Windows 10: GMER Crashed Windows und findet rootkit

Bubbazz · 05.03.2016, 23:46

Hallo Trojanerboard,

Das ist mein erster Post auf hier

.

Ich denke das ein Trojaner auf mein Rechner sich befindet.

ich benutze Avira Anti Virus: Was nichts gefunden hat.
RougekillerX64 hatte was in den Reg-Dateien gefunden habe leider vergessen die Logdatei zu speichern.
Jedoch hat GMER was gefunden und bricht ständig ab (Bluescreen)
hier ein LOG-file eines erfolgreichen Scans.

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2016-03-05 23:25:50
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0  rev. 0,00MB
Running: cdrjxk41.exe; Driver: C:\Users\javor\AppData\Local\Temp\kwndqpow.sys


---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                          sector 0: rootkit-like behavior

---- Threads - GMER 2.1 ----

Thread  C:\WINDOWS\system32\csrss.exe [584:716]        fffff9604a807300
Thread  C:\WINDOWS\system32\csrss.exe [584:720]        fffff9604a807300
Thread  C:\WINDOWS\system32\svchost.exe [1004:2432]    00007ff8b3571a50
Thread  C:\WINDOWS\system32\svchost.exe [1004:2436]    00007ff8b3542b70
Thread  C:\WINDOWS\system32\svchost.exe [1004:4976]    00007ff8b10b11c0
Thread  C:\WINDOWS\system32\svchost.exe [1004:4984]    00007ff8ba5b4c50
Thread  C:\WINDOWS\system32\svchost.exe [1004:4988]    00007ff8ba5b4c50
Thread  C:\WINDOWS\system32\svchost.exe [1004:3916]    00007ff8b66633d0
Thread  C:\WINDOWS\system32\svchost.exe [96:1356]      00007ff8b7ba3de0
Thread  C:\WINDOWS\system32\svchost.exe [96:1756]      00007ff8b5cd9130
Thread  C:\WINDOWS\system32\svchost.exe [96:2240]      00007ff8b4689a30
Thread  C:\WINDOWS\system32\svchost.exe [96:3008]      00007ff8b46861f0
Thread  C:\WINDOWS\system32\svchost.exe [96:4956]      00007ff8b415de90
Thread  C:\WINDOWS\system32\svchost.exe [96:1708]      00007ff8b415c220
Thread  C:\WINDOWS\system32\svchost.exe [96:6872]      00007ff8b467f690
Thread  C:\WINDOWS\system32\svchost.exe [1044:3460]    00007ff8ab39cf50
Thread  C:\WINDOWS\system32\svchost.exe [1044:3468]    00007ff8ab39cf30
Thread  C:\WINDOWS\System32\svchost.exe [1304:1420]    00007ff8b68dbee0
Thread  C:\WINDOWS\System32\svchost.exe [1304:1464]    00007ff8b68dd3d0
Thread  C:\WINDOWS\System32\svchost.exe [1304:1468]    00007ff8b68dc790
Thread  C:\WINDOWS\System32\svchost.exe [1304:1472]    00007ff8b68dcda0
Thread  C:\WINDOWS\System32\svchost.exe [1304:1500]    00007ff8b68db2a0
Thread  C:\WINDOWS\System32\svchost.exe [1304:1508]    00007ff8b68d6d00
Thread  C:\WINDOWS\System32\svchost.exe [1304:1856]    00007ff8b561adb0
Thread  C:\WINDOWS\System32\svchost.exe [1304:3476]    00007ff8b66633d0
Thread  C:\WINDOWS\System32\svchost.exe [1304:6972]    00007ff8b3da2b10
Thread  C:\WINDOWS\System32\spoolsv.exe [1688:7016]    00007ff8b38c6160
Thread  C:\WINDOWS\System32\spoolsv.exe [1688:7020]    00007ff8b3691010
Thread  C:\WINDOWS\System32\spoolsv.exe [1688:7028]    00007ff8b6431180
Thread  C:\WINDOWS\System32\spoolsv.exe [1688:7032]    00007ff8b02d6c60
Thread  C:\WINDOWS\system32\svchost.exe [1808:1860]    00007ff8b99f64c0
Thread  C:\WINDOWS\system32\svchost.exe [1808:1904]    00007ff8b99f64c0
Thread  C:\WINDOWS\system32\svchost.exe [1808:1912]    00007ff8b99f64c0
Thread  C:\WINDOWS\system32\svchost.exe [1808:1932]    00007ff8b4df9c80
Thread  C:\WINDOWS\system32\svchost.exe [1808:1940]    00007ff8b5695460
Thread  C:\WINDOWS\system32\svchost.exe [1808:1972]    00007ff8b4dfbd10
Thread  C:\WINDOWS\system32\svchost.exe [1808:1976]    00007ff8b4ded460
Thread  C:\WINDOWS\system32\svchost.exe [1808:1980]    00007ff8b4dfb2b0
Thread  C:\WINDOWS\system32\svchost.exe [1808:2096]    00007ff8b847ef60
Thread  C:\WINDOWS\system32\svchost.exe [1808:2184]    00007ff8b45a6910
Thread  C:\WINDOWS\system32\svchost.exe [1808:2188]    00007ff8b45aae00
Thread  C:\WINDOWS\system32\svchost.exe [1808:2700]    00007ff8b3031240
Thread  C:\WINDOWS\system32\svchost.exe [1808:2704]    00007ff8b1658a90
Thread  C:\WINDOWS\system32\svchost.exe [1808:2708]    00007ff8b1631ce0
Thread  C:\WINDOWS\system32\svchost.exe [1808:3384]    00007ff8aa5e3ce0
Thread  C:\WINDOWS\system32\svchost.exe [1808:4856]    00007ff8aa5e2270
Thread  C:\WINDOWS\Explorer.EXE [3228:4332]            00007ff8a54874a0
Thread  C:\WINDOWS\Explorer.EXE [3228:3952]            00007ff8ba601c40
Thread  C:\WINDOWS\Explorer.EXE [3228:5840]            00007ff8b0a33930
Thread  C:\WINDOWS\Explorer.EXE [3228:5260]            00007ff8a5209230
Thread  C:\WINDOWS\system32\DllHost.exe [4092:4124]    00007ff8b3da2b10
Thread  C:\WINDOWS\system32\taskhostw.exe [4736:4828]  00007ff8ba701240
Thread  C:\WINDOWS\system32\taskhostw.exe [4736:4832]  00007ff8bba59f80
Thread  C:\WINDOWS\system32\taskhostw.exe [4736:4908]  00007ff8b28f28e0
Thread  C:\WINDOWS\system32\taskhostw.exe [4736:5004]  00007ff8b8863130

---- EOF - GMER 2.1 ----

Mit freundlichen Grüssen,

Bubbazz

burningice · 06.03.2016, 02:35

Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:

Bitte lies meine Posts komplett durch bevor du sie abarbeitest
Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
Bitte kein Crossposting
Installiere oder Deinstalliere keine Software ohne Aufforderung
Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist

Los geht's

GMER ist zu Windows 10 nicht mehr wirklich kompatibel.

Schritt 1
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Schritt 2
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Bubbazz · 06.03.2016, 16:04

Hallo,

So hab alle Logs/Scans erstellt,
FRST.log

FRST Logfile:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016
durchgeführt von javor (Administrator) auf DESKTOP-EB6F481 (06-03-2016 15:16:50)
Gestartet von C:\Users\javor\Downloads
Geladene Profile: javor (Verfügbare Profile: javor)
Platform: Windows 10 Pro (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Corporation) C:\Windows\System32\userinit.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16174328 2015-10-04] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15120504 2016-02-18] (Logitech Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-11-05] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-27] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [804168 2016-02-17] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2201687558-1264234384-607964449-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2201687558-1264234384-607964449-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{b6899e94-7273-4fe1-9eaf-dca0789e5de5}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================

FireFox:
========
FF ProfilePath: C:\Users\javor\AppData\Roaming\Mozilla\Firefox\Profiles\weEjU8pp.default
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Extension: Avira Browser Safety - C:\Users\javor\AppData\Roaming\Mozilla\Firefox\Profiles\weEjU8pp.default\Extensions\abs@avira.com.xpi [2016-02-27]

