ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0447 4568 volsnap ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0447 4568 vsmraid ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0447 4568 vsmraid ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0462 4568 WacomPen ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0462 4568 WacomPen ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0462 4568 Wanarp ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0462 4568 Wanarp ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0462 4568 Wanarpv6 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0462 4568 Wanarpv6 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0462 4568 Wd ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0462 4568 Wd ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0462 4568 Wdf01000 ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0462 4568 Wdf01000 ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0478 4568 WmiAcpi ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0478 4568 WmiAcpi ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0478 4568 WpdUsb ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0478 4568 WpdUsb ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0478 4568 ws2ifsl ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0478 4568 ws2ifsl ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0478 4568 WUDFRd ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0478 4568 WUDFRd ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0478 4568 ZTEusbmdm6k ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0478 4568 ZTEusbmdm6k ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0494 4568 ZTEusbnmea ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0494 4568 ZTEusbnmea ( LockedFile.Multi.Generic ) - User select action: Skip
21:01:53.0494 4568 ZTEusbser6k ( LockedFile.Multi.Generic ) - skipped by user
21:01:53.0494 4568 ZTEusbser6k ( LockedFile.Multi.Generic ) - User select action: Skip