Chrome: 
=======
CHR Profile: C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-02-27]
CHR Extension: (Google Docs) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-27]
CHR Extension: (Google Drive) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-27]
CHR Extension: (YouTube) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-27]
CHR Extension: (Adblock Plus) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-27]
CHR Extension: (Google-Suche) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-27]
CHR Extension: (Google Tabellen) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-02-27]
CHR Extension: (Avira Browserschutz) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-02-27]
CHR Extension: (Google Docs Offline) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-27]
CHR Extension: (Google Mail) - C:\Users\javor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-27]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2016-02-17] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1417592 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [260456 2016-01-27] (Avira Operations GmbH & Co. KG)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [240416 2016-02-27] (EasyAntiCheat Ltd)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-02-18] (Logitech Inc.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-10-04] (Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2016-02-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146704 2016-02-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2016-02-17] (Avira Operations GmbH & Co. KG)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek                                            )
S3 ssudqcfilter; C:\Windows\System32\drivers\ssudqcfilter.sys [57648 2016-02-05] (QUALCOMM Incorporated)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [28272 2016-03-05] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-03-06 15:16 - 2016-03-06 15:16 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-EB6F481_javor_HistoryPrediction.bin
2016-03-05 23:30 - 2016-03-06 12:40 - 00000000 ____D C:\Users\javor\AppData\Local\CrashDumps
2016-03-05 23:26 - 2016-03-05 23:26 - 00278968 _____ C:\WINDOWS\Minidump\030516-8781-01.dmp
2016-03-05 23:12 - 2016-03-05 23:12 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-03-05 23:12 - 2016-03-05 23:12 - 00000000 ____D C:\ProgramData\RogueKiller
2016-03-05 23:11 - 2016-03-05 23:12 - 25171528 _____ C:\Users\javor\Downloads\RogueKillerX64.exe
2016-03-05 22:53 - 2016-03-05 22:53 - 00278968 _____ C:\WINDOWS\Minidump\030516-8375-01.dmp
2016-03-05 22:51 - 2016-03-05 22:51 - 00380416 _____ C:\Users\javor\Downloads\cdrjxk41.exe
2016-03-05 21:20 - 2016-03-05 21:20 - 00278968 _____ C:\WINDOWS\Minidump\030516-8328-01.dmp
2016-03-05 21:05 - 2016-03-06 15:15 - 00000000 ____D C:\Users\javor\AppData\Roaming\TS3Client
2016-03-05 21:05 - 2016-03-05 21:05 - 00000667 _____ C:\Users\javor\Desktop\TeamSpeak 3 Client.lnk
2016-03-05 21:05 - 2016-03-05 21:05 - 00000000 ____D C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-03-05 20:24 - 2016-03-05 20:24 - 00291606 _____ C:\Users\javor\Downloads\TCPView.zip
2016-03-05 20:21 - 2016-03-05 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Universal Extractor
2016-03-05 20:20 - 2016-03-05 20:21 - 00000000 ____D C:\Program Files (x86)\Universal Extractor
2016-03-05 19:28 - 2016-03-05 20:18 - 00089739 _____ C:\Users\javor\Desktop\YOLO.txt
2016-03-05 17:10 - 2016-03-05 17:10 - 00000000 ____D C:\Users\javor\AppData\Roaming\Wireshark
2016-03-05 16:52 - 2016-03-05 16:52 - 00001827 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark.lnk
2016-03-05 16:52 - 2016-03-05 16:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPcap
2016-03-05 16:52 - 2016-03-05 16:52 - 00000000 ____D C:\Program Files (x86)\WinPcap
2016-03-05 16:36 - 2016-03-05 16:52 - 00000000 ____D C:\Program Files\Wireshark
2016-03-05 16:36 - 2016-03-05 16:36 - 00001569 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wireshark Legacy.lnk
2016-03-05 15:54 - 2016-03-05 15:56 - 220699968 _____ (COMODO) C:\Users\javor\Downloads\cispro_30day_installer_1150_8d.exe
2016-03-05 15:54 - 2016-03-05 15:54 - 00007606 _____ C:\Users\javor\AppData\Local\Resmon.ResmonCfg
2016-03-05 14:51 - 2016-03-06 03:17 - 00035144 _____ C:\Users\javor\Downloads\Addition.txt
2016-03-05 14:50 - 2016-03-06 15:17 - 00010110 _____ C:\Users\javor\Downloads\FRST.txt
2016-03-05 14:50 - 2016-03-05 14:50 - 00000000 ____D C:\Users\javor\Downloads\FRST-OlderVersion
2016-03-03 13:54 - 2016-03-03 13:54 - 00000013 _____ C:\Users\javor\Documents\bluna.txt
2016-03-03 12:51 - 2016-03-03 12:51 - 00002595 _____ C:\Users\javor\Desktop\Windows 7 USB DVD Download Tool.lnk
2016-03-03 12:51 - 2016-03-03 12:51 - 00000000 ____D C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2016-03-03 12:51 - 2016-03-03 12:51 - 00000000 ____D C:\Users\javor\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2016-03-03 12:51 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-03-03 12:47 - 2016-03-03 12:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO to USB
2016-03-03 12:47 - 2016-03-03 12:47 - 00000000 ____D C:\Program Files (x86)\ISO to USB
2016-03-03 12:37 - 2016-03-03 12:37 - 00000000 _____ C:\Users\javor\Desktop\Neues Textdokument.txt
2016-03-03 12:12 - 2016-03-03 12:13 - 3276931072 _____ C:\Users\javor\Documents\Windows.iso
2016-03-03 11:41 - 2016-03-03 11:41 - 00000000 ___HD C:\$Windows.~WS
2016-03-03 11:06 - 2016-03-03 11:06 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-03-02 13:18 - 2016-03-05 14:42 - 00000000 ____D C:\AdwCleaner
2016-03-02 13:18 - 2016-03-02 13:18 - 01518592 _____ C:\Users\javor\Downloads\AdwCleaner_5.037.exe
2016-03-02 13:11 - 2016-03-06 15:16 - 00000000 ____D C:\FRST
2016-03-02 13:10 - 2016-03-05 14:50 - 02374144 _____ (Farbar) C:\Users\javor\Downloads\FRST64.exe
2016-03-02 13:06 - 2016-03-02 13:06 - 00278968 _____ C:\WINDOWS\Minidump\030216-8968-01.dmp
2016-03-02 13:04 - 2016-03-02 13:04 - 00278968 _____ C:\WINDOWS\Minidump\030216-9109-01.dmp
2016-03-02 12:59 - 2016-03-05 23:28 - 583051897 _____ C:\WINDOWS\MEMORY.DMP
2016-03-02 12:59 - 2016-03-05 23:28 - 00000000 ____D C:\WINDOWS\Minidump
2016-03-02 12:59 - 2016-03-02 12:59 - 00278968 _____ C:\WINDOWS\Minidump\030216-8703-01.dmp
2016-03-01 20:50 - 2016-03-01 22:54 - 00000000 ____D C:\Users\javor\AppData\Roaming\foobar2000
2016-03-01 20:44 - 2016-03-01 20:44 - 00001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\foobar2000.lnk
2016-03-01 20:44 - 2016-03-01 20:44 - 00001100 _____ C:\Users\Public\Desktop\foobar2000.lnk
2016-03-01 20:44 - 2016-03-01 20:44 - 00000000 ____D C:\Program Files (x86)\foobar2000
2016-03-01 20:42 - 2016-03-01 20:42 - 00000000 ____D C:\Users\javor\Documents\Soundaufnahmen
2016-03-01 17:43 - 2016-03-01 17:43 - 00000000 ____D C:\$WINDOWS.~BT
2016-02-29 18:37 - 2016-02-29 18:37 - 00000000 ____D C:\ProgramData\LogiShrd
2016-02-29 18:36 - 2016-02-29 18:36 - 00000000 ____D C:\Users\javor\AppData\Local\Logitech
2016-02-29 18:35 - 2016-02-29 18:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-02-29 18:35 - 2016-02-29 18:35 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2016-02-29 18:34 - 2016-02-29 18:34 - 00000000 ____D C:\Users\javor\AppData\Roaming\Logitech
2016-02-29 18:34 - 2016-02-29 18:34 - 00000000 ____D C:\Users\javor\AppData\Roaming\Logishrd
2016-02-29 11:41 - 2016-02-29 11:41 - 00000000 ____D C:\Users\javor\AppData\Local\Blizzard
2016-02-29 11:20 - 2016-02-29 11:20 - 00001224 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2016-02-29 11:20 - 2016-02-29 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2016-02-29 11:11 - 2016-02-29 11:41 - 00000000 ____D C:\Program Files (x86)\Hearthstone
2016-02-29 11:07 - 2016-02-29 11:07 - 00000000 ____D C:\Users\javor\Tracing
2016-02-28 22:58 - 2016-02-28 22:58 - 00000000 ____H C:\Users\javor\Documents\Default.rdp
2016-02-28 17:29 - 2016-02-28 17:29 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-02-28 16:27 - 2016-03-06 15:17 - 00000000 ____D C:\Users\javor\AppData\Roaming\Skype
2016-02-28 16:27 - 2016-02-28 16:27 - 00002642 _____ C:\Users\Public\Desktop\Skype.lnk
2016-02-28 16:27 - 2016-02-28 16:27 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-02-28 16:27 - 2016-02-28 16:27 - 00000000 ____D C:\ProgramData\Skype
2016-02-28 16:27 - 2016-02-28 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-02-28 14:00 - 2016-02-28 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-02-28 13:59 - 2016-02-28 14:01 - 00000000 ____D C:\Users\javor\AppData\Roaming\Notepad++
2016-02-28 13:59 - 2016-02-28 14:00 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-02-28 08:45 - 2016-02-28 08:45 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-02-28 08:41 - 2016-02-28 08:41 - 00000000 ____D C:\Users\javor\AppData\Local\PeerDistRepub
2016-02-28 03:22 - 2016-02-28 03:22 - 01464028 _____ C:\Users\javor\Downloads\1456611161567.webm
2016-02-27 23:34 - 2016-02-27 23:34 - 00001264 _____ C:\Users\Public\Desktop\Heroes of the Storm.lnk
2016-02-27 23:34 - 2016-02-27 23:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
2016-02-27 23:13 - 2016-03-06 13:28 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2016-02-27 23:13 - 2016-02-28 15:14 - 00000000 ____D C:\Users\javor\Documents\Heroes of the Storm
2016-02-27 15:08 - 2016-02-27 15:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-02-27 15:08 - 2016-02-27 15:08 - 146614896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-02-27 11:59 - 2016-03-01 16:46 - 00000000 ____D C:\Users\javor\AppData\Roaming\vlc
2016-02-27 11:59 - 2016-02-27 11:59 - 00001139 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-02-27 11:59 - 2016-02-27 11:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-02-27 11:59 - 2016-02-27 11:59 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-02-27 11:45 - 2016-03-06 15:14 - 00000000 ____D C:\Users\javor\AppData\Local\Battle.net
2016-02-27 11:45 - 2016-02-28 15:13 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2016-02-27 11:45 - 2016-02-27 11:45 - 00000000 ____D C:\Users\javor\AppData\Local\Blizzard Entertainment
2016-02-27 11:45 - 2016-02-27 11:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-02-27 11:45 - 2016-02-27 11:45 - 00000000 ____D C:\Program Files\7-Zip
2016-02-27 11:44 - 2016-03-06 13:27 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-02-27 11:44 - 2016-02-27 17:43 - 00000000 ____D C:\Users\javor\AppData\Roaming\Battle.net
2016-02-27 11:44 - 2016-02-27 11:44 - 00001187 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-02-27 11:44 - 2016-02-27 11:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2016-02-27 11:43 - 2016-02-27 11:44 - 00000000 ____D C:\ProgramData\Battle.net
2016-02-27 06:59 - 2016-03-06 12:52 - 00293112 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2016-02-27 06:59 - 2016-02-27 06:57 - 00240416 _____ (EasyAntiCheat Ltd) C:\WINDOWS\SysWOW64\EasyAntiCheat.exe
2016-02-27 06:58 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2016-02-27 06:58 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2016-02-27 06:58 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2016-02-27 06:58 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2016-02-27 06:58 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2016-02-27 06:58 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2016-02-27 06:58 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2016-02-27 06:58 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2016-02-27 06:58 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2016-02-27 06:58 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2016-02-27 06:58 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2016-02-27 06:58 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2016-02-27 06:58 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2016-02-27 06:58 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2016-02-27 06:58 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2016-02-27 06:58 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2016-02-27 06:58 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2016-02-27 06:58 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2016-02-27 06:58 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2016-02-27 06:58 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2016-02-27 06:58 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2016-02-27 06:58 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2016-02-27 06:58 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2016-02-27 06:58 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2016-02-27 06:58 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2016-02-27 06:58 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2016-02-27 06:58 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2016-02-27 06:58 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2016-02-27 06:58 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2016-02-27 06:58 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2016-02-27 06:58 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2016-02-27 06:58 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2016-02-27 06:58 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2016-02-27 06:58 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2016-02-27 06:58 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2016-02-27 06:58 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2016-02-27 06:58 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2016-02-27 06:58 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2016-02-27 06:58 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2016-02-27 06:58 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2016-02-27 06:58 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2016-02-27 06:58 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2016-02-27 06:58 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2016-02-27 06:58 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2016-02-27 06:58 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2016-02-27 06:58 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2016-02-27 06:58 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2016-02-27 06:58 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2016-02-27 06:58 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2016-02-27 06:58 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2016-02-27 06:58 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2016-02-27 06:58 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2016-02-27 06:58 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2016-02-27 06:58 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2016-02-27 06:58 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2016-02-27 06:58 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2016-02-27 06:58 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2016-02-27 06:58 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2016-02-27 06:58 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2016-02-27 06:58 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2016-02-27 06:58 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2016-02-27 06:58 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2016-02-27 06:58 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2016-02-27 06:58 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2016-02-27 06:58 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2016-02-27 06:58 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2016-02-27 06:58 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2016-02-27 06:58 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2016-02-27 06:58 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2016-02-27 06:58 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2016-02-27 06:58 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2016-02-27 06:58 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2016-02-27 06:58 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2016-02-27 06:58 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2016-02-27 06:58 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2016-02-27 06:58 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2016-02-27 06:58 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2016-02-27 06:58 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2016-02-27 06:58 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2016-02-27 06:58 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2016-02-27 06:58 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2016-02-27 06:58 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2016-02-27 06:58 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2016-02-27 06:58 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2016-02-27 06:58 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2016-02-27 06:58 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2016-02-27 06:58 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2016-02-27 06:58 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2016-02-27 06:58 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2016-02-27 06:58 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2016-02-27 06:58 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2016-02-27 06:58 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2016-02-27 06:58 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2016-02-27 06:58 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2016-02-27 06:58 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2016-02-27 06:58 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2016-02-27 06:58 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2016-02-27 06:58 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2016-02-27 06:58 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2016-02-27 06:58 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2016-02-27 06:58 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2016-02-27 06:58 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2016-02-27 06:58 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2016-02-27 06:58 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2016-02-27 06:58 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2016-02-27 06:58 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2016-02-27 06:58 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2016-02-27 06:58 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2016-02-27 06:58 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2016-02-27 06:58 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2016-02-27 06:58 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2016-02-27 06:58 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2016-02-27 06:58 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2016-02-27 06:58 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2016-02-27 06:58 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2016-02-27 06:58 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2016-02-27 06:58 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2016-02-27 06:58 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2016-02-27 06:58 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2016-02-27 06:58 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2016-02-27 06:58 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2016-02-27 06:58 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2016-02-27 06:58 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2016-02-27 06:58 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2016-02-27 06:58 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2016-02-27 06:58 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2016-02-27 06:58 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2016-02-27 06:58 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2016-02-27 06:58 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2016-02-27 06:58 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2016-02-27 06:58 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2016-02-27 06:58 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2016-02-27 06:58 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2016-02-27 06:58 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2016-02-27 06:58 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2016-02-27 06:58 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2016-02-27 06:58 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2016-02-27 06:58 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2016-02-27 06:58 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2016-02-27 06:58 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2016-02-27 06:58 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2016-02-27 06:58 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2016-02-27 06:58 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2016-02-27 06:58 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2016-02-27 06:58 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2016-02-27 06:58 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2016-02-27 06:58 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2016-02-27 06:58 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2016-02-27 06:58 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2016-02-27 06:58 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2016-02-27 06:39 - 2016-02-27 06:39 - 00000000 ____D C:\Users\javor\AppData\Local\AMD
2016-02-27 06:38 - 2016-02-27 06:38 - 00000222 _____ C:\Users\javor\Desktop\Rust.url
2016-02-27 06:38 - 2016-02-27 06:38 - 00000000 ____D C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-27 06:33 - 2016-03-05 21:05 - 00000000 ____D C:\Users\javor\AppData\Local\Steam
2016-02-27 06:33 - 2016-02-27 06:33 - 00000000 ____D C:\Users\javor\AppData\Local\CEF
2016-02-27 06:31 - 2016-03-06 15:16 - 00000000 ____D C:\Program Files (x86)\Steam
2016-02-27 06:31 - 2016-02-27 06:31 - 00001032 _____ C:\Users\Public\Desktop\Steam.lnk
2016-02-27 06:31 - 2016-02-27 06:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-02-27 06:11 - 2016-02-27 06:11 - 00000000 ____D C:\Users\javor\AppData\Local\Avira
2016-02-27 06:09 - 2016-02-27 06:09 - 00000000 ____D C:\Users\javor\AppData\Roaming\Mozilla
2016-02-27 06:09 - 2016-02-27 06:09 - 00000000 ____D C:\Users\javor\AppData\Roaming\Avira
2016-02-27 06:08 - 2016-02-17 08:41 - 00146704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-02-27 06:08 - 2016-02-17 08:41 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2016-02-27 06:08 - 2016-02-17 08:41 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2016-02-27 06:08 - 2016-02-17 08:41 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2016-02-27 06:04 - 2016-02-27 06:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-02-27 06:04 - 2016-02-27 06:11 - 00000000 ____D C:\ProgramData\Avira
2016-02-27 06:04 - 2016-02-27 06:09 - 00000000 ____D C:\Program Files (x86)\Avira
2016-02-27 06:04 - 2016-02-27 06:04 - 00001283 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-02-27 06:03 - 2016-02-27 06:03 - 00002336 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-02-27 06:03 - 2016-02-27 06:03 - 00002324 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-02-27 06:02 - 2016-03-06 15:16 - 00001136 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-02-27 06:02 - 2016-03-06 15:07 - 00001140 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-02-27 06:02 - 2016-02-27 06:03 - 00000000 ____D C:\Program Files (x86)\Google
2016-02-27 06:02 - 2016-02-27 06:02 - 00004198 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-02-27 06:02 - 2016-02-27 06:02 - 00003966 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-02-27 06:02 - 2016-02-26 22:13 - 00000000 ____D C:\Users\javor\AppData\Local\Google
2016-02-27 05:58 - 2016-02-27 05:58 - 00000000 ____D C:\Users\javor\AppData\Local\MicrosoftEdge
2016-02-27 05:55 - 2016-03-05 23:34 - 01790124 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-02-27 05:55 - 2016-02-27 05:56 - 00002383 _____ C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-02-27 05:55 - 2016-02-27 05:56 - 00000000 ___RD C:\Users\javor\OneDrive
2016-02-27 05:55 - 2016-02-27 05:56 - 00000000 ____D C:\Users\javor\AppData\Local\Comms
2016-02-27 05:55 - 2016-02-27 05:55 - 00000000 ____D C:\Users\javor\AppData\Roaming\ATI
2016-02-27 05:55 - 2016-02-27 05:55 - 00000000 ____D C:\Users\javor\AppData\Local\ATI
2016-02-27 05:55 - 2016-02-27 05:55 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-02-27 05:55 - 2016-02-27 05:55 - 00000000 ____D C:\ProgramData\ATI
2016-02-27 05:54 - 2016-02-27 06:11 - 00000000 ____D C:\Users\javor\AppData\Local\PackageStaging
2016-02-27 05:54 - 2016-02-27 05:54 - 00001047 _____ C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-02-27 05:54 - 2016-02-27 05:54 - 00000000 ____D C:\Users\javor\AppData\Local\Publishers
2016-02-27 05:54 - 2015-07-09 20:39 - 04847104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2016-02-27 05:54 - 2015-07-09 20:36 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll
2016-02-27 05:54 - 2015-07-09 20:28 - 06358016 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2016-02-27 05:54 - 2015-07-09 20:25 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2016-02-27 05:54 - 2015-07-09 20:25 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2016-02-27 05:53 - 2016-03-06 03:29 - 00000000 ____D C:\Users\javor
2016-02-27 05:53 - 2016-02-27 17:37 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-02-27 05:53 - 2016-02-27 06:11 - 00000000 ____D C:\Users\javor\AppData\Local\Packages
2016-02-27 05:53 - 2016-02-27 05:53 - 00016148 _____ C:\WINDOWS\system32\DESKTOP-EB6F481_defaultuser0_HistoryPrediction.bin
2016-02-27 05:53 - 2016-02-27 05:53 - 00000020 ___SH C:\Users\javor\ntuser.ini
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Vorlagen
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Startmenü
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Netzwerkumgebung
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Lokale Einstellungen
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Eigene Dateien
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Druckumgebung
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Documents\Eigene Videos
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Documents\Eigene Musik
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Documents\Eigene Bilder
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\AppData\Local\Verlauf
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\AppData\Local\Anwendungsdaten
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 _SHDL C:\Users\javor\Anwendungsdaten
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 ____D C:\Users\javor\AppData\Roaming\Adobe
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 ____D C:\Users\javor\AppData\Local\VirtualStore
2016-02-27 05:53 - 2016-02-27 05:53 - 00000000 ____D C:\Users\javor\AppData\Local\TileDataLayer
2016-02-27 05:47 - 2015-07-10 06:37 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-02-27 05:46 - 2016-02-27 05:46 - 00000000 ____D C:\ProgramData\USOShared
2016-02-27 05:45 - 2016-03-06 15:16 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\Default User
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Users\All Users
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Programme
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-02-27 05:45 - 2016-02-27 05:45 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-02-27 05:44 - 2016-02-29 18:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-02-27 05:44 - 2016-02-27 05:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-02-27 05:44 - 2016-02-27 05:44 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2016-02-27 05:44 - 2016-02-27 05:44 - 00000000 ____D C:\Program Files\ATI Technologies
2016-02-27 05:44 - 2016-02-27 05:44 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-02-27 05:44 - 2016-02-27 05:44 - 00000000 ____D C:\AMD
2016-02-27 05:44 - 2016-02-27 05:44 - 00000000 _____ C:\WINDOWS\ativpsrm.bin
2016-02-27 05:43 - 2016-02-27 17:36 - 00189368 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-02-27 05:43 - 2016-02-27 05:44 - 00000000 ____D C:\Program Files\AMD
2016-02-27 05:43 - 2016-02-27 05:43 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2016-02-27 05:43 - 2016-02-27 05:43 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2016-02-27 05:43 - 2016-02-27 05:43 - 00000000 ____D C:\WINDOWS\system32\DAX2
2016-02-27 05:43 - 2016-02-27 05:43 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-02-27 05:43 - 2016-02-27 05:43 - 00000000 ____D C:\Program Files\Realtek
2016-02-27 04:28 - 2016-02-27 04:28 - 00000000 ____D C:\Users\javor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2016-02-27 04:21 - 2016-02-27 04:21 - 00800745 _____ C:\Users\javor\Downloads\1455983147940.webm
2016-02-27 04:06 - 2016-02-27 04:06 - 03987731 _____ C:\Users\javor\Downloads\1455595191279.webm
2016-02-27 04:04 - 2016-02-27 04:04 - 03267747 _____ C:\Users\javor\Downloads\1455594900936.webm
2016-02-27 03:45 - 2016-02-27 03:45 - 01012457 _____ C:\Users\javor\Downloads\1456369743516.webm
2016-02-27 03:42 - 2016-02-27 03:42 - 04182426 _____ C:\Users\javor\Downloads\1456494207653.webm
2016-02-26 20:42 - 2016-02-26 20:42 - 00000000 _____ C:\Recovery.txt
2016-02-26 20:17 - 2016-03-03 12:29 - 00000000 ___DC C:\WINDOWS\Panther
2016-02-26 20:17 - 2016-02-26 20:17 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-02-26 20:17 - 2016-02-26 20:17 - 00000000 ____D C:\WINDOWS\Setup
2016-02-26 20:17 - 2016-02-26 20:17 - 00000000 ____D C:\WINDOWS\InfusedApps
2016-02-26 20:14 - 2016-02-27 05:54 - 00000000 ____D C:\WINDOWS\OCR
2016-02-26 20:14 - 2016-02-26 20:14 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-02-26 20:14 - 2016-02-26 20:14 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-02-26 20:14 - 2016-02-26 20:14 - 00000000 ____D C:\Program Files\MSBuild
2016-02-26 20:14 - 2016-02-26 20:14 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-02-26 20:14 - 2016-02-26 20:14 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-02-26 20:13 - 2016-03-05 23:34 - 00771100 _____ C:\WINDOWS\system32\perfh007.dat
2016-02-26 20:13 - 2016-03-05 23:34 - 00153964 _____ C:\WINDOWS\system32\perfc007.dat
2016-02-26 20:13 - 2016-02-26 20:13 - 00305634 _____ C:\WINDOWS\system32\perfi007.dat
2016-02-26 20:13 - 2016-02-26 20:13 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\winrm
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\WCN
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\slmgr
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\de
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\0409
2016-02-26 20:13 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\DigitalLocker
2016-02-26 20:11 - 2016-02-02 23:47 - 00828920 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-02-26 20:11 - 2016-02-02 23:47 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-02-26 20:10 - 2016-03-05 19:53 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-02-26 20:10 - 2016-03-01 17:05 - 00000000 ____D C:\WINDOWS\rescache
2016-02-26 20:10 - 2016-02-28 19:15 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-02-26 20:10 - 2016-02-28 04:11 - 00000000 ____D C:\WINDOWS\appcompat
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\WINDOWS\Provisioning
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\WINDOWS\L2Schemas
2016-02-26 20:10 - 2016-02-27 16:48 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-26 20:10 - 2016-02-27 16:40 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-26 20:10 - 2016-02-27 06:16 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-02-26 20:10 - 2016-02-27 06:10 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-02-26 20:10 - 2016-02-27 05:54 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-02-26 20:10 - 2016-02-27 05:54 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-02-26 20:10 - 2016-02-27 05:54 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-02-26 20:10 - 2016-02-27 05:53 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-02-26 20:10 - 2016-02-27 05:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-02-26 20:10 - 2016-02-27 05:46 - 00000000 ____D C:\ProgramData\USOPrivate
2016-02-26 20:10 - 2016-02-27 05:45 - 00000000 ____D C:\WINDOWS\CSC
2016-02-26 20:10 - 2016-02-27 05:44 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-02-26 20:10 - 2016-02-26 20:42 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-02-26 20:10 - 2016-02-26 20:16 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2016-02-26 20:10 - 2016-02-26 20:16 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-02-26 20:10 - 2016-02-26 20:16 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-02-26 20:10 - 2016-02-26 20:14 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-02-26 20:10 - 2016-02-26 20:14 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\setup
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\system32\Com
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\IME
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\Help
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\Program Files\Windows Defender
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\Program Files\Common Files\System
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-02-26 20:10 - 2016-02-26 20:13 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 __SHD C:\Program Files\Windows Sidebar
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 __RSD C:\WINDOWS\Media
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 __RHD C:\Users\Public\Libraries
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___SD C:\WINDOWS\system32\Nui
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___RD C:\WINDOWS\Offline Web Pages
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___RD C:\WINDOWS\DesktopTileResources
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Web
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Vss
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\tracing
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\TAPI
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\ras
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\NDF
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\MsDtc
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\icsxml
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\downlevel
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SystemResources
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SystemApps
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\winevt
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\spool
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\ras
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\ProximityToast
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\PointOfService
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\MsDtc
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\Ipmi
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\IME
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\icsxml
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\ias
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\downlevel
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\config\Journal
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\Bthprops
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\AppLocker
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\System
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SKB
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\ShellNew
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\security
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\schemas
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\SchCache
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Resources
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Registration
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\PLA
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Performance
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\ModemLogs
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\InputMethod
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Globalization
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Cursors
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\Branding
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\addins
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\ProgramData\Comms
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files\Windows Portable Devices
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files\Windows NT
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files\Windows Multimedia Platform
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files\Common Files\Services
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-02-26 20:10 - 2016-02-26 20:10 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-02-26 20:10 - 2016-02-26 20:09 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2016-02-26 20:10 - 2016-02-26 20:09 - 00215943 _____ C:\WINDOWS\SysWOW64\dssec.dat
2016-02-26 20:10 - 2016-02-26 20:09 - 00215943 _____ C:\WINDOWS\system32\dssec.dat
2016-02-26 20:10 - 2016-02-26 20:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2016-02-26 20:10 - 2016-02-26 20:09 - 00017463 _____ C:\WINDOWS\system32\Drivers\etc\services
2016-02-26 20:10 - 2016-02-26 20:09 - 00015462 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-02-26 20:10 - 2016-02-26 20:09 - 00008798 _____ C:\WINDOWS\SysWOW64\icrav03.rat
2016-02-26 20:10 - 2016-02-26 20:09 - 00008798 _____ C:\WINDOWS\system32\icrav03.rat
2016-02-26 20:10 - 2016-02-26 20:09 - 00003683 _____ C:\WINDOWS\system32\Drivers\etc\lmhosts.sam
2016-02-26 20:10 - 2016-02-26 20:09 - 00001988 _____ C:\WINDOWS\SysWOW64\ticrf.rat
2016-02-26 20:10 - 2016-02-26 20:09 - 00001988 _____ C:\WINDOWS\system32\ticrf.rat
2016-02-26 20:10 - 2016-02-26 20:09 - 00001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2016-02-26 20:10 - 2016-02-26 20:09 - 00000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2016-02-26 20:10 - 2016-02-26 20:09 - 00000741 _____ C:\WINDOWS\SysWOW64\NOISE.DAT
2016-02-26 20:10 - 2016-02-26 20:09 - 00000741 _____ C:\WINDOWS\system32\NOISE.DAT
2016-02-26 20:10 - 2016-02-26 20:09 - 00000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2016-02-26 20:10 - 2016-02-26 20:09 - 00000389 _____ C:\WINDOWS\system32\AutoWorkplace.exe.config
2016-02-26 20:10 - 2016-02-26 20:09 - 00000219 _____ C:\WINDOWS\system.ini
2016-02-26 20:10 - 2016-02-26 20:09 - 00000092 _____ C:\WINDOWS\win.ini
2016-02-26 20:09 - 2016-03-06 15:16 - 00000000 ____D C:\WINDOWS\INF
2016-02-26 20:05 - 2016-02-27 15:10 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-02-26 20:02 - 2016-03-06 15:15 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-02-26 20:02 - 2016-02-27 05:45 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-02-26 20:02 - 2016-02-26 20:13 - 00000000 ____D C:\WINDOWS\servicing
2016-02-26 20:02 - 2016-02-26 20:10 - 00000000 ____D C:\WINDOWS\system32\SMI
2016-02-26 20:02 - 2015-07-10 10:11 - 00000164 _____ C:\WINDOWS\system32\config\FP
2016-02-10 05:16 - 2016-01-31 07:25 - 01951872 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-02-10 05:16 - 2016-01-31 07:25 - 01248896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-02-10 05:16 - 2016-01-31 07:24 - 01824880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-02-10 05:16 - 2016-01-31 07:23 - 02601160 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-02-10 05:16 - 2016-01-31 07:23 - 01420392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-02-10 05:16 - 2016-01-31 07:06 - 01535032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-02-10 05:16 - 2016-01-31 07:06 - 01531368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-02-10 05:16 - 2016-01-31 07:06 - 00809336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2016-02-10 05:16 - 2016-01-31 07:04 - 01811360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2016-02-10 05:16 - 2016-01-31 07:04 - 01180696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-02-10 05:16 - 2016-01-31 06:38 - 21873152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-02-10 05:16 - 2016-01-31 06:34 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2016-02-10 05:16 - 2016-01-31 06:33 - 24593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-02-10 05:16 - 2016-01-31 06:33 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\IoTAssignedAccessLockFramework.dll
2016-02-10 05:16 - 2016-01-31 06:29 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-02-10 05:16 - 2016-01-31 06:29 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2016-02-10 05:16 - 2016-01-31 06:26 - 06787072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-02-10 05:16 - 2016-01-31 06:26 - 03793408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-02-10 05:16 - 2016-01-31 06:25 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-02-10 05:16 - 2016-01-31 06:25 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-02-10 05:16 - 2016-01-31 06:25 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-02-10 05:16 - 2016-01-31 06:25 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-02-10 05:16 - 2016-01-31 06:24 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-02-10 05:16 - 2016-01-31 06:24 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-02-10 05:16 - 2016-01-31 06:24 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2016-02-10 05:16 - 2016-01-31 06:23 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-02-10 05:16 - 2016-01-31 06:22 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-02-10 05:16 - 2016-01-31 06:20 - 02849792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-02-10 05:16 - 2016-01-31 06:19 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-02-10 05:16 - 2016-01-31 06:19 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-02-10 05:16 - 2016-01-31 06:19 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IoTAssignedAccessLockFramework.dll
2016-02-10 05:16 - 2016-01-31 06:18 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-02-10 05:16 - 2016-01-31 06:18 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-02-10 05:16 - 2016-01-31 06:17 - 19324928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-02-10 05:16 - 2016-01-31 06:17 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2016-02-10 05:16 - 2016-01-31 06:16 - 09889280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-02-10 05:16 - 2016-01-31 06:16 - 00950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-02-10 05:16 - 2016-01-31 06:14 - 07525376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-02-10 05:16 - 2016-01-31 06:14 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-02-10 05:16 - 2016-01-31 06:13 - 04791808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-02-10 05:16 - 2016-01-31 06:13 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2016-02-10 05:16 - 2016-01-31 06:13 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ztrace_maps.dll
2016-02-10 05:16 - 2016-01-31 06:11 - 05156352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-02-10 05:16 - 2016-01-31 06:11 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-02-10 05:16 - 2016-01-31 06:11 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-02-10 05:16 - 2016-01-31 06:11 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-02-10 05:16 - 2016-01-31 06:07 - 18802176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-02-10 05:16 - 2016-01-31 06:06 - 02316800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-02-10 05:16 - 2016-01-31 06:05 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-02-10 05:16 - 2016-01-31 06:05 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2016-02-10 05:16 - 2016-01-31 06:05 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-02-10 05:16 - 2016-01-31 06:04 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2016-02-10 05:16 - 2016-01-31 06:02 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-02-10 05:16 - 2016-01-31 06:02 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-02-10 05:16 - 2016-01-31 06:00 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-02-10 05:16 - 2016-01-31 05:59 - 05457408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-02-10 05:16 - 2016-01-31 05:58 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ztrace_maps.dll
2016-02-10 05:13 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-02-05 23:05 - 2016-02-05 23:05 - 00214832 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2016-02-05 23:03 - 2016-02-05 23:03 - 00122160 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\WINDOWS\system32\Drivers\ssudbus.sys
2016-02-05 23:03 - 2016-02-05 23:03 - 00057648 _____ (QUALCOMM Incorporated) C:\WINDOWS\system32\Drivers\ssudqcfilter.sys
2016-02-05 10:31 - 2016-02-05 10:31 - 47794160 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 39720944 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 30775792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 27544560 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl12cl64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 25320432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 22327280 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl12cl.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 21648880 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2016-02-05 10:31 - 2016-02-05 10:31 - 15725552 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 14310896 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 12088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 10211016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 09355016 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdxc64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 08982432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 08864920 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 08009360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 07683096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdxc32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 07482560 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 06686192 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 05216240 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 03471376 _____ C:\WINDOWS\SysWOW64\atiumdva.cap
2016-02-05 10:31 - 2016-02-05 10:31 - 03437632 _____ C:\WINDOWS\system32\atiumd6a.cap
2016-02-05 10:31 - 2016-02-05 10:31 - 01479808 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 01256432 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 01223544 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 01196032 _____ C:\WINDOWS\system32\amdocl_as64.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 01070592 _____ C:\WINDOWS\system32\amdocl_ld64.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 01004032 _____ C:\WINDOWS\SysWOW64\amdocl_as32.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00935408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00874480 _____ (AMD) C:\WINDOWS\system32\coinst_15.20.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00833800 _____ C:\WINDOWS\system32\amdicdxx.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00807424 _____ C:\WINDOWS\SysWOW64\amdocl_ld32.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00737410 _____ C:\WINDOWS\system32\atiicdxx.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00683504 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00674288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2016-02-05 10:31 - 2016-02-05 10:31 - 00662400 _____ C:\WINDOWS\SysWOW64\atiapfxx.blb
2016-02-05 10:31 - 2016-02-05 10:31 - 00662400 _____ C:\WINDOWS\system32\atiapfxx.blb
2016-02-05 10:31 - 2016-02-05 10:31 - 00631792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00524272 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00471320 _____ C:\WINDOWS\system32\amdmiracast.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00451056 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00375792 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00341488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODE.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00322868 _____ C:\WINDOWS\system32\ativvaxy_vi.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00321200 _____ C:\WINDOWS\system32\ativvaxy_vi_nd.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00255808 _____ C:\WINDOWS\system32\ativvaxy_cz_nd.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00255472 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00250884 _____ C:\WINDOWS\system32\ativvaxy_FJ.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00249088 _____ C:\WINDOWS\system32\ativvaxy_FJ_nd.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00243696 _____ C:\WINDOWS\system32\clinfo.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00234420 _____ C:\WINDOWS\system32\ativvaxy_cik.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00232752 _____ C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00213488 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00204952 _____ C:\WINDOWS\SysWOW64\ativvsvl.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00204952 _____ C:\WINDOWS\system32\ativvsvl.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00199664 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00198640 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00177344 _____ C:\WINDOWS\system32\ativce03.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00175648 _____ C:\WINDOWS\system32\amde31a.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00168944 _____ C:\WINDOWS\system32\atieah64.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00165360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00162232 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00157144 _____ C:\WINDOWS\SysWOW64\ativvsva.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00157144 _____ C:\WINDOWS\system32\ativvsva.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00152560 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00151936 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00150512 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00143344 _____ C:\WINDOWS\system32\amdhdl64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00143056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00140240 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
2016-02-05 10:31 - 2016-02-05 10:31 - 00138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin
2016-02-05 10:31 - 2016-02-05 10:31 - 00138384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00136176 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00132080 _____ C:\WINDOWS\SysWOW64\amdhdl32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00130064 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00122352 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00117600 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00112360 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00111600 _____ C:\WINDOWS\system32\hsa-thunk64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00111088 _____ C:\WINDOWS\SysWOW64\hsa-thunk.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00110320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00103408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00100816 _____ C:\WINDOWS\system32\ativce02.dat
2016-02-05 10:31 - 2016-02-05 10:31 - 00097776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00096752 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00089584 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00088000 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00083952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00081160 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00078320 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00073712 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00071152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00068080 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00064496 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00060912 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00059888 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ATIODCLI.exe
2016-02-05 10:31 - 2016-02-05 10:31 - 00059376 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00057840 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00052208 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00048112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00047664 _____ C:\WINDOWS\system32\kapp_ci.sbin
2016-02-05 10:31 - 2016-02-05 10:31 - 00043536 _____ C:\WINDOWS\system32\kapp_si.sbin
2016-02-05 10:31 - 2016-02-05 10:31 - 00038384 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\detoured.dll
2016-02-05 10:31 - 2016-02-05 10:31 - 00012784 _____ (Microsoft Corporation) C:\WINDOWS\system32\detoured.dll
2016-02-05 10:00 - 2016-02-26 20:42 - 00000000 ___HD C:\$SysReset

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-02-26 20:16 - 2015-09-10 06:12 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2016-02-26 20:16 - 2015-09-10 06:12 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-02-26 20:16 - 2015-09-10 06:12 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-02-26 20:16 - 2015-09-10 06:12 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-02-26 20:16 - 2015-09-10 06:12 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-02-26 20:08 - 2015-09-10 06:12 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2016-02-26 20:08 - 2015-07-10 04:45 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2016-02-26 20:08 - 2015-07-10 04:33 - 00363664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2016-02-26 20:08 - 2015-07-10 04:22 - 00110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2016-02-26 20:08 - 2015-07-10 04:21 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys
2016-02-26 20:08 - 2015-07-10 04:21 - 00016168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2016-02-26 20:08 - 2015-07-10 04:16 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2016-02-26 20:08 - 2015-07-10 04:13 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2016-02-26 20:08 - 2015-07-10 04:13 - 00026464 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2016-02-26 20:07 - 2015-07-10 04:35 - 00694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-02-26 20:07 - 2015-07-10 04:33 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-02-26 20:07 - 2015-07-10 04:19 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2016-02-26 20:07 - 2015-07-10 04:18 - 00008192 _____ C:\WINDOWS\system32\settings.dat

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-03-05 15:54 - 2016-03-05 15:54 - 0007606 _____ () C:\Users\javor\AppData\Local\Resmon.ResmonCfg
2016-02-27 05:43 - 2016-02-27 05:43 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\javor\AppData\Local\Temp\avgnt.exe
C:\Users\javor\AppData\Local\Temp\dllnt_dump.dll
C:\Users\javor\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-02-27 05:43

==================== Ende von FRST.txt ============================

--- --- ---

Additional.log

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:05-03-2016
durchgeführt von javor (2016-03-06 15:17:33)
Gestartet von C:\Users\javor\Downloads
Windows 10 Pro (X64) (2016-02-27 04:50:20)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2201687558-1264234384-607964449-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2201687558-1264234384-607964449-503 - Limited - Disabled)
Gast (S-1-5-21-2201687558-1264234384-607964449-501 - Limited - Disabled)
javor (S-1-5-21-2201687558-1264234384-607964449-1002 - Administrator - Enabled) => C:\Users\javor

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.141 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3b87484e-d70b-4b4f-ad59-2ae89571e2cf}) (Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.56.9119 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
foobar2000 v1.3.9 (HKLM-x32\...\foobar2000) (Version: 1.3.9 - Peter Pawlowski)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version:  - isotousb.com)
Logitech Gaming Software 8.81 (HKLM\...\Logitech Gaming Software) (Version: 8.81.15 - Logitech Inc.)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9 - Notepad++ Team)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-2201687558-1264234384-607964449-1002\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Universal Extractor 1.6.1 (HKLM-x32\...\Universal Extractor_is1) (Version: 1.6.1 - Jared Breland)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.2 - VideoLAN)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
Wireshark 2.0.2 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.2 - The Wireshark developer community, hxxps://www.wireshark.org)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2201687558-1264234384-607964449-1002_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\javor\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {AE50BAC9-8939-4592-A9E8-D5D45C89CFB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-27] (Google Inc.)
Task: {C79017D8-D6CD-4A95-AB3A-97C9721A380A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-27] (Google Inc.)
Task: {FFA88154-8786-44D2-8BEB-DBD280641C5C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-02-27] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-07-10 04:33 - 2015-07-10 04:33 - 00028160 _____ () C:\WINDOWS\SYSTEM32\efsext.dll
2015-09-10 06:12 - 2015-09-10 06:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-10-04 15:37 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-04 15:37 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-04 15:37 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-12-08 20:09 - 2015-11-25 05:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-12-08 20:09 - 2015-11-25 05:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-08 20:09 - 2015-11-25 05:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-04 15:37 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 04:13 - 2015-09-10 06:12 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-02-18 00:01 - 2016-02-18 00:01 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-02-18 00:01 - 2016-02-18 00:01 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-02-27 06:33 - 2015-12-15 06:54 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-02-27 06:33 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-02-27 06:33 - 2016-02-04 22:02 - 02546768 _____ () C:\Program Files (x86)\Steam\video.dll
2016-02-27 06:33 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-02-27 06:33 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-02-27 06:33 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-02-27 06:33 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-02-27 06:33 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-02-27 06:33 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-02-27 06:33 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-02-27 06:33 - 2016-02-04 22:01 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-01-11 10:36 - 2016-01-11 10:36 - 00932032 ____R () C:\Program Files (x86)\Skype\Phone\ssScreenVVS2.dll
2016-02-27 06:33 - 2016-01-06 02:52 - 48387872 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2016-02-27 06:03 - 2016-02-18 05:14 - 01630360 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libglesv2.dll
2016-02-27 06:03 - 2016-02-18 05:14 - 00085656 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.116\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-02-26 20:10 - 2016-02-26 20:09 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2201687558-1264234384-607964449-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\javor\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\maxresdefault (1).jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{12EE1AB2-AD80-4221-A94B-27ED83384078}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{57AB1F13-7C85-4CE2-B7B5-4DA1CCD6234E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{26E75FA9-7234-4B8C-AA4A-DB40E7F5A59C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B7D6F4CF-8A3A-4940-8C57-6855B496B7D8}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6EF5EEE0-786F-484F-A6CC-A19756F5EFD9}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E46E1A5F-270D-4EB2-973F-436E3EA4E981}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{F6FBBFF0-7E80-4FAE-B3A1-1F135935002B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [TCP Query User{C0D040AA-AC95-45DE-83CB-29E793845E5F}C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{73607621-E788-470F-B238-6502D66CB797}C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [{8944DD3C-8364-433D-B19F-25FB788BE57D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{70FF4064-B702-4437-85D0-53DC1ECCF8E1}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{93ED580D-15B0-4770-ACE6-30E1AD5AEA8C}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{9206FB14-9FA0-4F00-A676-60CE3A12DF78}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{6D007ADF-184C-4C71-8DB5-1D1DF29C601A}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{D40AB774-E3DA-47BD-AD14-E35838AA3185}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{AAC9FA7A-033B-4E6E-BF01-384E2112B13F}C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base41150\heroesofthestorm_x64.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/06/2016 03:16:38 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004C003
Befehlszeilenargumente:
RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (03/06/2016 03:16:37 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Fehler beim Erwerb der Endbenutzerlizenz. hr=0xC004C003
SKU-ID=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c

Error: (03/06/2016 03:16:37 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Lizenzerwerb-Fehlerdetails. 
hr=0xC004C003

Error: (03/06/2016 03:16:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0x8007139F
Befehlszeilenargumente:
RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (03/06/2016 03:16:27 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Fehler beim Erwerb der Endbenutzerlizenz. hr=0xC004C003
SKU-ID=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c

Error: (03/06/2016 03:16:27 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Lizenzerwerb-Fehlerdetails. 
hr=0xC004C003

Error: (03/06/2016 03:15:40 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-EB6F481)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (03/06/2016 12:40:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OHub.exe, Version: 16.0.6106.2350, Zeitstempel: 0x55c40ea1
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.10240.16683, Zeitstempel: 0x56ad9704
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000eaa0c
ID des fehlerhaften Prozesses: 0xbc0
Startzeit der fehlerhaften Anwendung: 0xOHub.exe0
Pfad der fehlerhaften Anwendung: OHub.exe1
Pfad des fehlerhaften Moduls: OHub.exe2
Berichtskennung: OHub.exe3
Vollständiger Name des fehlerhaften Pakets: OHub.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: OHub.exe5

Error: (03/06/2016 12:38:56 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004C003
Befehlszeilenargumente:
RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=2

Error: (03/06/2016 12:38:56 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: Fehler beim Erwerb der Endbenutzerlizenz. hr=0xC004C003
SKU-ID=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c


Systemfehler:
=============
Error: (03/06/2016 03:16:21 PM) (Source: bowser) (EventID: 8016) (User: )
Description: Der Suchdiensttreiber erhielt zu viele nicht erlaubte Datagramme vom Remotecomputer "EASYBOX" zum Namen "DESKTOP-EB6F481" auf Transport "NetBT_Tcpip_{B6899E94-7273-4FE1-9EAF-DCA0789E5DE5}". Das Datagramm steht in den Daten.
Es werden keine weiteren Ereignisse erzeugt, solange die Rücksetzfrequenz nicht abgelaufen ist.

Error: (03/06/2016 03:15:40 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-EB6F481)
Description: CortanaUI.AppXd4tad4d57t4wtdbnnmb8v2xtzym8c1n8.mca

Error: (03/06/2016 03:15:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:15:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:15:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:15:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:29:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:29:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:29:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/06/2016 03:29:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.


CodeIntegrity:
===================================
  Date: 2016-03-05 22:48:12.674
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\javor\AppData\Local\Temp\mbr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-03-05 22:48:12.665
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\javor\AppData\Local\Temp\mbr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-03-05 22:47:24.904
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\javor\AppData\Local\Temp\mbr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 6135.18 MB
Verfügbarer physikalischer RAM: 4105.81 MB
Summe virtueller Speicher: 11255.18 MB
Verfügbarer virtueller Speicher: 9028.36 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.3 GB) (Free:69.76 GB) NTFS
Drive d: (Daten) (Fixed) (Total:931.51 GB) (Free:616.87 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 0000D3A5)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 6D911A7A)
Partition 1: (Active) - (Size=453.8 GB) - (Type=83)
Partition 2: (Not Active) - (Size=12 GB) - (Type=05)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D9B62EE2)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

Mfg,
Bubbazz

Hallo,

der tdskiller-log hat leider zu viele Zeichen und ist zu Groß um hochgeladen zu werden

.

Was nun?

MfG Javor

burningice · 06.03.2016, 16:09

entweder als Anhang anfügen oder auf mehrere Antworten teilen

Bubbazz · 06.03.2016, 16:32

Code:

ATTFilter

15:21:59.0532 0x1a1c  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
15:22:02.0727 0x1a1c  ============================================================
15:22:02.0727 0x1a1c  Current date / time: 2016/03/06 15:22:02.0727
15:22:02.0727 0x1a1c  SystemInfo:
15:22:02.0727 0x1a1c  
15:22:02.0727 0x1a1c  OS Version: 10.0.10240 ServicePack: 0.0
15:22:02.0727 0x1a1c  Product type: Workstation
15:22:02.0727 0x1a1c  ComputerName: DESKTOP-EB6F481
15:22:02.0728 0x1a1c  UserName: javor
15:22:02.0728 0x1a1c  Windows directory: C:\WINDOWS
15:22:02.0728 0x1a1c  System windows directory: C:\WINDOWS
15:22:02.0728 0x1a1c  Running under WOW64
15:22:02.0728 0x1a1c  Processor architecture: Intel x64
15:22:02.0728 0x1a1c  Number of processors: 8
15:22:02.0728 0x1a1c  Page size: 0x1000
15:22:02.0728 0x1a1c  Boot type: Normal boot
15:22:02.0728 0x1a1c  ============================================================
15:22:02.0805 0x1a1c  KLMD registered as C:\WINDOWS\system32\drivers\31223907.sys
15:22:02.0889 0x1a1c  System UUID: {F3FDCF8A-2672-BDAC-D770-007AA35D80F5}
15:22:03.0207 0x1a1c  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
15:22:03.0207 0x1a1c  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:22:03.0554 0x1a1c  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:22:03.0558 0x1a1c  ============================================================
15:22:03.0558 0x1a1c  \Device\Harddisk0\DR0:
15:22:03.0559 0x1a1c  MBR partitions:
15:22:03.0559 0x1a1c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xFA000
15:22:03.0559 0x1a1c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xFA800, BlocksNum 0xDE99800
15:22:03.0559 0x1a1c  \Device\Harddisk1\DR1:
15:22:03.0559 0x1a1c  MBR partitions:
15:22:03.0588 0x1a1c  \Device\Harddisk2\DR2:
15:22:03.0598 0x1a1c  MBR partitions:
15:22:03.0598 0x1a1c  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
15:22:03.0598 0x1a1c  ============================================================
15:22:03.0599 0x1a1c  C: <-> \Device\Harddisk0\DR0\Partition2
15:22:03.0632 0x1a1c  D: <-> \Device\Harddisk2\DR2\Partition1
15:22:03.0632 0x1a1c  ============================================================
15:22:03.0632 0x1a1c  Initialize success
15:22:03.0632 0x1a1c  ============================================================
15:22:05.0745 0x0bf4  ============================================================
15:22:05.0745 0x0bf4  Scan started
15:22:05.0745 0x0bf4  Mode: Manual; 
15:22:05.0745 0x0bf4  ============================================================
15:22:05.0745 0x0bf4  KSN ping started
15:22:08.0061 0x0bf4  KSN ping finished: true
15:22:08.0318 0x0bf4  ================ Scan system memory ========================
15:22:08.0318 0x0bf4  System memory - ok
15:22:08.0318 0x0bf4  ================ Scan services =============================
15:22:08.0367 0x0bf4  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
15:22:08.0371 0x0bf4  1394ohci - ok
15:22:08.0382 0x0bf4  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
15:22:08.0384 0x0bf4  3ware - ok
15:22:08.0400 0x0bf4  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
15:22:08.0410 0x0bf4  ACPI - ok
15:22:08.0416 0x0bf4  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
15:22:08.0419 0x0bf4  acpiex - ok
15:22:08.0422 0x0bf4  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
15:22:08.0423 0x0bf4  acpipagr - ok
15:22:08.0427 0x0bf4  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
15:22:08.0427 0x0bf4  AcpiPmi - ok
15:22:08.0432 0x0bf4  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
15:22:08.0432 0x0bf4  acpitime - ok
15:22:08.0463 0x0bf4  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
15:22:08.0481 0x0bf4  ADP80XX - ok
15:22:08.0500 0x0bf4  [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
15:22:08.0510 0x0bf4  AFD - ok
15:22:08.0515 0x0bf4  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
15:22:08.0517 0x0bf4  agp440 - ok
15:22:08.0524 0x0bf4  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
15:22:08.0528 0x0bf4  ahcache - ok
15:22:08.0533 0x0bf4  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
15:22:08.0533 0x0bf4  AJRouter - ok
15:22:08.0539 0x0bf4  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
15:22:08.0540 0x0bf4  ALG - ok
15:22:08.0549 0x0bf4  [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
15:22:08.0554 0x0bf4  AMD External Events Utility - ok
15:22:08.0560 0x0bf4  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
15:22:08.0562 0x0bf4  AmdK8 - ok
15:22:08.0566 0x0bf4  amdkmdag - ok
15:22:08.0583 0x0bf4  [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
15:22:08.0594 0x0bf4  amdkmdap - ok
15:22:08.0601 0x0bf4  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
15:22:08.0603 0x0bf4  AmdPPM - ok
15:22:08.0608 0x0bf4  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
15:22:08.0609 0x0bf4  amdsata - ok
15:22:08.0619 0x0bf4  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
15:22:08.0623 0x0bf4  amdsbs - ok
15:22:08.0628 0x0bf4  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
15:22:08.0628 0x0bf4  amdxata - ok
15:22:08.0657 0x0bf4  [ 4258991B9E25540D35C7C8234D4FE1D8, CB4E100E30626A02FE59CA7CAEE187B6B03BA531931B1D132E88C0638BCE6B7A ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
15:22:08.0673 0x0bf4  AntiVirMailService - ok
15:22:08.0686 0x0bf4  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
15:22:08.0695 0x0bf4  AntiVirSchedulerService - ok
15:22:08.0708 0x0bf4  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
15:22:08.0716 0x0bf4  AntiVirService - ok
15:22:08.0748 0x0bf4  [ FD20E4FC7D4E7BEBA088387DCE991865, F9EE69774C92F71BDE1D40671EAE5630273CA632BA1E996B00758527D0D75F3D ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
15:22:08.0772 0x0bf4  AntiVirWebService - ok
15:22:08.0780 0x0bf4  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
15:22:08.0782 0x0bf4  AppID - ok
15:22:08.0787 0x0bf4  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
15:22:08.0788 0x0bf4  AppIDSvc - ok
15:22:08.0793 0x0bf4  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
15:22:08.0795 0x0bf4  Appinfo - ok
15:22:08.0802 0x0bf4  [ 68AF553066C4DAE7D8698322526BDA86, 806A5228D204B18B3B9F88AB87B5918046BE96D1B3AEFEC9331CA7A483547486 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
15:22:08.0806 0x0bf4  AppMgmt - ok
15:22:08.0823 0x0bf4  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
15:22:08.0834 0x0bf4  AppReadiness - ok
15:22:08.0887 0x0bf4  [ D6D96E20079D902243690DCBB007F997, 4E3FAED92F6434D689CCC7AE3A077819BCD2E99D7D2C293563B2E0DCF08CC42F ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
15:22:08.0923 0x0bf4  AppXSvc - ok
15:22:08.0933 0x0bf4  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
15:22:08.0935 0x0bf4  arcsas - ok
15:22:08.0939 0x0bf4  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
15:22:08.0940 0x0bf4  AsyncMac - ok
15:22:08.0943 0x0bf4  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
15:22:08.0944 0x0bf4  atapi - ok
15:22:08.0951 0x0bf4  [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
15:22:08.0953 0x0bf4  AtiHDAudioService - ok
15:22:08.0963 0x0bf4  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
15:22:08.0968 0x0bf4  AudioEndpointBuilder - ok
15:22:08.0996 0x0bf4  [ 6300722E8527EC54D426FD00EE5196B2, 71376BE797E8F3E2E671167DA400239D5289DE7EE56CF29564C98715B9DB1D09 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
15:22:09.0014 0x0bf4  Audiosrv - ok
15:22:09.0021 0x0bf4  [ CF233C89DEFF6BCA1F65BE3DA0C1A306, B718A59CFC0E3A9ED4E8C690390F54C96828C5A4C2790C2E98075DB4484240D6 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
15:22:09.0023 0x0bf4  avgntflt - ok
15:22:09.0030 0x0bf4  [ A4A18BD4ED0A2BBEE1A3415DEC199645, FE0AEA11D9756AAA0E6588ED4F3DEBAFDC1804BFCCF9E3EA033EED2936F41BAB ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
15:22:09.0032 0x0bf4  avipbb - ok
15:22:09.0042 0x0bf4  [ 98BB62ABFD17F284C3C5DE40F8266F3C, CD08C737BE9FC32FF98252FCFFCAE779EC6FAB76BF80F0835ACE71F1E155D70D ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
15:22:09.0046 0x0bf4  Avira.ServiceHost - ok
15:22:09.0051 0x0bf4  [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
15:22:09.0052 0x0bf4  avkmgr - ok
15:22:09.0057 0x0bf4  [ E477AF94ACCCF99A0E56D71D450DCCCB, C97756A4E82EC7EF8268967B10DEBAAEDB746B2846CA2BFD68E1B7DBBAE7901A ] avnetflt        C:\WINDOWS\system32\DRIVERS\avnetflt.sys
15:22:09.0058 0x0bf4  avnetflt - ok
15:22:09.0064 0x0bf4  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
15:22:09.0066 0x0bf4  AxInstSV - ok
15:22:09.0082 0x0bf4  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
15:22:09.0091 0x0bf4  b06bdrv - ok
15:22:09.0097 0x0bf4  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
15:22:09.0098 0x0bf4  BasicDisplay - ok
15:22:09.0103 0x0bf4  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
15:22:09.0104 0x0bf4  BasicRender - ok
15:22:09.0109 0x0bf4  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
15:22:09.0109 0x0bf4  bcmfn2 - ok
15:22:09.0121 0x0bf4  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
15:22:09.0128 0x0bf4  BDESVC - ok
15:22:09.0133 0x0bf4  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
15:22:09.0133 0x0bf4  Beep - ok
15:22:09.0154 0x0bf4  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
15:22:09.0168 0x0bf4  BFE - ok
15:22:09.0198 0x0bf4  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
15:22:09.0219 0x0bf4  BITS - ok
15:22:09.0225 0x0bf4  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
15:22:09.0227 0x0bf4  bowser - ok
15:22:09.0243 0x0bf4  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
15:22:09.0252 0x0bf4  BrokerInfrastructure - ok
15:22:09.0259 0x0bf4  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
15:22:09.0261 0x0bf4  Browser - ok
15:22:09.0266 0x0bf4  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
15:22:09.0267 0x0bf4  BthAvrcpTg - ok
15:22:09.0272 0x0bf4  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
15:22:09.0274 0x0bf4  BthHFEnum - ok
15:22:09.0277 0x0bf4  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
15:22:09.0278 0x0bf4  bthhfhid - ok
15:22:09.0290 0x0bf4  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
15:22:09.0295 0x0bf4  BthHFSrv - ok
15:22:09.0301 0x0bf4  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
15:22:09.0302 0x0bf4  BTHMODEM - ok
15:22:09.0308 0x0bf4  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
15:22:09.0310 0x0bf4  bthserv - ok
15:22:09.0314 0x0bf4  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
15:22:09.0315 0x0bf4  buttonconverter - ok
15:22:09.0321 0x0bf4  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
15:22:09.0323 0x0bf4  CapImg - ok
15:22:09.0329 0x0bf4  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
15:22:09.0331 0x0bf4  cdfs - ok
15:22:09.0338 0x0bf4  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
15:22:09.0340 0x0bf4  CDPSvc - ok
15:22:09.0348 0x0bf4  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
15:22:09.0351 0x0bf4  cdrom - ok
15:22:09.0358 0x0bf4  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
15:22:09.0362 0x0bf4  CertPropSvc - ok
15:22:09.0367 0x0bf4  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
15:22:09.0368 0x0bf4  circlass - ok
15:22:09.0381 0x0bf4  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
15:22:09.0387 0x0bf4  CLFS - ok
15:22:09.0405 0x0bf4  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
15:22:09.0417 0x0bf4  ClipSVC - ok
15:22:09.0427 0x0bf4  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
15:22:09.0428 0x0bf4  CmBatt - ok
15:22:09.0445 0x0bf4  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
15:22:09.0456 0x0bf4  CNG - ok
15:22:09.0460 0x0bf4  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
15:22:09.0461 0x0bf4  cnghwassist - ok
15:22:09.0476 0x0bf4  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
15:22:09.0478 0x0bf4  CompositeBus - ok
15:22:09.0482 0x0bf4  COMSysApp - ok
15:22:09.0486 0x0bf4  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
15:22:09.0487 0x0bf4  condrv - ok
15:22:09.0508 0x0bf4  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
15:22:09.0521 0x0bf4  CoreMessagingRegistrar - ok
15:22:09.0530 0x0bf4  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
15:22:09.0532 0x0bf4  CryptSvc - ok
15:22:09.0547 0x0bf4  [ 838755238B2BAE5A4802B038443B8A22, 1A89E413C6E5C3E8C2B64F8A1D41271D3FA39BC67291331FEC8DCFD4F8CCE994 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
15:22:09.0556 0x0bf4  CSC - ok
15:22:09.0574 0x0bf4  [ 7D64B14DAFEBBC19A87EC9D5B862F6AA, BE7510E618566FEA013E2E77CE4C7C160BADE105C493424595A15D0A7F1615CF ] CscService      C:\WINDOWS\System32\cscsvc.dll
15:22:09.0587 0x0bf4  CscService - ok
15:22:09.0592 0x0bf4  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
15:22:09.0593 0x0bf4  dam - ok
15:22:09.0616 0x0bf4  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
15:22:09.0632 0x0bf4  DcomLaunch - ok
15:22:09.0641 0x0bf4  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
15:22:09.0645 0x0bf4  DcpSvc - ok
15:22:09.0659 0x0bf4  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
15:22:09.0668 0x0bf4  defragsvc - ok
15:22:09.0681 0x0bf4  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
15:22:09.0688 0x0bf4  DeviceAssociationService - ok
15:22:09.0694 0x0bf4  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
15:22:09.0698 0x0bf4  DeviceInstall - ok
15:22:09.0703 0x0bf4  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
15:22:09.0704 0x0bf4  DevQueryBroker - ok
15:22:09.0710 0x0bf4  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
15:22:09.0713 0x0bf4  Dfsc - ok
15:22:09.0719 0x0bf4  [ 85137571AEC8AC757D497B9DD30D544D, 6E15C9FB4010B26A8E5AFD4E85F7362B2616EB8503ACCE28EC31AC1E7D18566F ] dg_ssudbus      C:\WINDOWS\System32\drivers\ssudbus.sys
15:22:09.0721 0x0bf4  dg_ssudbus - ok
15:22:09.0732 0x0bf4  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
15:22:09.0739 0x0bf4  Dhcp - ok
15:22:09.0744 0x0bf4  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
15:22:09.0745 0x0bf4  diagnosticshub.standardcollector.service - ok
15:22:09.0784 0x0bf4  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
15:22:09.0812 0x0bf4  DiagTrack - ok
15:22:09.0820 0x0bf4  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
15:22:09.0822 0x0bf4  disk - ok
15:22:09.0831 0x0bf4  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
15:22:09.0838 0x0bf4  DmEnrollmentSvc - ok
15:22:09.0842 0x0bf4  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
15:22:09.0843 0x0bf4  dmvsc - ok
15:22:09.0848 0x0bf4  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
15:22:09.0850 0x0bf4  dmwappushservice - ok
15:22:09.0859 0x0bf4  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
15:22:09.0865 0x0bf4  Dnscache - ok
15:22:09.0875 0x0bf4  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
15:22:09.0880 0x0bf4  dot3svc - ok
15:22:09.0888 0x0bf4  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
15:22:09.0892 0x0bf4  DPS - ok
15:22:09.0895 0x0bf4  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
15:22:09.0896 0x0bf4  drmkaud - ok
15:22:09.0904 0x0bf4  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
15:22:09.0909 0x0bf4  DsmSvc - ok
15:22:09.0916 0x0bf4  [ D920A8B070A9BA5C9DEFC3BA7C3883B5, 8EA05CDE58930EB16B4B502561AF2DB5229658FDC1948A9A8F249A7402C21398 ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
15:22:09.0920 0x0bf4  DsSvc - ok
15:22:09.0968 0x0bf4  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
15:22:10.0000 0x0bf4  DXGKrnl - ok
15:22:10.0008 0x0bf4  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
15:22:10.0011 0x0bf4  Eaphost - ok
15:22:10.0015 0x0bf4  EasyAntiCheat - ok
15:22:10.0097 0x0bf4  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
15:22:10.0155 0x0bf4  ebdrv - ok
15:22:10.0165 0x0bf4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
15:22:10.0167 0x0bf4  EFS - ok
15:22:10.0172 0x0bf4  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
15:22:10.0174 0x0bf4  EhStorClass - ok
15:22:10.0180 0x0bf4  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
15:22:10.0182 0x0bf4  EhStorTcgDrv - ok
15:22:10.0187 0x0bf4  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
15:22:10.0190 0x0bf4  embeddedmode - ok
15:22:10.0198 0x0bf4  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
15:22:10.0204 0x0bf4  EntAppSvc - ok
15:22:10.0207 0x0bf4  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
15:22:10.0208 0x0bf4  ErrDev - ok
15:22:10.0224 0x0bf4  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
15:22:10.0233 0x0bf4  EventSystem - ok
15:22:10.0244 0x0bf4  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
15:22:10.0249 0x0bf4  exfat - ok
15:22:10.0260 0x0bf4  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
15:22:10.0265 0x0bf4  fastfat - ok
15:22:10.0283 0x0bf4  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
15:22:10.0294 0x0bf4  Fax - ok
15:22:10.0299 0x0bf4  [ 4E4B7D935DBF522B2F23D3573596181D, 9D0EC9F65920EE0FFFB2D49C58E4D5151C8CEEB7AA82543D226E4B84EEE4B3F0 ] fcvsc           C:\WINDOWS\System32\drivers\fcvsc.sys
15:22:10.0300 0x0bf4  fcvsc - ok
15:22:10.0304 0x0bf4  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
15:22:10.0305 0x0bf4  fdc - ok
15:22:10.0308 0x0bf4  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
15:22:10.0310 0x0bf4  fdPHost - ok
15:22:10.0313 0x0bf4  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
15:22:10.0315 0x0bf4  FDResPub - ok
15:22:10.0320 0x0bf4  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
15:22:10.0323 0x0bf4  fhsvc - ok
15:22:10.0329 0x0bf4  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
15:22:10.0330 0x0bf4  FileCrypt - ok
15:22:10.0336 0x0bf4  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
15:22:10.0337 0x0bf4  FileInfo - ok
15:22:10.0341 0x0bf4  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
15:22:10.0342 0x0bf4  Filetrace - ok
15:22:10.0346 0x0bf4  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
15:22:10.0347 0x0bf4  flpydisk - ok
15:22:10.0358 0x0bf4  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
15:22:10.0365 0x0bf4  FltMgr - ok
15:22:10.0404 0x0bf4  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
15:22:10.0432 0x0bf4  FontCache - ok
15:22:10.0441 0x0bf4  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:22:10.0442 0x0bf4  FontCache3.0.0.0 - ok
15:22:10.0447 0x0bf4  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
15:22:10.0448 0x0bf4  FsDepends - ok
15:22:10.0452 0x0bf4  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:22:10.0453 0x0bf4  Fs_Rec - ok
15:22:10.0469 0x0bf4  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
15:22:10.0480 0x0bf4  fvevol - ok
15:22:10.0486 0x0bf4  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
15:22:10.0487 0x0bf4  gagp30kx - ok
15:22:10.0491 0x0bf4  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
15:22:10.0491 0x0bf4  gencounter - ok
15:22:10.0495 0x0bf4  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
15:22:10.0496 0x0bf4  genericusbfn - ok
15:22:10.0503 0x0bf4  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
15:22:10.0506 0x0bf4  GPIOClx0101 - ok
15:22:10.0538 0x0bf4  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
15:22:10.0561 0x0bf4  gpsvc - ok
15:22:10.0567 0x0bf4  [ 7BF844D362EB746BC7A6DC3F57FA3E32, C07007CF6A0A2BA953FC40A5031931131CC953A8CF3B5AFA86C8811F9C4D43C4 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
15:22:10.0567 0x0bf4  GpuEnergyDrv - ok
15:22:10.0573 0x0bf4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:22:10.0576 0x0bf4  gupdate - ok
15:22:10.0581 0x0bf4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:22:10.0584 0x0bf4  gupdatem - ok
15:22:10.0589 0x0bf4  [ 27E248CD861AFED4DF0C48F4C853E7F0, 37BEA5E9D8ACAA871A441766B5FDD32A1091C0CB8B34DFA15596AD827C5EF1A4 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
15:22:10.0591 0x0bf4  HDAudBus - ok
15:22:10.0594 0x0bf4  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
15:22:10.0595 0x0bf4  HidBatt - ok
15:22:10.0601 0x0bf4  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
15:22:10.0603 0x0bf4  HidBth - ok
15:22:10.0607 0x0bf4  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
15:22:10.0609 0x0bf4  hidi2c - ok
15:22:10.0613 0x0bf4  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
15:22:10.0614 0x0bf4  hidinterrupt - ok
15:22:10.0619 0x0bf4  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
15:22:10.0620 0x0bf4  HidIr - ok
15:22:10.0623 0x0bf4  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
15:22:10.0625 0x0bf4  hidserv - ok
15:22:10.0629 0x0bf4  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
15:22:10.0630 0x0bf4  HidUsb - ok
15:22:10.0640 0x0bf4  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
15:22:10.0646 0x0bf4  HomeGroupListener - ok
15:22:10.0659 0x0bf4  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
15:22:10.0668 0x0bf4  HomeGroupProvider - ok
15:22:10.0673 0x0bf4  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
15:22:10.0674 0x0bf4  HpSAMD - ok
15:22:10.0698 0x0bf4  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
15:22:10.0715 0x0bf4  HTTP - ok
15:22:10.0720 0x0bf4  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
15:22:10.0721 0x0bf4  hwpolicy - ok
15:22:10.0724 0x0bf4  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
15:22:10.0725 0x0bf4  hyperkbd - ok
15:22:10.0731 0x0bf4  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
15:22:10.0733 0x0bf4  i8042prt - ok
15:22:10.0738 0x0bf4  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
15:22:10.0739 0x0bf4  iaLPSSi_GPIO - ok
15:22:10.0744 0x0bf4  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
15:22:10.0746 0x0bf4  iaLPSSi_I2C - ok
15:22:10.0764 0x0bf4  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
15:22:10.0776 0x0bf4  iaStorAV - ok
15:22:10.0789 0x0bf4  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
15:22:10.0796 0x0bf4  iaStorV - ok
15:22:10.0810 0x0bf4  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
15:22:10.0818 0x0bf4  ibbus - ok
15:22:10.0825 0x0bf4  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
15:22:10.0829 0x0bf4  icssvc - ok
15:22:10.0833 0x0bf4  IEEtwCollectorService - ok
15:22:10.0857 0x0bf4  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
15:22:10.0874 0x0bf4  IKEEXT - ok
15:22:10.0977 0x0bf4  [ CFF7673A716876C03AED20B2000EF0A6, 4FCE213852801DB1E5C43BD165D591A0F69DB1DFB320F8BBE7C1FF04CAEE4111 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:22:11.0054 0x0bf4  IntcAzAudAddService - ok
15:22:11.0063 0x0bf4  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
15:22:11.0064 0x0bf4  intelide - ok
15:22:11.0068 0x0bf4  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
15:22:11.0069 0x0bf4  intelpep - ok
15:22:11.0075 0x0bf4  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
15:22:11.0078 0x0bf4  intelppm - ok
15:22:11.0082 0x0bf4  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
15:22:11.0082 0x0bf4  IoQos - ok
15:22:11.0087 0x0bf4  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:22:11.0089 0x0bf4  IpFilterDriver - ok
15:22:11.0113 0x0bf4  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
15:22:11.0129 0x0bf4  iphlpsvc - ok
15:22:11.0136 0x0bf4  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
15:22:11.0137 0x0bf4  IPMIDRV - ok
15:22:11.0144 0x0bf4  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
15:22:11.0147 0x0bf4  IPNAT - ok
15:22:11.0151 0x0bf4  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
15:22:11.0152 0x0bf4  IRENUM - ok
15:22:11.0156 0x0bf4  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
15:22:11.0156 0x0bf4  isapnp - ok
15:22:11.0168 0x0bf4  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
15:22:11.0173 0x0bf4  iScsiPrt - ok
15:22:11.0179 0x0bf4  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
15:22:11.0180 0x0bf4  kbdclass - ok
15:22:11.0185 0x0bf4  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
15:22:11.0186 0x0bf4  kbdhid - ok
15:22:11.0190 0x0bf4  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
15:22:11.0191 0x0bf4  kdnic - ok
15:22:11.0195 0x0bf4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
15:22:11.0197 0x0bf4  KeyIso - ok
15:22:11.0203 0x0bf4  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
15:22:11.0206 0x0bf4  KSecDD - ok
15:22:11.0213 0x0bf4  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
15:22:11.0216 0x0bf4  KSecPkg - ok
15:22:11.0220 0x0bf4  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
15:22:11.0221 0x0bf4  ksthunk - ok
15:22:11.0232 0x0bf4  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
15:22:11.0239 0x0bf4  KtmRm - ok
15:22:11.0249 0x0bf4  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
15:22:11.0255 0x0bf4  LanmanServer - ok
15:22:11.0264 0x0bf4  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
15:22:11.0271 0x0bf4  LanmanWorkstation - ok
15:22:11.0276 0x0bf4  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
15:22:11.0278 0x0bf4  lfsvc - ok
15:22:11.0282 0x0bf4  [ 17325C9B9ADB2BB99049936D0C9812C8, 70ADDC85FD5757BC9C4B97F382B25A19851FF8275021FFC04A81E208A604F83E ] LGBusEnum       C:\WINDOWS\system32\drivers\LGBusEnum.sys
15:22:11.0283 0x0bf4  LGBusEnum - ok
15:22:11.0288 0x0bf4  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp      C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
15:22:11.0288 0x0bf4  LGCoreTemp - ok
15:22:11.0293 0x0bf4  [ C7AF05942E041D4B1F345ACF79993BB3, E8FAAE356C99A11F6CF17640FD9C67F87AFBFEFB70C458CB85178F2AD94DF848 ] LGJoyXlCore     C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
15:22:11.0294 0x0bf4  LGJoyXlCore - ok
15:22:11.0300 0x0bf4  [ 1DDB8DE3D6EEF31EDCF4977B2D2FAACC, 24291B522A596E2D9A1CDAC192DB1C7422D5DD0E87E5C8A5F5E2CAA90296BF23 ] LGVirHid        C:\WINDOWS\system32\drivers\LGVirHid.sys
15:22:11.0301 0x0bf4  LGVirHid - ok
15:22:11.0305 0x0bf4  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
15:22:11.0306 0x0bf4  LicenseManager - ok
15:22:11.0310 0x0bf4  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
15:22:11.0312 0x0bf4  lltdio - ok
15:22:11.0322 0x0bf4  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
15:22:11.0328 0x0bf4  lltdsvc - ok
15:22:11.0332 0x0bf4  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
15:22:11.0334 0x0bf4  lmhosts - ok
15:22:11.0341 0x0bf4  [ 3FDD795D6AB32A0E9CF32DDB81CFF301, B1907EE082E9EFDFA6B295CEC64624B56E2AE3DE3C7A3747659694217AD54476 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:22:11.0345 0x0bf4  LogiRegistryService - ok
15:22:11.0352 0x0bf4  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
15:22:11.0354 0x0bf4  LSI_SAS - ok
15:22:11.0362 0x0bf4  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
15:22:11.0364 0x0bf4  LSI_SAS2i - ok
15:22:11.0370 0x0bf4  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
15:22:11.0372 0x0bf4  LSI_SAS3i - ok
15:22:11.0377 0x0bf4  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
15:22:11.0379 0x0bf4  LSI_SSS - ok
15:22:11.0401 0x0bf4  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
15:22:11.0414 0x0bf4  LSM - ok
15:22:11.0422 0x0bf4  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
15:22:11.0424 0x0bf4  luafv - ok
15:22:11.0429 0x0bf4  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
15:22:11.0431 0x0bf4  MapsBroker - ok
15:22:11.0437 0x0bf4  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
15:22:11.0438 0x0bf4  megasas - ok
15:22:11.0456 0x0bf4  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
15:22:11.0465 0x0bf4  megasr - ok
15:22:11.0485 0x0bf4  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
15:22:11.0497 0x0bf4  mlx4_bus - ok
15:22:11.0502 0x0bf4  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
15:22:11.0503 0x0bf4  MMCSS - ok
15:22:11.0507 0x0bf4  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
15:22:11.0508 0x0bf4  Modem - ok
15:22:11.0512 0x0bf4  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
15:22:11.0513 0x0bf4  monitor - ok
15:22:11.0518 0x0bf4  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
15:22:11.0519 0x0bf4  mouclass - ok
15:22:11.0524 0x0bf4  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
15:22:11.0525 0x0bf4  mouhid - ok
15:22:11.0530 0x0bf4  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
15:22:11.0532 0x0bf4  mountmgr - ok
15:22:11.0537 0x0bf4  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
15:22:11.0539 0x0bf4  mpsdrv - ok
15:22:11.0560 0x0bf4  [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
15:22:11.0575 0x0bf4  MpsSvc - ok
15:22:11.0582 0x0bf4  [ 8E3F4C3A8EA2E787E6089618675501D0, 8A9FE21C5CBB1D770B58BFA241AA5A4428079EF901C28433FE94DB93DC14B6FB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
15:22:11.0585 0x0bf4  MRxDAV - ok
15:22:11.0598 0x0bf4  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:22:11.0605 0x108c  Object required for P2P: [ 6300722E8527EC54D426FD00EE5196B2 ] Audiosrv
15:22:11.0606 0x0bf4  mrxsmb - ok
15:22:11.0616 0x0bf4  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
15:22:11.0621 0x0bf4  mrxsmb10 - ok
15:22:11.0628 0x0bf4  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
15:22:11.0632 0x0bf4  mrxsmb20 - ok
15:22:11.0638 0x0bf4  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
15:22:11.0641 0x0bf4  MsBridge - ok
15:22:11.0647 0x0bf4  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
15:22:11.0650 0x0bf4  MSDTC - ok
15:22:11.0656 0x0bf4  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
15:22:11.0658 0x0bf4  Msfs - ok
15:22:11.0662 0x0bf4  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
15:22:11.0663 0x0bf4  msgpiowin32 - ok
15:22:11.0666 0x0bf4  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
15:22:11.0667 0x0bf4  mshidkmdf - ok
15:22:11.0671 0x0bf4  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
15:22:11.0671 0x0bf4  mshidumdf - ok
15:22:11.0675 0x0bf4  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
15:22:11.0675 0x0bf4  msisadrv - ok
15:22:11.0681 0x0bf4  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
15:22:11.0685 0x0bf4  MSiSCSI - ok
15:22:11.0688 0x0bf4  msiserver - ok
15:22:11.0691 0x0bf4  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:22:11.0692 0x0bf4  MSKSSRV - ok
15:22:11.0696 0x0bf4  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
15:22:11.0698 0x0bf4  MsLldp - ok
15:22:11.0702 0x0bf4  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:22:11.0703 0x0bf4  MSPCLOCK - ok
15:22:11.0706 0x0bf4  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
15:22:11.0706 0x0bf4  MSPQM - ok
15:22:11.0717 0x0bf4  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
15:22:11.0725 0x0bf4  MsRPC - ok
15:22:11.0731 0x0bf4  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
15:22:11.0732 0x0bf4  mssmbios - ok
15:22:11.0736 0x0bf4  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
15:22:11.0736 0x0bf4  MSTEE - ok
15:22:11.0740 0x0bf4  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
15:22:11.0740 0x0bf4  MTConfig - ok
15:22:11.0746 0x0bf4  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
15:22:11.0748 0x0bf4  Mup - ok
15:22:11.0752 0x0bf4  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
15:22:11.0754 0x0bf4  mvumis - ok
15:22:11.0770 0x0bf4  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
15:22:11.0779 0x0bf4  NativeWifiP - ok
15:22:11.0787 0x0bf4  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
15:22:11.0792 0x0bf4  NcaSvc - ok
15:22:11.0802 0x0bf4  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
15:22:11.0809 0x0bf4  NcbService - ok
15:22:11.0814 0x0bf4  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
15:22:11.0817 0x0bf4  NcdAutoSetup - ok
15:22:11.0822 0x0bf4  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
15:22:11.0823 0x0bf4  ndfltr - ok
15:22:11.0857 0x0bf4  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
15:22:11.0877 0x0bf4  NDIS - ok
15:22:11.0885 0x0bf4  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
15:22:11.0886 0x0bf4  NdisCap - ok
15:22:11.0893 0x0bf4  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
15:22:11.0896 0x0bf4  NdisImPlatform - ok
15:22:11.0901 0x0bf4  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:22:11.0902 0x0bf4  NdisTapi - ok
15:22:11.0907 0x0bf4  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
15:22:11.0909 0x0bf4  Ndisuio - ok
15:22:11.0913 0x0bf4  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
15:22:11.0914 0x0bf4  NdisVirtualBus - ok
15:22:11.0923 0x0bf4  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
15:22:11.0926 0x0bf4  NdisWan - ok
15:22:11.0935 0x0bf4  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:22:11.0938 0x0bf4  ndiswanlegacy - ok
15:22:11.0944 0x0bf4  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
15:22:11.0945 0x0bf4  ndproxy - ok
15:22:11.0953 0x0bf4  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
15:22:11.0956 0x0bf4  Ndu - ok
15:22:11.0960 0x0bf4  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
15:22:11.0962 0x0bf4  NetBIOS - ok
15:22:11.0974 0x0bf4  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
15:22:11.0979 0x0bf4  NetBT - ok
15:22:11.0985 0x0bf4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
15:22:11.0987 0x0bf4  Netlogon - ok
15:22:11.0997 0x0bf4  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
15:22:12.0004 0x0bf4  Netman - ok
15:22:12.0020 0x0bf4  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
15:22:12.0031 0x0bf4  netprofm - ok
15:22:12.0040 0x0bf4  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
15:22:12.0044 0x0bf4  NetSetupSvc - ok
15:22:12.0054 0x0bf4  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:22:12.0059 0x0bf4  NetTcpPortSharing - ok
15:22:12.0068 0x0bf4  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
15:22:12.0074 0x0bf4  NgcCtnrSvc - ok
15:22:12.0079 0x0bf4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
15:22:12.0081 0x0bf4  NgcSvc - ok
15:22:12.0092 0x0bf4  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
15:22:12.0100 0x0bf4  NlaSvc - ok
15:22:12.0104 0x0bf4  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] NPF             C:\WINDOWS\system32\drivers\npf.sys
15:22:12.0105 0x0bf4  NPF - ok
15:22:12.0110 0x0bf4  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
15:22:12.0111 0x0bf4  Npfs - ok
15:22:12.0116 0x0bf4  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
15:22:12.0117 0x0bf4  npsvctrig - ok
15:22:12.0121 0x0bf4  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
15:22:12.0123 0x0bf4  nsi - ok
15:22:12.0127 0x0bf4  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
15:22:12.0128 0x0bf4  nsiproxy - ok
15:22:12.0180 0x0bf4  [ BA8DC96D1DD7785EB0589CB1777208B7, 09B486A20D9F22FE50CB4FBC0C801609F522FA99F5FBC43107336B7D98457D91 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
15:22:12.0228 0x0bf4  NTFS - ok
15:22:12.0234 0x0bf4  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
15:22:12.0235 0x0bf4  Null - ok
15:22:12.0241 0x0bf4  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
15:22:12.0244 0x0bf4  nvraid - ok
15:22:12.0251 0x0bf4  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
15:22:12.0254 0x0bf4  nvstor - ok
15:22:12.0260 0x0bf4  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
15:22:12.0262 0x0bf4  nv_agp - ok
15:22:12.0272 0x0bf4  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
15:22:12.0277 0x0bf4  OneSyncSvc - ok
15:22:12.0292 0x0bf4  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
15:22:12.0299 0x0bf4  p2pimsvc - ok
15:22:12.0312 0x0bf4  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
15:22:12.0321 0x0bf4  p2psvc - ok
15:22:12.0327 0x0bf4  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
15:22:12.0329 0x0bf4  Parport - ok
15:22:12.0336 0x0bf4  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
15:22:12.0338 0x0bf4  partmgr - ok
15:22:12.0352 0x0bf4  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
15:22:12.0362 0x0bf4  PcaSvc - ok
15:22:12.0373 0x0bf4  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
15:22:12.0378 0x0bf4  pci - ok
15:22:12.0382 0x0bf4  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
15:22:12.0383 0x0bf4  pciide - ok
15:22:12.0389 0x0bf4  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
15:22:12.0392 0x0bf4  pcmcia - ok
15:22:12.0396 0x0bf4  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
15:22:12.0398 0x0bf4  pcw - ok
15:22:12.0404 0x0bf4  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
15:22:12.0406 0x0bf4  pdc - ok
15:22:12.0425 0x0bf4  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
15:22:12.0437 0x0bf4  PEAUTH - ok
15:22:12.0486 0x0bf4  [ 303D2C90139ABFC1D12E279F0F101710, CE02E335A72011004395DC635EB819B3ED8D00041B9C59024DE246366AF00559 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
15:22:12.0520 0x0bf4  PeerDistSvc - ok
15:22:12.0527 0x0bf4  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
15:22:12.0529 0x0bf4  percsas2i - ok
15:22:12.0534 0x0bf4  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
15:22:12.0535 0x0bf4  percsas3i - ok
15:22:12.0558 0x0bf4  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
15:22:12.0559 0x0bf4  PerfHost - ok
15:22:12.0574 0x0bf4  [ 839BD56425530973FF3F6F7C0057CD22, 9BADF39BC4628409CFCD5F1300C6040C49B2ED72D0FA389C6BB042E5B17E1A40 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
15:22:12.0581 0x0bf4  PimIndexMaintenanceSvc - ok
15:22:12.0619 0x0bf4  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
15:22:12.0645 0x0bf4  pla - ok
15:22:12.0652 0x0bf4  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
15:22:12.0656 0x0bf4  PlugPlay - ok
15:22:12.0659 0x0bf4  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
15:22:12.0662 0x0bf4  PNRPAutoReg - ok
15:22:12.0674 0x0bf4  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
15:22:12.0681 0x0bf4  PNRPsvc - ok
15:22:12.0693 0x0bf4  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
15:22:12.0701 0x0bf4  PolicyAgent - ok
15:22:12.0707 0x0bf4  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
15:22:12.0711 0x0bf4  Power - ok
15:22:12.0716 0x0bf4  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
15:22:12.0718 0x0bf4  PptpMiniport - ok
15:22:12.0801 0x0bf4  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:22:12.0857 0x0bf4  PrintNotify - ok
15:22:12.0867 0x0bf4  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
15:22:12.0870 0x0bf4  Processor - ok
15:22:12.0880 0x0bf4  [ 8A216BBE091DA0585F6A5E8B65980961, 7A9400AF63D1B906F48C072084CC77508C91C7E69ACC1E9957D7A9C353A67710 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
15:22:12.0887 0x0bf4  ProfSvc - ok
15:22:12.0894 0x0bf4  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
15:22:12.0897 0x0bf4  Psched - ok
15:22:12.0906 0x0bf4  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
15:22:12.0912 0x0bf4  QWAVE - ok
15:22:12.0917 0x0bf4  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
15:22:12.0918 0x0bf4  QWAVEdrv - ok
15:22:12.0922 0x0bf4  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:22:12.0924 0x0bf4  RasAcd - ok
15:22:12.0930 0x0bf4  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
15:22:12.0932 0x0bf4  RasAgileVpn - ok
15:22:12.0938 0x0bf4  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
15:22:12.0941 0x0bf4  RasAuto - ok
15:22:12.0946 0x0bf4  [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
15:22:12.0948 0x0bf4  Rasl2tp - ok
15:22:12.0968 0x0bf4  [ 9AD8FCCC95B68BC3129AA2318CE55717, 57227EBF2C1D42063B95AC92F380BAA95E0C6F2E6556F887AACBF63A0482FD24 ] RasMan          C:\WINDOWS\System32\rasmans.dll
15:22:12.0981 0x0bf4  RasMan - ok
15:22:12.0986 0x0bf4  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:22:12.0988 0x0bf4  RasPppoe - ok
15:22:12.0993 0x0bf4  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
15:22:12.0995 0x0bf4  RasSstp - ok
15:22:13.0007 0x0bf4  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:22:13.0014 0x0bf4  rdbss - ok
15:22:13.0020 0x0bf4  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
15:22:13.0021 0x0bf4  rdpbus - ok
15:22:13.0028 0x0bf4  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
15:22:13.0032 0x0bf4  RDPDR - ok
15:22:13.0051 0x0bf4  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
15:22:13.0052 0x0bf4  RdpVideoMiniport - ok
15:22:13.0061 0x0bf4  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
15:22:13.0065 0x0bf4  rdyboost - ok
15:22:13.0090 0x0bf4  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
15:22:13.0111 0x0bf4  ReFSv1 - ok
15:22:13.0127 0x0bf4  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:22:13.0136 0x0bf4  RemoteAccess - ok
15:22:13.0143 0x0bf4  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
15:22:13.0147 0x0bf4  RemoteRegistry - ok
15:22:13.0172 0x0bf4  [ DF84555A734BA2BDA55BCCCC47095ADD, 639814A7F5B758792FE6D84E3FF312F9CE9DACB21B93EA43394DC7A04526CB81 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
15:22:13.0190 0x0bf4  RetailDemo - ok
15:22:13.0198 0x0bf4  [ 83A6C2CAFE236652D1559640594A0EA8, 52360F17C9C70C9CEA3316560B40C4D89FD705ED7E6B6088C99FC54D4CC35EB5 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
15:22:13.0200 0x0bf4  rpcapd - ok
15:22:13.0206 0x0bf4  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
15:22:13.0208 0x0bf4  RpcEptMapper - ok
15:22:13.0212 0x0bf4  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:22:13.0213 0x0bf4  RpcLocator - ok
15:22:13.0236 0x0bf4  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
15:22:13.0251 0x0bf4  RpcSs - ok
15:22:13.0257 0x0bf4  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
15:22:13.0259 0x0bf4  rspndr - ok
15:22:13.0276 0x0bf4  [ 179E6BCF8D16AD39C137CB4FCFE015C5, A1DF499AA378BDB1CB7F95ACC0C7D6929358AF4596A47FDEDFAE115461563CD5 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
15:22:13.0286 0x0bf4  rt640x64 - ok
15:22:13.0290 0x0bf4  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
15:22:13.0290 0x0bf4  s3cap - ok
15:22:13.0295 0x0bf4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
15:22:13.0297 0x0bf4  SamSs - ok
15:22:13.0303 0x0bf4  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
15:22:13.0305 0x0bf4  sbp2port - ok
15:22:13.0314 0x0bf4  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
15:22:13.0319 0x0bf4  SCardSvr - ok
15:22:13.0327 0x0bf4  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
15:22:13.0332 0x0bf4  ScDeviceEnum - ok
15:22:13.0336 0x0bf4  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
15:22:13.0337 0x0bf4  scfilter - ok
15:22:13.0364 0x0bf4  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
15:22:13.0383 0x0bf4  Schedule - ok
15:22:13.0392 0x0bf4  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
15:22:13.0395 0x0bf4  SCPolicySvc - ok
15:22:13.0405 0x0bf4  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
15:22:13.0410 0x0bf4  sdbus - ok
15:22:13.0417 0x0bf4  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
15:22:13.0421 0x0bf4  SDRSVC - ok
15:22:13.0426 0x0bf4  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
15:22:13.0428 0x0bf4  sdstor - ok
15:22:13.0432 0x0bf4  [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon        C:\WINDOWS\system32\seclogon.dll
15:22:13.0434 0x0bf4  seclogon - ok
15:22:13.0439 0x0bf4  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
15:22:13.0442 0x0bf4  SENS - ok
15:22:13.0469 0x0bf4  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
15:22:13.0487 0x0bf4  SensorDataService - ok
15:22:13.0496 0x0bf4  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
15:22:13.0502 0x0bf4  SensorService - ok
15:22:13.0509 0x0bf4  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
15:22:13.0514 0x0bf4  SensrSvc - ok
15:22:13.0519 0x0bf4  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
15:22:13.0520 0x0bf4  SerCx - ok
15:22:13.0527 0x0bf4  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
15:22:13.0530 0x0bf4  SerCx2 - ok
15:22:13.0535 0x0bf4  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
15:22:13.0535 0x0bf4  Serenum - ok
15:22:13.0542 0x0bf4  [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial          C:\WINDOWS\System32\drivers\serial.sys
15:22:13.0543 0x0bf4  Serial - ok
15:22:13.0547 0x0bf4  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
15:22:13.0548 0x0bf4  sermouse - ok
15:22:13.0563 0x0bf4  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
15:22:13.0572 0x0bf4  SessionEnv - ok
15:22:13.0575 0x0bf4  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
15:22:13.0576 0x0bf4  sfloppy - ok
15:22:13.0588 0x0bf4  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
15:22:13.0598 0x0bf4  SharedAccess - ok
15:22:13.0614 0x0bf4  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:22:13.0626 0x0bf4  ShellHWDetection - ok
15:22:13.0630 0x0bf4  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
15:22:13.0631 0x0bf4  SiSRaid2 - ok
15:22:13.0637 0x0bf4  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
15:22:13.0638 0x0bf4  SiSRaid4 - ok
15:22:13.0648 0x0bf4  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:22:13.0654 0x0bf4  SkypeUpdate - ok
15:22:13.0658 0x0bf4  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
15:22:13.0660 0x0bf4  smphost - ok
15:22:13.0676 0x0bf4  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
15:22:13.0689 0x0bf4  SmsRouter - ok
15:22:13.0696 0x0bf4  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
15:22:13.0698 0x0bf4  SNMPTRAP - ok
15:22:13.0713 0x0bf4  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
15:22:13.0721 0x0bf4  spaceport - ok
15:22:13.0727 0x0bf4  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
15:22:13.0728 0x0bf4  SpbCx - ok
15:22:13.0751 0x0bf4  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
15:22:13.0765 0x0bf4  Spooler - ok
15:22:13.0921 0x0bf4  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
15:22:14.0028 0x0bf4  sppsvc - ok
15:22:14.0048 0x0bf4  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
15:22:14.0050 0x108c  Object send P2P result: true
15:22:14.0050 0x108c  Object required for P2P: [ 98BB62ABFD17F284C3C5DE40F8266F3C ] Avira.ServiceHost
15:22:14.0055 0x0bf4  srv - ok
15:22:14.0074 0x0bf4  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
15:22:14.0085 0x0bf4  srv2 - ok
15:22:14.0094 0x0bf4  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
15:22:14.0098 0x0bf4  srvnet - ok
15:22:14.0107 0x0bf4  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:22:14.0113 0x0bf4  SSDPSRV - ok
15:22:14.0122 0x0bf4  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
15:22:14.0127 0x0bf4  SstpSvc - ok
15:22:14.0135 0x0bf4  [ 9B74226E10CD57E965F87014841016F9, 95C76049DBBF3B31A9B01CFD0EDAAC47DE9A1F096B61D05C47FB85E1AFC07288 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
15:22:14.0139 0x0bf4  ssudmdm - ok
15:22:14.0144 0x0bf4  [ 3267933B06415A5801FE888B203C2046, 8AB522EBF47294760D7F5F49034175A29E16D61481B414B6E193DB144FCA9A62 ] ssudqcfilter    C:\WINDOWS\System32\drivers\ssudqcfilter.sys
15:22:14.0145 0x0bf4  ssudqcfilter - ok
15:22:14.0208 0x0bf4  [ 78760751FBCB900F6F68CA1700DAE2DC, 356914797056B11745E18ECD033B8DC801C3C3DD6C5127FCD430A02C4FDD34A9 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
15:22:14.0253 0x0bf4  StateRepository - ok
15:22:14.0277 0x0bf4  [ 591249EA969797C2A24629AF7C71A6F8, 61F28FB495657916514DE2A7FFD4AD833A1B2BBA5591616BE0C9CCD7DAFA40B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:22:14.0291 0x0bf4  Steam Client Service - ok
15:22:14.0296 0x0bf4  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
15:22:14.0297 0x0bf4  stexstor - ok
15:22:14.0314 0x0bf4  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
15:22:14.0327 0x0bf4  stisvc - ok
15:22:14.0333 0x0bf4  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
15:22:14.0336 0x0bf4  storahci - ok
15:22:14.0340 0x0bf4  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
15:22:14.0342 0x0bf4  storflt - ok
15:22:14.0346 0x0bf4  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
15:22:14.0348 0x0bf4  stornvme - ok
15:22:14.0353 0x0bf4  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
15:22:14.0354 0x0bf4  storqosflt - ok
15:22:14.0366 0x0bf4  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
15:22:14.0374 0x0bf4  StorSvc - ok
15:22:14.0378 0x0bf4  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
15:22:14.0379 0x0bf4  storufs - ok
15:22:14.0383 0x0bf4  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
15:22:14.0384 0x0bf4  storvsc - ok
15:22:14.0388 0x0bf4  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
15:22:14.0390 0x0bf4  svsvc - ok
15:22:14.0405 0x0bf4  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
15:22:14.0405 0x0bf4  swenum - ok
15:22:14.0418 0x0bf4  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
15:22:14.0428 0x0bf4  swprv - ok
15:22:14.0433 0x0bf4  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
15:22:14.0434 0x0bf4  Synth3dVsc - ok
15:22:14.0464 0x0bf4  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
15:22:14.0483 0x0bf4  SysMain - ok
15:22:14.0496 0x0bf4  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
15:22:14.0504 0x0bf4  SystemEventsBroker - ok
15:22:14.0511 0x0bf4  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
15:22:14.0515 0x0bf4  TabletInputService - ok
15:22:14.0525 0x0bf4  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:22:14.0532 0x0bf4  TapiSrv - ok
15:22:14.0591 0x0bf4  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
15:22:14.0631 0x0bf4  Tcpip - ok
15:22:14.0691 0x0bf4  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
15:22:14.0730 0x0bf4  Tcpip6 - ok
15:22:14.0739 0x0bf4  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
15:22:14.0740 0x0bf4  tcpipreg - ok
15:22:14.0748 0x0bf4  [ D42AC03ACF9CA67693D1D9BB4D2A0BC8, D39D5180F3CDB23B4551A8C98F3C92A960B4CC9FA48E0FE11A6D89B0C247783F ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
15:22:14.0750 0x0bf4  tdx - ok
15:22:14.0754 0x0bf4  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
15:22:14.0755 0x0bf4  terminpt - ok
15:22:14.0780 0x0bf4  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
15:22:14.0799 0x0bf4  TermService - ok
15:22:14.0804 0x0bf4  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
15:22:14.0807 0x0bf4  Themes - ok
15:22:14.0822 0x0bf4  [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
15:22:14.0832 0x0bf4  tiledatamodelsvc - ok
15:22:14.0839 0x0bf4  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
15:22:14.0844 0x0bf4  TimeBroker - ok
15:22:14.0851 0x0bf4  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
15:22:14.0855 0x0bf4  TPM - ok
15:22:14.0860 0x0bf4  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
15:22:14.0864 0x0bf4  TrkWks - ok
15:22:14.0869 0x0bf4  [ 0D5A09B08568760AE85A801FCBC0F83D, 347ACBA74FDCBEAC671521739F8A34EC0E378CAF716C31F55616F9F843E4D0D3 ] TrueSight       C:\Windows\System32\drivers\TrueSight.sys
15:22:14.0870 0x0bf4  TrueSight - ok
15:22:14.0875 0x0bf4  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
15:22:14.0877 0x0bf4  TrustedInstaller - ok
15:22:14.0883 0x0bf4  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
15:22:14.0884 0x0bf4  TsUsbFlt - ok
15:22:14.0888 0x0bf4  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
15:22:14.0889 0x0bf4  TsUsbGD - ok
15:22:14.0895 0x0bf4  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
15:22:14.0898 0x0bf4  tunnel - ok
15:22:14.0904 0x0bf4  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
15:22:14.0905 0x0bf4  uagp35 - ok
15:22:14.0910 0x0bf4  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
15:22:14.0911 0x0bf4  UASPStor - ok
15:22:14.0915 0x0bf4  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
15:22:14.0917 0x0bf4  UcmCx0101 - ok
15:22:14.0921 0x0bf4  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
15:22:14.0923 0x0bf4  UcmUcsi - ok
15:22:14.0931 0x0bf4  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
15:22:14.0934 0x0bf4  Ucx01000 - ok
15:22:14.0938 0x0bf4  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
15:22:14.0940 0x0bf4  UdeCx - ok
15:22:14.0950 0x0bf4  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
15:22:14.0956 0x0bf4  udfs - ok
15:22:14.0960 0x0bf4  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
15:22:14.0961 0x0bf4  UEFI - ok
15:22:14.0969 0x0bf4  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
15:22:14.0973 0x0bf4  Ufx01000 - ok
15:22:14.0979 0x0bf4  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
15:22:14.0981 0x0bf4  UfxChipidea - ok
15:22:14.0987 0x0bf4  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
15:22:14.0989 0x0bf4  ufxsynopsys - ok
15:22:14.0997 0x0bf4  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
15:22:14.0999 0x0bf4  UI0Detect - ok
15:22:15.0004 0x0bf4  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
15:22:15.0005 0x0bf4  uliagpkx - ok
15:22:15.0010 0x0bf4  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
15:22:15.0012 0x0bf4  umbus - ok
15:22:15.0015 0x0bf4  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
15:22:15.0016 0x0bf4  UmPass - ok
15:22:15.0025 0x0bf4  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
15:22:15.0031 0x0bf4  UmRdpService - ok
15:22:15.0062 0x0bf4  [ 0D5C9E27E93AAEA3E30A1E59A7AC3DFF, 31A203DA03877E6B887930990C5BB53402F0DFFB22A6F8FC5A34EF0B99CD8A7E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
15:22:15.0084 0x0bf4  UnistoreSvc - ok
15:22:15.0100 0x0bf4  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:22:15.0109 0x0bf4  upnphost - ok
15:22:15.0114 0x0bf4  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
15:22:15.0115 0x0bf4  UrsChipidea - ok
15:22:15.0120 0x0bf4  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
15:22:15.0121 0x0bf4  UrsCx01000 - ok
15:22:15.0125 0x0bf4  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
15:22:15.0126 0x0bf4  UrsSynopsys - ok
15:22:15.0131 0x0bf4  [ 1DC6166DB6C4FEFE87D9B9105044E5BE, D19B867C0E900B596B4180390A6E4F2ECCBDF8FBD49561C23DBA7D460B8F44A9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
15:22:15.0134 0x0bf4  usbaudio - ok
15:22:15.0140 0x0bf4  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
15:22:15.0142 0x0bf4  usbccgp - ok
15:22:15.0147 0x0bf4  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
15:22:15.0149 0x0bf4  usbcir - ok
15:22:15.0155 0x0bf4  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
15:22:15.0157 0x0bf4  usbehci - ok
15:22:15.0171 0x0bf4  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
15:22:15.0180 0x0bf4  usbhub - ok
15:22:15.0195 0x0bf4  [ 1BDA1FD02783566F0B20EB0E2517F85C, 4C86DC962BBE4CA5AE466A37CF647D84CE2A34DA7F861751587841FC10CFA09D ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
15:22:15.0205 0x0bf4  USBHUB3 - ok
15:22:15.0211 0x0bf4  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
15:22:15.0211 0x0bf4  usbohci - ok
15:22:15.0215 0x0bf4  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
15:22:15.0216 0x0bf4  usbprint - ok
15:22:15.0222 0x0bf4  [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
15:22:15.0223 0x0bf4  usbser - ok
15:22:15.0230 0x0bf4  [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
15:22:15.0232 0x0bf4  USBSTOR - ok
15:22:15.0237 0x0bf4  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
15:22:15.0238 0x0bf4  usbuhci - ok
15:22:15.0249 0x0bf4  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
15:22:15.0256 0x0bf4  USBXHCI - ok
15:22:15.0291 0x0bf4  [ 32212C0FE0556915E763C29DEB6D267E, C5BC9DA3AB0C41604E8F3D01AFC2C25351FF5D3967E766DD0CDB4C0239ED6312 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
15:22:15.0316 0x0bf4  UserDataSvc - ok
15:22:15.0339 0x0bf4  [ A2FD4588F579F8671E4AB1064633CB46, A2BBF6AF7D84F5AE01BFFF69F6CCBACFC0651A2DE2BBD226C6D90208298333D5 ] UserManager     C:\WINDOWS\System32\usermgr.dll
15:22:15.0352 0x0bf4  UserManager - ok
15:22:15.0365 0x0bf4  [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
15:22:15.0372 0x0bf4  UsoSvc - ok
15:22:15.0377 0x0bf4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
15:22:15.0379 0x0bf4  VaultSvc - ok
15:22:15.0383 0x0bf4  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
15:22:15.0384 0x0bf4  vdrvroot - ok
15:22:15.0402 0x0bf4  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
15:22:15.0415 0x0bf4  vds - ok
15:22:15.0423 0x0bf4  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
15:22:15.0427 0x0bf4  VerifierExt - ok
15:22:15.0446 0x0bf4  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
15:22:15.0457 0x0bf4  vhdmp - ok
15:22:15.0461 0x0bf4  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
15:22:15.0462 0x0bf4  vhf - ok
15:22:15.0469 0x0bf4  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
15:22:15.0472 0x0bf4  vmbus - ok
15:22:15.0476 0x0bf4  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
15:22:15.0477 0x0bf4  VMBusHID - ok
15:22:15.0491 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
15:22:15.0501 0x0bf4  vmicguestinterface - ok
15:22:15.0515 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
15:22:15.0524 0x0bf4  vmicheartbeat - ok
15:22:15.0538 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
15:22:15.0547 0x0bf4  vmickvpexchange - ok
15:22:15.0561 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
15:22:15.0570 0x0bf4  vmicrdv - ok
15:22:15.0584 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
15:22:15.0593 0x0bf4  vmicshutdown - ok
15:22:15.0607 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
15:22:15.0616 0x0bf4  vmictimesync - ok
15:22:15.0630 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
15:22:15.0639 0x0bf4  vmicvmsession - ok
15:22:15.0653 0x0bf4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
15:22:15.0662 0x0bf4  vmicvss - ok
15:22:15.0667 0x0bf4  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
15:22:15.0669 0x0bf4  volmgr - ok
15:22:15.0681 0x0bf4  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
15:22:15.0688 0x0bf4  volmgrx - ok
15:22:15.0701 0x0bf4  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
15:22:15.0707 0x0bf4  volsnap - ok
15:22:15.0712 0x0bf4  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
15:22:15.0714 0x0bf4  vpci - ok
15:22:15.0721 0x0bf4  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
15:22:15.0724 0x0bf4  vsmraid - ok
15:22:15.0756 0x0bf4  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
15:22:15.0781 0x0bf4  VSS - ok
15:22:15.0792 0x0bf4  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
15:22:15.0797 0x0bf4  VSTXRAID - ok
15:22:15.0802 0x0bf4  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
15:22:15.0803 0x0bf4  vwifibus - ok
15:22:15.0807 0x0bf4  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
15:22:15.0809 0x0bf4  vwififlt - ok
15:22:15.0824 0x0bf4  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
15:22:15.0834 0x0bf4  W32Time - ok
15:22:15.0838 0x0bf4  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
15:22:15.0839 0x0bf4  WacomPen - ok
15:22:15.0853 0x0bf4  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
15:22:15.0863 0x0bf4  WalletService - ok
15:22:15.0868 0x0bf4  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:22:15.0870 0x0bf4  wanarp - ok
15:22:15.0875 0x0bf4  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:22:15.0876 0x0bf4  wanarpv6 - ok
15:22:15.0916 0x0bf4  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
15:22:15.0944 0x0bf4  wbengine - ok
15:22:15.0963 0x0bf4  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
15:22:15.0975 0x0bf4  WbioSrvc - ok
15:22:15.0992 0x0bf4  [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
15:22:16.0004 0x0bf4  Wcmsvc - ok
15:22:16.0019 0x0bf4  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
15:22:16.0029 0x0bf4  wcncsvc - ok
15:22:16.0034 0x0bf4  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
15:22:16.0036 0x0bf4  WcsPlugInService - ok
15:22:16.0041 0x0bf4  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
15:22:16.0042 0x0bf4  WdBoot - ok
15:22:16.0065 0x0bf4  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
15:22:16.0080 0x0bf4  Wdf01000 - ok
15:22:16.0090 0x0bf4  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
15:22:16.0095 0x0bf4  WdFilter - ok
15:22:16.0100 0x0bf4  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
15:22:16.0104 0x0bf4  WdiServiceHost - ok
15:22:16.0108 0x0bf4  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
15:22:16.0112 0x0bf4  WdiSystemHost - ok
15:22:16.0129 0x0bf4  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
15:22:16.0141 0x0bf4  wdiwifi - ok
15:22:16.0147 0x0bf4  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
15:22:16.0150 0x0bf4  WdNisDrv - ok
15:22:16.0152 0x0bf4  WdNisSvc - ok
15:22:16.0161 0x0bf4  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:22:16.0167 0x0bf4  WebClient - ok
15:22:16.0175 0x0bf4  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
15:22:16.0180 0x0bf4  Wecsvc - ok
15:22:16.0184 0x0bf4  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
15:22:16.0186 0x0bf4  WEPHOSTSVC - ok
15:22:16.0191 0x0bf4  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
15:22:16.0195 0x0bf4  wercplsupport - ok
15:22:16.0203 0x0bf4  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
15:22:16.0208 0x0bf4  WerSvc - ok
15:22:16.0211 0x0bf4  wfpcapture - ok
15:22:16.0217 0x0bf4  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
15:22:16.0220 0x0bf4  WFPLWFS - ok
15:22:16.0226 0x0bf4  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
15:22:16.0229 0x0bf4  WiaRpc - ok
15:22:16.0233 0x0bf4  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
15:22:16.0234 0x0bf4  WIMMount - ok
15:22:16.0236 0x0bf4  WinDefend - ok
15:22:16.0245 0x0bf4  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
15:22:16.0247 0x0bf4  WindowsTrustedRT - ok
15:22:16.0251 0x0bf4  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
15:22:16.0252 0x0bf4  WindowsTrustedRTProxy - ok
15:22:16.0275 0x0bf4  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
15:22:16.0290 0x0bf4  WinHttpAutoProxySvc - ok
15:22:16.0295 0x0bf4  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
15:22:16.0296 0x0bf4  WinMad - ok
15:22:16.0309 0x0bf4  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
15:22:16.0313 0x0bf4  Winmgmt - ok
15:22:16.0371 0x0bf4  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
15:22:16.0424 0x0bf4  WinRM - ok
15:22:16.0437 0x0bf4  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
15:22:16.0439 0x0bf4  WINUSB - ok
15:22:16.0445 0x0bf4  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
15:22:16.0447 0x0bf4  WinVerbs - ok
15:22:16.0470 0x108c  Object send P2P result: true
15:22:16.0470 0x108c  Object required for P2P: [ E477AF94ACCCF99A0E56D71D450DCCCB ] avnetflt
15:22:16.0499 0x0bf4  [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
15:22:16.0539 0x0bf4  WlanSvc - ok
15:22:16.0591 0x0bf4  [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
15:22:16.0627 0x0bf4  wlidsvc - ok
15:22:16.0634 0x0bf4  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
15:22:16.0635 0x0bf4  WmiAcpi - ok
15:22:16.0644 0x0bf4  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
15:22:16.0648 0x0bf4  wmiApSrv - ok
15:22:16.0651 0x0bf4  WMPNetworkSvc - ok
15:22:16.0658 0x0bf4  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
15:22:16.0662 0x0bf4  Wof - ok
15:22:16.0706 0x0bf4  [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
15:22:16.0738 0x0bf4  workfolderssvc - ok
15:22:16.0746 0x0bf4  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
15:22:16.0747 0x0bf4  wpcfltr - ok
15:22:16.0752 0x0bf4  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
15:22:16.0755 0x0bf4  WPDBusEnum - ok
15:22:16.0760 0x0bf4  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
15:22:16.0761 0x0bf4  WpdUpFltr - ok
15:22:16.0765 0x0bf4  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
15:22:16.0768 0x0bf4  WpnService - ok
15:22:16.0772 0x0bf4  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
15:22:16.0773 0x0bf4  ws2ifsl - ok
15:22:16.0780 0x0bf4  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
15:22:16.0785 0x0bf4  wscsvc - ok
15:22:16.0788 0x0bf4  WSearch - ok
15:22:16.0866 0x0bf4  [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService       C:\WINDOWS\System32\WSService.dll
15:22:16.0924 0x0bf4  WSService - ok
15:22:16.0983 0x0bf4  [ 2FE47060B982C6581625B8F7B5C348DA, E44003D1F300CA3BC77467404A7213C7BCBFE5F8E7D7696FEAF9BC395AC50F90 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
15:22:17.0021 0x0bf4  wuauserv - ok
15:22:17.0031 0x0bf4  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
15:22:17.0033 0x0bf4  WudfPf - ok
15:22:17.0042 0x0bf4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
15:22:17.0046 0x0bf4  WUDFRd - ok
15:22:17.0051 0x0bf4  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
15:22:17.0055 0x0bf4  wudfsvc - ok
15:22:17.0065 0x0bf4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:22:17.0069 0x0bf4  WUDFWpdFs - ok
15:22:17.0076 0x0bf4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:22:17.0080 0x0bf4  WUDFWpdMtp - ok
15:22:17.0112 0x0bf4  [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
15:22:17.0133 0x0bf4  WwanSvc - ok
15:22:17.0157 0x0bf4  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
15:22:17.0174 0x0bf4  XblAuthManager - ok
15:22:17.0202 0x0bf4  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
15:22:17.0223 0x0bf4  XblGameSave - ok
15:22:17.0232 0x0bf4  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
15:22:17.0236 0x0bf4  xboxgip - ok
15:22:17.0262 0x0bf4  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
15:22:17.0280 0x0bf4  XboxNetApiSvc - ok
15:22:17.0286 0x0bf4  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
15:22:17.0286 0x0bf4  xinputhid - ok

Bubbazz · 06.03.2016, 16:35

Code:

ATTFilter

15:22:17.0288 0x0bf4  ================ Scan global ===============================
15:22:17.0294 0x0bf4  [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
15:22:17.0303 0x0bf4  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
15:22:17.0311 0x0bf4  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
15:22:17.0325 0x0bf4  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
15:22:17.0334 0x0bf4  [ Global ] - ok
15:22:17.0334 0x0bf4  ================ Scan MBR ==================================
15:22:17.0336 0x0bf4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:22:17.0409 0x0bf4  \Device\Harddisk0\DR0 - ok
15:22:17.0412 0x0bf4  [ 017E003AB27B155B3A606EB18257FC5D ] \Device\Harddisk1\DR1
15:22:17.0434 0x0bf4  \Device\Harddisk1\DR1 - ok
15:22:17.0436 0x0bf4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
15:22:17.0440 0x0bf4  \Device\Harddisk2\DR2 - ok
15:22:17.0440 0x0bf4  ================ Scan VBR ==================================
15:22:17.0442 0x0bf4  [ D4B746A689F0856A72C3817A41D7CF51 ] \Device\Harddisk0\DR0\Partition1
15:22:17.0443 0x0bf4  \Device\Harddisk0\DR0\Partition1 - ok
15:22:17.0445 0x0bf4  [ E2E7E87ACB812524BF4155AC30CB9DC0 ] \Device\Harddisk0\DR0\Partition2
15:22:17.0446 0x0bf4  \Device\Harddisk0\DR0\Partition2 - ok
15:22:17.0448 0x0bf4  [ 01E4FDAC555C312970AB35EE946C0184 ] \Device\Harddisk2\DR2\Partition1
15:22:17.0509 0x0bf4  \Device\Harddisk2\DR2\Partition1 - ok
15:22:17.0510 0x0bf4  ================ Scan generic autorun ======================
15:22:17.0851 0x0bf4  [ 83E58B9CEF0BA40BB93A20440ECBE43A, A72241D5F0CE1BFC465B4EB59F34A9BE04A0E5FD2F601D6FDBBE254603935C47 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:22:18.0165 0x0bf4  RTHDVCPL - ok
15:22:18.0499 0x0bf4  [ BA1C34DAB2C27DAE0C830F1DB70B13A6, 71D52880BE4F67493DBA1B89847209B0AEE6FCA1D432608772ED10621DAD5309 ] C:\Program Files\Logitech Gaming Software\LCore.exe
15:22:18.0703 0x0c2c  Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip
15:22:18.0811 0x0bf4  Launch LCore - ok
15:22:18.0846 0x0bf4  [ 4C6AAABB264526A9C845A39AEBB79B69, B27F869E8B44CC5F1F9ADCA53AA848C16D706587ED9C7F995AE59BF9B0426523 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
15:22:18.0859 0x0bf4  StartCCC - ok
15:22:18.0863 0x0bf4  [ 86069F4F421FB355C41FD734500E477F, CB4CE22C3298280B033105875079A373D7E1ADEA15F0F71A2095CCA50CF7E5A5 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
15:22:18.0865 0x0bf4  Avira SystrayStartTrigger - ok
15:22:18.0888 0x108c  Object send P2P result: true
15:22:18.0889 0x0bf4  [ E83C81F40E072A697816F7311B87F471, 26F76EE173BB7F1D57837F71A9D22287DB1381A8C69EEB3B3BA7EB9B166A7828 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
15:22:18.0903 0x0bf4  avgnt - ok
15:22:19.0104 0x0bf4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
15:22:19.0278 0x0bf4  OneDriveSetup - ok
15:22:19.0466 0x0bf4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
15:22:19.0590 0x0bf4  OneDriveSetup - ok
15:22:19.0613 0x0bf4  [ 1F93DAF10BC91666F52FC5B9632C86EB, 3D2AE1090198AAEE7CDB587ED1D2784B9FF4E4B03F4F65BC2F46E28B136F3F01 ] C:\Users\javor\AppData\Local\Microsoft\OneDrive\OneDrive.exe
15:22:19.0622 0x0bf4  OneDrive - ok
15:22:19.0689 0x0bf4  [ FF74D2A2E3A3615A765B5181DB18551D, C38F06705B4E3264ABA10317BF3DE6D022E9B9D5B3016B08121512E84880963C ] C:\Program Files (x86)\Steam\steam.exe
15:22:19.0737 0x0bf4  Steam - ok
15:22:19.0743 0x0bf4  Skype - ok
15:22:19.0744 0x0bf4  Waiting for KSN requests completion. In queue: 143
15:22:20.0745 0x0bf4  Waiting for KSN requests completion. In queue: 143
15:22:21.0129 0x0c2c  Object send P2P result: true
15:22:21.0129 0x0c2c  Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip6
15:22:21.0746 0x0bf4  Waiting for KSN requests completion. In queue: 142
15:22:22.0070 0x0608  Object required for P2P: [ 0968D575D9108497A6DC37749D4A6C4F ] wlidsvc
15:22:22.0747 0x0bf4  Waiting for KSN requests completion. In queue: 136
15:22:23.0555 0x0c2c  Object send P2P result: true
15:22:23.0747 0x0bf4  Waiting for KSN requests completion. In queue: 33
15:22:24.0493 0x0608  Object send P2P result: true
15:22:24.0497 0x0608  Object required for P2P: [ 83E58B9CEF0BA40BB93A20440ECBE43A ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:22:24.0748 0x0bf4  Waiting for KSN requests completion. In queue: 9
15:22:25.0749 0x0bf4  Waiting for KSN requests completion. In queue: 9
15:22:26.0749 0x0bf4  Waiting for KSN requests completion. In queue: 9
15:22:26.0976 0x0608  Object send P2P result: true
15:22:26.0976 0x0608  Object required for P2P: [ FF74D2A2E3A3615A765B5181DB18551D ] C:\Program Files (x86)\Steam\steam.exe
15:22:27.0751 0x0bf4  Waiting for KSN requests completion. In queue: 1
15:22:28.0751 0x0bf4  Waiting for KSN requests completion. In queue: 1
15:22:29.0417 0x0608  Object send P2P result: true
15:22:29.0767 0x0bf4  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.15.133 ), 0x41000 ( enabled : updated )
15:22:29.0768 0x0bf4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
15:22:29.0772 0x0bf4  Win FW state via NFP2: enabled ( trusted )
15:22:32.0140 0x0bf4  ============================================================
15:22:32.0140 0x0bf4  Scan finished
15:22:32.0140 0x0bf4  ============================================================
15:22:32.0147 0x0b28  Detected object count: 0
15:22:32.0147 0x0b28  Actual detected object count: 0
15:23:08.0601 0x13d4  ============================================================
15:23:08.0601 0x13d4  Scan started
15:23:08.0601 0x13d4  Mode: Manual; SigCheck; TDLFS; 
15:23:08.0601 0x13d4  ============================================================
15:23:08.0601 0x13d4  KSN ping started
15:23:10.0896 0x13d4  KSN ping finished: true
15:23:11.0069 0x13d4  ================ Scan system memory ========================
15:23:11.0070 0x13d4  System memory - ok
15:23:11.0070 0x13d4  ================ Scan services =============================
15:23:11.0118 0x13d4  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
15:23:11.0155 0x13d4  1394ohci - ok
15:23:11.0161 0x13d4  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
15:23:11.0176 0x13d4  3ware - ok
15:23:11.0192 0x13d4  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
15:23:11.0217 0x13d4  ACPI - ok
15:23:11.0223 0x13d4  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
15:23:11.0237 0x13d4  acpiex - ok
15:23:11.0241 0x13d4  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
15:23:11.0253 0x13d4  acpipagr - ok
15:23:11.0257 0x13d4  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
15:23:11.0268 0x13d4  AcpiPmi - ok
15:23:11.0272 0x13d4  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
15:23:11.0283 0x13d4  acpitime - ok
15:23:11.0314 0x13d4  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
15:23:11.0352 0x13d4  ADP80XX - ok
15:23:11.0371 0x13d4  [ A3D96563BF46FC8A0E5756B796127D14, BAD3C30714F6514D2AF725077A79FF671CC022E415786E1666C0B7C24CE3670A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
15:23:11.0397 0x13d4  AFD - ok
15:23:11.0403 0x13d4  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
15:23:11.0414 0x13d4  agp440 - ok
15:23:11.0422 0x13d4  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
15:23:11.0442 0x13d4  ahcache - ok
15:23:11.0446 0x13d4  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
15:23:11.0457 0x13d4  AJRouter - ok
15:23:11.0463 0x13d4  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
15:23:11.0478 0x13d4  ALG - ok
15:23:11.0486 0x13d4  [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
15:23:11.0503 0x13d4  AMD External Events Utility - ok
15:23:11.0510 0x13d4  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
15:23:11.0526 0x13d4  AmdK8 - ok
15:23:11.0529 0x13d4  amdkmdag - ok
15:23:11.0546 0x13d4  [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
15:23:11.0573 0x13d4  amdkmdap - ok
15:23:11.0580 0x13d4  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
15:23:11.0595 0x13d4  AmdPPM - ok
15:23:11.0600 0x13d4  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
15:23:11.0612 0x13d4  amdsata - ok
15:23:11.0621 0x13d4  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
15:23:11.0637 0x13d4  amdsbs - ok
15:23:11.0642 0x13d4  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
15:23:11.0652 0x13d4  amdxata - ok
15:23:11.0680 0x13d4  [ 4258991B9E25540D35C7C8234D4FE1D8, CB4E100E30626A02FE59CA7CAEE187B6B03BA531931B1D132E88C0638BCE6B7A ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
15:23:11.0712 0x13d4  AntiVirMailService - ok
15:23:11.0725 0x13d4  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
15:23:11.0742 0x13d4  AntiVirSchedulerService - ok
15:23:11.0754 0x13d4  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
15:23:11.0770 0x13d4  AntiVirService - ok
15:23:11.0802 0x13d4  [ FD20E4FC7D4E7BEBA088387DCE991865, F9EE69774C92F71BDE1D40671EAE5630273CA632BA1E996B00758527D0D75F3D ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
15:23:11.0838 0x13d4  AntiVirWebService - ok
15:23:11.0847 0x13d4  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
15:23:11.0861 0x13d4  AppID - ok
15:23:11.0865 0x13d4  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
15:23:11.0882 0x13d4  AppIDSvc - ok
15:23:11.0888 0x13d4  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
15:23:11.0906 0x13d4  Appinfo - ok
15:23:11.0913 0x13d4  [ 68AF553066C4DAE7D8698322526BDA86, 806A5228D204B18B3B9F88AB87B5918046BE96D1B3AEFEC9331CA7A483547486 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
15:23:11.0931 0x13d4  AppMgmt - ok
15:23:11.0948 0x13d4  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
15:23:11.0981 0x13d4  AppReadiness - ok
15:23:12.0035 0x13d4  [ D6D96E20079D902243690DCBB007F997, 4E3FAED92F6434D689CCC7AE3A077819BCD2E99D7D2C293563B2E0DCF08CC42F ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
15:23:12.0120 0x13d4  AppXSvc - ok
15:23:12.0129 0x13d4  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
15:23:12.0143 0x13d4  arcsas - ok
15:23:12.0146 0x13d4  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
15:23:12.0161 0x13d4  AsyncMac - ok
15:23:12.0164 0x13d4  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
15:23:12.0175 0x13d4  atapi - ok
15:23:12.0181 0x13d4  [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
15:23:12.0196 0x13d4  AtiHDAudioService - ok
15:23:12.0206 0x13d4  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
15:23:12.0227 0x13d4  AudioEndpointBuilder - ok
15:23:12.0254 0x13d4  [ 6300722E8527EC54D426FD00EE5196B2, 71376BE797E8F3E2E671167DA400239D5289DE7EE56CF29564C98715B9DB1D09 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
15:23:12.0303 0x13d4  Audiosrv - ok
15:23:12.0304 0x13d4  Object required for P2P: [ 6300722E8527EC54D426FD00EE5196B2 ] Audiosrv
15:23:14.0727 0x13d4  Object send P2P result: true
15:23:14.0738 0x13d4  [ CF233C89DEFF6BCA1F65BE3DA0C1A306, B718A59CFC0E3A9ED4E8C690390F54C96828C5A4C2790C2E98075DB4484240D6 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
15:23:14.0755 0x13d4  avgntflt - ok
15:23:14.0763 0x13d4  [ A4A18BD4ED0A2BBEE1A3415DEC199645, FE0AEA11D9756AAA0E6588ED4F3DEBAFDC1804BFCCF9E3EA033EED2936F41BAB ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
15:23:14.0772 0x13d4  avipbb - ok
15:23:14.0781 0x13d4  [ 98BB62ABFD17F284C3C5DE40F8266F3C, CD08C737BE9FC32FF98252FCFFCAE779EC6FAB76BF80F0835ACE71F1E155D70D ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
15:23:14.0792 0x13d4  Avira.ServiceHost - ok
15:23:14.0793 0x13d4  Object required for P2P: [ 98BB62ABFD17F284C3C5DE40F8266F3C ] Avira.ServiceHost
15:23:17.0210 0x13d4  Object send P2P result: true
15:23:17.0218 0x13d4  [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
15:23:17.0229 0x13d4  avkmgr - ok
15:23:17.0236 0x13d4  [ E477AF94ACCCF99A0E56D71D450DCCCB, C97756A4E82EC7EF8268967B10DEBAAEDB746B2846CA2BFD68E1B7DBBAE7901A ] avnetflt        C:\WINDOWS\system32\DRIVERS\avnetflt.sys
15:23:17.0248 0x13d4  avnetflt - ok
15:23:17.0248 0x13d4  Object required for P2P: [ E477AF94ACCCF99A0E56D71D450DCCCB ] avnetflt
15:23:19.0668 0x13d4  Object send P2P result: true
15:23:19.0679 0x13d4  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
15:23:19.0710 0x13d4  AxInstSV - ok
15:23:19.0726 0x13d4  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
15:23:19.0749 0x13d4  b06bdrv - ok
15:23:19.0755 0x13d4  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
15:23:19.0767 0x13d4  BasicDisplay - ok
15:23:19.0772 0x13d4  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
15:23:19.0784 0x13d4  BasicRender - ok
15:23:19.0789 0x13d4  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
15:23:19.0795 0x13d4  bcmfn2 - ok
15:23:19.0807 0x13d4  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
15:23:19.0830 0x13d4  BDESVC - ok
15:23:19.0834 0x13d4  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
15:23:19.0846 0x13d4  Beep - ok
15:23:19.0867 0x13d4  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
15:23:19.0905 0x13d4  BFE - ok
15:23:19.0934 0x13d4  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
15:23:19.0985 0x13d4  BITS - ok
15:23:19.0994 0x13d4  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
15:23:20.0008 0x13d4  bowser - ok
15:23:20.0023 0x13d4  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
15:23:20.0053 0x13d4  BrokerInfrastructure - ok
15:23:20.0059 0x13d4  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
15:23:20.0075 0x13d4  Browser - ok
15:23:20.0080 0x13d4  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
15:23:20.0092 0x13d4  BthAvrcpTg - ok
15:23:20.0098 0x13d4  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
15:23:20.0112 0x13d4  BthHFEnum - ok
15:23:20.0115 0x13d4  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
15:23:20.0128 0x13d4  bthhfhid - ok
15:23:20.0139 0x13d4  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
15:23:20.0161 0x13d4  BthHFSrv - ok
15:23:20.0166 0x13d4  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
15:23:20.0179 0x13d4  BTHMODEM - ok
15:23:20.0186 0x13d4  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
15:23:20.0200 0x13d4  bthserv - ok
15:23:20.0204 0x13d4  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
15:23:20.0217 0x13d4  buttonconverter - ok
15:23:20.0223 0x13d4  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
15:23:20.0239 0x13d4  CapImg - ok
15:23:20.0244 0x13d4  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
15:23:20.0259 0x13d4  cdfs - ok
15:23:20.0266 0x13d4  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
15:23:20.0284 0x13d4  CDPSvc - ok
15:23:20.0291 0x13d4  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
15:23:20.0308 0x13d4  cdrom - ok
15:23:20.0316 0x13d4  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
15:23:20.0337 0x13d4  CertPropSvc - ok
15:23:20.0342 0x13d4  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
15:23:20.0355 0x13d4  circlass - ok
15:23:20.0368 0x13d4  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
15:23:20.0387 0x13d4  CLFS - ok
15:23:20.0405 0x13d4  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
15:23:20.0431 0x13d4  ClipSVC - ok
15:23:20.0442 0x13d4  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
15:23:20.0454 0x13d4  CmBatt - ok
15:23:20.0471 0x13d4  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
15:23:20.0496 0x13d4  CNG - ok
15:23:20.0501 0x13d4  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
15:23:20.0511 0x13d4  cnghwassist - ok
15:23:20.0526 0x13d4  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
15:23:20.0539 0x13d4  CompositeBus - ok
15:23:20.0543 0x13d4  COMSysApp - ok
15:23:20.0547 0x13d4  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
15:23:20.0561 0x13d4  condrv - ok
15:23:20.0582 0x13d4  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
15:23:20.0614 0x13d4  CoreMessagingRegistrar - ok
15:23:20.0623 0x13d4  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
15:23:20.0638 0x13d4  CryptSvc - ok
15:23:20.0652 0x13d4  [ 838755238B2BAE5A4802B038443B8A22, 1A89E413C6E5C3E8C2B64F8A1D41271D3FA39BC67291331FEC8DCFD4F8CCE994 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
15:23:20.0681 0x13d4  CSC - ok
15:23:20.0701 0x13d4  [ 7D64B14DAFEBBC19A87EC9D5B862F6AA, BE7510E618566FEA013E2E77CE4C7C160BADE105C493424595A15D0A7F1615CF ] CscService      C:\WINDOWS\System32\cscsvc.dll
15:23:20.0736 0x13d4  CscService - ok
15:23:20.0741 0x13d4  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
15:23:20.0753 0x13d4  dam - ok
15:23:20.0776 0x13d4  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
15:23:20.0818 0x13d4  DcomLaunch - ok
15:23:20.0826 0x13d4  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
15:23:20.0848 0x13d4  DcpSvc - ok
15:23:20.0863 0x13d4  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
15:23:20.0896 0x13d4  defragsvc - ok
15:23:20.0908 0x13d4  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
15:23:20.0938 0x13d4  DeviceAssociationService - ok
15:23:20.0944 0x13d4  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
15:23:20.0964 0x13d4  DeviceInstall - ok
15:23:20.0969 0x13d4  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
15:23:20.0981 0x13d4  DevQueryBroker - ok
15:23:20.0988 0x13d4  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
15:23:21.0003 0x13d4  Dfsc - ok
15:23:21.0009 0x13d4  [ 85137571AEC8AC757D497B9DD30D544D, 6E15C9FB4010B26A8E5AFD4E85F7362B2616EB8503ACCE28EC31AC1E7D18566F ] dg_ssudbus      C:\WINDOWS\System32\drivers\ssudbus.sys
15:23:21.0018 0x13d4  dg_ssudbus - ok
15:23:21.0029 0x13d4  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
15:23:21.0053 0x13d4  Dhcp - ok
15:23:21.0059 0x13d4  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
15:23:21.0071 0x13d4  diagnosticshub.standardcollector.service - ok
15:23:21.0109 0x13d4  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
15:23:21.0159 0x13d4  DiagTrack - ok
15:23:21.0167 0x13d4  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
15:23:21.0180 0x13d4  disk - ok
15:23:21.0190 0x13d4  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
15:23:21.0212 0x13d4  DmEnrollmentSvc - ok
15:23:21.0217 0x13d4  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
15:23:21.0229 0x13d4  dmvsc - ok
15:23:21.0234 0x13d4  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
15:23:21.0250 0x13d4  dmwappushservice - ok
15:23:21.0259 0x13d4  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
15:23:21.0280 0x13d4  Dnscache - ok
15:23:21.0291 0x13d4  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
15:23:21.0313 0x13d4  dot3svc - ok
15:23:21.0321 0x13d4  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
15:23:21.0338 0x13d4  DPS - ok
15:23:21.0342 0x13d4  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
15:23:21.0352 0x13d4  drmkaud - ok
15:23:21.0361 0x13d4  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
15:23:21.0381 0x13d4  DsmSvc - ok
15:23:21.0388 0x13d4  [ D920A8B070A9BA5C9DEFC3BA7C3883B5, 8EA05CDE58930EB16B4B502561AF2DB5229658FDC1948A9A8F249A7402C21398 ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
15:23:21.0405 0x13d4  DsSvc - ok
15:23:21.0453 0x13d4  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
15:23:21.0512 0x13d4  DXGKrnl - ok
15:23:21.0519 0x13d4  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
15:23:21.0537 0x13d4  Eaphost - ok
15:23:21.0540 0x13d4  EasyAntiCheat - ok
15:23:21.0621 0x13d4  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
15:23:21.0715 0x13d4  ebdrv - ok
15:23:21.0725 0x13d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
15:23:21.0737 0x13d4  EFS - ok
15:23:21.0743 0x13d4  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
15:23:21.0755 0x13d4  EhStorClass - ok
15:23:21.0761 0x13d4  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
15:23:21.0774 0x13d4  EhStorTcgDrv - ok
15:23:21.0779 0x13d4  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
15:23:21.0794 0x13d4  embeddedmode - ok
15:23:21.0828 0x13d4  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
15:23:21.0849 0x13d4  EntAppSvc - ok
15:23:21.0853 0x13d4  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
15:23:21.0864 0x13d4  ErrDev - ok
15:23:21.0880 0x13d4  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
15:23:21.0908 0x13d4  EventSystem - ok
15:23:21.0919 0x13d4  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
15:23:21.0941 0x13d4  exfat - ok
15:23:21.0951 0x13d4  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
15:23:21.0970 0x13d4  fastfat - ok
15:23:21.0987 0x13d4  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
15:23:22.0020 0x13d4  Fax - ok
15:23:22.0025 0x13d4  [ 4E4B7D935DBF522B2F23D3573596181D, 9D0EC9F65920EE0FFFB2D49C58E4D5151C8CEEB7AA82543D226E4B84EEE4B3F0 ] fcvsc           C:\WINDOWS\System32\drivers\fcvsc.sys
15:23:22.0037 0x13d4  fcvsc - ok
15:23:22.0041 0x13d4  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
15:23:22.0054 0x13d4  fdc - ok
15:23:22.0057 0x13d4  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
15:23:22.0074 0x13d4  fdPHost - ok
15:23:22.0078 0x13d4  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
15:23:22.0095 0x13d4  FDResPub - ok
15:23:22.0101 0x13d4  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
15:23:22.0121 0x13d4  fhsvc - ok
15:23:22.0126 0x13d4  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
15:23:22.0140 0x13d4  FileCrypt - ok
15:23:22.0145 0x13d4  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
15:23:22.0157 0x13d4  FileInfo - ok
15:23:22.0161 0x13d4  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
15:23:22.0178 0x13d4  Filetrace - ok
15:23:22.0182 0x13d4  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
15:23:22.0194 0x13d4  flpydisk - ok
15:23:22.0206 0x13d4  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
15:23:22.0225 0x13d4  FltMgr - ok
15:23:22.0263 0x13d4  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
15:23:22.0331 0x13d4  FontCache - ok
15:23:22.0340 0x13d4  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:23:22.0351 0x13d4  FontCache3.0.0.0 - ok
15:23:22.0357 0x13d4  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
15:23:22.0368 0x13d4  FsDepends - ok
15:23:22.0372 0x13d4  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:23:22.0383 0x13d4  Fs_Rec - ok
15:23:22.0399 0x13d4  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
15:23:22.0425 0x13d4  fvevol - ok
15:23:22.0430 0x13d4  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
15:23:22.0442 0x13d4  gagp30kx - ok
15:23:22.0447 0x13d4  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
15:23:22.0459 0x13d4  gencounter - ok
15:23:22.0463 0x13d4  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
15:23:22.0475 0x13d4  genericusbfn - ok
15:23:22.0482 0x13d4  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
15:23:22.0497 0x13d4  GPIOClx0101 - ok
15:23:22.0529 0x13d4  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
15:23:22.0589 0x13d4  gpsvc - ok
15:23:22.0596 0x13d4  [ 7BF844D362EB746BC7A6DC3F57FA3E32, C07007CF6A0A2BA953FC40A5031931131CC953A8CF3B5AFA86C8811F9C4D43C4 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
15:23:22.0607 0x13d4  GpuEnergyDrv - ok
15:23:22.0613 0x13d4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:23:22.0624 0x13d4  gupdate - ok
15:23:22.0629 0x13d4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:23:22.0638 0x13d4  gupdatem - ok
15:23:22.0643 0x13d4  [ 27E248CD861AFED4DF0C48F4C853E7F0, 37BEA5E9D8ACAA871A441766B5FDD32A1091C0CB8B34DFA15596AD827C5EF1A4 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
15:23:22.0657 0x13d4  HDAudBus - ok
15:23:22.0661 0x13d4  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
15:23:22.0673 0x13d4  HidBatt - ok
15:23:22.0678 0x13d4  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
15:23:22.0693 0x13d4  HidBth - ok
15:23:22.0697 0x13d4  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
15:23:22.0710 0x13d4  hidi2c - ok
15:23:22.0714 0x13d4  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
15:23:22.0725 0x13d4  hidinterrupt - ok
15:23:22.0730 0x13d4  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
15:23:22.0743 0x13d4  HidIr - ok
15:23:22.0747 0x13d4  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
15:23:22.0760 0x13d4  hidserv - ok
15:23:22.0764 0x13d4  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
15:23:22.0777 0x13d4  HidUsb - ok
15:23:22.0786 0x13d4  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
15:23:22.0806 0x13d4  HomeGroupListener - ok
15:23:22.0820 0x13d4  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
15:23:22.0847 0x13d4  HomeGroupProvider - ok
15:23:22.0852 0x13d4  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
15:23:22.0864 0x13d4  HpSAMD - ok
15:23:22.0888 0x13d4  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
15:23:22.0923 0x13d4  HTTP - ok
15:23:22.0928 0x13d4  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
15:23:22.0939 0x13d4  hwpolicy - ok
15:23:22.0943 0x13d4  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
15:23:22.0954 0x13d4  hyperkbd - ok
15:23:22.0960 0x13d4  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
15:23:22.0975 0x13d4  i8042prt - ok
15:23:22.0980 0x13d4  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
15:23:22.0987 0x13d4  iaLPSSi_GPIO - ok
15:23:22.0993 0x13d4  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
15:23:23.0002 0x13d4  iaLPSSi_I2C - ok
15:23:23.0020 0x13d4  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
15:23:23.0046 0x13d4  iaStorAV - ok
15:23:23.0060 0x13d4  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
15:23:23.0080 0x13d4  iaStorV - ok
15:23:23.0094 0x13d4  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
15:23:23.0116 0x13d4  ibbus - ok
15:23:23.0124 0x13d4  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
15:23:23.0143 0x13d4  icssvc - ok
15:23:23.0146 0x13d4  IEEtwCollectorService - ok
15:23:23.0171 0x13d4  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
15:23:23.0215 0x13d4  IKEEXT - ok
15:23:23.0318 0x13d4  [ CFF7673A716876C03AED20B2000EF0A6, 4FCE213852801DB1E5C43BD165D591A0F69DB1DFB320F8BBE7C1FF04CAEE4111 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:23:23.0422 0x13d4  IntcAzAudAddService - ok
15:23:23.0432 0x13d4  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
15:23:23.0443 0x13d4  intelide - ok
15:23:23.0447 0x13d4  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
15:23:23.0458 0x13d4  intelpep - ok
15:23:23.0464 0x13d4  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
15:23:23.0479 0x13d4  intelppm - ok
15:23:23.0483 0x13d4  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
15:23:23.0495 0x13d4  IoQos - ok
15:23:23.0500 0x13d4  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:23:23.0516 0x13d4  IpFilterDriver - ok
15:23:23.0539 0x13d4  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
15:23:23.0585 0x13d4  iphlpsvc - ok
15:23:23.0592 0x13d4  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
15:23:23.0605 0x13d4  IPMIDRV - ok
15:23:23.0611 0x13d4  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
15:23:23.0627 0x13d4  IPNAT - ok
15:23:23.0631 0x13d4  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
15:23:23.0645 0x13d4  IRENUM - ok
15:23:23.0649 0x13d4  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
15:23:23.0659 0x13d4  isapnp - ok
15:23:23.0669 0x13d4  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
15:23:23.0686 0x13d4  iScsiPrt - ok
15:23:23.0691 0x13d4  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
15:23:23.0703 0x13d4  kbdclass - ok
15:23:23.0707 0x13d4  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
15:23:23.0719 0x13d4  kbdhid - ok
15:23:23.0724 0x13d4  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
15:23:23.0735 0x13d4  kdnic - ok
15:23:23.0740 0x13d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
15:23:23.0752 0x13d4  KeyIso - ok
15:23:23.0758 0x13d4  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
15:23:23.0771 0x13d4  KSecDD - ok
15:23:23.0778 0x13d4  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
15:23:23.0792 0x13d4  KSecPkg - ok
15:23:23.0796 0x13d4  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
15:23:23.0809 0x13d4  ksthunk - ok
15:23:23.0820 0x13d4  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
15:23:23.0844 0x13d4  KtmRm - ok
15:23:23.0855 0x13d4  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
15:23:23.0877 0x13d4  LanmanServer - ok
15:23:23.0887 0x13d4  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
15:23:23.0910 0x13d4  LanmanWorkstation - ok
15:23:23.0915 0x13d4  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
15:23:23.0928 0x13d4  lfsvc - ok
15:23:23.0932 0x13d4  [ 17325C9B9ADB2BB99049936D0C9812C8, 70ADDC85FD5757BC9C4B97F382B25A19851FF8275021FFC04A81E208A604F83E ] LGBusEnum       C:\WINDOWS\system32\drivers\LGBusEnum.sys
15:23:23.0943 0x13d4  LGBusEnum - ok
15:23:23.0948 0x13d4  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp      C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
15:23:23.0954 0x13d4  LGCoreTemp - ok
15:23:23.0958 0x13d4  [ C7AF05942E041D4B1F345ACF79993BB3, E8FAAE356C99A11F6CF17640FD9C67F87AFBFEFB70C458CB85178F2AD94DF848 ] LGJoyXlCore     C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
15:23:23.0970 0x13d4  LGJoyXlCore - ok
15:23:23.0974 0x13d4  [ 1DDB8DE3D6EEF31EDCF4977B2D2FAACC, 24291B522A596E2D9A1CDAC192DB1C7422D5DD0E87E5C8A5F5E2CAA90296BF23 ] LGVirHid        C:\WINDOWS\system32\drivers\LGVirHid.sys
15:23:23.0985 0x13d4  LGVirHid - ok
15:23:23.0989 0x13d4  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
15:23:24.0002 0x13d4  LicenseManager - ok
15:23:24.0006 0x13d4  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
15:23:24.0021 0x13d4  lltdio - ok
15:23:24.0031 0x13d4  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
15:23:24.0054 0x13d4  lltdsvc - ok
15:23:24.0058 0x13d4  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
15:23:24.0071 0x13d4  lmhosts - ok
15:23:24.0078 0x13d4  [ 3FDD795D6AB32A0E9CF32DDB81CFF301, B1907EE082E9EFDFA6B295CEC64624B56E2AE3DE3C7A3747659694217AD54476 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:23:24.0089 0x13d4  LogiRegistryService - ok
15:23:24.0097 0x13d4  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
15:23:24.0109 0x13d4  LSI_SAS - ok
15:23:24.0115 0x13d4  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
15:23:24.0127 0x13d4  LSI_SAS2i - ok
15:23:24.0133 0x13d4  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
15:23:24.0145 0x13d4  LSI_SAS3i - ok
15:23:24.0150 0x13d4  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
15:23:24.0162 0x13d4  LSI_SSS - ok
15:23:24.0182 0x13d4  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
15:23:24.0219 0x13d4  LSM - ok
15:23:24.0226 0x13d4  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
15:23:24.0245 0x13d4  luafv - ok
15:23:24.0250 0x13d4  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
15:23:24.0264 0x13d4  MapsBroker - ok
15:23:24.0269 0x13d4  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
15:23:24.0281 0x13d4  megasas - ok
15:23:24.0298 0x13d4  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
15:23:24.0322 0x13d4  megasr - ok
15:23:24.0341 0x13d4  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
15:23:24.0369 0x13d4  mlx4_bus - ok
15:23:24.0374 0x13d4  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
15:23:24.0387 0x13d4  MMCSS - ok
15:23:24.0391 0x13d4  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
15:23:24.0406 0x13d4  Modem - ok
15:23:24.0410 0x13d4  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
15:23:24.0422 0x13d4  monitor - ok
15:23:24.0427 0x13d4  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
15:23:24.0439 0x13d4  mouclass - ok
15:23:24.0443 0x13d4  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
15:23:24.0455 0x13d4  mouhid - ok
15:23:24.0460 0x13d4  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
15:23:24.0473 0x13d4  mountmgr - ok
15:23:24.0478 0x13d4  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
15:23:24.0491 0x13d4  mpsdrv - ok
15:23:24.0514 0x13d4  [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
15:23:24.0555 0x13d4  MpsSvc - ok
15:23:24.0563 0x13d4  [ 8E3F4C3A8EA2E787E6089618675501D0, 8A9FE21C5CBB1D770B58BFA241AA5A4428079EF901C28433FE94DB93DC14B6FB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
15:23:24.0579 0x13d4  MRxDAV - ok
15:23:24.0592 0x13d4  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:23:24.0617 0x13d4  mrxsmb - ok
15:23:24.0626 0x13d4  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
15:23:24.0647 0x13d4  mrxsmb10 - ok
15:23:24.0655 0x13d4  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
15:23:24.0673 0x13d4  mrxsmb20 - ok
15:23:24.0679 0x13d4  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
15:23:24.0696 0x13d4  MsBridge - ok
15:23:24.0703 0x13d4  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
15:23:24.0719 0x13d4  MSDTC - ok
15:23:24.0726 0x13d4  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
15:23:24.0738 0x13d4  Msfs - ok
15:23:24.0743 0x13d4  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
15:23:24.0754 0x13d4  msgpiowin32 - ok
15:23:24.0757 0x13d4  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
15:23:24.0768 0x13d4  mshidkmdf - ok
15:23:24.0772 0x13d4  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
15:23:24.0783 0x13d4  mshidumdf - ok
15:23:24.0787 0x13d4  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
15:23:24.0797 0x13d4  msisadrv - ok
15:23:24.0804 0x13d4  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
15:23:24.0821 0x13d4  MSiSCSI - ok
15:23:24.0824 0x13d4  msiserver - ok
15:23:24.0828 0x13d4  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:23:24.0840 0x13d4  MSKSSRV - ok
15:23:24.0844 0x13d4  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
15:23:24.0861 0x13d4  MsLldp - ok
15:23:24.0864 0x13d4  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:23:24.0876 0x13d4  MSPCLOCK - ok
15:23:24.0879 0x13d4  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
15:23:24.0891 0x13d4  MSPQM - ok
15:23:24.0902 0x13d4  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
15:23:24.0921 0x13d4  MsRPC - ok
15:23:24.0927 0x13d4  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
15:23:24.0938 0x13d4  mssmbios - ok
15:23:24.0941 0x13d4  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
15:23:24.0953 0x13d4  MSTEE - ok
15:23:24.0957 0x13d4  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
15:23:24.0969 0x13d4  MTConfig - ok
15:23:24.0975 0x13d4  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
15:23:24.0988 0x13d4  Mup - ok
15:23:24.0992 0x13d4  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
15:23:25.0004 0x13d4  mvumis - ok
15:23:25.0020 0x13d4  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
15:23:25.0050 0x13d4  NativeWifiP - ok
15:23:25.0057 0x13d4  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
15:23:25.0075 0x13d4  NcaSvc - ok
15:23:25.0085 0x13d4  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
15:23:25.0108 0x13d4  NcbService - ok
15:23:25.0113 0x13d4  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
15:23:25.0138 0x13d4  NcdAutoSetup - ok
15:23:25.0142 0x13d4  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
15:23:25.0154 0x13d4  ndfltr - ok
15:23:25.0185 0x13d4  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
15:23:25.0224 0x13d4  NDIS - ok
15:23:25.0230 0x13d4  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
15:23:25.0243 0x13d4  NdisCap - ok
15:23:25.0249 0x13d4  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
15:23:25.0266 0x13d4  NdisImPlatform - ok
15:23:25.0270 0x13d4  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:23:25.0285 0x13d4  NdisTapi - ok
15:23:25.0289 0x13d4  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
15:23:25.0302 0x13d4  Ndisuio - ok
15:23:25.0306 0x13d4  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
15:23:25.0320 0x13d4  NdisVirtualBus - ok
15:23:25.0327 0x13d4  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
15:23:25.0347 0x13d4  NdisWan - ok
15:23:25.0355 0x13d4  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:23:25.0374 0x13d4  ndiswanlegacy - ok
15:23:25.0379 0x13d4  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
15:23:25.0394 0x13d4  ndproxy - ok
15:23:25.0400 0x13d4  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
15:23:25.0415 0x13d4  Ndu - ok
15:23:25.0419 0x13d4  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
15:23:25.0431 0x13d4  NetBIOS - ok
15:23:25.0441 0x13d4  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
15:23:25.0461 0x13d4  NetBT - ok
15:23:25.0466 0x13d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
15:23:25.0478 0x13d4  Netlogon - ok
15:23:25.0487 0x13d4  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
15:23:25.0510 0x13d4  Netman - ok
15:23:25.0526 0x13d4  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
15:23:25.0559 0x13d4  netprofm - ok
15:23:25.0567 0x13d4  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
15:23:25.0585 0x13d4  NetSetupSvc - ok
15:23:25.0594 0x13d4  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:23:25.0606 0x13d4  NetTcpPortSharing - ok
15:23:25.0615 0x13d4  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
15:23:25.0636 0x13d4  NgcCtnrSvc - ok
15:23:25.0641 0x13d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
15:23:25.0653 0x13d4  NgcSvc - ok
15:23:25.0664 0x13d4  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
15:23:25.0688 0x13d4  NlaSvc - ok
15:23:25.0692 0x13d4  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] NPF             C:\WINDOWS\system32\drivers\npf.sys
15:23:25.0699 0x13d4  NPF - ok
15:23:25.0704 0x13d4  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
15:23:25.0717 0x13d4  Npfs - ok
15:23:25.0721 0x13d4  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
15:23:25.0733 0x13d4  npsvctrig - ok
15:23:25.0737 0x13d4  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
15:23:25.0750 0x13d4  nsi - ok
15:23:25.0754 0x13d4  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
15:23:25.0766 0x13d4  nsiproxy - ok
15:23:25.0818 0x13d4  [ BA8DC96D1DD7785EB0589CB1777208B7, 09B486A20D9F22FE50CB4FBC0C801609F522FA99F5FBC43107336B7D98457D91 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
15:23:25.0880 0x13d4  NTFS - ok
15:23:25.0888 0x13d4  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
15:23:25.0899 0x13d4  Null - ok
15:23:25.0906 0x13d4  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
15:23:25.0919 0x13d4  nvraid - ok
15:23:25.0926 0x13d4  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
15:23:25.0940 0x13d4  nvstor - ok
15:23:25.0946 0x13d4  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
15:23:25.0959 0x13d4  nv_agp - ok
15:23:25.0969 0x13d4  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
15:23:25.0994 0x13d4  OneSyncSvc - ok
15:23:26.0008 0x13d4  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
15:23:26.0032 0x13d4  p2pimsvc - ok
15:23:26.0045 0x13d4  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
15:23:26.0071 0x13d4  p2psvc - ok
15:23:26.0078 0x13d4  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
15:23:26.0093 0x13d4  Parport - ok
15:23:26.0099 0x13d4  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
15:23:26.0112 0x13d4  partmgr - ok
15:23:26.0127 0x13d4  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
15:23:26.0150 0x13d4  PcaSvc - ok
15:23:26.0161 0x13d4  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
15:23:26.0179 0x13d4  pci - ok
15:23:26.0182 0x13d4  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
15:23:26.0193 0x13d4  pciide - ok
15:23:26.0199 0x13d4  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
15:23:26.0212 0x13d4  pcmcia - ok
15:23:26.0216 0x13d4  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
15:23:26.0228 0x13d4  pcw - ok
15:23:26.0233 0x13d4  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
15:23:26.0247 0x13d4  pdc - ok
15:23:26.0265 0x13d4  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
15:23:26.0304 0x13d4  PEAUTH - ok
15:23:26.0354 0x13d4  [ 303D2C90139ABFC1D12E279F0F101710, CE02E335A72011004395DC635EB819B3ED8D00041B9C59024DE246366AF00559 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
15:23:26.0432 0x13d4  PeerDistSvc - ok
15:23:26.0440 0x13d4  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
15:23:26.0451 0x13d4  percsas2i - ok
15:23:26.0456 0x13d4  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
15:23:26.0467 0x13d4  percsas3i - ok
15:23:26.0489 0x13d4  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
15:23:26.0502 0x13d4  PerfHost - ok
15:23:26.0516 0x13d4  [ 839BD56425530973FF3F6F7C0057CD22, 9BADF39BC4628409CFCD5F1300C6040C49B2ED72D0FA389C6BB042E5B17E1A40 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
15:23:26.0537 0x13d4  PimIndexMaintenanceSvc - ok
15:23:26.0574 0x13d4  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
15:23:26.0641 0x13d4  pla - ok
15:23:26.0649 0x13d4  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
15:23:26.0670 0x13d4  PlugPlay - ok
15:23:26.0674 0x13d4  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
15:23:26.0687 0x13d4  PNRPAutoReg - ok
15:23:26.0698 0x13d4  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
15:23:26.0722 0x13d4  PNRPsvc - ok
15:23:26.0735 0x13d4  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
15:23:26.0762 0x13d4  PolicyAgent - ok
15:23:26.0769 0x13d4  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
15:23:26.0784 0x13d4  Power - ok
15:23:26.0790 0x13d4  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
15:23:26.0806 0x13d4  PptpMiniport - ok
15:23:26.0886 0x13d4  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:23:27.0009 0x13d4  PrintNotify - ok
15:23:27.0020 0x13d4  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
15:23:27.0035 0x13d4  Processor - ok
15:23:27.0045 0x13d4  [ 8A216BBE091DA0585F6A5E8B65980961, 7A9400AF63D1B906F48C072084CC77508C91C7E69ACC1E9957D7A9C353A67710 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
15:23:27.0068 0x13d4  ProfSvc - ok
15:23:27.0075 0x13d4  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
15:23:27.0089 0x13d4  Psched - ok
15:23:27.0099 0x13d4  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
15:23:27.0120 0x13d4  QWAVE - ok
15:23:27.0125 0x13d4  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
15:23:27.0138 0x13d4  QWAVEdrv - ok
15:23:27.0141 0x13d4  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:23:27.0155 0x13d4  RasAcd - ok
15:23:27.0161 0x13d4  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
15:23:27.0177 0x13d4  RasAgileVpn - ok
15:23:27.0183 0x13d4  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
15:23:27.0201 0x13d4  RasAuto - ok
15:23:27.0206 0x13d4  [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
15:23:27.0223 0x13d4  Rasl2tp - ok
15:23:27.0243 0x13d4  [ 9AD8FCCC95B68BC3129AA2318CE55717, 57227EBF2C1D42063B95AC92F380BAA95E0C6F2E6556F887AACBF63A0482FD24 ] RasMan          C:\WINDOWS\System32\rasmans.dll
15:23:27.0278 0x13d4  RasMan - ok
15:23:27.0283 0x13d4  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:23:27.0299 0x13d4  RasPppoe - ok
15:23:27.0304 0x13d4  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
15:23:27.0320 0x13d4  RasSstp - ok
15:23:27.0333 0x13d4  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:23:27.0358 0x13d4  rdbss - ok
15:23:27.0364 0x13d4  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
15:23:27.0375 0x13d4  rdpbus - ok
15:23:27.0382 0x13d4  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
15:23:27.0399 0x13d4  RDPDR - ok
15:23:27.0406 0x13d4  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
15:23:27.0416 0x13d4  RdpVideoMiniport - ok
15:23:27.0424 0x13d4  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
15:23:27.0440 0x13d4  rdyboost - ok
15:23:27.0464 0x13d4  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
15:23:27.0497 0x13d4  ReFSv1 - ok
15:23:27.0514 0x13d4  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:23:27.0545 0x13d4  RemoteAccess - ok
15:23:27.0552 0x13d4  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
15:23:27.0574 0x13d4  RemoteRegistry - ok
15:23:27.0603 0x13d4  [ DF84555A734BA2BDA55BCCCC47095ADD, 639814A7F5B758792FE6D84E3FF312F9CE9DACB21B93EA43394DC7A04526CB81 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
15:23:27.0649 0x13d4  RetailDemo - ok
15:23:27.0657 0x13d4  [ 83A6C2CAFE236652D1559640594A0EA8, 52360F17C9C70C9CEA3316560B40C4D89FD705ED7E6B6088C99FC54D4CC35EB5 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
15:23:27.0665 0x13d4  rpcapd - ok
15:23:27.0670 0x13d4  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
15:23:27.0685 0x13d4  RpcEptMapper - ok
15:23:27.0689 0x13d4  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:23:27.0702 0x13d4  RpcLocator - ok
15:23:27.0725 0x13d4  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
15:23:27.0766 0x13d4  RpcSs - ok
15:23:27.0773 0x13d4  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
15:23:27.0790 0x13d4  rspndr - ok
15:23:27.0806 0x13d4  [ 179E6BCF8D16AD39C137CB4FCFE015C5, A1DF499AA378BDB1CB7F95ACC0C7D6929358AF4596A47FDEDFAE115461563CD5 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
15:23:27.0838 0x13d4  rt640x64 - ok
15:23:27.0842 0x13d4  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
15:23:27.0853 0x13d4  s3cap - ok
15:23:27.0858 0x13d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
15:23:27.0870 0x13d4  SamSs - ok
15:23:27.0876 0x13d4  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
15:23:27.0889 0x13d4  sbp2port - ok
15:23:27.0897 0x13d4  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
15:23:27.0921 0x13d4  SCardSvr - ok
15:23:27.0929 0x13d4  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
15:23:27.0951 0x13d4  ScDeviceEnum - ok
15:23:27.0955 0x13d4  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
15:23:27.0971 0x13d4  scfilter - ok
15:23:27.0997 0x13d4  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
15:23:28.0044 0x13d4  Schedule - ok
15:23:28.0052 0x13d4  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
15:23:28.0074 0x13d4  SCPolicySvc - ok
15:23:28.0083 0x13d4  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
15:23:28.0100 0x13d4  sdbus - ok
15:23:28.0108 0x13d4  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
15:23:28.0125 0x13d4  SDRSVC - ok
15:23:28.0130 0x13d4  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
15:23:28.0143 0x13d4  sdstor - ok
15:23:28.0147 0x13d4  [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon        C:\WINDOWS\system32\seclogon.dll
15:23:28.0160 0x13d4  seclogon - ok
15:23:28.0165 0x13d4  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
15:23:28.0184 0x13d4  SENS - ok
15:23:28.0209 0x13d4  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
15:23:28.0256 0x13d4  SensorDataService - ok
15:23:28.0267 0x13d4  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
15:23:28.0287 0x13d4  SensorService - ok
15:23:28.0295 0x13d4  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
15:23:28.0313 0x13d4  SensrSvc - ok
15:23:28.0319 0x13d4  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
15:23:28.0331 0x13d4  SerCx - ok
15:23:28.0337 0x13d4  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
15:23:28.0351 0x13d4  SerCx2 - ok
15:23:28.0356 0x13d4  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
15:23:28.0368 0x13d4  Serenum - ok
15:23:28.0373 0x13d4  [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial          C:\WINDOWS\System32\drivers\serial.sys
15:23:28.0388 0x13d4  Serial - ok
15:23:28.0391 0x13d4  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
15:23:28.0403 0x13d4  sermouse - ok
15:23:28.0419 0x13d4  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
15:23:28.0443 0x13d4  SessionEnv - ok
15:23:28.0447 0x13d4  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
15:23:28.0460 0x13d4  sfloppy - ok
15:23:28.0472 0x13d4  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
15:23:28.0502 0x13d4  SharedAccess - ok
15:23:28.0518 0x13d4  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:23:28.0559 0x13d4  ShellHWDetection - ok
15:23:28.0564 0x13d4  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
15:23:28.0575 0x13d4  SiSRaid2 - ok
15:23:28.0580 0x13d4  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
15:23:28.0592 0x13d4  SiSRaid4 - ok
15:23:28.0602 0x13d4  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:23:28.0618 0x13d4  SkypeUpdate - ok
15:23:28.0622 0x13d4  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
15:23:28.0640 0x13d4  smphost - ok
15:23:28.0655 0x13d4  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
15:23:28.0690 0x13d4  SmsRouter - ok
15:23:28.0697 0x13d4  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
15:23:28.0712 0x13d4  SNMPTRAP - ok
15:23:28.0726 0x13d4  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
15:23:28.0748 0x13d4  spaceport - ok
15:23:28.0754 0x13d4  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
15:23:28.0766 0x13d4  SpbCx - ok
15:23:28.0787 0x13d4  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
15:23:28.0826 0x13d4  Spooler - ok
15:23:28.0994 0x13d4  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
15:23:29.0169 0x13d4  sppsvc - ok
15:23:29.0189 0x13d4  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
15:23:29.0214 0x13d4  srv - ok
15:23:29.0233 0x13d4  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
15:23:29.0266 0x13d4  srv2 - ok
15:23:29.0275 0x13d4  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
15:23:29.0294 0x13d4  srvnet - ok
15:23:29.0303 0x13d4  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:23:29.0326 0x13d4  SSDPSRV - ok
15:23:29.0334 0x13d4  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
15:23:29.0356 0x13d4  SstpSvc - ok
15:23:29.0364 0x13d4  [ 9B74226E10CD57E965F87014841016F9, 95C76049DBBF3B31A9B01CFD0EDAAC47DE9A1F096B61D05C47FB85E1AFC07288 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
15:23:29.0375 0x13d4  ssudmdm - ok
15:23:29.0379 0x13d4  [ 3267933B06415A5801FE888B203C2046, 8AB522EBF47294760D7F5F49034175A29E16D61481B414B6E193DB144FCA9A62 ] ssudqcfilter    C:\WINDOWS\System32\drivers\ssudqcfilter.sys
15:23:29.0387 0x13d4  ssudqcfilter - ok
15:23:29.0449 0x13d4  [ 78760751FBCB900F6F68CA1700DAE2DC, 356914797056B11745E18ECD033B8DC801C3C3DD6C5127FCD430A02C4FDD34A9 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
15:23:29.0551 0x13d4  StateRepository - ok
15:23:29.0575 0x13d4  [ 591249EA969797C2A24629AF7C71A6F8, 61F28FB495657916514DE2A7FFD4AD833A1B2BBA5591616BE0C9CCD7DAFA40B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:23:29.0598 0x13d4  Steam Client Service - ok
15:23:29.0603 0x13d4  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
15:23:29.0615 0x13d4  stexstor - ok
15:23:29.0632 0x13d4  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
15:23:29.0667 0x13d4  stisvc - ok
15:23:29.0675 0x13d4  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
15:23:29.0688 0x13d4  storahci - ok
15:23:29.0693 0x13d4  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
15:23:29.0704 0x13d4  storflt - ok
15:23:29.0709 0x13d4  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
15:23:29.0721 0x13d4  stornvme - ok
15:23:29.0726 0x13d4  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
15:23:29.0739 0x13d4  storqosflt - ok
15:23:29.0751 0x13d4  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
15:23:29.0776 0x13d4  StorSvc - ok
15:23:29.0781 0x13d4  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
15:23:29.0792 0x13d4  storufs - ok
15:23:29.0796 0x13d4  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
15:23:29.0807 0x13d4  storvsc - ok
15:23:29.0810 0x13d4  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
15:23:29.0828 0x13d4  svsvc - ok
15:23:29.0842 0x13d4  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
15:23:29.0853 0x13d4  swenum - ok
15:23:29.0866 0x13d4  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
15:23:29.0898 0x13d4  swprv - ok
15:23:29.0904 0x13d4  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
15:23:29.0917 0x13d4  Synth3dVsc - ok
15:23:29.0945 0x13d4  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
15:23:29.0995 0x13d4  SysMain - ok
15:23:30.0009 0x13d4  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
15:23:30.0034 0x13d4  SystemEventsBroker - ok
15:23:30.0041 0x13d4  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
15:23:30.0058 0x13d4  TabletInputService - ok
15:23:30.0068 0x13d4  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:23:30.0092 0x13d4  TapiSrv - ok
15:23:30.0149 0x13d4  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
15:23:30.0219 0x13d4  Tcpip - ok
15:23:30.0221 0x13d4  Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip
15:23:32.0647 0x13d4  Object send P2P result: true
15:23:32.0711 0x13d4  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
15:23:32.0781 0x13d4  Tcpip6 - ok
15:23:32.0783 0x13d4  Object required for P2P: [ 7EBD20284AC9BF9F0A020B86769BB074 ] Tcpip6
15:23:35.0208 0x13d4  Object send P2P result: true
15:23:35.0220 0x13d4  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
15:23:35.0245 0x13d4  tcpipreg - ok
15:23:35.0254 0x13d4  [ D42AC03ACF9CA67693D1D9BB4D2A0BC8, D39D5180F3CDB23B4551A8C98F3C92A960B4CC9FA48E0FE11A6D89B0C247783F ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
15:23:35.0267 0x13d4  tdx - ok
15:23:35.0271 0x13d4  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
15:23:35.0282 0x13d4  terminpt - ok
15:23:35.0307 0x13d4  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
15:23:35.0354 0x13d4  TermService - ok
15:23:35.0361 0x13d4  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
15:23:35.0384 0x13d4  Themes - ok
15:23:35.0398 0x13d4  [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
15:23:35.0428 0x13d4  tiledatamodelsvc - ok
15:23:35.0435 0x13d4  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
15:23:35.0453 0x13d4  TimeBroker - ok
15:23:35.0461 0x13d4  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
15:23:35.0476 0x13d4  TPM - ok
15:23:35.0482 0x13d4  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
15:23:35.0499 0x13d4  TrkWks - ok
15:23:35.0504 0x13d4  [ 0D5A09B08568760AE85A801FCBC0F83D, 347ACBA74FDCBEAC671521739F8A34EC0E378CAF716C31F55616F9F843E4D0D3 ] TrueSight       C:\Windows\System32\drivers\TrueSight.sys
15:23:35.0510 0x13d4  TrueSight - ok
15:23:35.0516 0x13d4  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
15:23:35.0531 0x13d4  TrustedInstaller - ok
15:23:35.0536 0x13d4  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
15:23:35.0549 0x13d4  TsUsbFlt - ok
15:23:35.0553 0x13d4  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
15:23:35.0565 0x13d4  TsUsbGD - ok
15:23:35.0572 0x13d4  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
15:23:35.0588 0x13d4  tunnel - ok
15:23:35.0593 0x13d4  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
15:23:35.0604 0x13d4  uagp35 - ok
15:23:35.0609 0x13d4  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
15:23:35.0621 0x13d4  UASPStor - ok
15:23:35.0625 0x13d4  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
15:23:35.0638 0x13d4  UcmCx0101 - ok
15:23:35.0643 0x13d4  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
15:23:35.0656 0x13d4  UcmUcsi - ok
15:23:35.0663 0x13d4  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
15:23:35.0679 0x13d4  Ucx01000 - ok
15:23:35.0683 0x13d4  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
15:23:35.0695 0x13d4  UdeCx - ok
15:23:35.0706 0x13d4  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
15:23:35.0732 0x13d4  udfs - ok
15:23:35.0736 0x13d4  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
15:23:35.0747 0x13d4  UEFI - ok
15:23:35.0755 0x13d4  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
15:23:35.0771 0x13d4  Ufx01000 - ok
15:23:35.0777 0x13d4  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
15:23:35.0789 0x13d4  UfxChipidea - ok
15:23:35.0796 0x13d4  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
15:23:35.0809 0x13d4  ufxsynopsys - ok
15:23:35.0816 0x13d4  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
15:23:35.0834 0x13d4  UI0Detect - ok
15:23:35.0838 0x13d4  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
15:23:35.0850 0x13d4  uliagpkx - ok
15:23:35.0855 0x13d4  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
15:23:35.0868 0x13d4  umbus - ok
15:23:35.0872 0x13d4  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
15:23:35.0883 0x13d4  UmPass - ok
15:23:35.0892 0x13d4  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
15:23:35.0914 0x13d4  UmRdpService - ok
15:23:35.0944 0x13d4  [ 0D5C9E27E93AAEA3E30A1E59A7AC3DFF, 31A203DA03877E6B887930990C5BB53402F0DFFB22A6F8FC5A34EF0B99CD8A7E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
15:23:35.0996 0x13d4  UnistoreSvc - ok
15:23:36.0013 0x13d4  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:23:36.0043 0x13d4  upnphost - ok
15:23:36.0048 0x13d4  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
15:23:36.0059 0x13d4  UrsChipidea - ok
15:23:36.0063 0x13d4  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
15:23:36.0074 0x13d4  UrsCx01000 - ok
15:23:36.0078 0x13d4  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
15:23:36.0089 0x13d4  UrsSynopsys - ok
15:23:36.0095 0x13d4  [ 1DC6166DB6C4FEFE87D9B9105044E5BE, D19B867C0E900B596B4180390A6E4F2ECCBDF8FBD49561C23DBA7D460B8F44A9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
15:23:36.0111 0x13d4  usbaudio - ok
15:23:36.0117 0x13d4  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
15:23:36.0131 0x13d4  usbccgp - ok
15:23:36.0137 0x13d4  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
15:23:36.0152 0x13d4  usbcir - ok
15:23:36.0157 0x13d4  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
15:23:36.0170 0x13d4  usbehci - ok
15:23:36.0184 0x13d4  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
15:23:36.0207 0x13d4  usbhub - ok
15:23:36.0221 0x13d4  [ 1BDA1FD02783566F0B20EB0E2517F85C, 4C86DC962BBE4CA5AE466A37CF647D84CE2A34DA7F861751587841FC10CFA09D ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
15:23:36.0244 0x13d4  USBHUB3 - ok
15:23:36.0249 0x13d4  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
15:23:36.0262 0x13d4  usbohci - ok
15:23:36.0266 0x13d4  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
15:23:36.0278 0x13d4  usbprint - ok
15:23:36.0283 0x13d4  [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
15:23:36.0296 0x13d4  usbser - ok
15:23:36.0302 0x13d4  [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
15:23:36.0316 0x13d4  USBSTOR - ok
15:23:36.0320 0x13d4  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
15:23:36.0332 0x13d4  usbuhci - ok
15:23:36.0344 0x13d4  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
15:23:36.0363 0x13d4  USBXHCI - ok
15:23:36.0397 0x13d4  [ 32212C0FE0556915E763C29DEB6D267E, C5BC9DA3AB0C41604E8F3D01AFC2C25351FF5D3967E766DD0CDB4C0239ED6312 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
15:23:36.0457 0x13d4  UserDataSvc - ok
15:23:36.0481 0x13d4  [ A2FD4588F579F8671E4AB1064633CB46, A2BBF6AF7D84F5AE01BFFF69F6CCBACFC0651A2DE2BBD226C6D90208298333D5 ] UserManager     C:\WINDOWS\System32\usermgr.dll
15:23:36.0517 0x13d4  UserManager - ok
15:23:36.0529 0x13d4  [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
15:23:36.0554 0x13d4  UsoSvc - ok
15:23:36.0559 0x13d4  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
15:23:36.0571 0x13d4  VaultSvc - ok
15:23:36.0575 0x13d4  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
15:23:36.0587 0x13d4  vdrvroot - ok
15:23:36.0604 0x13d4  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
15:23:36.0643 0x13d4  vds - ok
15:23:36.0653 0x13d4  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
15:23:36.0668 0x13d4  VerifierExt - ok
15:23:36.0686 0x13d4  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
15:23:36.0713 0x13d4  vhdmp - ok
15:23:36.0717 0x13d4  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
15:23:36.0730 0x13d4  vhf - ok
15:23:36.0736 0x13d4  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
15:23:36.0751 0x13d4  vmbus - ok
15:23:36.0755 0x13d4  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
15:23:36.0767 0x13d4  VMBusHID - ok
15:23:36.0782 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
15:23:36.0811 0x13d4  vmicguestinterface - ok
15:23:36.0825 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
15:23:36.0854 0x13d4  vmicheartbeat - ok
15:23:36.0868 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
15:23:36.0897 0x13d4  vmickvpexchange - ok
15:23:36.0911 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
15:23:36.0940 0x13d4  vmicrdv - ok
15:23:36.0954 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
15:23:36.0982 0x13d4  vmicshutdown - ok
15:23:36.0997 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
15:23:37.0026 0x13d4  vmictimesync - ok
15:23:37.0040 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
15:23:37.0068 0x13d4  vmicvmsession - ok
15:23:37.0082 0x13d4  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
15:23:37.0111 0x13d4  vmicvss - ok
15:23:37.0116 0x13d4  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
15:23:37.0129 0x13d4  volmgr - ok
15:23:37.0140 0x13d4  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
15:23:37.0159 0x13d4  volmgrx - ok
15:23:37.0172 0x13d4  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
15:23:37.0191 0x13d4  volsnap - ok
15:23:37.0197 0x13d4  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
15:23:37.0209 0x13d4  vpci - ok
15:23:37.0215 0x13d4  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
15:23:37.0230 0x13d4  vsmraid - ok
15:23:37.0262 0x13d4  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
15:23:37.0324 0x13d4  VSS - ok
15:23:37.0337 0x13d4  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
15:23:37.0355 0x13d4  VSTXRAID - ok
15:23:37.0359 0x13d4  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
15:23:37.0371 0x13d4  vwifibus - ok
15:23:37.0376 0x13d4  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
15:23:37.0392 0x13d4  vwififlt - ok
15:23:37.0406 0x13d4  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
15:23:37.0440 0x13d4  W32Time - ok
15:23:37.0444 0x13d4  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
15:23:37.0457 0x13d4  WacomPen - ok
15:23:37.0471 0x13d4  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
15:23:37.0500 0x13d4  WalletService - ok
15:23:37.0506 0x13d4  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:23:37.0522 0x13d4  wanarp - ok
15:23:37.0526 0x13d4  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:23:37.0542 0x13d4  wanarpv6 - ok
15:23:37.0581 0x13d4  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
15:23:37.0646 0x13d4  wbengine - ok
15:23:37.0666 0x13d4  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
15:23:37.0698 0x13d4  WbioSrvc - ok
15:23:37.0715 0x13d4  [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
15:23:37.0748 0x13d4  Wcmsvc - ok
15:23:37.0762 0x13d4  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
15:23:37.0791 0x13d4  wcncsvc - ok
15:23:37.0796 0x13d4  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
15:23:37.0810 0x13d4  WcsPlugInService - ok
15:23:37.0815 0x13d4  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
15:23:37.0827 0x13d4  WdBoot - ok

Bubbazz · 06.03.2016, 16:38

Code:

ATTFilter

15:23:37.0850 0x13d4  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
15:23:37.0879 0x13d4  Wdf01000 - ok
15:23:37.0890 0x13d4  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
15:23:37.0907 0x13d4  WdFilter - ok
15:23:37.0913 0x13d4  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
15:23:37.0934 0x13d4  WdiServiceHost - ok
15:23:37.0938 0x13d4  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
15:23:37.0958 0x13d4  WdiSystemHost - ok
15:23:37.0975 0x13d4  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
15:23:38.0009 0x13d4  wdiwifi - ok
15:23:38.0016 0x13d4  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
15:23:38.0029 0x13d4  WdNisDrv - ok
15:23:38.0031 0x13d4  WdNisSvc - ok
15:23:38.0040 0x13d4  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:23:38.0064 0x13d4  WebClient - ok
15:23:38.0072 0x13d4  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
15:23:38.0094 0x13d4  Wecsvc - ok
15:23:38.0098 0x13d4  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
15:23:38.0116 0x13d4  WEPHOSTSVC - ok
15:23:38.0121 0x13d4  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
15:23:38.0144 0x13d4  wercplsupport - ok
15:23:38.0151 0x13d4  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
15:23:38.0174 0x13d4  WerSvc - ok
15:23:38.0177 0x13d4  wfpcapture - ok
15:23:38.0183 0x13d4  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
15:23:38.0197 0x13d4  WFPLWFS - ok
15:23:38.0202 0x13d4  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
15:23:38.0217 0x13d4  WiaRpc - ok
15:23:38.0221 0x13d4  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
15:23:38.0232 0x13d4  WIMMount - ok
15:23:38.0234 0x13d4  WinDefend - ok
15:23:38.0243 0x13d4  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
15:23:38.0257 0x13d4  WindowsTrustedRT - ok
15:23:38.0261 0x13d4  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
15:23:38.0271 0x13d4  WindowsTrustedRTProxy - ok
15:23:38.0293 0x13d4  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
15:23:38.0334 0x13d4  WinHttpAutoProxySvc - ok
15:23:38.0340 0x13d4  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
15:23:38.0351 0x13d4  WinMad - ok
15:23:38.0363 0x13d4  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
15:23:38.0382 0x13d4  Winmgmt - ok
15:23:38.0440 0x13d4  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
15:23:38.0542 0x13d4  WinRM - ok
15:23:38.0554 0x13d4  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
15:23:38.0568 0x13d4  WINUSB - ok
15:23:38.0573 0x13d4  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
15:23:38.0584 0x13d4  WinVerbs - ok
15:23:38.0635 0x13d4  [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
15:23:38.0722 0x13d4  WlanSvc - ok
15:23:38.0773 0x13d4  [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
15:23:38.0855 0x13d4  wlidsvc - ok
15:23:38.0856 0x13d4  Object required for P2P: [ 0968D575D9108497A6DC37749D4A6C4F ] wlidsvc
15:23:41.0283 0x13d4  Object send P2P result: true
15:23:41.0291 0x13d4  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
15:23:41.0310 0x13d4  WmiAcpi - ok
15:23:41.0319 0x13d4  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
15:23:41.0337 0x13d4  wmiApSrv - ok
15:23:41.0340 0x13d4  WMPNetworkSvc - ok
15:23:41.0347 0x13d4  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
15:23:41.0362 0x13d4  Wof - ok
15:23:41.0406 0x13d4  [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
15:23:41.0480 0x13d4  workfolderssvc - ok
15:23:41.0490 0x13d4  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
15:23:41.0502 0x13d4  wpcfltr - ok
15:23:41.0508 0x13d4  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
15:23:41.0523 0x13d4  WPDBusEnum - ok
15:23:41.0527 0x13d4  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
15:23:41.0538 0x13d4  WpdUpFltr - ok
15:23:41.0542 0x13d4  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
15:23:41.0557 0x13d4  WpnService - ok
15:23:41.0560 0x13d4  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
15:23:41.0574 0x13d4  ws2ifsl - ok
15:23:41.0582 0x13d4  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
15:23:41.0603 0x13d4  wscsvc - ok
15:23:41.0606 0x13d4  WSearch - ok
15:23:41.0684 0x13d4  [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService       C:\WINDOWS\System32\WSService.dll
15:23:41.0782 0x13d4  WSService - ok
15:23:41.0841 0x13d4  [ 2FE47060B982C6581625B8F7B5C348DA, E44003D1F300CA3BC77467404A7213C7BCBFE5F8E7D7696FEAF9BC395AC50F90 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
15:23:41.0928 0x13d4  wuauserv - ok
15:23:41.0937 0x13d4  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
15:23:41.0953 0x13d4  WudfPf - ok
15:23:41.0960 0x13d4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
15:23:41.0979 0x13d4  WUDFRd - ok
15:23:41.0985 0x13d4  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
15:23:42.0002 0x13d4  wudfsvc - ok
15:23:42.0010 0x13d4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:23:42.0029 0x13d4  WUDFWpdFs - ok
15:23:42.0036 0x13d4  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
15:23:42.0055 0x13d4  WUDFWpdMtp - ok
15:23:42.0086 0x13d4  [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
15:23:42.0138 0x13d4  WwanSvc - ok
15:23:42.0163 0x13d4  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
15:23:42.0207 0x13d4  XblAuthManager - ok
15:23:42.0237 0x13d4  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
15:23:42.0288 0x13d4  XblGameSave - ok
15:23:42.0298 0x13d4  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
15:23:42.0317 0x13d4  xboxgip - ok
15:23:42.0342 0x13d4  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
15:23:42.0389 0x13d4  XboxNetApiSvc - ok
15:23:42.0395 0x13d4  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
15:23:42.0407 0x13d4  xinputhid - ok
15:23:42.0409 0x13d4  ================ Scan global ===============================
15:23:42.0414 0x13d4  [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
15:23:42.0422 0x13d4  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
15:23:42.0430 0x13d4  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
15:23:42.0443 0x13d4  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
15:23:42.0452 0x13d4  [ Global ] - ok
15:23:42.0452 0x13d4  ================ Scan MBR ==================================
15:23:42.0454 0x13d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:23:42.0535 0x13d4  \Device\Harddisk0\DR0 - ok
15:23:42.0537 0x13d4  [ 017E003AB27B155B3A606EB18257FC5D ] \Device\Harddisk1\DR1
15:23:42.0573 0x13d4  \Device\Harddisk1\DR1 - ok
15:23:42.0575 0x13d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
15:23:43.0013 0x13d4  \Device\Harddisk2\DR2 - ok
15:23:43.0013 0x13d4  ================ Scan VBR ==================================
15:23:43.0018 0x13d4  [ D4B746A689F0856A72C3817A41D7CF51 ] \Device\Harddisk0\DR0\Partition1
15:23:43.0019 0x13d4  \Device\Harddisk0\DR0\Partition1 - ok
15:23:43.0021 0x13d4  [ E2E7E87ACB812524BF4155AC30CB9DC0 ] \Device\Harddisk0\DR0\Partition2
15:23:43.0023 0x13d4  \Device\Harddisk0\DR0\Partition2 - ok
15:23:43.0025 0x13d4  [ 01E4FDAC555C312970AB35EE946C0184 ] \Device\Harddisk2\DR2\Partition1
15:23:43.0026 0x13d4  \Device\Harddisk2\DR2\Partition1 - ok
15:23:43.0026 0x13d4  ================ Scan generic autorun ======================
15:23:43.0365 0x13d4  [ 83E58B9CEF0BA40BB93A20440ECBE43A, A72241D5F0CE1BFC465B4EB59F34A9BE04A0E5FD2F601D6FDBBE254603935C47 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:23:43.0710 0x13d4  RTHDVCPL - ok
15:23:43.0723 0x13d4  Object required for P2P: [ 83E58B9CEF0BA40BB93A20440ECBE43A ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:23:46.0186 0x13d4  Object send P2P result: true
15:23:46.0529 0x13d4  [ BA1C34DAB2C27DAE0C830F1DB70B13A6, 71D52880BE4F67493DBA1B89847209B0AEE6FCA1D432608772ED10621DAD5309 ] C:\Program Files\Logitech Gaming Software\LCore.exe
15:23:46.0847 0x13d4  Launch LCore - ok
15:23:46.0883 0x13d4  [ 4C6AAABB264526A9C845A39AEBB79B69, B27F869E8B44CC5F1F9ADCA53AA848C16D706587ED9C7F995AE59BF9B0426523 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
15:23:46.0905 0x13d4  StartCCC - ok
15:23:46.0909 0x13d4  [ 86069F4F421FB355C41FD734500E477F, CB4CE22C3298280B033105875079A373D7E1ADEA15F0F71A2095CCA50CF7E5A5 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
15:23:46.0916 0x13d4  Avira SystrayStartTrigger - ok
15:23:46.0939 0x13d4  [ E83C81F40E072A697816F7311B87F471, 26F76EE173BB7F1D57837F71A9D22287DB1381A8C69EEB3B3BA7EB9B166A7828 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
15:23:46.0962 0x13d4  avgnt - ok
15:23:47.0171 0x13d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
15:23:47.0344 0x13d4  OneDriveSetup - ok
15:23:47.0538 0x13d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
15:23:47.0708 0x13d4  OneDriveSetup - ok
15:23:47.0731 0x13d4  [ 1F93DAF10BC91666F52FC5B9632C86EB, 3D2AE1090198AAEE7CDB587ED1D2784B9FF4E4B03F4F65BC2F46E28B136F3F01 ] C:\Users\javor\AppData\Local\Microsoft\OneDrive\OneDrive.exe
15:23:47.0752 0x13d4  OneDrive - ok
15:23:47.0817 0x13d4  [ FF74D2A2E3A3615A765B5181DB18551D, C38F06705B4E3264ABA10317BF3DE6D022E9B9D5B3016B08121512E84880963C ] C:\Program Files (x86)\Steam\steam.exe
15:23:47.0884 0x13d4  Steam - ok
15:23:47.0886 0x13d4  Object required for P2P: [ FF74D2A2E3A3615A765B5181DB18551D ] C:\Program Files (x86)\Steam\steam.exe
15:23:50.0317 0x13d4  Object send P2P result: true
15:23:50.0320 0x13d4  Skype - ok
15:23:50.0328 0x13d4  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.15.133 ), 0x41000 ( enabled : updated )
15:23:50.0329 0x13d4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
15:23:50.0331 0x13d4  Win FW state via NFP2: enabled ( trusted )
15:23:52.0679 0x13d4  ============================================================
15:23:52.0679 0x13d4  Scan finished
15:23:52.0679 0x13d4  ============================================================
15:23:52.0686 0x14a4  Detected object count: 0
15:23:52.0686 0x14a4  Actual detected object count: 0
15:24:22.0643 0x0874  Deinitialize success

Geschaft,

Ich bekomme auch jeden morgens ein UDP - LOOP auf Port 19.
gesehen im Logfile des Router (Model: EasyBox 602).

Mfg,
Javor

burningice · 06.03.2016, 17:11

Schritt: 1
Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt: 2

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...

06.03.2016, 16:09	#4
burningice /// Malwareteam	Windows 10: GMER Crashed Windows und findet rootkit entweder als Anhang anfügen oder auf mehrere Antworten teilen __________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook ..........

Windows 10: GMER Crashed Windows und findet rootkit

Log-Analyse und Auswertung: Windows 10: GMER Crashed Windows und findet rootkit